Mock Version: 1.3.4
ENTER ['do'](['bash', '--login', '-c', '/usr/bin/rpmbuild -bs --target x86_64 --nodeps /builddir/build/SPECS/nss.spec'], nspawn_args=[]shell=Falseuid=1004env={'LANG': 'en_US.utf8', 'TERM': 'vt100', 'SHELL': '/bin/bash', 'HOSTNAME': 'mock', 'PROMPT_COMMAND': 'printf "\\033]0;<mock-chroot>\\007"', 'HOME': '/builddir', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin', 'PS1': '<mock-chroot> \\s-\\v\\$ '}chrootPath='/var/lib/mock/centos-7-x86_64/root'gid=135user='mockbuild'timeout=0logger=<mockbuild.trace_decorator.getLog object at 0x1629850>printOutput=True)
Executing command: ['bash', '--login', '-c', '/usr/bin/rpmbuild -bs --target x86_64 --nodeps /builddir/build/SPECS/nss.spec'] with env {'LANG': 'en_US.utf8', 'TERM': 'vt100', 'SHELL': '/bin/bash', 'HOSTNAME': 'mock', 'PROMPT_COMMAND': 'printf "\\033]0;<mock-chroot>\\007"', 'HOME': '/builddir', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin', 'PS1': '<mock-chroot> \\s-\\v\\$ '} and shell False
Building target platforms: x86_64
Building for target x86_64
Wrote: /builddir/build/SRPMS/nss-3.28.4-8.el7.src.rpm
Child return code was: 0
ENTER ['do'](['bash', '--login', '-c', u'/usr/bin/rpmbuild -bb --target x86_64 --nodeps /builddir/build/SPECS/nss.spec'], nspawn_args=[]shell=Falseuid=1004env={'LANG': 'en_US.utf8', 'TERM': 'vt100', 'SHELL': '/bin/bash', 'HOSTNAME': 'mock', 'PROMPT_COMMAND': 'printf "\\033]0;<mock-chroot>\\007"', 'HOME': '/builddir', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin', 'PS1': '<mock-chroot> \\s-\\v\\$ '}chrootPath='/var/lib/mock/centos-7-x86_64/root'gid=135user='mockbuild'timeout=0logger=<mockbuild.trace_decorator.getLog object at 0x1629850>printOutput=True)
Executing command: ['bash', '--login', '-c', u'/usr/bin/rpmbuild -bb --target x86_64 --nodeps /builddir/build/SPECS/nss.spec'] with env {'LANG': 'en_US.utf8', 'TERM': 'vt100', 'SHELL': '/bin/bash', 'HOSTNAME': 'mock', 'PROMPT_COMMAND': 'printf "\\033]0;<mock-chroot>\\007"', 'HOME': '/builddir', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin', 'PS1': '<mock-chroot> \\s-\\v\\$ '} and shell False
Building target platforms: x86_64
Building for target x86_64
Executing(%prep): /bin/sh -e /var/tmp/rpm-tmp.Y9EvIP
+ umask 022
+ cd /builddir/build/BUILD
+ cd /builddir/build/BUILD
+ rm -rf nss-3.28.4
+ /usr/bin/gzip -dc /builddir/build/SOURCES/nss-3.28.4.tar.gz
+ /usr/bin/tar -xf -
+ STATUS=0
+ '[' 0 -ne 0 ']'
+ cd nss-3.28.4
+ /usr/bin/chmod -Rf a+rX,u+w,g-w,o-w .
+ /usr/bin/cp /builddir/build/SOURCES/PayPalEE.cert -f ./nss/tests/libpkix/certs
+ /usr/bin/cp /builddir/build/SOURCES/TestCA.ca.cert -f ./nss/tests/libpkix/certs
+ /usr/bin/cp /builddir/build/SOURCES/TestUser50.cert -f ./nss/tests/libpkix/certs
+ /usr/bin/cp /builddir/build/SOURCES/TestUser51.cert -f ./nss/tests/libpkix/certs
+ /usr/bin/cp /builddir/build/SOURCES/PayPalRootCA.cert -f ./nss/tests/libpkix/certs
+ /usr/bin/cp /builddir/build/SOURCES/PayPalICA.cert -f ./nss/tests/libpkix/certs
+ cd /builddir/build/BUILD
+ cd nss-3.28.4
+ /usr/bin/chmod -Rf a+rX,u+w,g-w,o-w .
+ echo 'Patch #2 (add-relro-linker-option.patch):'
Patch #2 (add-relro-linker-option.patch):
+ /usr/bin/cat /builddir/build/SOURCES/add-relro-linker-option.patch
+ /usr/bin/patch -p0 -b --suffix .relro --fuzz=0
patching file nss/coreconf/Linux.mk
Hunk #1 succeeded at 189 (offset 15 lines).
Patch #3 (renegotiate-transitional.patch):
+ echo 'Patch #3 (renegotiate-transitional.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/renegotiate-transitional.patch
+ /usr/bin/patch -p0 -b --suffix .transitional --fuzz=0
patching file nss/lib/ssl/sslsock.c
Hunk #1 succeeded at 65 (offset -7 lines).
Patch #16 (nss-539183.patch):
+ echo 'Patch #16 (nss-539183.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-539183.patch
+ /usr/bin/patch -p0 -b --suffix .539183 --fuzz=0
patching file nss/cmd/httpserv/httpserv.c
Hunk #1 succeeded at 974 (offset -2 lines).
patching file nss/cmd/selfserv/selfserv.c
Hunk #1 succeeded at 1683 (offset -48 lines).
Patch #40 (nss-3.14.0.0-disble-ocsp-test.patch):
+ echo 'Patch #40 (nss-3.14.0.0-disble-ocsp-test.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-3.14.0.0-disble-ocsp-test.patch
+ /usr/bin/patch -p0 -b --suffix .noocsptest --fuzz=0
patching file nss/tests/chains/scenarios/scenarios
Hunk #1 succeeded at 18 (offset -32 lines).
Patch #47 (utilwrap-include-templates.patch):
+ echo 'Patch #47 (utilwrap-include-templates.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/utilwrap-include-templates.patch
+ /usr/bin/patch -p0 -b --suffix .templates --fuzz=0
patching file nss/lib/nss/config.mk
Patch #49 (nss-skip-bltest-and-fipstest.patch):
+ echo 'Patch #49 (nss-skip-bltest-and-fipstest.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-skip-bltest-and-fipstest.patch
+ /usr/bin/patch -p0 -b --suffix .skipthem --fuzz=0
patching file nss/cmd/Makefile
Patch #50 (iquote.patch):
+ echo 'Patch #50 (iquote.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/iquote.patch
+ /usr/bin/patch -p0 -b --suffix .iquote --fuzz=0
patching file ./nss/cmd/certutil/Makefile
patching file ./nss/cmd/httpserv/Makefile
patching file ./nss/cmd/lib/Makefile
patching file ./nss/cmd/modutil/Makefile
Hunk #1 succeeded at 37 (offset -4 lines).
patching file ./nss/cmd/selfserv/Makefile
patching file ./nss/cmd/ssltap/Makefile
patching file ./nss/cmd/strsclnt/Makefile
patching file ./nss/cmd/tstclnt/Makefile
patching file ./nss/cmd/vfyserv/Makefile
patching file ./nss/coreconf/location.mk
patching file ./nss/lib/certhigh/Makefile
patching file ./nss/lib/cryptohi/Makefile
patching file ./nss/lib/libpkix/pkix/checker/Makefile
patching file ./nss/lib/nss/Makefile
patching file ./nss/lib/ssl/Makefile
Hunk #1 succeeded at 56 (offset 7 lines).
patching file ./nss/gtests/ssl_gtest/Makefile
Hunk #1 succeeded at 53 (offset 16 lines).
+ pushd nss
~/build/BUILD/nss-3.28.4/nss ~/build/BUILD/nss-3.28.4
Patch #52 (Bug-1001841-disable-sslv2-libssl.patch):
+ echo 'Patch #52 (Bug-1001841-disable-sslv2-libssl.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/Bug-1001841-disable-sslv2-libssl.patch
+ /usr/bin/patch -p1 -b --suffix .disableSSL2libssl --fuzz=0
patching file lib/ssl/config.mk
patching file lib/ssl/sslsock.c
Patch #53 (Bug-1001841-disable-sslv2-tests.patch):
+ echo 'Patch #53 (Bug-1001841-disable-sslv2-tests.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/Bug-1001841-disable-sslv2-tests.patch
+ /usr/bin/patch -p1 -b --suffix .disableSSL2tests --fuzz=0
patching file tests/ssl/ssl.sh
Patch #55 (enable-fips-when-system-is-in-fips-mode.patch):
+ echo 'Patch #55 (enable-fips-when-system-is-in-fips-mode.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/enable-fips-when-system-is-in-fips-mode.patch
+ /usr/bin/patch -p1 -b --suffix .852023_enable_fips_when_in_fips_mode --fuzz=0
patching file lib/pk11wrap/pk11pars.c
patching file lib/pk11wrap/pk11util.c
patching file lib/pk11wrap/secmodi.h
Patch #56 (p-ignore-setpolicy.patch):
+ echo 'Patch #56 (p-ignore-setpolicy.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/p-ignore-setpolicy.patch
+ /usr/bin/patch -p1 -b --suffix .1026677_ignore_set_policy --fuzz=0
patching file lib/ssl/sslsock.c
Hunk #1 succeeded at 1379 (offset -12 lines).
Hunk #2 succeeded at 1390 (offset -12 lines).
Patch #62 (nss-fix-deadlock-squash.patch):
+ echo 'Patch #62 (nss-fix-deadlock-squash.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-fix-deadlock-squash.patch
+ /usr/bin/patch -p1 -b --suffix .fix_deadlock --fuzz=0
patching file lib/pki/tdcache.c
Patch #100 (fix-min-library-version-in-SSLVersionRange.patch):
+ echo 'Patch #100 (fix-min-library-version-in-SSLVersionRange.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/fix-min-library-version-in-SSLVersionRange.patch
+ /usr/bin/patch -p0 -b --suffix .1171318 --fuzz=0
patching file ./lib/ssl/sslsock.c
Hunk #1 succeeded at 90 (offset -2 lines).
Patch #74 (race.patch):
+ echo 'Patch #74 (race.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/race.patch
+ /usr/bin/patch -p1 -b --suffix .race --fuzz=0
patching file lib/pk11wrap/pk11util.c
~/build/BUILD/nss-3.28.4
Patch #94 (nss-3.16-token-init-race.patch):
+ popd
+ echo 'Patch #94 (nss-3.16-token-init-race.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-3.16-token-init-race.patch
+ /usr/bin/patch -p0 -b --suffix .init-token-race --fuzz=0
patching file nss/lib/pk11wrap/dev3hack.c
patching file nss/lib/pk11wrap/pk11auth.c
patching file nss/lib/pk11wrap/pk11slot.c
patching file nss/lib/pk11wrap/pk11util.c
Patch #108 (nss-sni-c-v-fix.patch):
+ echo 'Patch #108 (nss-sni-c-v-fix.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-sni-c-v-fix.patch
+ /usr/bin/patch -p0 -b --suffix .sni_c_v_fix --fuzz=0
patching file ./nss/tests/ssl/sslauth.txt
~/build/BUILD/nss-3.28.4/nss ~/build/BUILD/nss-3.28.4
Patch #123 (nss-skip-util-gtest.patch):
+ pushd nss
+ echo 'Patch #123 (nss-skip-util-gtest.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-skip-util-gtest.patch
+ /usr/bin/patch -p1 -b --suffix .skip-util-gtests --fuzz=0
patching file gtests/manifest.mn
patching file gtests/ssl_gtest/manifest.mn
Hunk #1 succeeded at 49 (offset 1 line).
patching file tests/gtests/gtests.sh
Patch #126 (nss-reorder-cipher-suites.patch):
+ echo 'Patch #126 (nss-reorder-cipher-suites.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-reorder-cipher-suites.patch
+ /usr/bin/patch -p1 -b --suffix .reorder-cipher-suites --fuzz=0
patching file lib/ssl/ssl3con.c
patching file lib/ssl/sslenum.c
Patch #127 (nss-disable-cipher-suites.patch):
+ echo 'Patch #127 (nss-disable-cipher-suites.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-disable-cipher-suites.patch
+ /usr/bin/patch -p1 -b --suffix .disable-cipher-suites --fuzz=0
patching file lib/ssl/ssl3con.c
Patch #128 (nss-enable-cipher-suites.patch):
+ echo 'Patch #128 (nss-enable-cipher-suites.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-enable-cipher-suites.patch
+ /usr/bin/patch -p1 -b --suffix .enable-cipher-suites --fuzz=0
patching file lib/ssl/ssl3con.c
Hunk #2 succeeded at 103 (offset 1 line).
Hunk #3 succeeded at 115 (offset 2 lines).
Hunk #4 succeeded at 143 (offset 3 lines).
Patch #129 (moz-1320932.patch):
+ echo 'Patch #129 (moz-1320932.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/moz-1320932.patch
+ /usr/bin/patch -p1 -b --suffix .fix_ssl_sh_typo --fuzz=0
patching file tests/ssl/ssl.sh
Hunk #1 succeeded at 1026 (offset 20 lines).
Patch #130 (disable-pss.patch):
+ echo 'Patch #130 (disable-pss.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/disable-pss.patch
+ /usr/bin/patch -p1 -b --suffix .disable_pss --fuzz=0
patching file lib/ssl/ssl3con.c
Hunk #1 succeeded at 183 (offset 6 lines).
Hunk #2 succeeded at 4634 (offset 6 lines).
patching file lib/ssl/sslcert.c
Patch #132 (nss-tstclnt-optspec.patch):
+ echo 'Patch #132 (nss-tstclnt-optspec.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-tstclnt-optspec.patch
+ /usr/bin/patch -p1 -b --suffix .tstclnt-optspec --fuzz=0
patching file cmd/tstclnt/tstclnt.c
Hunk #1 succeeded at 1487 (offset -22 lines).
Patch #133 (nss-1334976-1336487-1345083-ca-2.14.patch):
+ echo 'Patch #133 (nss-1334976-1336487-1345083-ca-2.14.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-1334976-1336487-1345083-ca-2.14.patch
+ /usr/bin/patch -p1 -b --suffix .mozilla-ca-policy-plus-ca-2.14 --fuzz=0
patching file cmd/addbuiltin/addbuiltin.c
patching file cmd/lib/secutil.c
patching file lib/ckfw/builtins/certdata.txt
patching file lib/ckfw/builtins/nssckbi.h
patching file lib/certdb/genname.c
patching file lib/cryptohi/keythi.h
patching file lib/nss/nss.def
patching file lib/pk11wrap/pk11obj.c
patching file lib/pk11wrap/pk11priv.h
patching file lib/pk11wrap/pk11pub.h
Patch #134 (nss-alert-handler.patch):
+ echo 'Patch #134 (nss-alert-handler.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-alert-handler.patch
+ /usr/bin/patch -p1 -b --suffix .alert-handler --fuzz=0
patching file gtests/ssl_gtest/ssl_0rtt_unittest.cc
patching file gtests/ssl_gtest/ssl_exporter_unittest.cc
patching file gtests/ssl_gtest/ssl_extension_unittest.cc
patching file gtests/ssl_gtest/ssl_version_unittest.cc
patching file gtests/ssl_gtest/tls_agent.cc
patching file gtests/ssl_gtest/tls_agent.h
patching file gtests/ssl_gtest/tls_connect.cc
patching file lib/ssl/ssl3con.c
Hunk #1 succeeded at 3149 (offset 6 lines).
Hunk #2 succeeded at 3265 (offset 6 lines).
patching file lib/ssl/ssl.def
patching file lib/ssl/ssl.h
patching file lib/ssl/sslimpl.h
patching file lib/ssl/sslsecur.c
patching file lib/ssl/sslsock.c
patching file lib/ssl/sslsock.c
Hunk #1 succeeded at 2153 (offset 1 line).
Patch #135 (nss-check-policy-file.patch):
+ echo 'Patch #135 (nss-check-policy-file.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-check-policy-file.patch
+ /usr/bin/patch -p1 -b --suffix .check_policy_file --fuzz=0
patching file lib/pk11wrap/pk11pars.c
Hunk #2 succeeded at 709 (offset 4 lines).
Hunk #3 succeeded at 752 (offset 4 lines).
Hunk #4 succeeded at 1677 (offset 4 lines).
Patch #136 (nss-tools-sha256-default.patch):
+ echo 'Patch #136 (nss-tools-sha256-default.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-tools-sha256-default.patch
+ /usr/bin/patch -p1 -b --suffix .tools-sha256-default --fuzz=0
patching file cmd/smimetools/cmsutil.c
patching file cmd/smimetools/smime
patching file lib/cryptohi/secsign.c
Patch #137 (nss-is-token-present-race.patch):
+ echo 'Patch #137 (nss-is-token-present-race.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-is-token-present-race.patch
+ /usr/bin/patch -p1 -b --suffix .is-token-present-race --fuzz=0
patching file lib/dev/devslot.c
+ echo 'Patch #138 (nss-pk12util.patch):'
Patch #138 (nss-pk12util.patch):
+ /usr/bin/cat /builddir/build/SOURCES/nss-pk12util.patch
+ /usr/bin/patch -p1 -b --suffix .pk12util --fuzz=0
patching file lib/pk11wrap/pk11mech.c
patching file lib/pkcs12/p12d.c
patching file lib/softoken/lowpbe.c
patching file cmd/pk12util/pk12util.c
patching file lib/pk11wrap/pk11pbe.c
patching file lib/pkcs12/p12d.c
patching file lib/pkcs12/p12e.c
patching file lib/pkcs12/p12local.c
patching file lib/pkcs12/p12local.h
patching file lib/pkcs12/p12plcy.c
patching file lib/pkcs7/p7create.c
patching file lib/pkcs7/secpkcs7.h
patching file tests/tools/tools.sh
patching file lib/pkcs12/p12d.c
patching file lib/pkcs12/p12e.c
patching file lib/pkcs12/p12local.c
patching file lib/pkcs12/p12local.h
patching file lib/pk11wrap/pk11pbe.c
patching file lib/pk11wrap/pk11priv.h
patching file lib/pk11wrap/pk11slot.c
Hunk #1 succeeded at 2260 (offset -31 lines).
Patch #139 (nss-disable-pss-gtests.patch):
+ echo 'Patch #139 (nss-disable-pss-gtests.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-disable-pss-gtests.patch
+ /usr/bin/patch -p1 -b --suffix .disable-pss-gtests --fuzz=0
patching file gtests/ssl_gtest/ssl_ecdh_unittest.cc
Patch #140 (nss-ssl3gthr.patch):
+ echo 'Patch #140 (nss-ssl3gthr.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-ssl3gthr.patch
+ /usr/bin/patch -p1 -b --suffix .ssl3gthr --fuzz=0
patching file gtests/ssl_gtest/ssl_gather_unittest.cc
patching file gtests/ssl_gtest/ssl_gtest.gyp
patching file gtests/ssl_gtest/ssl_v2_client_hello_unittest.cc
patching file lib/ssl/ssl3gthr.c
patching file lib/ssl/ssldef.c
patching file lib/ssl/sslimpl.h
+ popd
~/build/BUILD/nss-3.28.4
+ /usr/bin/cp ./nss/lib/softoken/lowkeyi.h ./nss/cmd/rsaperf
+ /usr/bin/cp ./nss/lib/softoken/lowkeyti.h ./nss/cmd/rsaperf
+ /usr/bin/mv ./nss/lib/util/verref.h ./nss/verref.h
+ /usr/bin/rm -rf ./nss/lib/freebl
+ /usr/bin/rm -rf ./nss/lib/softoken
+ /usr/bin/rm -rf ./nss/lib/util
+ /usr/bin/rm -rf ./nss/cmd/bltest
+ /usr/bin/rm -rf ./nss/cmd/fipstest
+ /usr/bin/rm -rf ./nss/cmd/rsaperf_low
~/build/BUILD/nss-3.28.4/nss/tests/ssl ~/build/BUILD/nss-3.28.4
+ pushd nss/tests/ssl
+ cat sslcov.txt
+ sed -r 's/^([^#].*EXPORT|^[^#].*SSL2)/#disabled \1/'
+ cat sslstress.txt
+ sed -r 's/^([^#].*EXPORT|^[^#].*SSL2)/#disabled \1/'
+ popd
~/build/BUILD/nss-3.28.4
+ exit 0
Executing(%build): /bin/sh -e /var/tmp/rpm-tmp.ecATzi
+ umask 022
+ cd /builddir/build/BUILD
+ cd nss-3.28.4
+ export NSS_NO_SSL2=1
+ NSS_NO_SSL2=1
+ FREEBL_NO_DEPEND=1
+ export FREEBL_NO_DEPEND
+ export BUILD_OPT=1
+ BUILD_OPT=1
+ XCFLAGS='-O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic'
+ export XCFLAGS
+ PKG_CONFIG_ALLOW_SYSTEM_LIBS=1
+ PKG_CONFIG_ALLOW_SYSTEM_CFLAGS=1
+ export PKG_CONFIG_ALLOW_SYSTEM_LIBS
+ export PKG_CONFIG_ALLOW_SYSTEM_CFLAGS
++ /usr/bin/pkg-config --cflags-only-I nspr
++ sed s/-I//
+ NSPR_INCLUDE_DIR='/usr/include/nspr4  '
+ NSPR_LIB_DIR=/usr/lib64
+ export NSPR_INCLUDE_DIR
+ export NSPR_LIB_DIR
++ /usr/bin/pkg-config --cflags-only-I nss-util
++ sed s/-I//
+ export 'NSSUTIL_INCLUDE_DIR=/usr/include/nss3 -I/usr/include/nspr4  '
+ NSSUTIL_INCLUDE_DIR='/usr/include/nss3 -I/usr/include/nspr4  '
+ export NSSUTIL_LIB_DIR=/usr/lib64
+ NSSUTIL_LIB_DIR=/usr/lib64
++ /usr/bin/pkg-config --cflags-only-I nss-softokn
++ sed s/-I//
+ export 'FREEBL_INCLUDE_DIR=/usr/include/nss3 -I/usr/include/nspr4  '
+ FREEBL_INCLUDE_DIR='/usr/include/nss3 -I/usr/include/nspr4  '
+ export FREEBL_LIB_DIR=/usr/lib64
+ FREEBL_LIB_DIR=/usr/lib64
+ export USE_SYSTEM_FREEBL=1
+ USE_SYSTEM_FREEBL=1
+ export NSS_USE_SYSTEM_FREEBL=1
+ NSS_USE_SYSTEM_FREEBL=1
++ /usr/bin/pkg-config --libs nss-softokn
+ export 'FREEBL_LIBS=-L/usr/lib64 -lfreebl3 -lnssdbm3 -lsoftokn3 -lnssutil3 -lplds4 -lplc4 -lnspr4 -lpthread -ldl  '
+ FREEBL_LIBS='-L/usr/lib64 -lfreebl3 -lnssdbm3 -lsoftokn3 -lnssutil3 -lplds4 -lplc4 -lnspr4 -lpthread -ldl  '
+ export SOFTOKEN_LIB_DIR=/usr/lib64
+ SOFTOKEN_LIB_DIR=/usr/lib64
+ export USE_SYSTEM_NSSUTIL=1
+ USE_SYSTEM_NSSUTIL=1
+ export USE_SYSTEM_SOFTOKEN=1
+ USE_SYSTEM_SOFTOKEN=1
+ export NSS_BUILD_WITHOUT_SOFTOKEN=1
+ NSS_BUILD_WITHOUT_SOFTOKEN=1
+ NSS_USE_SYSTEM_SQLITE=1
+ export NSS_USE_SYSTEM_SQLITE
+ export NSS_ALLOW_SSLKEYLOGFILE=1
+ NSS_ALLOW_SSLKEYLOGFILE=1
+ USE_64=1
+ export USE_64
+ export IN_TREE_FREEBL_HEADERS_FIRST=1
+ IN_TREE_FREEBL_HEADERS_FIRST=1
+ export NSS_BLTEST_NOT_AVAILABLE=1
+ NSS_BLTEST_NOT_AVAILABLE=1
+ /usr/bin/make -C ./nss/coreconf
make: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf'
cd nsinstall; /usr/bin/make export
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf/nsinstall'
make[1]: Nothing to be done for `export'.
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf/nsinstall'
cd nsinstall; /usr/bin/make libs
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf/nsinstall'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/coreconf -I../../../dist/private/coreconf -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic nsinstall.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pathsub.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/coreconf -I../../../dist/private/coreconf -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pathsub.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/coreconf -I../../../dist/private/coreconf -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pathsub.o -m64 -Wl,-z,relro   -lpthread  -ldl -lc
true -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf/nsinstall'
make: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf'
+ /usr/bin/make -C ./nss/lib/dbm
make: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm'
cd include; /usr/bin/make export
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/include'
Creating ../../../../dist/public/dbm
../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 mcom_db.h ncompat.h winfile.h ../../../../dist/public/dbm
Creating ../../../../dist/private/dbm
../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 hsearch.h page.h extern.h queue.h hash.h search.h ../../../../dist/private/dbm
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/include'
cd src; /usr/bin/make export
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/src'
make[1]: Nothing to be done for `export'.
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/src'
cd include; /usr/bin/make libs
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/include'
make[1]: Nothing to be done for `libs'.
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/include'
cd src; /usr/bin/make libs
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/src'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/db.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic db.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/h_bigkey.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic h_bigkey.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/h_func.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic h_func.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/h_log2.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic h_log2.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/h_page.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic h_page.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hash.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic hash.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hash_buf.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic hash_buf.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/mktemp.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic mktemp.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dirent.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic dirent.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libdbm.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libdbm.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/db.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/h_bigkey.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/h_func.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/h_log2.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/h_page.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hash.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hash_buf.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/mktemp.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dirent.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libdbm.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libdbm.a
../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libdbm.a ../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/src'
make: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm'
+ export POLICY_FILE=nss-rhel7.config
+ POLICY_FILE=nss-rhel7.config
+ export POLICY_PATH=/etc/pki/nss-legacy
+ POLICY_PATH=/etc/pki/nss-legacy
+ /usr/bin/mkdir -p ./dist/private/nss
+ /usr/bin/mv ./nss/verref.h ./dist/private/nss/verref.h
+ /usr/bin/make -C ./nss
make: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss'
cd coreconf; /usr/bin/make export
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf'
cd nsinstall; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf/nsinstall'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf/nsinstall'
cd nsinstall; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf/nsinstall'
true -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf/nsinstall'
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf'
cd lib; /usr/bin/make export
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib'
cd dbm; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm'
cd include; /usr/bin/make export
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/include'
../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 mcom_db.h ncompat.h winfile.h ../../../../dist/public/dbm
../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 hsearch.h page.h extern.h queue.h hash.h search.h ../../../../dist/private/dbm
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/include'
cd src; /usr/bin/make export
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/src'
make[3]: Nothing to be done for `export'.
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/src'
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm'
cd base; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/base'
Creating ../../../dist/public/nss
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 nssbaset.h nssbase.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 baset.h base.h ../../../dist/private/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/base'
cd dev; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dev'
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 ckhelper.h devm.h devtm.h devt.h dev.h nssdevt.h nssdev.h ../../../dist/private/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dev'
cd pki; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pki'
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pki.h pkit.h nsspkit.h nsspki.h pkistore.h pki3hack.h pkitm.h pkim.h ../../../dist/private/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pki'
cd libpkix; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix'
cd include; /usr/bin/make export
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/include'
../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix.h pkix_crlsel.h pkix_errorstrings.h pkix_results.h pkixt.h pkix_certsel.h pkix_params.h pkix_revchecker.h pkix_certstore.h pkix_pl_pki.h pkix_sample_modules.h pkix_checker.h pkix_pl_system.h pkix_util.h ../../../../dist/private/nss
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/include'
cd pkix; /usr/bin/make export
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix'
cd certsel; /usr/bin/make export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/certsel'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_certselector.h pkix_comcertselparams.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/certsel'
cd crlsel; /usr/bin/make export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/crlsel'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_comcrlselparams.h pkix_crlselector.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/crlsel'
cd checker; /usr/bin/make export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/checker'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_basicconstraintschecker.h pkix_certchainchecker.h pkix_crlchecker.h pkix_ekuchecker.h pkix_expirationchecker.h pkix_namechainingchecker.h pkix_nameconstraintschecker.h pkix_ocspchecker.h pkix_policychecker.h pkix_revocationmethod.h pkix_revocationchecker.h pkix_signaturechecker.h pkix_targetcertchecker.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/checker'
cd params; /usr/bin/make export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/params'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_procparams.h pkix_trustanchor.h pkix_valparams.h pkix_resourcelimits.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/params'
cd results; /usr/bin/make export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/results'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_buildresult.h pkix_policynode.h pkix_valresult.h pkix_verifynode.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/results'
cd store; /usr/bin/make export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/store'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_store.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/store'
cd top; /usr/bin/make export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/top'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_build.h pkix_lifecycle.h pkix_validate.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/top'
cd util; /usr/bin/make export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/util'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_tools.h pkix_error.h pkix_logger.h pkix_list.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/util'
cd certsel; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/certsel'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_certselector.h pkix_comcertselparams.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/certsel'
cd crlsel; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/crlsel'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_comcrlselparams.h pkix_crlselector.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/crlsel'
cd checker; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/checker'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_basicconstraintschecker.h pkix_certchainchecker.h pkix_crlchecker.h pkix_ekuchecker.h pkix_expirationchecker.h pkix_namechainingchecker.h pkix_nameconstraintschecker.h pkix_ocspchecker.h pkix_policychecker.h pkix_revocationmethod.h pkix_revocationchecker.h pkix_signaturechecker.h pkix_targetcertchecker.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/checker'
cd params; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/params'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_procparams.h pkix_trustanchor.h pkix_valparams.h pkix_resourcelimits.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/params'
cd results; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/results'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_buildresult.h pkix_policynode.h pkix_valresult.h pkix_verifynode.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/results'
cd store; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/store'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_store.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/store'
cd top; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/top'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_build.h pkix_lifecycle.h pkix_validate.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/top'
cd util; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/util'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_tools.h pkix_error.h pkix_logger.h pkix_list.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/util'
There are no private exports.
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix'
cd pkix_pl_nss; /usr/bin/make export
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss'
cd pki; /usr/bin/make export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/pki'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_basicconstraints.h pkix_pl_cert.h pkix_pl_certpolicyinfo.h pkix_pl_certpolicymap.h pkix_pl_certpolicyqualifier.h pkix_pl_crl.h pkix_pl_crldp.h pkix_pl_crlentry.h pkix_pl_date.h pkix_pl_generalname.h pkix_pl_infoaccess.h pkix_pl_nameconstraints.h pkix_pl_ocsprequest.h pkix_pl_ocspresponse.h pkix_pl_publickey.h pkix_pl_x500name.h pkix_pl_ocspcertid.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/pki'
cd system; /usr/bin/make export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/system'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_common.h pkix_pl_mem.h pkix_pl_object.h pkix_pl_string.h pkix_pl_primhash.h pkix_pl_bigint.h pkix_pl_mutex.h pkix_pl_bytearray.h pkix_pl_lifecycle.h pkix_pl_oid.h pkix_pl_hashtable.h pkix_pl_rwlock.h pkix_pl_monitorlock.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/system'
cd module; /usr/bin/make export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/module'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_aiamgr.h pkix_pl_colcertstore.h pkix_pl_httpcertstore.h pkix_pl_httpdefaultclient.h pkix_pl_ldapt.h pkix_pl_ldapcertstore.h pkix_pl_ldapresponse.h pkix_pl_ldaprequest.h pkix_pl_ldapdefaultclient.h pkix_pl_nsscontext.h pkix_pl_pk11certstore.h pkix_pl_socket.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/module'
cd pki; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/pki'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_basicconstraints.h pkix_pl_cert.h pkix_pl_certpolicyinfo.h pkix_pl_certpolicymap.h pkix_pl_certpolicyqualifier.h pkix_pl_crl.h pkix_pl_crldp.h pkix_pl_crlentry.h pkix_pl_date.h pkix_pl_generalname.h pkix_pl_infoaccess.h pkix_pl_nameconstraints.h pkix_pl_ocsprequest.h pkix_pl_ocspresponse.h pkix_pl_publickey.h pkix_pl_x500name.h pkix_pl_ocspcertid.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/pki'
cd system; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/system'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_common.h pkix_pl_mem.h pkix_pl_object.h pkix_pl_string.h pkix_pl_primhash.h pkix_pl_bigint.h pkix_pl_mutex.h pkix_pl_bytearray.h pkix_pl_lifecycle.h pkix_pl_oid.h pkix_pl_hashtable.h pkix_pl_rwlock.h pkix_pl_monitorlock.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/system'
cd module; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/module'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_aiamgr.h pkix_pl_colcertstore.h pkix_pl_httpcertstore.h pkix_pl_httpdefaultclient.h pkix_pl_ldapt.h pkix_pl_ldapcertstore.h pkix_pl_ldapresponse.h pkix_pl_ldaprequest.h pkix_pl_ldapdefaultclient.h pkix_pl_nsscontext.h pkix_pl_pk11certstore.h pkix_pl_socket.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/module'
There are no private exports.
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss'
cd include; /usr/bin/make private_export
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/include'
../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix.h pkix_crlsel.h pkix_errorstrings.h pkix_results.h pkixt.h pkix_certsel.h pkix_params.h pkix_revchecker.h pkix_certstore.h pkix_pl_pki.h pkix_sample_modules.h pkix_checker.h pkix_pl_system.h pkix_util.h ../../../../dist/private/nss
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/include'
cd pkix; /usr/bin/make private_export
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix'
cd certsel; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/certsel'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_certselector.h pkix_comcertselparams.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/certsel'
cd crlsel; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/crlsel'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_comcrlselparams.h pkix_crlselector.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/crlsel'
cd checker; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/checker'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_basicconstraintschecker.h pkix_certchainchecker.h pkix_crlchecker.h pkix_ekuchecker.h pkix_expirationchecker.h pkix_namechainingchecker.h pkix_nameconstraintschecker.h pkix_ocspchecker.h pkix_policychecker.h pkix_revocationmethod.h pkix_revocationchecker.h pkix_signaturechecker.h pkix_targetcertchecker.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/checker'
cd params; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/params'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_procparams.h pkix_trustanchor.h pkix_valparams.h pkix_resourcelimits.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/params'
cd results; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/results'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_buildresult.h pkix_policynode.h pkix_valresult.h pkix_verifynode.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/results'
cd store; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/store'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_store.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/store'
cd top; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/top'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_build.h pkix_lifecycle.h pkix_validate.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/top'
cd util; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/util'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_tools.h pkix_error.h pkix_logger.h pkix_list.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/util'
There are no private exports.
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix'
cd pkix_pl_nss; /usr/bin/make private_export
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss'
cd pki; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/pki'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_basicconstraints.h pkix_pl_cert.h pkix_pl_certpolicyinfo.h pkix_pl_certpolicymap.h pkix_pl_certpolicyqualifier.h pkix_pl_crl.h pkix_pl_crldp.h pkix_pl_crlentry.h pkix_pl_date.h pkix_pl_generalname.h pkix_pl_infoaccess.h pkix_pl_nameconstraints.h pkix_pl_ocsprequest.h pkix_pl_ocspresponse.h pkix_pl_publickey.h pkix_pl_x500name.h pkix_pl_ocspcertid.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/pki'
cd system; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/system'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_common.h pkix_pl_mem.h pkix_pl_object.h pkix_pl_string.h pkix_pl_primhash.h pkix_pl_bigint.h pkix_pl_mutex.h pkix_pl_bytearray.h pkix_pl_lifecycle.h pkix_pl_oid.h pkix_pl_hashtable.h pkix_pl_rwlock.h pkix_pl_monitorlock.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/system'
cd module; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/module'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_aiamgr.h pkix_pl_colcertstore.h pkix_pl_httpcertstore.h pkix_pl_httpdefaultclient.h pkix_pl_ldapt.h pkix_pl_ldapcertstore.h pkix_pl_ldapresponse.h pkix_pl_ldaprequest.h pkix_pl_ldapdefaultclient.h pkix_pl_nsscontext.h pkix_pl_pk11certstore.h pkix_pl_socket.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/module'
There are no private exports.
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss'
There are no private exports.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix'
cd certdb; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/certdb'
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 cert.h certt.h certdb.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 genname.h xconst.h certxutl.h certi.h ../../../dist/private/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/certdb'
cd certhigh; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/certhigh'
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 ocsp.h ocspt.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 ocspti.h ocspi.h ../../../dist/private/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/certhigh'
cd pk11wrap; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pk11wrap'
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 secmod.h secmodt.h secpkcs5.h pk11func.h pk11pub.h pk11priv.h pk11sdr.h pk11pqg.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 secmodi.h dev3hack.h ../../../dist/private/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pk11wrap'
cd cryptohi; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/cryptohi'
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 cryptohi.h cryptoht.h key.h keyhi.h keyt.h keythi.h sechash.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 keyi.h ../../../dist/private/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/cryptohi'
cd nss; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/nss'
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 nss.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 nssrenam.h nssoptions.h ../../../dist/private/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/nss'
cd ssl; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ssl'
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 ssl.h sslt.h sslerr.h sslproto.h preenc.h ../../../dist/public/nss
There are no private exports.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ssl'
cd pkcs7; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pkcs7'
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 secmime.h secpkcs7.h pkcs7t.h ../../../dist/public/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pkcs7'
cd pkcs12; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pkcs12'
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkcs12t.h pkcs12.h p12plcy.h p12.h p12t.h ../../../dist/public/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pkcs12'
cd smime; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/smime'
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 cms.h cmst.h smime.h cmsreclist.h ../../../dist/public/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/smime'
cd crmf; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/crmf'
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 crmf.h crmft.h cmmf.h cmmft.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 crmfi.h crmfit.h cmmfi.h cmmfit.h ../../../dist/private/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/crmf'
cd jar; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/jar'
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 jar.h jar-ds.h jarfile.h ../../../dist/public/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/jar'
cd ckfw; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ckfw'
cd builtins; /usr/bin/make export
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ckfw/builtins'
../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 nssckbi.h ../../../../dist/public/nss
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ckfw/builtins'
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 nssck.api nssckepv.h nssckft.h nssckfw.h nssckfwc.h nssckfwt.h nssckg.h nssckmdt.h nssckt.h ../../../dist/public/nss
cd builtins; /usr/bin/make private_export
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ckfw/builtins'
There are no private exports.
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ckfw/builtins'
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 ck.h ckfw.h ckfwm.h ckfwtm.h ckmd.h ckt.h ../../../dist/private/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ckfw'
cd sysinit; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/sysinit'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/sysinit'
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib'
cd cmd; /usr/bin/make export
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd'
cd lib; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/lib'
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 basicutil.h secutil.h pk11table.h ../../../dist/private/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/lib'
cd shlibsign; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/shlibsign'
cd mangle; /usr/bin/make export
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/shlibsign/mangle'
make[3]: Nothing to be done for `export'.
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/shlibsign/mangle'
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/shlibsign'
cd addbuiltin; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/addbuiltin'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/addbuiltin'
cd atob; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/atob'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/atob'
cd btoa; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/btoa'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/btoa'
cd certcgi; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/certcgi'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/certcgi'
cd certutil; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/certutil'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/certutil'
cd chktest; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/chktest'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/chktest'
cd crlutil; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/crlutil'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/crlutil'
cd crmftest; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/crmftest'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/crmftest'
cd dbtest; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/dbtest'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/dbtest'
cd derdump; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/derdump'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/derdump'
cd digest; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/digest'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/digest'
cd httpserv; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/httpserv'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/httpserv'
cd listsuites; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/listsuites'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/listsuites'
cd makepqg; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/makepqg'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/makepqg'
cd multinit; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/multinit'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/multinit'
cd ocspclnt; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ocspclnt'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ocspclnt'
cd ocspresp; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ocspresp'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ocspresp'
cd oidcalc; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/oidcalc'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/oidcalc'
cd p7content; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7content'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7content'
cd p7env; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7env'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7env'
cd p7sign; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7sign'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7sign'
cd p7verify; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7verify'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7verify'
cd pk12util; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk12util'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk12util'
cd pk11ectest; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11ectest'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11ectest'
cd pk11gcmtest; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11gcmtest'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11gcmtest'
cd pk11mode; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11mode'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11mode'
cd pk1sign; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk1sign'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk1sign'
cd pp; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pp'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pp'
cd pwdecrypt; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pwdecrypt'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pwdecrypt'
cd rsaperf; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/rsaperf'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/rsaperf'
cd sdrtest; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/sdrtest'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/sdrtest'
cd selfserv; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/selfserv'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/selfserv'
cd signtool; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/signtool'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/signtool'
cd signver; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/signver'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/signver'
cd smimetools; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/smimetools'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/smimetools'
cd ssltap; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ssltap'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ssltap'
cd strsclnt; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/strsclnt'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/strsclnt'
cd symkeyutil; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/symkeyutil'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/symkeyutil'
cd tests; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/tests'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/tests'
cd tstclnt; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/tstclnt'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/tstclnt'
cd vfychain; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/vfychain'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/vfychain'
cd vfyserv; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/vfyserv'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/vfyserv'
cd modutil; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/modutil'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/modutil'
cd pkix-errcodes; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pkix-errcodes'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pkix-errcodes'
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd'
cd gtests; /usr/bin/make export
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests'
cd google_test; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/google_test'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/google_test'
cd common; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/common'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/common'
cd der_gtest; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/der_gtest'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/der_gtest'
cd pk11_gtest; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/pk11_gtest'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/pk11_gtest'
cd ssl_gtest; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/ssl_gtest'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/ssl_gtest'
cd nss_bogo_shim; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/nss_bogo_shim'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/nss_bogo_shim'
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests'
cd coreconf; /usr/bin/make libs
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf'
cd nsinstall; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf/nsinstall'
true -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf/nsinstall'
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf'
cd lib; /usr/bin/make libs
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib'
cd dbm; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm'
cd include; /usr/bin/make libs
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/include'
make[3]: Nothing to be done for `libs'.
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/include'
cd src; /usr/bin/make libs
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/src'
../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libdbm.a ../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/src'
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm'
cd base; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/base'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/arena.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic arena.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/error.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic error.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/errorval.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic errorval.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hashops.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic hashops.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libc.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic libc.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tracker.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic tracker.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/item.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic item.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/utf8.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic utf8.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/list.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic list.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hash.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic hash.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssb.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssb.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/arena.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/error.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/errorval.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hashops.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libc.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tracker.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/item.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/utf8.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/list.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hash.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssb.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssb.a
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssb.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/base'
cd dev; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dev'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/devslot.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic devslot.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/devtoken.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic devtoken.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/devutil.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic devutil.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ckhelper.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic ckhelper.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssdev.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssdev.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/devslot.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/devtoken.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/devutil.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ckhelper.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssdev.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssdev.a
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssdev.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dev'
cd pki; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pki'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/asymmkey.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic asymmkey.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certificate.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic certificate.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cryptocontext.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cryptocontext.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/symmkey.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic symmkey.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/trustdomain.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic trustdomain.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tdcache.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic tdcache.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certdecode.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic certdecode.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkistore.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkistore.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkibase.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkibase.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pki3hack.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pki3hack.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsspki.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsspki.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/asymmkey.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certificate.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cryptocontext.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/symmkey.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/trustdomain.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tdcache.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certdecode.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkistore.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkibase.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pki3hack.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsspki.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsspki.a
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsspki.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pki'
cd libpkix; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix'
cd include; /usr/bin/make libs
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/include'
make[3]: Nothing to be done for `libs'.
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/include'
cd pkix; /usr/bin/make libs
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix'
cd certsel; /usr/bin/make libs
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/certsel'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_certselector.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_certselector.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_comcertselparams.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_comcertselparams.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixcertsel.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixcertsel.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_certselector.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_comcertselparams.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixcertsel.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixcertsel.a
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixcertsel.a ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/certsel'
cd crlsel; /usr/bin/make libs
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/crlsel'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_crlselector.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_crlselector.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_comcrlselparams.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_comcrlselparams.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixcrlsel.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixcrlsel.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_crlselector.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_comcrlselparams.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixcrlsel.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixcrlsel.a
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixcrlsel.a ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/crlsel'
cd checker; /usr/bin/make libs
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/checker'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_basicconstraintschecker.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_basicconstraintschecker.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_certchainchecker.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_certchainchecker.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_crlchecker.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_crlchecker.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_ekuchecker.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_ekuchecker.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_expirationchecker.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_expirationchecker.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_namechainingchecker.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_namechainingchecker.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_nameconstraintschecker.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_nameconstraintschecker.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_ocspchecker.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_ocspchecker.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationmethod.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_revocationmethod.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationchecker.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_revocationchecker.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_policychecker.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_policychecker.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_signaturechecker.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_signaturechecker.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_targetcertchecker.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_targetcertchecker.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixchecker.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixchecker.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_basicconstraintschecker.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_certchainchecker.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_crlchecker.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_ekuchecker.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_expirationchecker.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_namechainingchecker.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_nameconstraintschecker.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_ocspchecker.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationmethod.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationchecker.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_policychecker.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_signaturechecker.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_targetcertchecker.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixchecker.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixchecker.a
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixchecker.a ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/checker'
cd params; /usr/bin/make libs
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/params'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_trustanchor.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_trustanchor.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_procparams.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_procparams.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_valparams.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_valparams.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_resourcelimits.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_resourcelimits.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixparams.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixparams.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_trustanchor.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_procparams.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_valparams.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_resourcelimits.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixparams.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixparams.a
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixparams.a ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/params'
cd results; /usr/bin/make libs
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/results'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_buildresult.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_buildresult.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_policynode.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_policynode.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_valresult.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_valresult.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_verifynode.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_verifynode.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixresults.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixresults.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_buildresult.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_policynode.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_valresult.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_verifynode.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixresults.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixresults.a
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixresults.a ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/results'
cd store; /usr/bin/make libs
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/store'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_store.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_store.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixstore.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixstore.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_store.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixstore.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixstore.a
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixstore.a ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/store'
cd top; /usr/bin/make libs
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/top'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_validate.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_validate.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_lifecycle.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_lifecycle.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_build.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_build.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixtop.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixtop.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_validate.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_lifecycle.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_build.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixtop.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixtop.a
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixtop.a ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/top'
cd util; /usr/bin/make libs
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/util'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_tools.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_tools.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_error.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_error.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_logger.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_logger.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_list.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_list.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_errpaths.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_errpaths.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixutil.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixutil.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_tools.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_error.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_logger.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_list.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_errpaths.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixutil.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixutil.a
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixutil.a ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/util'
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix'
cd pkix_pl_nss; /usr/bin/make libs
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss'
cd pki; /usr/bin/make libs
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/pki'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_basicconstraints.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_basicconstraints.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_cert.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_cert.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyinfo.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_certpolicyinfo.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicymap.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_certpolicymap.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyqualifier.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_certpolicyqualifier.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crl.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_crl.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crldp.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_crldp.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crlentry.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_crlentry.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_date.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_date.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_generalname.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_generalname.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_infoaccess.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_infoaccess.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nameconstraints.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_nameconstraints.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocsprequest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_ocsprequest.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspresponse.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_ocspresponse.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_publickey.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_publickey.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_x500name.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_x500name.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspcertid.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_ocspcertid.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixpki.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixpki.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_basicconstraints.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_cert.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyinfo.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicymap.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyqualifier.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crl.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crldp.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crlentry.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_date.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_generalname.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_infoaccess.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nameconstraints.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocsprequest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspresponse.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_publickey.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_x500name.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspcertid.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixpki.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixpki.a
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixpki.a ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/pki'
cd system; /usr/bin/make libs
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/system'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bigint.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_bigint.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bytearray.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_bytearray.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_common.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_common.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_error.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_error.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_hashtable.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_hashtable.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_lifecycle.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_lifecycle.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mem.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_mem.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_monitorlock.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_monitorlock.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mutex.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_mutex.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_object.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_object.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_oid.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_oid.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_primhash.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_primhash.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_rwlock.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_rwlock.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_string.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_string.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixsystem.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixsystem.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bigint.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bytearray.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_common.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_error.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_hashtable.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_lifecycle.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mem.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_monitorlock.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mutex.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_object.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_oid.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_primhash.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_rwlock.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_string.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixsystem.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixsystem.a
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixsystem.a ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/system'
cd module; /usr/bin/make libs
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/module'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_aiamgr.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_aiamgr.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_colcertstore.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_colcertstore.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpcertstore.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_httpcertstore.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpdefaultclient.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_httpdefaultclient.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaptemplates.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_ldaptemplates.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapcertstore.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_ldapcertstore.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapresponse.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_ldapresponse.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaprequest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_ldaprequest.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapdefaultclient.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_ldapdefaultclient.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nsscontext.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_nsscontext.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_pk11certstore.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_pk11certstore.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_socket.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_socket.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixmodule.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixmodule.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_aiamgr.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_colcertstore.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpcertstore.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpdefaultclient.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaptemplates.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapcertstore.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapresponse.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaprequest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapdefaultclient.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nsscontext.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_pk11certstore.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_socket.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixmodule.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixmodule.a
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixmodule.a ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/module'
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss'
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix'
cd certdb; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/certdb'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/alg1485.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic alg1485.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certdb.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic certdb.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certv3.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic certv3.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certxutl.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic certxutl.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crl.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic crl.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/genname.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic genname.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/stanpcertdb.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic stanpcertdb.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/polcyxtn.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic polcyxtn.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secname.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic secname.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xauthkid.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic xauthkid.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xbsconst.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic xbsconst.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xconst.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic xconst.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcertdb.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcertdb.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/alg1485.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certdb.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certv3.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certxutl.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crl.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/genname.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/stanpcertdb.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/polcyxtn.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secname.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xauthkid.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xbsconst.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xconst.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcertdb.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcertdb.a
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcertdb.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/certdb'
cd certhigh; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/certhigh'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certhtml.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic certhtml.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certreq.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic certreq.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crlv2.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic crlv2.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocsp.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic ocsp.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocspsig.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic ocspsig.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certhigh.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic certhigh.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certvfy.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic certvfy.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certvfypkix.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic certvfypkix.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xcrldist.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic xcrldist.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcerthi.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcerthi.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certhtml.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certreq.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crlv2.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocsp.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocspsig.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certhigh.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certvfy.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certvfypkix.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xcrldist.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcerthi.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcerthi.a
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcerthi.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/certhigh'
cd pk11wrap; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pk11wrap'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dev3hack.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic dev3hack.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11akey.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11akey.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11auth.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11auth.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11cert.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11cert.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11cxt.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11cxt.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11err.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11err.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11kea.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11kea.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11list.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11list.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11load.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11load.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11mech.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11mech.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11merge.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11merge.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11nobj.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11nobj.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11obj.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11obj.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pars.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11pars.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pbe.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11pbe.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pk12.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11pk12.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pqg.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11pqg.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11sdr.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11sdr.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11skey.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11skey.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11slot.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11slot.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11util.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11util.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpk11wrap.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpk11wrap.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dev3hack.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11akey.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11auth.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11cert.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11cxt.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11err.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11kea.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11list.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11load.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11mech.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11merge.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11nobj.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11obj.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pars.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pbe.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pk12.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pqg.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11sdr.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11skey.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11slot.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11util.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpk11wrap.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpk11wrap.a
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpk11wrap.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pk11wrap'
cd cryptohi; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/cryptohi'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sechash.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sechash.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/seckey.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic seckey.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secsign.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic secsign.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secvfy.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic secvfy.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dsautil.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic dsautil.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcryptohi.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcryptohi.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sechash.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/seckey.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secsign.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secvfy.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dsautil.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcryptohi.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcryptohi.a
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcryptohi.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/cryptohi'
cd nss; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/nss'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nssinit.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DPOLICY_FILE=\"nss-rhel7.config\" -DPOLICY_PATH=\"/etc/pki/nss-legacy\" -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I/usr/include/nss3/templates -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic nssinit.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nssoptions.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DPOLICY_FILE=\"nss-rhel7.config\" -DPOLICY_PATH=\"/etc/pki/nss-legacy\" -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I/usr/include/nss3/templates -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic nssoptions.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nssver.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DPOLICY_FILE=\"nss-rhel7.config\" -DPOLICY_PATH=\"/etc/pki/nss-legacy\" -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I/usr/include/nss3/templates -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic nssver.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/utilwrap.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DPOLICY_FILE=\"nss-rhel7.config\" -DPOLICY_PATH=\"/etc/pki/nss-legacy\" -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I/usr/include/nss3/templates -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic utilwrap.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnss.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnss.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nssinit.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nssoptions.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nssver.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/utilwrap.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnss.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnss.a
grep -v ';-' nss.def | sed -e 's,;+,,' -e 's; DATA ;;' -e 's,;;,,' -e 's,;.*,;,' > Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nss.def
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnss3.so
cc -shared -m64 -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libnss3.so  -Wl,--version-script,Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nss.def -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnss3.so Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nssinit.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nssoptions.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nssver.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/utilwrap.o ../certhigh/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certhtml.o ../certhigh/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certreq.o ../certhigh/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crlv2.o ../certhigh/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocsp.o ../certhigh/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocspsig.o ../certhigh/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certhigh.o ../certhigh/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certvfy.o ../certhigh/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certvfypkix.o ../certhigh/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xcrldist.o ../cryptohi/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sechash.o ../cryptohi/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/seckey.o ../cryptohi/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secsign.o ../cryptohi/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secvfy.o ../cryptohi/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dsautil.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dev3hack.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11akey.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11auth.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11cert.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11cxt.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11err.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11kea.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11list.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11load.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11mech.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11merge.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11nobj.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11obj.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pars.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pbe.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pk12.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pqg.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11sdr.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11skey.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11slot.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11util.o ../certdb/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/alg1485.o ../certdb/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certdb.o ../certdb/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certv3.o ../certdb/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certxutl.o ../certdb/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crl.o ../certdb/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/genname.o ../certdb/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/stanpcertdb.o ../certdb/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/polcyxtn.o ../certdb/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secname.o ../certdb/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xauthkid.o ../certdb/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xbsconst.o ../certdb/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xconst.o ../pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/asymmkey.o ../pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certificate.o ../pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cryptocontext.o ../pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/symmkey.o ../pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/trustdomain.o ../pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tdcache.o ../pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certdecode.o ../pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkistore.o ../pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkibase.o ../pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pki3hack.o ../dev/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/devslot.o ../dev/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/devtoken.o ../dev/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/devutil.o ../dev/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ckhelper.o ../base/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/arena.o ../base/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/error.o ../base/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/errorval.o ../base/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hashops.o ../base/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libc.o ../base/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tracker.o ../base/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/item.o ../base/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/utf8.o ../base/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/list.o ../base/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hash.o ../libpkix/pkix/certsel/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_certselector.o ../libpkix/pkix/certsel/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_comcertselparams.o ../libpkix/pkix/checker/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_basicconstraintschecker.o ../libpkix/pkix/checker/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_certchainchecker.o ../libpkix/pkix/checker/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_crlchecker.o ../libpkix/pkix/checker/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_ekuchecker.o ../libpkix/pkix/checker/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_expirationchecker.o ../libpkix/pkix/checker/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_namechainingchecker.o ../libpkix/pkix/checker/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_nameconstraintschecker.o ../libpkix/pkix/checker/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_ocspchecker.o ../libpkix/pkix/checker/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationmethod.o ../libpkix/pkix/checker/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationchecker.o ../libpkix/pkix/checker/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_policychecker.o ../libpkix/pkix/checker/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_signaturechecker.o ../libpkix/pkix/checker/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_targetcertchecker.o ../libpkix/pkix/params/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_trustanchor.o ../libpkix/pkix/params/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_procparams.o ../libpkix/pkix/params/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_valparams.o ../libpkix/pkix/params/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_resourcelimits.o ../libpkix/pkix/results/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_buildresult.o ../libpkix/pkix/results/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_policynode.o ../libpkix/pkix/results/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_valresult.o ../libpkix/pkix/results/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_verifynode.o ../libpkix/pkix/top/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_validate.o ../libpkix/pkix/top/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_lifecycle.o ../libpkix/pkix/top/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_build.o ../libpkix/pkix/util/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_tools.o ../libpkix/pkix/util/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_error.o ../libpkix/pkix/util/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_logger.o ../libpkix/pkix/util/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_list.o ../libpkix/pkix/util/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_errpaths.o ../libpkix/pkix/crlsel/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_crlselector.o ../libpkix/pkix/crlsel/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_comcrlselparams.o ../libpkix/pkix/store/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_store.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_basicconstraints.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_cert.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyinfo.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicymap.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyqualifier.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crl.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crldp.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crlentry.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_date.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_generalname.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_infoaccess.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nameconstraints.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocsprequest.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspresponse.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_publickey.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_x500name.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspcertid.o ../libpkix/pkix_pl_nss/system/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bigint.o ../libpkix/pkix_pl_nss/system/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bytearray.o ../libpkix/pkix_pl_nss/system/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_common.o ../libpkix/pkix_pl_nss/system/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_error.o ../libpkix/pkix_pl_nss/system/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_hashtable.o ../libpkix/pkix_pl_nss/system/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_lifecycle.o ../libpkix/pkix_pl_nss/system/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mem.o ../libpkix/pkix_pl_nss/system/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_monitorlock.o ../libpkix/pkix_pl_nss/system/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mutex.o ../libpkix/pkix_pl_nss/system/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_object.o ../libpkix/pkix_pl_nss/system/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_oid.o ../libpkix/pkix_pl_nss/system/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_primhash.o ../libpkix/pkix_pl_nss/system/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_rwlock.o ../libpkix/pkix_pl_nss/system/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_string.o ../libpkix/pkix_pl_nss/module/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_aiamgr.o ../libpkix/pkix_pl_nss/module/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_colcertstore.o ../libpkix/pkix_pl_nss/module/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpcertstore.o ../libpkix/pkix_pl_nss/module/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpdefaultclient.o ../libpkix/pkix_pl_nss/module/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaptemplates.o ../libpkix/pkix_pl_nss/module/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapcertstore.o ../libpkix/pkix_pl_nss/module/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapresponse.o ../libpkix/pkix_pl_nss/module/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaprequest.o ../libpkix/pkix_pl_nss/module/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapdefaultclient.o ../libpkix/pkix_pl_nss/module/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nsscontext.o ../libpkix/pkix_pl_nss/module/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_pk11certstore.o ../libpkix/pkix_pl_nss/module/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_socket.o   -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
chmod +x Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnss3.so
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnss.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnss3.so ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/nss'
cd ssl; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ssl'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dtlscon.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic dtlscon.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/prelib.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic prelib.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3con.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic ssl3con.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3gthr.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic ssl3gthr.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslauth.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sslauth.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslcon.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sslcon.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssldef.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic ssldef.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslenum.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sslenum.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslerr.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sslerr.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslerrstrs.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sslerrstrs.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslinit.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sslinit.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3ext.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic ssl3ext.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3exthandle.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic ssl3exthandle.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslmutex.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sslmutex.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslnonce.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sslnonce.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslreveal.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sslreveal.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslsecur.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sslsecur.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslsnce.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sslsnce.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslsock.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sslsock.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssltrace.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic ssltrace.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslver.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sslver.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/authcert.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic authcert.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmpcert.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmpcert.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslinfo.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sslinfo.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3ecc.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic ssl3ecc.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls13con.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic tls13con.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls13exthandle.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic tls13exthandle.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls13hkdf.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic tls13hkdf.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslcert.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sslcert.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslgrp.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sslgrp.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/unix_err.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic unix_err.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libssl.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libssl.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dtlscon.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/prelib.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3con.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3gthr.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslauth.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslcon.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssldef.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslenum.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslerr.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslerrstrs.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslinit.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3ext.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3exthandle.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslmutex.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslnonce.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslreveal.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslsecur.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslsnce.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslsock.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssltrace.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslver.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/authcert.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmpcert.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslinfo.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3ecc.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls13con.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls13exthandle.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls13hkdf.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslcert.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslgrp.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/unix_err.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libssl.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libssl.a
grep -v ';-' ssl.def | sed -e 's,;+,,' -e 's; DATA ;;' -e 's,;;,,' -e 's,;.*,;,' > Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl.def
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libssl3.so
cc -shared -m64 -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libssl3.so  -Wl,--version-script,Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl.def -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libssl3.so Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dtlscon.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/prelib.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3con.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3gthr.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslauth.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslcon.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssldef.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslenum.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslerr.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslerrstrs.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslinit.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3ext.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3exthandle.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslmutex.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslnonce.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslreveal.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslsecur.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslsnce.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslsock.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssltrace.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslver.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/authcert.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmpcert.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslinfo.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3ecc.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls13con.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls13exthandle.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls13hkdf.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslcert.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslgrp.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/unix_err.o    -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc -lz
chmod +x Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libssl3.so
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libssl.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libssl3.so ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ssl'
cd pkcs7; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pkcs7'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certread.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic certread.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7common.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic p7common.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7create.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic p7create.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7decode.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic p7decode.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7encode.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic p7encode.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7local.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic p7local.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secmime.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic secmime.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkcs7.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkcs7.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certread.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7common.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7create.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7decode.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7encode.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7local.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secmime.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkcs7.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkcs7.a
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkcs7.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pkcs7'
cd pkcs12; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pkcs12'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12local.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic p12local.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12creat.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic p12creat.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12dec.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic p12dec.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12plcy.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic p12plcy.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12tmpl.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic p12tmpl.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12e.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic p12e.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12d.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic p12d.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkcs12.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkcs12.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12local.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12creat.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12dec.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12plcy.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12tmpl.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12e.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12d.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkcs12.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkcs12.a
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkcs12.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pkcs12'
cd smime; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/smime'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsarray.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmsarray.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsasn1.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmsasn1.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsattr.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmsattr.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmscinfo.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmscinfo.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmscipher.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmscipher.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsdecode.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmsdecode.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsdigdata.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmsdigdata.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsdigest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmsdigest.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsencdata.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmsencdata.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsencode.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmsencode.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsenvdata.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmsenvdata.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsmessage.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmsmessage.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmspubkey.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmspubkey.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsrecinfo.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmsrecinfo.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsreclist.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmsreclist.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmssigdata.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmssigdata.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmssiginfo.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmssiginfo.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsudf.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmsudf.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsutil.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmsutil.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/smimemessage.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic smimemessage.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/smimeutil.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic smimeutil.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/smimever.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic smimever.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsmime.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsmime.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsarray.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsasn1.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsattr.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmscinfo.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmscipher.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsdecode.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsdigdata.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsdigest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsencdata.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsencode.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsenvdata.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsmessage.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmspubkey.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsrecinfo.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsreclist.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmssigdata.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmssiginfo.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsudf.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsutil.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/smimemessage.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/smimeutil.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/smimever.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsmime.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsmime.a
grep -v ';-' smime.def | sed -e 's,;+,,' -e 's; DATA ;;' -e 's,;;,,' -e 's,;.*,;,' > Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/smime.def
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsmime3.so
cc -shared -m64 -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libsmime3.so  -Wl,--version-script,Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/smime.def -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsmime3.so Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsarray.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsasn1.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsattr.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmscinfo.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmscipher.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsdecode.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsdigdata.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsdigest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsencdata.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsencode.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsenvdata.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsmessage.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmspubkey.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsrecinfo.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsreclist.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmssigdata.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmssiginfo.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsudf.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsutil.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/smimemessage.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/smimeutil.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/smimever.o ../pkcs12/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12local.o ../pkcs12/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12creat.o ../pkcs12/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12dec.o ../pkcs12/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12plcy.o ../pkcs12/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12tmpl.o ../pkcs12/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12e.o ../pkcs12/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12d.o ../pkcs7/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certread.o ../pkcs7/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7common.o ../pkcs7/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7create.o ../pkcs7/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7decode.o ../pkcs7/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7encode.o ../pkcs7/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7local.o ../pkcs7/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secmime.o   -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
chmod +x Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsmime3.so
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsmime.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsmime3.so ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/smime'
cd crmf; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/crmf'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfenc.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic crmfenc.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmftmpl.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic crmftmpl.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfreq.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic crmfreq.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfpop.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic crmfpop.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfdec.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic crmfdec.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfget.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic crmfget.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfcont.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic crmfcont.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmmfasn1.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmmfasn1.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmmfresp.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmmfresp.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmmfrec.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmmfrec.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmmfchal.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmmfchal.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/servget.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic servget.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/encutil.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic encutil.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/respcli.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic respcli.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/respcmn.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic respcmn.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/challcli.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic challcli.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/asn1cmn.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic asn1cmn.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcrmf.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcrmf.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfenc.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmftmpl.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfreq.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfpop.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfdec.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfget.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfcont.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmmfasn1.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmmfresp.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmmfrec.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmmfchal.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/servget.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/encutil.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/respcli.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/respcmn.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/challcli.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/asn1cmn.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcrmf.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcrmf.a
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcrmf.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/crmf'
cd jar; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/jar'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jarver.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_X86_OR_X64 -DNSS_X64 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic jarver.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jarsign.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_X86_OR_X64 -DNSS_X64 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic jarsign.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jar.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_X86_OR_X64 -DNSS_X64 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic jar.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jar-ds.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_X86_OR_X64 -DNSS_X64 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic jar-ds.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jarfile.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_X86_OR_X64 -DNSS_X64 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic jarfile.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jarint.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_X86_OR_X64 -DNSS_X64 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic jarint.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libjar.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libjar.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jarver.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jarsign.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jar.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jar-ds.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jarfile.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jarint.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libjar.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libjar.a
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libjar.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/jar'
cd ckfw; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ckfw'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crypto.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic crypto.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/find.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic find.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hash.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic hash.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/instance.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic instance.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/mutex.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic mutex.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/object.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic object.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/session.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic session.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sessobj.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sessobj.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/slot.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic slot.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/token.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic token.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/wrap.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic wrap.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/mechanism.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic mechanism.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssckfw.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssckfw.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crypto.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/find.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hash.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/instance.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/mutex.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/object.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/session.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sessobj.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/slot.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/token.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/wrap.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/mechanism.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssckfw.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssckfw.a
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssckfw.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
cd builtins; /usr/bin/make libs
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ckfw/builtins'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/anchor.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic anchor.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/constants.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic constants.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bfind.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic bfind.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/binst.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic binst.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bobject.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic bobject.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bsession.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic bsession.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bslot.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic bslot.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/btoken.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic btoken.c
perl certdata.perl certdata.txt Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certdata.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certdata.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certdata.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ckbiver.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic ckbiver.c
grep -v ';-' nssckbi.def | sed -e 's,;+,,' -e 's; DATA ;;' -e 's,;;,,' -e 's,;.*,;,' > Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nssckbi.def
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssckbi.so
cc -shared -m64 -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libnssckbi.so  -Wl,--version-script,Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nssckbi.def -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssckbi.so Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/anchor.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/constants.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bfind.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/binst.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bobject.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bsession.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bslot.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/btoken.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certdata.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ckbiver.o   ../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a ../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
chmod +x Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssckbi.so
../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssckbi.so ../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ckfw/builtins'
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ckfw'
cd sysinit; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/sysinit'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsssysinit.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic nsssysinit.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsssysinit.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.a
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.so
cc -shared -m64 -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libnsssysinit.so  -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.so Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsssysinit.o    -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
chmod +x Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.so
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.so ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/sysinit'
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib'
cd cmd; /usr/bin/make libs
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd'
cd lib; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/lib'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/basicutil.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic basicutil.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secutil.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic secutil.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secpwd.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic secpwd.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/derprint.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic derprint.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/moreoids.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic moreoids.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pppolicy.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pppolicy.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ffs.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic ffs.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11table.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11table.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsectool.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsectool.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/basicutil.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secutil.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secpwd.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/derprint.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/moreoids.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pppolicy.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ffs.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11table.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsectool.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsectool.a
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsectool.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/lib'
cd shlibsign; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/shlibsign'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/shlibsign.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic shlibsign.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/shlibsign -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/shlibsign.o -m64 -Wl,-z,relro  -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/shlibsign ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
cd mangle; /usr/bin/make libs
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/shlibsign/mangle'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/mangle.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic mangle.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/mangle -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/mangle.o -m64 -Wl,-z,relro  -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/mangle ../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/shlibsign/mangle'
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/shlibsign'
cd addbuiltin; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/addbuiltin'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/addbuiltin.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic addbuiltin.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/addbuiltin -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/addbuiltin.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/addbuiltin ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/addbuiltin'
cd atob; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/atob'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/atob.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic atob.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/atob -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/atob.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/atob ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/atob'
cd btoa; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/btoa'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/btoa.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic btoa.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/btoa -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/btoa.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/btoa ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/btoa'
cd certcgi; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/certcgi'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certcgi.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic certcgi.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certcgi -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certcgi.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  /usr/lib64/libfreebl.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a   /usr/lib64/libfreebl.a -L/usr/lib64 -lsoftokn3  -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lsqlite3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certcgi ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/certcgi'
cd certutil; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/certutil'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certext.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic certext.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certutil.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic certutil.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/keystuff.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic keystuff.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certutil -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certext.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certutil.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/keystuff.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certutil ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/certutil'
cd chktest; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/chktest'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/chktest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic chktest.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/chktest -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/chktest.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  /usr/lib64/libfreebl.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a   /usr/lib64/libfreebl.a -L/usr/lib64 -lsoftokn3  -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lsqlite3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/chktest ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/chktest'
cd crlutil; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/crlutil'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crlgen_lex.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic crlgen_lex.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crlgen.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic crlgen.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crlutil.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic crlutil.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crlutil -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crlgen_lex.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crlgen.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crlutil.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crlutil ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/crlutil'
cd crmftest; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/crmftest'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/testcrmf.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic testcrmf.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmftest -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/testcrmf.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmftest ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/crmftest'
cd dbtest; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/dbtest'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dbtest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic dbtest.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dbtest -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dbtest.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dbtest ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/dbtest'
cd derdump; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/derdump'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/derdump.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic derdump.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/derdump -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/derdump.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/derdump ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/derdump'
cd digest; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/digest'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/digest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic digest.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/digest -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/digest.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/digest ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/digest'
cd httpserv; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/httpserv'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/httpserv.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic httpserv.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/httpserv -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/httpserv.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/httpserv ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/httpserv'
cd listsuites; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/listsuites'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/listsuites.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic listsuites.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/listsuites -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/listsuites.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/listsuites ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/listsuites'
cd makepqg; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/makepqg'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/makepqg.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic makepqg.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/makepqg -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/makepqg.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/makepqg ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/makepqg'
cd multinit; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/multinit'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/multinit.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic multinit.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/multinit -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/multinit.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/multinit ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/multinit'
cd ocspclnt; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ocspclnt'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocspclnt.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic ocspclnt.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocspclnt -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocspclnt.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocspclnt ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ocspclnt'
cd ocspresp; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ocspresp'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocspresp.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic ocspresp.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocspresp -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocspresp.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocspresp ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ocspresp'
cd oidcalc; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/oidcalc'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/oidcalc.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic oidcalc.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/oidcalc -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/oidcalc.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/oidcalc ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/oidcalc'
cd p7content; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7content'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7content.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic p7content.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7content -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7content.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7content ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7content'
cd p7env; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7env'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7env.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic p7env.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7env -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7env.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7env ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7env'
cd p7sign; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7sign'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7sign.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic p7sign.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7sign -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7sign.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7sign ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7sign'
cd p7verify; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7verify'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7verify.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic p7verify.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7verify -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7verify.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7verify ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7verify'
cd pk12util; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk12util'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk12util.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk12util.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk12util -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk12util.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk12util ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk12util'
cd pk11ectest; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11ectest'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11ectest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11ectest.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11ectest -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11ectest.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  /usr/lib64/libfreebl.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a   /usr/lib64/libfreebl.a -L/usr/lib64 -lsoftokn3  -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lsqlite3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11ectest ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11ectest'
cd pk11gcmtest; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11gcmtest'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11gcmtest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11gcmtest.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11gcmtest -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11gcmtest.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11gcmtest ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11gcmtest'
cd pk11mode; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11mode'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11mode.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11mode.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11mode -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11mode.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11mode ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11mode'
cd pk1sign; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk1sign'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk1sign.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk1sign.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk1sign -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk1sign.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk1sign ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk1sign'
cd pp; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pp'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pp.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pp.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pp -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pp.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pp ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pp'
cd pwdecrypt; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pwdecrypt'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pwdecrypt.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pwdecrypt.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pwdecrypt -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pwdecrypt.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pwdecrypt ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pwdecrypt'
cd rsaperf; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/rsaperf'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/rsaperf.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../nss/lib/softoken -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic rsaperf.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/defkey.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../nss/lib/softoken -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic defkey.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/rsaperf -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../nss/lib/softoken -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/rsaperf.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/defkey.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  /usr/lib64/libfreebl.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a   /usr/lib64/libfreebl.a -L/usr/lib64 -lsoftokn3  -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lsqlite3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/rsaperf ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/rsaperf'
cd sdrtest; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/sdrtest'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sdrtest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sdrtest.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sdrtest -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sdrtest.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sdrtest ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/sdrtest'
cd selfserv; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/selfserv'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/selfserv.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic selfserv.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/selfserv -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/selfserv.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/selfserv ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/selfserv'
cd signtool; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/signtool'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/signtool.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic signtool.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certgen.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic certgen.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/javascript.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic javascript.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/list.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic list.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sign.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sign.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/util.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic util.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/verify.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic verify.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/zip.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic zip.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/signtool -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/signtool.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certgen.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/javascript.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/list.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sign.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/util.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/verify.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/zip.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc -lz
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/signtool ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/signtool'
cd signver; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/signver'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/signver.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic signver.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk7print.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk7print.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/signver -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/signver.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk7print.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/signver ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/signver'
cd smimetools; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/smimetools'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsutil.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmsutil.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsutil -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsutil.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsutil ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/smimetools'
cd ssltap; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ssltap'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssltap.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic ssltap.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssltap -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssltap.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssltap ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ssltap'
cd strsclnt; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/strsclnt'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/strsclnt.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic strsclnt.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/strsclnt -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/strsclnt.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/strsclnt ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/strsclnt'
cd symkeyutil; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/symkeyutil'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/symkeyutil.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic symkeyutil.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/symkeyutil -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/symkeyutil.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/symkeyutil ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/symkeyutil'
cd tests; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/tests'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/baddbdir.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic baddbdir.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/baddbdir -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/baddbdir.o \
-m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/conflict.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic conflict.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/conflict -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/conflict.o \
-m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dertimetest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic dertimetest.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dertimetest -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dertimetest.o \
-m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/encodeinttest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic encodeinttest.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/encodeinttest -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/encodeinttest.o \
-m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nonspr10.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic nonspr10.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nonspr10 -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nonspr10.o \
-m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/remtest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic remtest.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/remtest -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/remtest.o \
-m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secmodtest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic secmodtest.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secmodtest -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secmodtest.o \
-m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/baddbdir Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/conflict Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dertimetest Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/encodeinttest Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nonspr10 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/remtest Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secmodtest ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/tests'
cd tstclnt; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/tstclnt'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tstclnt.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic tstclnt.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tstclnt -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tstclnt.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tstclnt ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/tstclnt'
cd vfychain; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/vfychain'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/vfychain.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic vfychain.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/vfychain -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/vfychain.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/vfychain ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/vfychain'
cd vfyserv; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/vfyserv'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/vfyserv.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic vfyserv.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/vfyutil.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic vfyutil.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/vfyserv -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/vfyserv.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/vfyutil.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/vfyserv ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/vfyserv'
cd modutil; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/modutil'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/modutil.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic modutil.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/instsec.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic instsec.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/install.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic install.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/installparse.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic installparse.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/install-ds.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic install-ds.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lex.Pk11Install_yy.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic lex.Pk11Install_yy.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/modutil -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/modutil.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/instsec.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/install.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/installparse.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/install-ds.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lex.Pk11Install_yy.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc -lz
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/modutil ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/modutil'
cd pkix-errcodes; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pkix-errcodes'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix-errcodes.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix-errcodes.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix-errcodes -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix-errcodes.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix-errcodes ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pkix-errcodes'
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd'
cd gtests; /usr/bin/make libs
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests'
cd google_test; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/google_test'
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtest/src; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtest/src; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtest/src; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtest/src/gtest-all.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -Igtest/include/ -Igtest -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/gtest -I../../../dist/private/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -std=c++0x gtest/src/gtest-all.cc
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libgtest.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libgtest.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtest/src/gtest-all.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libgtest.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libgtest.a
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libgtest1.so
g++ -shared -m64 -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro  -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libgtest1.so Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtest/src/gtest-all.o   ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
chmod +x Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libgtest1.so
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libgtest.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libgtest1.so ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/google_test'
cd common; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/common'
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtests.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -std=c++0x gtests.cc
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtests -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtests.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtests ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/common'
cd der_gtest; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/der_gtest'
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/der_getint_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -std=c++0x der_getint_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/der_private_key_import_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -std=c++0x der_private_key_import_unittest.cc
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/der_gtest -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/der_getint_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/der_private_key_import_unittest.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a  ../common/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtests.o ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/der_gtest ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/der_gtest'
cd pk11_gtest; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/pk11_gtest'
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11_aeskeywrap_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -std=c++0x pk11_aeskeywrap_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11_chacha20poly1305_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -std=c++0x pk11_chacha20poly1305_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11_export_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -std=c++0x pk11_export_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11_pbkdf2_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -std=c++0x pk11_pbkdf2_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11_prf_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -std=c++0x pk11_prf_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11_prng_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -std=c++0x pk11_prng_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11_rsapss_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -std=c++0x pk11_rsapss_unittest.cc
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11_gtest -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11_aeskeywrap_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11_chacha20poly1305_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11_export_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11_pbkdf2_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11_prf_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11_prng_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11_rsapss_unittest.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a  ../common/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtests.o ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11_gtest ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/pk11_gtest'
cd ssl_gtest; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/ssl_gtest'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libssl_internals.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 libssl_internals.c
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_0rtt_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_0rtt_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_cert_ext_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_cert_ext_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_ciphersuite_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_ciphersuite_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_dhe_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_dhe_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_drop_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_drop_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_ecdh_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_ecdh_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_ems_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_ems_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_exporter_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_exporter_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_gtest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_gtest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_record_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_record_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_skip_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_skip_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_staticrsa_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_staticrsa_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/test_io.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x test_io.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls_agent.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x tls_agent.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls_connect.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x tls_connect.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls_hkdf_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x tls_hkdf_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls_filter.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x tls_filter.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls_parser.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x tls_parser.cc
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_gtest -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libssl_internals.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_0rtt_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_cert_ext_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_ciphersuite_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_dhe_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_drop_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_ecdh_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_ems_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_exporter_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_gtest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_record_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_skip_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_staticrsa_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/test_io.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls_agent.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls_connect.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls_hkdf_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls_filter.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls_parser.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a -lsoftokn3 ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  /usr/lib64/libfreebl.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a   /usr/lib64/libfreebl.a -L/usr/lib64 -lsoftokn3  -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lsqlite3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc -lz
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_gtest ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/ssl_gtest'
cd nss_bogo_shim; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/nss_bogo_shim'
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/config.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -std=c++0x -std=c++0x config.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsskeys.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -std=c++0x -std=c++0x nsskeys.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nss_bogo_shim.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -std=c++0x -std=c++0x nss_bogo_shim.cc
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nss_bogo_shim -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/config.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsskeys.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nss_bogo_shim.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  /usr/lib64/libfreebl.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a   /usr/lib64/libfreebl.a -L/usr/lib64 -lsoftokn3  -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lsqlite3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc -lz
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nss_bogo_shim ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/nss_bogo_shim'
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests'
make: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss'
+ unset NSS_BLTEST_NOT_AVAILABLE
+ pushd ./nss
+ /usr/bin/make clean_docs build_docs
~/build/BUILD/nss-3.28.4/nss ~/build/BUILD/nss-3.28.4
/usr/bin/make -C ./doc clean
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/doc'
rm -f date.xml version.xml *.tar.bz2
rm -f html/*.proc
rm -fr nss-man ascii
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/doc'
/usr/bin/make -C ./doc
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/doc'
date +"%e %B %Y" | tr -d '\n' > date.xml
echo -n  > version.xml
mkdir -p html
mkdir -p nroff
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/doc'
+ popd
~/build/BUILD/nss-3.28.4
+ /usr/bin/mkdir -p ./dist/doc/nroff
+ /usr/bin/cp ./nss/doc/nroff/certutil.1 ./nss/doc/nroff/cmsutil.1 ./nss/doc/nroff/crlutil.1 ./nss/doc/nroff/derdump.1 ./nss/doc/nroff/modutil.1 ./nss/doc/nroff/pk12util.1 ./nss/doc/nroff/pp.1 ./nss/doc/nroff/signtool.1 ./nss/doc/nroff/signver.1 ./nss/doc/nroff/ssltap.1 ./nss/doc/nroff/vfychain.1 ./nss/doc/nroff/vfyserv.1 ./dist/doc/nroff
+ /usr/bin/mkdir -p ./dist/pkgconfig
+ /usr/bin/cat /builddir/build/SOURCES/nss.pc.in
+ sed -e s,%libdir%,/usr/lib64,g -e s,%prefix%,/usr,g -e s,%exec_prefix%,/usr,g -e s,%includedir%,/usr/include/nss3,g -e s,%NSS_VERSION%,3.28.4,g -e s,%NSPR_VERSION%,4.13.1,g -e s,%NSSUTIL_VERSION%,3.28.4,g -e s,%SOFTOKEN_VERSION%,3.28.3,g
++ cat nss/lib/nss/nss.h
++ grep '#define.*NSS_VMAJOR'
++ awk '{print $3}'
+ NSS_VMAJOR=3
++ cat nss/lib/nss/nss.h
++ grep '#define.*NSS_VMINOR'
++ awk '{print $3}'
+ NSS_VMINOR=28
++ cat nss/lib/nss/nss.h
++ grep '#define.*NSS_VPATCH'
++ awk '{print $3}'
+ NSS_VPATCH=4
+ export NSS_VMAJOR
+ export NSS_VMINOR
+ export NSS_VPATCH
+ /usr/bin/cat /builddir/build/SOURCES/nss-config.in
+ sed -e s,@libdir@,/usr/lib64,g -e s,@prefix@,/usr,g -e s,@exec_prefix@,/usr,g -e s,@includedir@,/usr/include/nss3,g -e s,@MOD_MAJOR_VERSION@,3,g -e s,@MOD_MINOR_VERSION@,28,g -e s,@MOD_PATCH_VERSION@,4,g
+ chmod 755 ./dist/pkgconfig/nss-config
+ /usr/bin/cat /builddir/build/SOURCES/setup-nsssysinit.sh
+ chmod 755 ./dist/pkgconfig/setup-nsssysinit.sh
+ /usr/bin/cp ./nss/lib/ckfw/nssck.api ./dist/private/nss/
+ date '+%e %B %Y'
+ tr -d '\n'
+ echo -n 3.28.4
+ for m in /builddir/build/SOURCES/nss-config.xml /builddir/build/SOURCES/setup-nsssysinit.xml /builddir/build/SOURCES/pkcs11.txt.xml
+ cp /builddir/build/SOURCES/nss-config.xml .
+ for m in /builddir/build/SOURCES/nss-config.xml /builddir/build/SOURCES/setup-nsssysinit.xml /builddir/build/SOURCES/pkcs11.txt.xml
+ cp /builddir/build/SOURCES/setup-nsssysinit.xml .
+ for m in /builddir/build/SOURCES/nss-config.xml /builddir/build/SOURCES/setup-nsssysinit.xml /builddir/build/SOURCES/pkcs11.txt.xml
+ cp /builddir/build/SOURCES/pkcs11.txt.xml .
+ for m in nss-config.xml setup-nsssysinit.xml pkcs11.txt.xml
+ xmlto man nss-config.xml
Note: Writing nss-config.1
+ for m in nss-config.xml setup-nsssysinit.xml pkcs11.txt.xml
+ xmlto man setup-nsssysinit.xml
Note: Writing setup-nsssysinit.1
+ for m in nss-config.xml setup-nsssysinit.xml pkcs11.txt.xml
+ xmlto man pkcs11.txt.xml
Note: Writing pkcs11.txt.5
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/cert8.db.xml .
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/cert9.db.xml .
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/key3.db.xml .
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/key4.db.xml .
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/secmod.db.xml .
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man cert8.db.xml
Note: Writing cert8.db.5
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man cert9.db.xml
Note: Writing cert9.db.5
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man key3.db.xml
Note: Writing key3.db.5
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man key4.db.xml
Note: Writing key4.db.5
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man secmod.db.xml
Note: Writing secmod.db.5
+ exit 0
Executing(%install): /bin/sh -e /var/tmp/rpm-tmp.Imgtso
+ umask 022
+ cd /builddir/build/BUILD
+ '[' /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64 '!=' / ']'
+ rm -rf /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64
++ dirname /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64
+ mkdir -p /builddir/build/BUILDROOT
+ mkdir /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64
+ cd nss-3.28.4
+ /usr/bin/rm -rf /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3/templates
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/bin
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/lib64
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/lib64/nss/unsupported-tools
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/lib64/pkgconfig
+ mkdir -p /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/share/man/man1
+ mkdir -p /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/share/man/man5
+ touch /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/lib64/libnssckbi.so
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/lib64/nss/libnssckbi.so
+ for file in libnss3.so libnsssysinit.so libsmime3.so libssl3.so
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss3.so /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/lib64
+ for file in libnss3.so libnsssysinit.so libsmime3.so libssl3.so
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/lib64
+ for file in libnss3.so libnsssysinit.so libsmime3.so libssl3.so
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/lib64
+ for file in libnss3.so libnsssysinit.so libsmime3.so libssl3.so
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl3.so /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/lib64
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//etc/pki/nssdb
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-cert8.db /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//etc/pki/nssdb/cert8.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-key3.db /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//etc/pki/nssdb/key3.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-secmod.db /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//etc/pki/nssdb/secmod.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-cert9.db /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//etc/pki/nssdb/cert9.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-key4.db /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//etc/pki/nssdb/key4.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/system-pkcs11.txt /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//etc/pki/nssdb/pkcs11.txt
+ for file in libcrmf.a libnssb.a libnssckfw.a
+ /usr/bin/install -p -m 644 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/lib64
+ for file in libcrmf.a libnssb.a libnssckfw.a
+ /usr/bin/install -p -m 644 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/lib64
+ for file in libcrmf.a libnssb.a libnssckfw.a
+ /usr/bin/install -p -m 644 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/lib64
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/certutil /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/cmsutil /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/crlutil /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/modutil /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/signtool /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/signver /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/ssltap /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/bin
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/atob /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/btoa /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/derdump /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/listsuites /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/ocspclnt /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pp /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/selfserv /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/strsclnt /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/symkeyutil /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/tstclnt /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/vfyserv /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/vfychain /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/lib64/nss/unsupported-tools
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/cert.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/certdb.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/certt.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/cmmf.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/cmmft.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/cms.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/cmsreclist.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/cmst.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/crmf.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/crmft.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/cryptohi.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/cryptoht.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/jar-ds.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/jar.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/jarfile.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/key.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/keyhi.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/keyt.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/keythi.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nss.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nssbase.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nssbaset.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nssckbi.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nssckepv.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nssckft.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nssckfw.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nssckfwc.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nssckfwt.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nssckg.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nssckmdt.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nssckt.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/ocsp.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/ocspt.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/p12.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/p12plcy.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/p12t.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/pk11func.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/pk11pqg.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/pk11priv.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/pk11pub.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/pk11sdr.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/pkcs12.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/pkcs12t.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/pkcs7t.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/preenc.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/sechash.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/secmime.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/secmod.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/secmodt.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/secpkcs5.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/secpkcs7.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/smime.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/ssl.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/sslerr.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/sslproto.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/sslt.h /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3
+ for file in dist/private/nss/nssck.api
+ /usr/bin/install -p -m 644 dist/private/nss/nssck.api /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/include/nss3/templates
+ /usr/bin/install -p -m 644 ./dist/pkgconfig/nss.pc /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/lib64/pkgconfig/nss.pc
+ /usr/bin/install -p -m 755 ./dist/pkgconfig/nss-config /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/bin/nss-config
+ /usr/bin/install -p -m 755 ./dist/pkgconfig/setup-nsssysinit.sh /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/bin/setup-nsssysinit.sh
+ ln -r -s -f /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/bin/setup-nsssysinit.sh /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64//usr/bin/setup-nsssysinit
+ for f in nss-config setup-nsssysinit
+ install -c -m 644 nss-config.1 /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/share/man/man1/nss-config.1
+ for f in nss-config setup-nsssysinit
+ install -c -m 644 setup-nsssysinit.1 /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/share/man/man1/setup-nsssysinit.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/certutil.1 /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/share/man/man1/certutil.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/cmsutil.1 /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/share/man/man1/cmsutil.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/crlutil.1 /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/share/man/man1/crlutil.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/derdump.1 /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/share/man/man1/derdump.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/modutil.1 /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/share/man/man1/modutil.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/pk12util.1 /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/share/man/man1/pk12util.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/pp.1 /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/share/man/man1/pp.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/signtool.1 /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/share/man/man1/signtool.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/signver.1 /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/share/man/man1/signver.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/ssltap.1 /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/share/man/man1/ssltap.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/vfychain.1 /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/share/man/man1/vfychain.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/vfyserv.1 /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/share/man/man1/vfyserv.1
+ for f in pkcs11.txt
+ install -c -m 644 pkcs11.txt.5 /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/share/man/man5/pkcs11.txt.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 cert8.db.5 /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/share/man/man5/cert8.db.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 cert9.db.5 /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/share/man/man5/cert9.db.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 key3.db.5 /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/share/man/man5/key3.db.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 key4.db.5 /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/share/man/man5/key4.db.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 secmod.db.5 /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/share/man/man5/secmod.db.5
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/etc/pki/nss-legacy
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/nss-rhel7.config /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/etc/pki/nss-legacy/nss-rhel7.config
+ /usr/lib/rpm/find-debuginfo.sh --strict-build-id -m --run-dwz --dwz-low-mem-die-limit 10000000 --dwz-max-die-limit 110000000 /builddir/build/BUILD/nss-3.28.4
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/bin/certutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/bin/cmsutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/bin/crlutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/bin/modutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/bin/pk12util
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/bin/signtool
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/bin/signver
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/bin/ssltap
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/lib64/nss/unsupported-tools/atob
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/lib64/nss/unsupported-tools/btoa
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/lib64/nss/unsupported-tools/derdump
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/lib64/nss/unsupported-tools/listsuites
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/lib64/nss/unsupported-tools/ocspclnt
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/lib64/nss/unsupported-tools/pp
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/lib64/nss/unsupported-tools/selfserv
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/lib64/nss/unsupported-tools/strsclnt
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/lib64/nss/unsupported-tools/symkeyutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/lib64/nss/unsupported-tools/tstclnt
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/lib64/nss/unsupported-tools/vfyserv
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/lib64/nss/unsupported-tools/vfychain
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/lib64/nss/libnssckbi.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/lib64/libnss3.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/lib64/libnsssysinit.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/lib64/libsmime3.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64/usr/lib64/libssl3.so
/usr/lib/rpm/sepdebugcrcfix: Updated 25 CRC32s, 0 CRC32s did match.
cpio: nss-3.28.4/nss/cmd/modutil/lex.Pk11Install_yy.cpp: Cannot stat: No such file or directory
cpio: nss-3.28.4/nss/cmd/modutil/ytab.c: Cannot stat: No such file or directory
25180 blocks
+ /usr/lib/rpm/check-buildroot
+ /usr/lib/rpm/redhat/brp-compress
+ /usr/lib/rpm/redhat/brp-strip-static-archive /usr/bin/strip
+ /usr/lib/rpm/brp-python-bytecompile /usr/bin/python 1
+ /usr/lib/rpm/redhat/brp-python-hardlink
+ /usr/lib/rpm/redhat/brp-java-repack-jars
Executing(%check): /bin/sh -e /var/tmp/rpm-tmp.umalXF
+ umask 022
+ cd /builddir/build/BUILD
+ cd nss-3.28.4
+ '[' 0 -eq 1 ']'
+ export NSS_NO_SSL2=1
+ NSS_NO_SSL2=1
+ FREEBL_NO_DEPEND=1
+ export FREEBL_NO_DEPEND
+ export BUILD_OPT=1
+ BUILD_OPT=1
+ USE_64=1
+ export USE_64
+ export NSS_BLTEST_NOT_AVAILABLE=1
+ NSS_BLTEST_NOT_AVAILABLE=1
+ export SOFTOKEN_LIB_DIR=/usr/lib64
+ SOFTOKEN_LIB_DIR=/usr/lib64
++ find ./nss/tests
++ grep -c ' '
+ SPACEISBAD=0
+ :
+ '[' 0 -ne 0 ']'
++ perl -e 'print 9000 + int rand 1000'
9009
selfserv_9009
+ MYRAND=9009
+ echo 9009
+ RANDSERV=selfserv_9009
+ echo selfserv_9009
++ ls -d ./dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
./dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
+ DISTBINDIR=./dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
+ echo ./dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
++ pwd
~/build/BUILD/nss-3.28.4 ~/build/BUILD/nss-3.28.4
+ pushd /builddir/build/BUILD/nss-3.28.4
+ cd ./dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
+ ln -s selfserv selfserv_9009
+ popd
~/build/BUILD/nss-3.28.4
+ find ./nss/tests -type f
+ grep -v '\.db$'
+ grep -v '\.crl$'
+ grep -v '\.crt$'
+ grep -vw CVS
+ xargs grep -lw selfserv
+ xargs -l perl -pi -e 's/\bselfserv\b/selfserv_9009/g'
+ killall selfserv_9009
selfserv_9009: no process found
+ :
+ rm -rf ./tests_results
~/build/BUILD/nss-3.28.4/nss/tests ~/build/BUILD/nss-3.28.4
+ pushd ./nss/tests/
+ HOST=localhost
+ DOMSUF=localdomain
+ PORT=9009
+ NSS_CYCLES=
+ NSS_TESTS='libpkix cert dbtests tools fips sdr crmf smime ssl ocsp merge pkits chains ec gtests ssl_gtests'
+ NSS_SSL_TESTS=
+ NSS_SSL_RUN=
+ ./all.sh
testdir is /builddir/build/BUILD/nss-3.28.4/tests_results/security
init.sh init: Creating /builddir/build/BUILD/nss-3.28.4/tests_results/security
which: no domainname in (.:/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin:/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib:/bin:/usr/bin:/usr/sbin:/sbin:/usr/local/sbin:/builddir/.local/bin:/builddir/bin)
********************************************
   Platform: Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ
   Results: localhost.1
********************************************
init.sh init: Testing PATH .:/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin:/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib:/bin:/usr/bin:/usr/sbin:/sbin:/usr/local/sbin:/builddir/.local/bin:/builddir/bin against LIB /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib:
Running tests for libpkix
TIMESTAMP libpkix BEGIN: Sun Aug  6 23:43:24 UTC 2017
TIMESTAMP libpkix END: Sun Aug  6 23:43:24 UTC 2017
Running tests for cert
TIMESTAMP cert BEGIN: Sun Aug  6 23:43:24 UTC 2017
cert.sh: Certutil and Crlutil Tests with ECC ===============================
cert.sh: #1: Looking for root certs module. - PASSED
cert.sh: Creating a CA Certificate TestCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -f ../tests.pw
cert.sh: #2: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #3: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert TestCA  --------------------------
certutil -s "CN=NSS Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4: Creating CA Cert TestCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n TestCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -o root.cert
cert.sh: #5: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate serverCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -f ../tests.pw
cert.sh: #6: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #7: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert serverCA  --------------------------
certutil -s "CN=NSS Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA -t Cu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8: Creating CA Cert serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n serverCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -o root.cert
cert.sh: #9: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-serverCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA
cert.sh: Creating CA Cert chain-1-serverCA  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA -t u,u,u -v 600 -c serverCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #10: Creating CA Cert chain-1-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-serverCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -o root.cert
cert.sh: #11: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-serverCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA
cert.sh: Creating CA Cert chain-2-serverCA  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA -t u,u,u -v 600 -c chain-1-serverCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #12: Creating CA Cert chain-2-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-serverCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -o root.cert
cert.sh: #13: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate clientCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -f ../tests.pw
cert.sh: #14: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #15: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert clientCA  --------------------------
certutil -s "CN=NSS Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA -t Tu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #16: Creating CA Cert clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n clientCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -o root.cert
cert.sh: #17: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-clientCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA
cert.sh: Creating CA Cert chain-1-clientCA  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA -t u,u,u -v 600 -c clientCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #18: Creating CA Cert chain-1-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-clientCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -o root.cert
cert.sh: #19: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-clientCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA
cert.sh: Creating CA Cert chain-2-clientCA  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA -t u,u,u -v 600 -c chain-1-clientCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #20: Creating CA Cert chain-2-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-clientCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -o root.cert
cert.sh: #21: Exporting Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate TestCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA
cert.sh: Creating DSA CA Cert TestCA-dsa  --------------------------
certutil -s "CN=NSS Test CA (DSA), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-dsa -k dsa -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #22: Creating DSA CA Cert TestCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n TestCA-dsa -r -d . -o dsaroot.cert
cert.sh: #23: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA
cert.sh: Creating DSA CA Cert serverCA-dsa  --------------------------
certutil -s "CN=NSS Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-dsa -k dsa -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #24: Creating DSA CA Cert serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #25: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA
cert.sh: Creating DSA CA Cert chain-1-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-dsa -k dsa -t u,u,u -v 600 -c serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #26: Creating DSA CA Cert chain-1-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #27: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA
cert.sh: Creating DSA CA Cert chain-2-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #28: Creating DSA CA Cert chain-2-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #29: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA
cert.sh: Creating DSA CA Cert clientCA-dsa  --------------------------
certutil -s "CN=NSS Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-dsa -k dsa -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #30: Creating DSA CA Cert clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #31: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA
cert.sh: Creating DSA CA Cert chain-1-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-dsa -k dsa -t u,u,u -v 600 -c clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #32: Creating DSA CA Cert chain-1-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #33: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA
cert.sh: Creating DSA CA Cert chain-2-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #34: Creating DSA CA Cert chain-2-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #35: Exporting DSA Root Cert - PASSED
cert.sh: Creating an EC CA Certificate TestCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA
cert.sh: Creating EC CA Cert TestCA-ec  --------------------------
certutil -s "CN=NSS Test CA (ECC), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-ec -k ec -q secp521r1 -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #36: Creating EC CA Cert TestCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n TestCA-ec -r -d . -o ecroot.cert
cert.sh: #37: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate serverCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA
cert.sh: Creating EC CA Cert serverCA-ec  --------------------------
certutil -s "CN=NSS Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-ec -k ec -q secp521r1 -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #38: Creating EC CA Cert serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n serverCA-ec -r -d . -o ecroot.cert
cert.sh: #39: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA
cert.sh: Creating EC CA Cert chain-1-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #40: Creating EC CA Cert chain-1-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #41: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA
cert.sh: Creating EC CA Cert chain-2-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #42: Creating EC CA Cert chain-2-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #43: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate clientCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA
cert.sh: Creating EC CA Cert clientCA-ec  --------------------------
certutil -s "CN=NSS Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-ec -k ec -q secp521r1 -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #44: Creating EC CA Cert clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n clientCA-ec -r -d . -o ecroot.cert
cert.sh: #45: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA
cert.sh: Creating EC CA Cert chain-1-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #46: Creating EC CA Cert chain-1-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #47: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA
cert.sh: Creating EC CA Cert chain-2-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #48: Creating EC CA Cert chain-2-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #49: Exporting EC Root Cert - PASSED
cert.sh: Creating Certificates, issued by the last ===============
     of a chain of CA's which are not in the same database============
Server Cert
cert.sh: Initializing localhost.localdomain's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -f ../tests.pw
cert.sh: #50: Initializing localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #51: Loading root cert module to localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #52: Generate Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 200 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain.cert -f ../tests.pw
cert.sh: #53: Sign localhost.localdomain's Request (ext) - PASSED
cert.sh: Import localhost.localdomain's Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #54: Import localhost.localdomain's Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/clientCA.ca.cert
cert.sh: #55: Import Client Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #56: Generate DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA-dsa -m 200 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw
cert.sh: #57: Sign localhost.localdomain's DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #58: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/clientCA-dsa.ca.cert
cert.sh: #59: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #60: Generate mixed DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 202 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw
cert.sh: #61: Sign localhost.localdomain's mixed DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #62: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #63: Generate EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA-ec -m 200 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain-ec.cert -f ../tests.pw
cert.sh: #64: Sign localhost.localdomain's EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #65: Import localhost.localdomain's EC Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-ec -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/clientCA-ec.ca.cert
cert.sh: #66: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #67: Generate mixed EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 201 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw
cert.sh: #68: Sign localhost.localdomain's mixed EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #69: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) - PASSED
Importing all the server's own CA chain into the servers DB
cert.sh: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/serverCA.ca.cert
cert.sh: #70: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/chain-1-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #71: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/chain-2-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #72: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/serverCA-dsa.ca.cert
cert.sh: #73: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/chain-1-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #74: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/chain-2-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #75: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/serverCA-ec.ca.cert
cert.sh: #76: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/chain-1-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #77: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/chain-2-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #78: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
Client Cert
cert.sh: Initializing ExtendedSSLUser's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -f ../tests.pw
cert.sh: #79: Initializing ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #80: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #81: Generate Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 300 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser.cert -f ../tests.pw
cert.sh: #82: Sign ExtendedSSLUser's Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #83: Import ExtendedSSLUser's Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/serverCA.ca.cert
cert.sh: #84: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #85: Generate DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA-dsa -m 300 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser-dsa.cert -f ../tests.pw
cert.sh: #86: Sign ExtendedSSLUser's DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #87: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/serverCA-dsa.ca.cert
cert.sh: #88: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #89: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 302 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser-dsamixed.cert -f ../tests.pw
cert.sh: #90: Sign ExtendedSSLUser's mixed DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #91: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #92: Generate EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA-ec -m 300 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser-ec.cert -f ../tests.pw
cert.sh: #93: Sign ExtendedSSLUser's EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #94: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/serverCA-ec.ca.cert
cert.sh: #95: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #96: Generate mixed EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 301 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser-ecmixed.cert -f ../tests.pw
cert.sh: #97: Sign ExtendedSSLUser's mixed EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #98: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) - PASSED
Importing all the client's own CA chain into the servers DB
cert.sh: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/clientCA.ca.cert
cert.sh: #99: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/chain-1-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #100: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/chain-2-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #101: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/clientCA-dsa.ca.cert
cert.sh: #102: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/chain-1-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #103: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/chain-2-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #104: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-ec -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/clientCA-ec.ca.cert
cert.sh: #105: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/chain-1-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #106: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/chain-2-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #107: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh SUCCESS: EXT passed
cert.sh: Creating Client CA Issued Certificates ===============
cert.sh: Initializing TestUser's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw
cert.sh: #108: Initializing TestUser's Cert DB - PASSED
cert.sh: Loading root cert module to TestUser's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #109: Loading root cert module to TestUser's Cert DB - PASSED
cert.sh: Import Root CA for TestUser --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -i ../CA/TestCA.ca.cert
cert.sh: #110: Import Root CA for TestUser - PASSED
cert.sh: Import DSA Root CA for TestUser --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -i ../CA/TestCA-dsa.ca.cert
cert.sh: #111: Import DSA Root CA for TestUser - PASSED
cert.sh: Import EC Root CA for TestUser --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -i ../CA/TestCA-ec.ca.cert
cert.sh: #112: Import EC Root CA for TestUser - PASSED
cert.sh: Generate Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #113: Generate Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's Request --------------------------
certutil -C -c TestCA -m 70 -v 60 -d ../CA -i req -o TestUser.cert -f ../tests.pw 
cert.sh: #114: Sign TestUser's Request - PASSED
cert.sh: Import TestUser's Cert --------------------------
certutil -A -n TestUser -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #115: Import TestUser's Cert - PASSED
cert.sh SUCCESS: TestUser's Cert Created
cert.sh: Generate DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #116: Generate DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 70 -v 60 -d ../CA -i req -o TestUser-dsa.cert -f ../tests.pw 
cert.sh: #117: Sign TestUser's DSA Request - PASSED
cert.sh: Import TestUser's DSA Cert --------------------------
certutil -A -n TestUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #118: Import TestUser's DSA Cert - PASSED
cert.sh SUCCESS: TestUser's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #119: Generate mixed DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20070 -v 60 -d ../CA -i req -o TestUser-dsamixed.cert -f ../tests.pw 
cert.sh: #120: Sign TestUser's DSA Request with RSA - PASSED
cert.sh: Import TestUser's mixed DSA Cert --------------------------
certutil -A -n TestUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #121: Import TestUser's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #122: Generate EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request --------------------------
certutil -C -c TestCA-ec -m 70 -v 60 -d ../CA -i req -o TestUser-ec.cert -f ../tests.pw 
cert.sh: #123: Sign TestUser's EC Request - PASSED
cert.sh: Import TestUser's EC Cert --------------------------
certutil -A -n TestUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #124: Import TestUser's EC Cert - PASSED
cert.sh SUCCESS: TestUser's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #125: Generate mixed EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10070 -v 60 -d ../CA -i req -o TestUser-ecmixed.cert -f ../tests.pw 
cert.sh: #126: Sign TestUser's EC Request with RSA - PASSED
cert.sh: Import TestUser's mixed EC Cert --------------------------
certutil -A -n TestUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #127: Import TestUser's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain ------------------------------------
cert.sh: Initializing localhost.localdomain's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw
cert.sh: #128: Initializing localhost.localdomain's Cert DB - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #129: Loading root cert module to localhost.localdomain's Cert DB - PASSED
cert.sh: Import Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -i ../CA/TestCA.ca.cert
cert.sh: #130: Import Root CA for localhost.localdomain - PASSED
cert.sh: Import DSA Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -i ../CA/TestCA-dsa.ca.cert
cert.sh: #131: Import DSA Root CA for localhost.localdomain - PASSED
cert.sh: Import EC Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -i ../CA/TestCA-ec.ca.cert
cert.sh: #132: Import EC Root CA for localhost.localdomain - PASSED
cert.sh: Generate Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #133: Generate Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's Request --------------------------
certutil -C -c TestCA -m 100 -v 60 -d ../CA -i req -o localhost.localdomain.cert -f ../tests.pw 
cert.sh: #134: Sign localhost.localdomain's Request - PASSED
cert.sh: Import localhost.localdomain's Cert --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #135: Import localhost.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #136: Generate DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #137: Sign localhost.localdomain's DSA Request - PASSED
cert.sh: Import localhost.localdomain's DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #138: Import localhost.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #139: Generate mixed DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20100 -v 60 -d ../CA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #140: Sign localhost.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #141: Import localhost.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #142: Generate EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-ec.cert -f ../tests.pw 
cert.sh: #143: Sign localhost.localdomain's EC Request - PASSED
cert.sh: Import localhost.localdomain's EC Cert --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #144: Import localhost.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #145: Generate mixed EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10100 -v 60 -d ../CA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #146: Sign localhost.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #147: Import localhost.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain-sni --------------------------------
cert.sh: Generate Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #148: Generate Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's Request --------------------------
certutil -C -c TestCA -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain.cert -f ../tests.pw 
cert.sh: #149: Sign localhost-sni.localdomain's Request - PASSED
cert.sh: Import localhost-sni.localdomain's Cert --------------------------
certutil -A -n localhost-sni.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #150: Import localhost-sni.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #151: Generate DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #152: Sign localhost-sni.localdomain's DSA Request - PASSED
cert.sh: Import localhost-sni.localdomain's DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #153: Import localhost-sni.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #154: Generate mixed DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #155: Sign localhost-sni.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #156: Import localhost-sni.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #157: Generate EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ec.cert -f ../tests.pw 
cert.sh: #158: Sign localhost-sni.localdomain's EC Request - PASSED
cert.sh: Import localhost-sni.localdomain's EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #159: Import localhost-sni.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #160: Generate mixed EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #161: Sign localhost-sni.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #162: Import localhost-sni.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed EC Cert Created
cert.sh: Modify trust attributes of Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA -t TC,TC,TC -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw
cert.sh: #163: Modify trust attributes of Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of DSA Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-dsa -t TC,TC,TC -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw
cert.sh: #164: Modify trust attributes of DSA Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-ec -t TC,TC,TC -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw
cert.sh: #165: Modify trust attributes of EC Root CA -t TC,TC,TC - PASSED
cert.sh SUCCESS: SSL passed
cert.sh: Creating database for OCSP stapling tests  ===============
cp -r /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/stapling
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -o ../stapling/ca.p12 -n TestCA -k ../tests.pw -w ../tests.pw -d ../CA
pk12util: PKCS12 EXPORT SUCCESSFUL
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -i ../stapling/ca.p12 -k ../tests.pw -w ../tests.pw -d ../stapling
pk12util: PKCS12 IMPORT SUCCESSFUL
cert.sh: Creating Client CA Issued Certificates ==============
cert.sh: Initializing Alice's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -f ../tests.pw
cert.sh: #166: Initializing Alice's Cert DB - PASSED
cert.sh: Loading root cert module to Alice's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #167: Loading root cert module to Alice's Cert DB - PASSED
cert.sh: Import Root CA for Alice --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -i ../CA/TestCA.ca.cert
cert.sh: #168: Import Root CA for Alice - PASSED
cert.sh: Import DSA Root CA for Alice --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #169: Import DSA Root CA for Alice - PASSED
cert.sh: Import EC Root CA for Alice --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -i ../CA/TestCA-ec.ca.cert
cert.sh: #170: Import EC Root CA for Alice - PASSED
cert.sh: Generate Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #171: Generate Cert Request for Alice - PASSED
cert.sh: Sign Alice's Request --------------------------
certutil -C -c TestCA -m 30 -v 60 -d ../CA -i req -o Alice.cert -f ../tests.pw 
cert.sh: #172: Sign Alice's Request - PASSED
cert.sh: Import Alice's Cert --------------------------
certutil -A -n Alice -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #173: Import Alice's Cert - PASSED
cert.sh SUCCESS: Alice's Cert Created
cert.sh: Generate DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #174: Generate DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 30 -v 60 -d ../CA -i req -o Alice-dsa.cert -f ../tests.pw 
cert.sh: #175: Sign Alice's DSA Request - PASSED
cert.sh: Import Alice's DSA Cert --------------------------
certutil -A -n Alice-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #176: Import Alice's DSA Cert - PASSED
cert.sh SUCCESS: Alice's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #177: Generate mixed DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20030 -v 60 -d ../CA -i req -o Alice-dsamixed.cert -f ../tests.pw 
cert.sh: #178: Sign Alice's DSA Request with RSA - PASSED
cert.sh: Import Alice's mixed DSA Cert --------------------------
certutil -A -n Alice-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #179: Import Alice's mixed DSA Cert - PASSED
cert.sh SUCCESS: Alice's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #180: Generate EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request --------------------------
certutil -C -c TestCA-ec -m 30 -v 60 -d ../CA -i req -o Alice-ec.cert -f ../tests.pw 
cert.sh: #181: Sign Alice's EC Request - PASSED
cert.sh: Import Alice's EC Cert --------------------------
certutil -A -n Alice-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #182: Import Alice's EC Cert - PASSED
cert.sh SUCCESS: Alice's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #183: Generate mixed EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10030 -v 60 -d ../CA -i req -o Alice-ecmixed.cert -f ../tests.pw 
cert.sh: #184: Sign Alice's EC Request with RSA - PASSED
cert.sh: Import Alice's mixed EC Cert --------------------------
certutil -A -n Alice-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #185: Import Alice's mixed EC Cert - PASSED
cert.sh SUCCESS: Alice's mixed EC Cert Created
cert.sh: Initializing Bob's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -f ../tests.pw
cert.sh: #186: Initializing Bob's Cert DB - PASSED
cert.sh: Loading root cert module to Bob's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #187: Loading root cert module to Bob's Cert DB - PASSED
cert.sh: Import Root CA for Bob --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -i ../CA/TestCA.ca.cert
cert.sh: #188: Import Root CA for Bob - PASSED
cert.sh: Import DSA Root CA for Bob --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #189: Import DSA Root CA for Bob - PASSED
cert.sh: Import EC Root CA for Bob --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -i ../CA/TestCA-ec.ca.cert
cert.sh: #190: Import EC Root CA for Bob - PASSED
cert.sh: Generate Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #191: Generate Cert Request for Bob - PASSED
cert.sh: Sign Bob's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o Bob.cert -f ../tests.pw 
cert.sh: #192: Sign Bob's Request - PASSED
cert.sh: Import Bob's Cert --------------------------
certutil -A -n Bob -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #193: Import Bob's Cert - PASSED
cert.sh SUCCESS: Bob's Cert Created
cert.sh: Generate DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #194: Generate DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o Bob-dsa.cert -f ../tests.pw 
cert.sh: #195: Sign Bob's DSA Request - PASSED
cert.sh: Import Bob's DSA Cert --------------------------
certutil -A -n Bob-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #196: Import Bob's DSA Cert - PASSED
cert.sh SUCCESS: Bob's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #197: Generate mixed DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o Bob-dsamixed.cert -f ../tests.pw 
cert.sh: #198: Sign Bob's DSA Request with RSA - PASSED
cert.sh: Import Bob's mixed DSA Cert --------------------------
certutil -A -n Bob-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #199: Import Bob's mixed DSA Cert - PASSED
cert.sh SUCCESS: Bob's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #200: Generate EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o Bob-ec.cert -f ../tests.pw 
cert.sh: #201: Sign Bob's EC Request - PASSED
cert.sh: Import Bob's EC Cert --------------------------
certutil -A -n Bob-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #202: Import Bob's EC Cert - PASSED
cert.sh SUCCESS: Bob's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #203: Generate mixed EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o Bob-ecmixed.cert -f ../tests.pw 
cert.sh: #204: Sign Bob's EC Request with RSA - PASSED
cert.sh: Import Bob's mixed EC Cert --------------------------
certutil -A -n Bob-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #205: Import Bob's mixed EC Cert - PASSED
cert.sh SUCCESS: Bob's mixed EC Cert Created
cert.sh: Creating Dave's Certificate -------------------------
cert.sh: Initializing Dave's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -f ../tests.pw
cert.sh: #206: Initializing Dave's Cert DB - PASSED
cert.sh: Loading root cert module to Dave's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #207: Loading root cert module to Dave's Cert DB - PASSED
cert.sh: Import Root CA for Dave --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -i ../CA/TestCA.ca.cert
cert.sh: #208: Import Root CA for Dave - PASSED
cert.sh: Import DSA Root CA for Dave --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -i ../CA/TestCA-dsa.ca.cert
cert.sh: #209: Import DSA Root CA for Dave - PASSED
cert.sh: Import EC Root CA for Dave --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -i ../CA/TestCA-ec.ca.cert
cert.sh: #210: Import EC Root CA for Dave - PASSED
cert.sh: Generate Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #211: Generate Cert Request for Dave - PASSED
cert.sh: Sign Dave's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o Dave.cert -f ../tests.pw 
cert.sh: #212: Sign Dave's Request - PASSED
cert.sh: Import Dave's Cert --------------------------
certutil -A -n Dave -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #213: Import Dave's Cert - PASSED
cert.sh SUCCESS: Dave's Cert Created
cert.sh: Generate DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #214: Generate DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o Dave-dsa.cert -f ../tests.pw 
cert.sh: #215: Sign Dave's DSA Request - PASSED
cert.sh: Import Dave's DSA Cert --------------------------
certutil -A -n Dave-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #216: Import Dave's DSA Cert - PASSED
cert.sh SUCCESS: Dave's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #217: Generate mixed DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o Dave-dsamixed.cert -f ../tests.pw 
cert.sh: #218: Sign Dave's DSA Request with RSA - PASSED
cert.sh: Import Dave's mixed DSA Cert --------------------------
certutil -A -n Dave-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #219: Import Dave's mixed DSA Cert - PASSED
cert.sh SUCCESS: Dave's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #220: Generate EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o Dave-ec.cert -f ../tests.pw 
cert.sh: #221: Sign Dave's EC Request - PASSED
cert.sh: Import Dave's EC Cert --------------------------
certutil -A -n Dave-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #222: Import Dave's EC Cert - PASSED
cert.sh SUCCESS: Dave's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #223: Generate mixed EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o Dave-ecmixed.cert -f ../tests.pw 
cert.sh: #224: Sign Dave's EC Request with RSA - PASSED
cert.sh: Import Dave's mixed EC Cert --------------------------
certutil -A -n Dave-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #225: Import Dave's mixed EC Cert - PASSED
cert.sh SUCCESS: Dave's mixed EC Cert Created
cert.sh: Creating multiEmail's Certificate --------------------
cert.sh: Initializing Eve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -f ../tests.pw
cert.sh: #226: Initializing Eve's Cert DB - PASSED
cert.sh: Loading root cert module to Eve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #227: Loading root cert module to Eve's Cert DB - PASSED
cert.sh: Import Root CA for Eve --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -i ../CA/TestCA.ca.cert
cert.sh: #228: Import Root CA for Eve - PASSED
cert.sh: Import DSA Root CA for Eve --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -i ../CA/TestCA-dsa.ca.cert
cert.sh: #229: Import DSA Root CA for Eve - PASSED
cert.sh: Import EC Root CA for Eve --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -i ../CA/TestCA-ec.ca.cert
cert.sh: #230: Import EC Root CA for Eve - PASSED
cert.sh: Generate Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #231: Generate Cert Request for Eve - PASSED
cert.sh: Sign Eve's Request --------------------------
certutil -C -c TestCA -m 60 -v 60 -d ../CA -i req -o Eve.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #232: Sign Eve's Request - PASSED
cert.sh: Import Eve's Cert --------------------------
certutil -A -n Eve -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #233: Import Eve's Cert - PASSED
cert.sh SUCCESS: Eve's Cert Created
cert.sh: Generate DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #234: Generate DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 60 -v 60 -d ../CA -i req -o Eve-dsa.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #235: Sign Eve's DSA Request - PASSED
cert.sh: Import Eve's DSA Cert --------------------------
certutil -A -n Eve-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #236: Import Eve's DSA Cert - PASSED
cert.sh SUCCESS: Eve's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #237: Generate mixed DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20060 -v 60 -d ../CA -i req -o Eve-dsamixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #238: Sign Eve's DSA Request with RSA - PASSED
cert.sh: Import Eve's mixed DSA Cert --------------------------
certutil -A -n Eve-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #239: Import Eve's mixed DSA Cert - PASSED
cert.sh SUCCESS: Eve's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #240: Generate EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request --------------------------
certutil -C -c TestCA-ec -m 60 -v 60 -d ../CA -i req -o Eve-ec.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #241: Sign Eve's EC Request - PASSED
cert.sh: Import Eve's EC Cert --------------------------
certutil -A -n Eve-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #242: Import Eve's EC Cert - PASSED
cert.sh SUCCESS: Eve's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #243: Generate mixed EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10060 -v 60 -d ../CA -i req -o Eve-ecmixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #244: Sign Eve's EC Request with RSA - PASSED
cert.sh: Import Eve's mixed EC Cert --------------------------
certutil -A -n Eve-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #245: Import Eve's mixed EC Cert - PASSED
cert.sh SUCCESS: Eve's mixed EC Cert Created
cert.sh: Importing Certificates ==============================
cert.sh: Import Bob's cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob.cert
cert.sh: #246: Import Bob's cert into Alice's db - PASSED
cert.sh: Import Dave's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #247: Import Dave's cert into Alice's DB - PASSED
cert.sh: Import Dave's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #248: Import Dave's cert into Bob's DB - PASSED
cert.sh: Import Eve's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #249: Import Eve's cert into Alice's DB - PASSED
cert.sh: Import Eve's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #250: Import Eve's cert into Bob's DB - PASSED
cert.sh: Importing EC Certificates ==============================
cert.sh: Import Bob's EC cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob-ec.cert
cert.sh: #251: Import Bob's EC cert into Alice's db - PASSED
cert.sh: Import Dave's EC cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #252: Import Dave's EC cert into Alice's DB - PASSED
cert.sh: Import Dave's EC cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #253: Import Dave's EC cert into Bob's DB - PASSED
cert.sh SUCCESS: SMIME passed
cert.sh: Creating FIPS 140 DSA Certificates ==============
cert.sh: Initializing FIPS PUB 140 Test Certificate's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips -f ../tests.fipspw
cert.sh: #254: Initializing FIPS PUB 140 Test Certificate's Cert DB - PASSED
cert.sh: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #255: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) - PASSED
cert.sh: Enable FIPS mode on database -----------------------
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips -fips true 
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
FIPS mode enabled.
cert.sh: #256: Enable FIPS mode on database for FIPS PUB 140 Test Certificate - PASSED
cert.sh: Generate Certificate for FIPS PUB 140 Test Certificate --------------------------
certutil -s "CN=FIPS PUB 140 Test Certificate, E=fips@bogus.com, O=BOGUS NSS, OU=FIPS PUB 140, L=Mountain View, ST=California, C=US" -S -n FIPS_PUB_140_Test_Certificate -x -t Cu,Cu,Cu -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips -f ../tests.fipspw -k dsa -v 600 -m 500 -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #257: Generate Certificate for FIPS PUB 140 Test Certificate - PASSED
cert.sh SUCCESS: FIPS passed
cert.sh: Creating Server CA Issued Certificate for 
             EC Curves Test Certificates ------------------------------------
cert.sh: Initializing EC Curve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eccurves -f ../tests.pw
cert.sh: #258: Initializing EC Curve's Cert DB - PASSED
cert.sh: Loading root cert module to EC Curve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eccurves
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #259: Loading root cert module to EC Curve's Cert DB - PASSED
cert.sh: Import EC Root CA for EC Curves Test Certificates --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eccurves -i ../CA/TestCA-ec.ca.cert
cert.sh: #260: Import EC Root CA for EC Curves Test Certificates - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp256 --------------------------
certutil -s "CN=Curve-nistp256, E=Curve-nistp256-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp256 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #261: Generate EC Cert Request for Curve-nistp256 - PASSED
cert.sh: Sign Curve-nistp256's EC Request --------------------------
certutil -C -c TestCA-ec -m 2001 -v 60 -d ../CA -i req -o Curve-nistp256-ec.cert -f ../tests.pw 
cert.sh: #262: Sign Curve-nistp256's EC Request - PASSED
cert.sh: Import Curve-nistp256's EC Cert --------------------------
certutil -A -n Curve-nistp256-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eccurves -f ../tests.pw -i Curve-nistp256-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #263: Import Curve-nistp256's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp384 --------------------------
certutil -s "CN=Curve-nistp384, E=Curve-nistp384-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp384 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #264: Generate EC Cert Request for Curve-nistp384 - PASSED
cert.sh: Sign Curve-nistp384's EC Request --------------------------
certutil -C -c TestCA-ec -m 2002 -v 60 -d ../CA -i req -o Curve-nistp384-ec.cert -f ../tests.pw 
cert.sh: #265: Sign Curve-nistp384's EC Request - PASSED
cert.sh: Import Curve-nistp384's EC Cert --------------------------
certutil -A -n Curve-nistp384-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eccurves -f ../tests.pw -i Curve-nistp384-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #266: Import Curve-nistp384's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp521 --------------------------
certutil -s "CN=Curve-nistp521, E=Curve-nistp521-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp521 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #267: Generate EC Cert Request for Curve-nistp521 - PASSED
cert.sh: Sign Curve-nistp521's EC Request --------------------------
certutil -C -c TestCA-ec -m 2003 -v 60 -d ../CA -i req -o Curve-nistp521-ec.cert -f ../tests.pw 
cert.sh: #268: Sign Curve-nistp521's EC Request - PASSED
cert.sh: Import Curve-nistp521's EC Cert --------------------------
certutil -A -n Curve-nistp521-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eccurves -f ../tests.pw -i Curve-nistp521-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #269: Import Curve-nistp521's EC Cert - PASSED
cert.sh: Initializing TestExt's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw
cert.sh: #270: Initializing TestExt's Cert DB - PASSED
cert.sh: Loading root cert module to TestExt's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #271: Loading root cert module to TestExt's Cert DB - PASSED
cert.sh: Import Root CA for TestExt --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -i ../CA/TestCA.ca.cert
cert.sh: #272: Import Root CA for TestExt - PASSED
cert.sh: Import DSA Root CA for TestExt --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -i ../CA/TestCA-dsa.ca.cert
cert.sh: #273: Import DSA Root CA for TestExt - PASSED
cert.sh: Import EC Root CA for TestExt --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -i ../CA/TestCA-ec.ca.cert
cert.sh: #274: Import EC Root CA for TestExt - PASSED
cert.sh: Generate Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #275: Generate Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's Request --------------------------
certutil -C -c TestCA -m 90 -v 60 -d ../CA -i req -o TestExt.cert -f ../tests.pw 
cert.sh: #276: Sign TestExt's Request - PASSED
cert.sh: Import TestExt's Cert --------------------------
certutil -A -n TestExt -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #277: Import TestExt's Cert - PASSED
cert.sh SUCCESS: TestExt's Cert Created
cert.sh: Generate DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #278: Generate DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 90 -v 60 -d ../CA -i req -o TestExt-dsa.cert -f ../tests.pw 
cert.sh: #279: Sign TestExt's DSA Request - PASSED
cert.sh: Import TestExt's DSA Cert --------------------------
certutil -A -n TestExt-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #280: Import TestExt's DSA Cert - PASSED
cert.sh SUCCESS: TestExt's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #281: Generate mixed DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20090 -v 60 -d ../CA -i req -o TestExt-dsamixed.cert -f ../tests.pw 
cert.sh: #282: Sign TestExt's DSA Request with RSA - PASSED
cert.sh: Import TestExt's mixed DSA Cert --------------------------
certutil -A -n TestExt-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #283: Import TestExt's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestExt's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #284: Generate EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request --------------------------
certutil -C -c TestCA-ec -m 90 -v 60 -d ../CA -i req -o TestExt-ec.cert -f ../tests.pw 
cert.sh: #285: Sign TestExt's EC Request - PASSED
cert.sh: Import TestExt's EC Cert --------------------------
certutil -A -n TestExt-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #286: Import TestExt's EC Cert - PASSED
cert.sh SUCCESS: TestExt's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #287: Generate mixed EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10090 -v 60 -d ../CA -i req -o TestExt-ecmixed.cert -f ../tests.pw 
cert.sh: #288: Sign TestExt's EC Request with RSA - PASSED
cert.sh: Import TestExt's mixed EC Cert --------------------------
certutil -A -n TestExt-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #289: Import TestExt's mixed EC Cert - PASSED
cert.sh SUCCESS: TestExt's mixed EC Cert Created
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -S -n TestExt1 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt1, E=TestExt1@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -L -n TestExt1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:c9:88
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sun Aug 06 23:43:32 2017
            Not After : Mon Nov 06 23:43:32 2017
        Subject: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:b8:e7:10:aa:59:b9:dd:a3:4c:1d:1b:d4:28:93:ca:
                    eb:16:0c:b2:c7:12:be:3f:91:b0:e0:e7:22:61:0b:15:
                    d5:39:ea:46:e4:a5:68:cf:e3:38:03:a7:c2:de:b4:74:
                    0e:de:13:d8:0e:9c:74:bd:84:ae:d1:63:34:f9:1d:3b:
                    5b:98:a9:00:96:2a:3f:13:f7:1e:6f:7e:5a:91:96:18:
                    ec:d2:2f:7b:91:64:27:81:4d:f5:78:6a:f3:8d:2f:b2:
                    2c:94:eb:d9:2a:54:e5:b0:6b:cc:a2:3d:60:33:51:41:
                    68:ab:00:5e:f4:14:6e:65:43:2c:8c:73:8f:c9:8d:61:
                    c3:eb:63:de:8f:ab:ec:50:1f:a4:73:0c:01:0d:6c:ea:
                    00:38:a6:26:7c:e1:d9:75:69:59:52:f9:4e:79:3d:87:
                    81:f5:51:be:1c:76:b1:4a:7b:16:37:ea:89:63:14:44:
                    98:ed:cf:5e:dc:e3:93:5e:7f:8b:35:1a:90:2c:6a:9d:
                    30:d8:86:3b:4c:ff:2b:2f:88:90:99:a2:7d:ee:25:6e:
                    7a:5b:f8:64:f5:ea:a9:33:6f:42:50:91:59:de:0b:af:
                    d1:53:95:c4:14:2a:20:b7:b6:71:00:22:89:80:e9:64:
                    c8:50:87:29:eb:70:42:69:f1:3b:cd:41:56:68:ee:8f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ab:e5:7a:42:fd:fa:a0:78:f7:6f:4d:87:b7:3e:a5:c2:
        45:6e:f7:be:00:27:65:dc:b8:a2:79:e6:64:d3:d7:e7:
        d5:0e:78:1b:bf:40:ac:fb:ea:fa:07:1e:c4:08:7f:78:
        fb:47:d8:92:43:71:86:93:0b:35:87:ca:fc:4c:3e:c0:
        fd:23:89:ba:bb:27:74:da:dc:28:e9:ec:3e:d5:64:e5:
        5c:2d:07:e8:c2:17:36:a2:7f:5b:0b:89:82:c9:bc:67:
        ae:6a:09:38:37:1f:cf:19:8b:2c:61:ef:38:83:ec:50:
        3c:84:82:ef:62:5f:be:f1:67:67:57:80:13:0f:55:eb:
        f4:66:18:30:4f:06:c9:8a:62:ad:24:5d:93:7a:75:b6:
        37:a0:16:57:2d:de:b5:c7:cc:08:40:c7:7b:1b:f4:2e:
        14:bd:d2:b7:4b:ca:1c:e4:cf:6b:19:fa:83:9c:07:e6:
        23:9e:d2:63:0c:8a:34:71:69:26:3c:d4:2f:00:39:b4:
        6c:cd:5b:13:da:2f:5b:34:ce:d2:9e:79:92:60:72:8b:
        85:2d:10:6b:d9:db:b4:57:2c:dc:d8:26:9a:84:9f:e5:
        32:0e:9e:6f:71:01:63:f2:f2:80:f4:b2:82:d4:a9:a0:
        c2:78:56:80:09:90:b9:3b:b9:3d:a1:c0:6e:50:2a:19
    Fingerprint (SHA-256):
        5C:9B:5D:EB:85:F1:9C:6F:18:00:81:89:BE:F1:21:26:6D:8E:8D:D8:EB:F7:2F:B3:49:F5:EB:FB:01:22:EB:18
    Fingerprint (SHA1):
        CC:73:6B:95:EA:6B:47:28:4C:10:FB:12:55:CE:69:16:6E:32:92:86
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #290: Certificate Key Usage Extension (1) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -S -n TestExt2 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt2, E=TestExt2@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -L -n TestExt2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:c9:89
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sun Aug 06 23:43:32 2017
            Not After : Mon Nov 06 23:43:32 2017
        Subject: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:17:71:5e:40:6e:1b:68:87:25:d8:92:20:26:d5:f8:
                    ab:26:81:81:de:c7:31:21:68:01:41:56:ef:bf:a6:f9:
                    9f:e3:02:14:88:ad:13:54:26:bb:b9:ad:44:37:a4:6c:
                    8a:6b:3b:a6:eb:da:4b:cb:89:bc:d4:4b:44:8b:0d:e1:
                    8a:8e:1e:fd:f8:7e:ec:42:b3:da:c6:4e:9b:e7:40:ab:
                    97:b9:96:02:cd:00:86:b1:a5:5b:69:14:a2:1f:c7:47:
                    6a:28:54:b5:73:6c:e9:9e:5d:0a:53:f9:db:36:83:9b:
                    2d:ff:3f:c7:72:0a:83:3a:7e:bd:58:d4:e3:de:1c:ec:
                    26:54:0f:99:c0:9d:16:7e:ea:ca:a7:88:c1:63:5c:4b:
                    9f:bd:c7:2d:c9:cf:d5:5c:30:b9:0d:11:9e:4b:b9:92:
                    68:46:47:af:5b:e1:90:98:cf:0a:5c:5e:b6:78:94:56:
                    6e:a4:9f:1d:70:f4:1b:e5:41:64:7b:b3:5c:f0:97:05:
                    48:fb:5b:bd:5d:4e:c1:fb:9a:45:d5:1c:b6:85:f6:1e:
                    bb:c4:e7:2d:2f:95:2a:f8:98:d1:84:cd:43:43:8c:4f:
                    b2:92:37:16:1f:7c:2f:03:43:9f:fb:14:17:a8:22:8d:
                    5b:b4:d0:44:2a:8f:28:e0:c9:fe:27:da:2a:c4:cd:8f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        34:b9:3f:a4:19:08:18:35:a4:47:f6:8c:e8:1f:bc:3d:
        50:15:45:c4:18:da:42:12:a3:cd:1f:aa:21:b7:73:a8:
        a5:9d:b3:d8:2d:92:4d:3f:8a:fe:02:16:d4:c2:5f:70:
        9d:47:ad:46:1d:c6:0b:49:da:8d:61:87:a4:72:5e:54:
        42:8d:db:87:1e:f8:2a:80:67:03:25:44:14:72:20:18:
        92:44:ac:2f:dd:6b:34:3e:6f:a8:14:4e:9f:4e:a4:60:
        b2:40:a8:01:12:ad:b1:20:31:6b:ed:e8:78:4c:75:d5:
        e1:b6:f9:c5:d8:5f:66:94:43:e1:4e:97:0a:1b:a6:6b:
        d9:90:02:a4:17:94:7f:b5:d9:c0:cc:2e:34:ae:cb:38:
        9d:51:29:73:f4:64:5b:cc:f7:94:84:0d:5a:f0:eb:75:
        84:f0:0f:34:02:e9:fe:8a:7a:2c:48:d0:24:52:e5:04:
        39:ac:e4:75:c7:f7:78:af:ea:57:d4:80:17:9b:fd:f9:
        ae:66:86:2f:7e:11:f0:3f:81:67:4b:75:99:e5:af:5a:
        fd:b8:9f:29:ef:86:10:52:61:b4:e5:f1:24:84:e1:45:
        51:dc:bb:4f:3a:60:04:9d:7d:61:63:a1:90:76:5b:e4:
        cd:a7:dc:0f:be:92:f5:12:4e:e3:78:32:4e:96:84:13
    Fingerprint (SHA-256):
        DB:B7:3E:30:50:CA:52:2A:91:E3:54:05:BE:B5:59:62:27:3D:EE:19:5E:C5:25:12:FB:78:21:F4:1C:0C:F3:9F
    Fingerprint (SHA1):
        59:7D:60:3A:BC:03:95:59:03:2D:40:89:47:F1:10:39:C9:0D:8F:0A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #291: Certificate Key Usage Extension (2) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -S -n TestExt3 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt3, E=TestExt3@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
y
-1
n
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -L -n TestExt3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:c9:89
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sun Aug 06 23:43:32 2017
            Not After : Mon Nov 06 23:43:32 2017
        Subject: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:00:c2:e0:0a:eb:a4:e8:29:8c:51:1e:92:dc:1e:52:
                    72:0b:2d:0e:30:92:a0:d4:13:7d:39:e1:3a:d9:1f:55:
                    31:8b:62:6a:43:de:c0:d8:29:c4:87:33:41:00:1b:38:
                    72:ec:12:5c:3e:87:46:8b:35:9b:12:64:1b:9d:a7:b3:
                    86:64:17:b5:30:ae:48:97:19:9b:64:db:5b:42:b7:a5:
                    47:c9:8a:57:6e:88:04:a5:ae:2e:3a:e1:c9:70:9a:e8:
                    58:f7:4e:43:59:52:48:17:8d:4c:97:74:cc:be:3d:49:
                    d2:aa:6b:ac:ba:b6:69:ae:90:5a:13:0e:f5:a1:00:d2:
                    70:65:ce:e7:ea:24:b6:58:0d:3e:15:a4:6a:55:5e:3b:
                    dc:ba:cc:49:63:6f:84:6c:6e:50:a8:d4:6a:67:17:ec:
                    5f:ea:d6:ff:59:25:bd:24:98:d8:89:18:9b:c2:36:7f:
                    df:02:0f:38:af:c0:ca:53:ac:b4:a2:01:a5:15:bc:e5:
                    a0:08:6a:d1:1e:6a:f9:7f:03:8d:a1:ae:0f:7e:f2:71:
                    3f:2e:fa:5a:2e:3b:11:0b:a0:47:9d:7d:ed:e1:ed:0d:
                    0c:e6:1e:fa:11:0b:db:b6:4f:93:c0:ac:3f:f7:ad:49:
                    69:19:d5:d4:7b:5b:a0:b9:2d:0f:5d:40:54:fe:78:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1a:eb:76:6c:db:3e:2e:00:8e:19:2f:79:76:40:86:05:
        d2:ac:47:75:8a:e0:6e:b6:fd:21:81:fe:a8:c7:ac:1d:
        2c:8a:af:b7:c5:ae:3f:b1:f9:f4:96:2d:4c:d4:c0:4d:
        b6:00:2a:39:01:25:f5:0b:e0:5f:f5:2f:6a:52:de:a2:
        d1:a8:cd:be:40:13:7d:ee:78:64:f9:3e:5a:78:ef:19:
        24:ad:69:3b:58:1a:4b:be:95:e2:e5:1c:11:81:54:39:
        e3:3b:a8:10:13:3f:e8:f6:41:cc:6e:de:a6:e8:ec:fa:
        15:98:d0:ea:a2:77:f4:9b:d9:e0:e3:c4:b9:ec:3b:d7:
        61:f2:bd:25:b0:d2:54:5a:1b:36:87:11:4b:8e:47:38:
        de:ce:af:0b:25:2f:c1:88:f7:02:98:80:8e:f7:4f:52:
        18:e5:2e:a3:de:f2:7a:0e:db:98:be:41:15:41:d1:8e:
        63:e5:96:a1:fc:e2:44:38:1f:bd:e8:6e:08:a9:ea:1e:
        2b:96:14:5e:79:a6:d2:6b:41:41:d6:0d:49:81:3e:28:
        e9:af:ba:af:cb:54:b5:06:d4:96:75:e0:bb:12:0e:60:
        0a:f0:09:79:27:de:0d:89:50:ed:8a:52:55:66:5c:c4:
        ad:67:13:0f:50:d1:69:5c:50:32:b8:03:31:6a:01:17
    Fingerprint (SHA-256):
        0E:08:FF:61:77:1A:11:98:6B:37:B9:59:AC:9A:9D:33:2F:08:DC:01:F2:6D:A6:64:F3:5F:34:1A:CE:FA:4E:79
    Fingerprint (SHA1):
        17:EF:1A:93:A9:72:A2:9D:23:B3:DC:8F:B3:6D:1D:A7:72:66:38:C0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #292: Certificate Basic Constraints Extension (3) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -S -n TestExt4 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt4, E=TestExt4@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
n
-1
y
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -L -n TestExt4
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:c9:89
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sun Aug 06 23:43:32 2017
            Not After : Mon Nov 06 23:43:32 2017
        Subject: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:ae:0e:fb:a8:2c:fe:57:a0:01:68:e0:b9:ec:d5:c6:
                    d1:eb:d3:b3:01:43:35:9a:f7:38:bd:f3:8f:63:2a:25:
                    04:d6:50:70:48:7e:37:53:f8:d0:d2:2b:36:54:cb:e6:
                    96:8a:cd:14:d7:bb:ae:4f:bd:b7:96:29:cc:11:9f:2f:
                    d3:c6:f7:41:77:99:0e:ba:5c:08:b3:50:cd:bd:cf:d3:
                    db:cc:2f:15:df:78:1c:7f:8f:cf:fc:4c:c5:93:f0:23:
                    7e:78:64:99:2c:50:0e:7a:44:7b:3a:ec:bf:38:6d:01:
                    ef:d0:67:1b:fb:35:8e:b4:b6:30:4d:51:3c:f0:21:cb:
                    fb:1f:48:ef:26:91:b4:f2:9f:46:89:fe:30:50:45:5b:
                    d7:4d:4e:f5:90:43:93:16:b8:51:23:ec:f7:fd:7a:95:
                    27:dd:2a:19:aa:46:9d:07:3e:8b:ed:e7:d8:14:63:ec:
                    80:66:31:4e:71:fc:7a:2d:cd:37:9d:ea:ce:59:aa:8b:
                    f5:8d:6b:df:c1:bd:e5:b0:95:f0:96:fc:7d:f3:dc:f2:
                    cd:f9:1a:e6:31:30:cb:83:77:49:07:06:65:bc:73:bf:
                    df:1d:8a:d2:2b:d9:ed:ef:da:c8:ed:00:60:d2:4b:87:
                    ee:78:c4:a0:8d:61:47:91:64:c1:93:79:b6:01:c9:e5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is not a CA.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3e:b1:4c:c3:e0:17:67:64:b3:8b:a4:aa:eb:7d:90:2e:
        b8:b1:27:c4:cf:b5:19:e3:71:ad:cf:6f:cf:fb:71:3d:
        40:fa:4e:75:60:5d:9c:69:58:cf:ec:4f:55:59:ff:02:
        04:5c:96:60:ea:2e:4d:e0:90:61:f4:6e:a8:15:00:95:
        15:51:6d:90:fe:a0:88:d1:53:ca:2c:1e:d9:e7:a8:6b:
        8f:f1:b3:3c:00:af:98:f9:d6:c0:4b:4d:f1:3a:97:e7:
        8b:e8:dd:e3:cf:e9:5b:8d:9b:f3:0f:3e:56:28:66:53:
        68:48:61:51:b3:aa:39:a2:72:fa:7e:da:1f:21:f9:5d:
        0f:cd:e7:ba:1a:fc:bf:fe:9a:90:c2:2b:cc:8e:b5:5f:
        bf:b5:4c:b9:08:43:5d:38:97:40:f5:7b:36:f4:d0:54:
        5a:59:cb:6b:4e:e2:82:98:89:42:a0:95:f0:1b:e2:40:
        2f:7e:04:e0:9f:9b:08:b9:3c:0b:3e:70:db:f5:d1:9d:
        7b:f7:78:4f:c1:08:63:32:ef:b8:3f:b7:f6:f4:a7:5e:
        b2:72:1b:13:ae:f5:e6:3e:29:7f:c3:4a:a7:6d:35:9f:
        5e:a6:36:3c:ea:2c:9a:46:48:8f:54:dc:8a:ec:6c:67:
        99:c6:1b:7d:c0:68:f1:70:b7:7e:aa:a0:ae:e3:04:41
    Fingerprint (SHA-256):
        BF:CE:D0:67:26:7E:DB:9F:EF:9D:44:49:9F:C4:50:AB:0B:92:F5:2A:B0:75:A0:E3:03:90:BB:F6:7B:75:D7:87
    Fingerprint (SHA1):
        1A:B4:7E:77:C5:0C:0A:23:60:86:EB:42:F2:8A:98:A2:C9:C5:B5:FE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #293: Certificate Basic Constraints Extension (4) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -S -n TestExt5 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt5, E=TestExt5@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
y
12341235123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -L -n TestExt5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:c9:8a
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sun Aug 06 23:43:33 2017
            Not After : Mon Nov 06 23:43:33 2017
        Subject: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:28:51:2c:24:fa:67:09:82:5d:05:94:14:21:ed:20:
                    12:5f:6f:fb:dd:dd:25:98:89:c7:57:17:3a:d8:c7:86:
                    0f:aa:83:32:11:8c:fb:4a:34:c1:44:4b:39:d3:16:e0:
                    07:00:45:94:be:a4:d9:29:83:04:7a:a6:80:4f:20:70:
                    b1:65:65:e2:12:ef:ac:95:61:7a:71:2e:22:3b:96:95:
                    e0:62:bc:89:12:0f:48:d3:7b:07:a6:b7:8b:2f:75:e5:
                    ad:e3:95:61:ce:75:a4:e3:b1:53:0d:09:d8:91:cc:03:
                    5b:66:65:9d:16:c9:3d:c9:98:1b:ab:f9:31:fc:18:e9:
                    f1:4e:6c:47:e8:5a:1a:37:7b:c6:2a:f0:4d:11:81:5f:
                    41:bf:6b:94:b9:9e:fe:af:f0:b3:14:5e:ec:79:99:f7:
                    18:ae:83:20:33:7b:c6:c8:2a:18:d4:32:ae:c0:24:c4:
                    e0:d0:da:50:b1:d2:5f:a6:8a:0c:f5:7a:76:77:3b:c3:
                    f9:5e:1a:55:25:17:63:5f:8e:91:2d:2f:9c:75:c0:43:
                    be:37:91:14:99:5a:fa:fb:47:0e:07:8a:87:29:8d:f5:
                    0a:a0:08:d4:f3:c5:a2:55:5a:73:1f:9e:cb:3b:d6:22:
                    73:8a:44:71:35:e8:a4:70:d2:17:0d:53:d5:a7:87:75
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Key ID:
                12341235123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7b:fb:7b:5b:86:f4:09:36:68:61:45:73:ed:7f:33:a0:
        22:f9:8e:e8:12:37:eb:71:fa:27:b6:61:13:49:c9:6d:
        5b:e3:0d:8e:b4:db:9d:63:1c:d0:49:50:78:f9:56:1a:
        ed:c2:af:70:30:0b:a8:3b:92:00:e1:4c:fb:11:c1:18:
        4f:07:20:3f:08:71:cc:07:34:d6:73:77:af:ec:d2:2b:
        56:9c:e0:5e:d3:fa:20:87:ff:bf:e9:5a:6f:87:c9:2c:
        18:98:31:6b:f0:0c:ce:e8:17:a0:72:7f:dd:93:38:e2:
        c7:7a:53:cf:e1:db:87:d1:be:0d:9a:60:f8:ff:57:61:
        18:dd:98:12:99:bc:5b:96:74:6b:7f:ba:99:13:c6:b0:
        c8:d9:3c:aa:c3:d2:7e:4b:97:07:3c:3e:30:9a:5a:c9:
        6d:5a:74:21:9f:aa:0c:81:b2:a4:84:8a:fc:68:d3:2b:
        b0:d6:ea:ce:2f:46:72:66:29:90:36:e5:3e:9d:b7:18:
        85:57:9c:9b:ba:8a:61:22:5f:5e:31:78:42:15:c6:a0:
        17:b3:87:ef:8e:df:8c:d0:2f:24:11:ac:7e:9d:b4:69:
        49:99:35:d0:18:09:74:cc:7d:ef:fc:79:99:cc:49:83:
        7f:df:f4:9b:40:d1:72:c8:cf:f6:62:fa:b6:11:f9:26
    Fingerprint (SHA-256):
        1A:B1:90:D2:D6:B4:F3:54:49:6A:DA:FC:46:9E:3D:F2:1B:AA:44:19:B7:14:89:B5:65:A4:17:CA:47:B0:E5:CB
    Fingerprint (SHA1):
        75:7F:77:98:83:42:31:37:A2:B6:B8:AD:93:26:01:3B:D6:87:A1:DE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #294: Certificate Authority Key Identifier Extension (5) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -S -n TestExt6 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt6, E=TestExt6@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
y
3
test.com
214123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -L -n TestExt6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:c9:8a
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sun Aug 06 23:43:33 2017
            Not After : Mon Nov 06 23:43:33 2017
        Subject: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:b6:2e:1e:e5:e7:0e:39:bb:2d:70:df:1f:15:10:ad:
                    df:ba:c5:11:fe:6e:e2:f7:b3:06:1f:b7:ca:5d:76:ea:
                    e3:c6:a5:94:ee:4a:b0:1f:fe:c3:09:a2:ca:2d:35:a0:
                    cc:4c:58:46:26:30:a9:59:98:70:34:7f:9e:83:9a:13:
                    bc:b3:6a:e8:99:3a:58:fc:0e:f5:87:f5:be:3a:26:fd:
                    3b:92:7c:48:45:ff:87:fe:94:9d:f1:f9:df:ca:3d:1e:
                    76:10:d6:c7:22:94:52:cb:da:a7:e4:1e:31:30:1b:5b:
                    dd:36:0d:7f:3c:a4:78:0f:cd:2d:b4:af:fc:71:7d:90:
                    2f:05:99:ce:0e:36:50:de:be:9a:22:b2:da:f5:bf:38:
                    93:bb:ac:19:85:13:b7:05:9d:38:68:88:ea:0a:1b:f9:
                    27:d9:2e:d2:17:4b:ad:1d:cb:17:3b:f0:4f:3c:30:20:
                    6e:34:bf:17:67:84:6e:4e:e3:b1:3e:c8:aa:6d:cb:ef:
                    83:07:fa:b6:14:34:1f:db:56:74:29:7e:92:2a:60:46:
                    30:38:d5:c3:1e:1e:d6:26:8a:f5:f0:af:25:f8:28:75:
                    86:22:02:ae:ec:94:cc:7a:93:73:63:e3:d6:a6:1b:bc:
                    eb:8b:4d:2f:13:df:28:4d:01:03:a0:d6:95:c4:e6:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Issuer: 
                DNS name: "test.com"
            Serial Number:
                214123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        61:9b:15:90:60:ba:d6:cf:6a:26:e1:d8:46:f8:98:b0:
        34:d1:d2:db:66:01:b1:c3:7f:46:e9:79:8e:2c:67:94:
        7b:c0:d0:ea:d6:3b:13:60:eb:10:61:f5:f4:9f:03:89:
        e1:64:de:43:dd:1d:78:d6:b1:69:d0:b4:51:29:cf:f5:
        11:55:fc:61:7a:25:5f:3c:56:f2:1a:40:85:39:ac:23:
        1f:4b:34:88:a2:1b:5f:e4:11:da:3c:a4:bd:26:c4:0d:
        1a:17:d0:c5:cc:df:5b:e2:54:70:38:62:ab:ce:32:5b:
        73:3c:30:6f:75:d0:93:25:58:92:4e:50:48:89:d3:72:
        d0:f3:a3:17:1e:a3:e0:5d:d2:25:7b:0d:dd:b7:9d:6f:
        7c:17:90:7b:0a:56:bd:6d:c2:6c:a0:36:24:56:20:51:
        c7:e0:b9:ff:57:36:ad:70:2b:26:5b:04:f4:61:03:62:
        b6:85:e5:ed:dc:1a:17:5b:ea:34:a9:f5:24:b0:74:22:
        32:ee:83:86:1e:35:91:36:3a:23:fe:7d:3e:34:ef:31:
        b6:1b:6e:0f:ab:80:93:f5:7b:08:05:61:dd:ed:80:df:
        ad:0d:c5:be:6f:d1:ca:77:42:6d:bf:5b:40:56:09:09:
        eb:5c:9f:67:1f:82:63:b9:57:79:67:fd:96:8f:c2:26
    Fingerprint (SHA-256):
        78:52:1D:64:D8:4B:1B:88:74:A1:F2:31:63:73:2F:59:EF:B3:F7:4E:0C:26:0A:62:42:A5:9A:72:5D:CE:DE:A3
    Fingerprint (SHA1):
        BE:F1:50:C4:01:4A:E5:AD:28:44:5D:3B:F1:EB:99:96:E9:19:86:81
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #295: Certificate Authority Key Identifier Extension (6) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -S -n TestExt7 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt7, E=TestExt7@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
1
2
rfc822@name.tld
3
test.com
8
1.2.3.4
9
OID.0.2.213
10
0
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -L -n TestExt7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:c9:8b
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sun Aug 06 23:43:33 2017
            Not After : Mon Nov 06 23:43:33 2017
        Subject: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:c3:84:df:a0:3b:dd:8a:f6:92:3a:aa:6e:57:40:2b:
                    8f:14:e1:5d:f2:88:92:01:ed:b6:5b:9d:04:28:a8:b7:
                    e3:d3:7f:9c:be:be:ed:33:1b:e9:75:42:8d:25:c5:db:
                    39:98:a3:45:2f:33:87:9c:5d:b6:f7:79:83:ff:be:8e:
                    b5:2e:e0:ee:20:2d:8b:f4:2c:be:8c:58:e4:f0:06:74:
                    d3:97:88:c2:11:cf:76:63:d4:75:8d:68:6a:1f:3c:69:
                    ce:2e:78:bc:52:37:aa:9b:f5:aa:64:e0:e5:aa:71:da:
                    ac:3b:e1:ae:91:73:6b:16:17:8a:93:69:99:85:c0:f9:
                    ce:f9:46:00:b7:03:98:87:e6:ad:ea:1a:2f:b1:29:b5:
                    98:30:c6:f1:05:e9:32:d9:47:81:31:a1:c4:df:8c:21:
                    2c:68:6e:b2:9b:66:ff:4f:be:f8:b0:25:3e:04:6f:ca:
                    a1:4d:73:3f:e8:62:02:30:04:05:26:24:4f:f2:7a:73:
                    48:15:ba:46:67:d1:d2:c6:de:7f:c7:a2:22:5e:36:76:
                    17:44:d8:b3:f1:e4:0a:a6:bc:5d:92:42:53:02:b9:4c:
                    d7:ce:26:1f:96:35:54:28:9e:be:63:e0:ca:d7:81:7e:
                    7e:14:51:f7:b3:84:d0:b1:97:38:65:88:a8:e8:60:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RFC822 Name: "rfc822@name.tld"
                DNS name: "test.com"
                IP Address:
                    87:07:31:2e:32:2e:33:2e:34
                Registered ID: OID.2.955.79.73.68.46.48.46.50.46.50.49.51
                Reasons:
                    80
                    (7 least significant bits unused)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        36:b5:f0:c0:55:97:3c:ee:79:a6:28:ca:d0:9d:c9:88:
        a3:b0:8f:ac:c9:5a:48:26:9b:6a:f0:50:b0:2a:6d:70:
        30:d6:a3:3e:d2:b4:07:62:da:c7:98:8c:ac:fd:68:00:
        ef:eb:4b:5f:df:21:46:c6:20:f3:52:3a:c8:00:43:9a:
        b2:7b:19:75:69:a2:a1:78:77:fb:62:7b:3f:ba:2a:ac:
        64:aa:ac:0e:b5:95:c1:b2:99:51:7b:0c:ad:fa:c1:13:
        2e:bf:e5:1f:5f:e4:c7:a0:e3:47:94:b8:04:86:ec:68:
        7d:15:b0:4a:c6:72:39:73:ee:88:51:52:4e:e8:1e:8d:
        f9:cf:65:f1:63:f6:90:e2:da:18:c1:cb:23:30:a4:97:
        35:77:8f:ea:4d:e9:2c:b7:82:49:8a:3b:13:6a:17:71:
        d4:a9:68:70:1c:c9:d9:d5:68:47:48:99:60:b3:a5:56:
        f2:f3:83:fb:47:cf:32:5d:ee:8b:62:ac:70:e9:78:26:
        c7:98:93:41:41:d9:cd:b6:34:90:b5:9c:bd:64:ed:81:
        11:e3:77:ec:5f:5d:92:17:cf:03:35:d9:9b:65:6d:60:
        30:a2:a0:2d:d4:82:b8:2b:3c:e6:c4:81:5e:51:45:31:
        a1:40:8b:d9:1d:c3:5c:fd:cd:ef:a3:78:f3:e8:3d:aa
    Fingerprint (SHA-256):
        0E:47:4F:45:24:AB:76:94:EB:50:73:D2:F0:64:3B:59:36:BE:20:11:DE:A0:D9:2A:69:63:04:72:C3:D3:D5:4E
    Fingerprint (SHA1):
        30:10:DD:7D:DE:8B:04:1E:23:CD:FC:1B:BF:98:45:F1:86:26:A3:BF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #296: CRL Distribution Points Extension (7) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -S -n TestExt8 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt8, E=TestExt8@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
2
SN=asdfsdf
4
3
test.com
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > Enter the relative name: 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -L -n TestExt8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:c9:8b
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sun Aug 06 23:43:33 2017
            Not After : Mon Nov 06 23:43:33 2017
        Subject: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:07:85:99:63:ff:d5:1f:cd:2c:21:1f:af:7b:f0:83:
                    e1:82:e5:23:3f:e6:fc:fe:62:61:61:f0:53:95:e7:5d:
                    4b:28:07:be:1a:5f:9c:12:39:87:b7:1f:ea:23:93:8d:
                    4e:77:16:48:b5:34:18:0d:2c:62:8e:2c:86:df:8a:8f:
                    e7:ce:72:43:90:f7:55:4f:56:dd:11:7e:dd:98:97:0b:
                    f7:bc:ac:af:7f:3b:fc:6c:5f:db:02:4b:fa:1c:97:b2:
                    35:20:b4:14:8c:cd:a8:1b:cf:67:a0:3a:bc:ec:94:df:
                    26:ab:ee:b7:ab:53:50:e4:95:32:a3:28:6c:6d:77:86:
                    a0:39:6a:86:e9:f2:ad:3c:9b:51:cf:7b:bb:f8:ca:ed:
                    83:9c:da:b5:d6:a3:20:42:a4:04:98:40:a7:73:c8:fd:
                    f4:50:b3:f7:ee:6a:7f:8f:b8:46:2f:80:ef:ac:2f:e9:
                    eb:3a:10:cb:58:95:c4:b2:c5:ec:2f:c6:2a:61:62:54:
                    6b:33:81:8d:7c:da:5b:4c:36:29:ae:bb:80:16:e4:38:
                    3b:fd:9d:17:24:cd:7e:19:d6:cc:6e:b0:da:57:c8:ff:
                    5f:8b:55:4e:0e:d0:c5:a3:f6:ce:7f:3f:f4:ae:b7:49:
                    25:e6:45:2a:98:a3:87:ee:4c:56:82:65:94:2f:69:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RDN: "SN=asdfsdf"
                Reasons:
                    08
                    (7 least significant bits unused)
                CRL issuer: 
                    DNS name: "test.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:a9:32:4e:34:be:18:02:dc:61:37:21:cd:dd:03:60:
        fe:58:ff:f7:78:45:6c:45:e8:83:31:ab:d7:8b:f5:84:
        d0:21:00:c9:11:98:6f:8d:a8:0d:87:26:1e:a4:40:42:
        17:ee:0b:c2:cf:12:c7:5d:5f:ab:44:04:d8:91:c2:c6:
        d3:34:91:e7:c7:f5:23:06:19:a7:5a:89:15:ae:9b:cb:
        de:92:d7:b7:3e:2f:bf:ef:08:32:df:c6:0e:bd:e0:45:
        80:1a:32:b6:9f:8b:e5:7d:e0:c2:54:a7:a3:53:4a:6b:
        65:e3:cd:c8:df:e2:21:0e:a7:47:f3:b2:ae:9a:9f:83:
        4d:70:da:6c:39:bd:ca:01:ef:06:1c:d7:e1:e2:fa:71:
        24:62:19:12:94:21:09:6b:78:6a:47:df:80:2c:4a:60:
        6b:4b:68:22:6c:b7:05:29:4d:32:2a:5f:3e:a6:23:ae:
        15:bf:7a:c5:94:0d:62:ed:1c:88:53:27:ce:7e:30:ca:
        94:19:96:23:2d:71:2e:f7:31:4a:9f:63:22:e5:b9:1f:
        22:d8:11:16:8b:d1:4c:ae:3c:6f:22:a8:a4:9b:02:9f:
        2c:9a:35:e5:ac:71:d7:2d:7b:14:79:a3:59:88:75:38:
        d9:19:44:c1:fa:12:eb:15:80:89:f8:f4:84:0e:57:10
    Fingerprint (SHA-256):
        F3:43:2D:AC:A0:3E:E6:16:2B:03:4B:8F:C9:14:75:E3:5A:F8:1D:76:4C:D9:4E:45:60:49:3C:EE:B5:A0:BD:7F
    Fingerprint (SHA1):
        3A:4F:F2:99:97:72:AE:06:67:EB:D1:4D:35:E0:1C:B4:CD:0A:7D:E8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #297: CRL Distribution Points Extension (8) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -S -n TestExt9 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt9, E=TestExt9@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -5 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
0
1
2
10
n
Generating key.  This may take a few moments...
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -L -n TestExt9
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:c9:8b
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sun Aug 06 23:43:33 2017
            Not After : Mon Nov 06 23:43:33 2017
        Subject: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:1e:d6:23:90:16:c2:0e:0f:e9:90:06:85:ab:11:fd:
                    62:f9:c5:53:dc:85:68:38:d7:bc:07:26:01:ed:de:14:
                    49:19:70:bd:8e:2b:01:9e:de:4b:db:8b:54:6f:ce:40:
                    74:21:3d:46:4f:21:d8:1e:a0:86:20:06:54:0a:ed:53:
                    79:d4:68:50:96:cf:e4:7f:84:83:26:41:f7:91:68:71:
                    61:d7:32:99:ab:cb:48:76:52:bb:d1:24:a7:71:c0:3f:
                    87:80:e5:e1:00:40:c7:88:08:7a:a2:f9:b1:59:8d:d5:
                    2f:18:58:a2:09:17:9d:ec:03:93:af:df:eb:d3:fa:59:
                    0d:46:10:de:d2:e6:2f:5b:30:ce:cb:d7:e9:8a:14:11:
                    8f:e9:e5:a4:6d:01:22:6a:96:fd:04:75:00:5a:7a:2b:
                    e7:80:9f:e5:dd:4d:fb:b5:12:f6:b2:7e:47:a3:21:42:
                    b5:59:b7:44:a2:06:bc:fb:12:4e:1d:f0:93:06:92:c0:
                    18:e1:59:df:75:9a:bc:26:61:48:ac:ab:11:c4:dd:4f:
                    7e:73:78:fc:25:35:c1:71:36:c0:e2:e5:23:48:68:90:
                    76:3c:2b:05:ea:ef:43:90:86:17:1c:45:ac:78:40:27:
                    00:98:59:bd:58:b4:64:2f:78:0e:08:5c:68:22:9b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL Client,SSL Server,S/MIME>
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        11:de:a3:07:eb:8c:f3:76:55:3f:2f:75:c5:ff:5e:63:
        26:4f:fe:be:84:ee:a2:c0:fd:81:9b:77:3c:59:70:23:
        3a:6b:2f:8e:0c:58:ed:c8:71:3a:d7:c8:d4:31:0a:4a:
        a1:de:e5:aa:40:39:a5:17:ee:74:7e:2c:53:fd:af:3f:
        62:7c:38:84:39:a1:65:66:b9:2a:25:61:5d:5f:04:4f:
        ab:94:94:70:54:51:05:6f:17:a7:54:c3:0c:d2:8c:b1:
        c9:b8:08:6c:33:ba:da:4d:76:b9:7b:d3:2f:5a:40:71:
        1d:85:87:ca:09:74:1b:ea:fd:34:96:ff:2b:b3:73:e6:
        d4:fd:e5:fd:97:2f:14:a9:5e:b0:50:dd:74:ca:97:78:
        1c:e0:fa:97:96:06:6c:b5:ac:33:df:29:c8:7b:81:62:
        0b:b1:5d:a6:ad:03:38:da:e3:d4:36:8f:2d:f6:36:3c:
        52:1d:f3:c6:0d:6a:e5:a9:98:86:6c:56:8a:ba:26:44:
        cc:d0:44:3e:85:64:12:ab:dd:1d:88:11:40:11:63:ea:
        26:0e:c8:0d:37:54:93:74:1f:e9:49:71:f4:24:55:d6:
        78:78:ef:33:61:65:07:6f:f3:83:b6:06:58:5e:37:19:
        bc:5e:f9:bd:a8:d5:e8:af:c6:da:21:02:5f:76:7f:33
    Fingerprint (SHA-256):
        97:8E:A1:36:5B:04:E2:F7:C6:F2:90:C9:D9:84:97:5E:2E:E3:38:43:BA:82:A6:F7:52:57:B2:8F:48:BA:88:DE
    Fingerprint (SHA1):
        5B:A8:3E:24:3C:6D:EA:8C:EB:9F:EC:72:4C:9A:65:1F:0D:AB:CC:F7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #298: Certificate Type Extension (9) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -S -n TestExt10 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt10, E=TestExt10@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -6 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -L -n TestExt10
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:c9:8c
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Sun Aug 06 23:43:34 2017
            Not After : Mon Nov 06 23:43:34 2017
        Subject: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:3b:51:4b:31:2f:4e:00:81:98:c7:e7:41:84:26:b0:
                    01:aa:07:71:8c:4e:d4:96:7a:cd:95:a0:45:e8:86:1a:
                    ee:34:75:5f:dd:97:98:1d:1a:9d:99:67:a1:f2:f5:16:
                    5e:1c:3f:71:4a:d7:4b:82:49:99:42:cb:63:a1:6a:e1:
                    29:fc:e9:b0:0f:52:0f:a5:ce:89:bc:35:7d:c5:ce:22:
                    7d:f7:30:de:89:5e:33:25:55:46:85:b6:dd:a0:4d:77:
                    fa:fd:e1:a3:04:8b:be:fb:54:95:2f:89:76:a4:fe:ac:
                    90:80:4e:a4:3e:f4:0f:ed:9d:30:ac:c1:cb:94:85:4a:
                    a9:ed:1d:89:7c:8d:f4:35:30:30:85:40:99:8c:60:10:
                    d9:e3:71:e2:f6:60:aa:78:44:b1:e6:4e:28:2c:95:dc:
                    8c:1e:6d:3b:14:7c:32:23:a4:6a:ce:30:4c:52:70:a5:
                    65:02:2c:cd:a6:37:1f:52:a8:8f:fc:03:14:49:5d:30:
                    f9:3f:36:6a:66:4d:70:0f:6d:aa:d5:01:f8:23:96:4b:
                    02:e8:5f:d1:f1:d2:d7:6c:f7:b1:42:66:45:40:3a:b2:
                    12:83:98:27:4a:9a:14:9b:55:11:42:66:02:3f:58:07:
                    0a:29:79:34:28:21:1c:68:12:34:38:89:54:04:30:45
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Extended Key Usage
            Critical: True
                TLS Web Server Authentication Certificate
                TLS Web Client Authentication Certificate
                Code Signing Certificate
                E-Mail Protection Certificate
                Time Stamping Certifcate
                OCSP Responder Certificate
                Strong Crypto Export Approved
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:8e:30:e4:41:af:b6:82:99:3c:1b:dc:42:ec:d9:5f:
        ea:ba:5e:6a:66:35:a4:17:6e:be:65:9d:6b:c7:ed:51:
        4c:bc:7a:5e:db:66:7e:02:09:1b:e1:38:14:24:32:61:
        82:8a:5a:82:ea:92:c9:99:cb:b7:80:60:83:cf:84:83:
        1f:5e:51:07:c4:ff:e9:27:9c:be:74:f2:92:c2:a7:df:
        03:ff:a2:92:44:ec:1e:d7:aa:32:44:de:c7:3d:2f:04:
        8b:a8:ba:bf:f9:27:de:43:c3:08:20:bb:c3:97:92:fd:
        ad:33:73:0f:63:d6:cd:d7:10:70:c9:58:f5:65:56:9d:
        b5:3d:29:e5:24:4d:c5:2b:5f:03:7c:9f:c1:3b:89:2e:
        40:ff:87:cc:84:57:f6:47:73:5e:8c:4e:cc:f6:5d:51:
        32:cf:a1:b1:3d:91:23:a5:b7:32:7d:1d:d5:86:ab:b7:
        6c:d7:21:38:26:06:ad:43:b8:65:35:32:ac:09:82:54:
        dc:7e:a9:12:54:6b:b6:66:96:e4:2f:b7:13:d4:e0:73:
        b3:a4:b9:d5:f7:8e:9e:f3:6e:b6:41:7e:c6:36:09:b7:
        dd:8d:d6:1b:a0:8a:a9:47:f5:70:36:3a:a7:1f:f0:ae:
        8d:7d:53:af:9e:24:35:b2:21:28:ba:2f:a4:81:b2:52
    Fingerprint (SHA-256):
        B1:89:73:F9:60:A5:CB:AA:24:75:B1:FB:01:E1:8B:24:51:E6:5B:02:D1:C5:8E:C2:32:D7:92:D0:2E:4E:5F:36
    Fingerprint (SHA1):
        3E:6E:55:A2:E4:0A:3E:05:6E:85:B3:5A:CB:4C:1F:3F:FD:93:AE:81
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #299: Extended Key Usage Extension (10) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -S -n TestExt11 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -L -n TestExt11
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:c9:8c
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Sun Aug 06 23:43:34 2017
            Not After : Mon Nov 06 23:43:34 2017
        Subject: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:ec:49:03:2c:38:ef:24:d2:2d:8a:73:c8:f9:c0:d0:
                    00:04:27:05:4f:95:9b:b5:de:e1:5f:2f:55:c8:82:37:
                    d4:f3:cd:33:51:fc:b6:fd:c3:71:3f:84:81:5f:0c:92:
                    c0:7f:21:57:98:74:88:da:77:94:1d:f5:ba:6f:12:78:
                    6b:c8:af:19:54:e8:bb:57:8e:4f:ba:94:a3:8f:18:d6:
                    b6:86:1d:86:af:c0:f5:6b:f1:71:d7:dd:bd:09:db:77:
                    61:0d:5e:f5:28:94:81:f7:13:37:11:61:c1:c1:8b:ba:
                    f1:45:25:b8:1b:8e:9e:f2:04:f6:74:54:41:64:fd:ed:
                    e6:2c:26:b6:61:22:ff:d5:31:1b:c3:7a:42:b7:b3:45:
                    44:be:07:59:5e:6e:37:52:3a:45:17:b6:98:de:bd:d8:
                    9c:27:5c:5e:8f:68:8a:66:9f:82:e7:c3:05:39:7d:b6:
                    1e:a2:d5:a1:84:e5:98:8c:7c:d1:19:08:42:6e:bf:6c:
                    33:98:c2:f3:47:b4:34:e7:6f:dc:e1:05:3b:42:44:6c:
                    0b:1c:54:cb:4c:04:f6:e3:0d:c7:d5:85:0c:76:64:16:
                    b1:0f:9a:27:89:e3:95:34:78:1a:c9:24:fa:fd:6d:e1:
                    66:21:7e:64:13:f4:b2:5b:53:76:2f:7f:27:60:ae:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        03:fc:66:b6:70:87:bf:35:aa:77:b8:97:c1:d1:f6:93:
        9f:b7:b6:d6:2d:c1:14:76:b0:23:e8:ba:98:e7:d6:2b:
        5f:82:38:16:f8:2a:a9:10:80:a9:3d:ba:49:42:cc:2c:
        f3:ae:8d:80:8c:f6:e3:62:8e:37:05:68:2c:b0:d7:e4:
        63:22:36:4b:8b:94:85:00:8b:70:1a:c3:b3:8b:41:e5:
        5b:9c:0b:4e:7c:dc:23:cd:a0:c2:28:af:e0:87:c0:48:
        39:fb:17:42:f1:aa:99:f6:82:fc:8c:7e:75:09:0e:5b:
        14:f8:57:93:d1:a0:ba:0d:79:f7:9e:cf:cf:cf:de:23:
        2b:22:bc:30:f4:a8:9a:e8:96:cb:e1:3d:2f:f4:19:ac:
        1d:61:ba:f5:50:81:8a:83:5f:d5:e2:5d:bf:8d:00:6c:
        9c:79:2a:19:53:63:e8:69:ab:dc:e6:1c:d4:a3:9b:ec:
        27:a0:64:08:8c:e0:d5:f4:37:4c:7b:8b:b2:98:7b:c6:
        dc:c5:75:56:b5:59:58:6a:1d:42:5a:98:71:e3:a3:1a:
        af:6a:ce:7f:7d:d2:2b:17:25:e3:82:08:f8:c0:72:be:
        20:45:22:48:bb:c5:f1:ef:8b:f6:52:bb:e5:f5:54:7a:
        db:1e:16:c2:b0:f5:73:ae:5c:47:48:f9:21:6f:9d:d5
    Fingerprint (SHA-256):
        7D:16:5B:B0:75:DE:2B:F3:9F:B7:0F:0E:B2:96:CE:9B:68:0D:3E:AA:D6:59:99:D7:D3:BD:78:B3:4F:E1:11:26
    Fingerprint (SHA1):
        C6:53:AF:A9:73:4B:CF:FA:46:F9:59:72:AE:DB:E7:4C:F9:3B:97:DE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #300: Certificate Key Usage Extension (11) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #301: create cert with invalid SAN parameter (12) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com,dns:www.example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #302: create cert with invalid SAN parameter (13) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN dns:example.com,dns:www.example.com
Generating key.  This may take a few moments...
cert.sh: #303: create cert with valid SAN parameter (14) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:c9:8d
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Sun Aug 06 23:43:34 2017
            Not After : Mon Nov 06 23:43:34 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:47:ad:a0:07:b4:35:b3:9e:72:9f:f4:00:09:09:19:
                    84:f4:ae:f0:b9:aa:3e:49:da:5f:fc:04:60:8b:59:d2:
                    d6:7f:f9:79:88:9d:e3:f1:b9:64:77:bf:6b:73:1e:fc:
                    88:37:f1:4c:39:44:18:29:ba:17:39:1e:4c:2a:0f:8a:
                    ce:62:da:0a:2e:9c:40:1e:34:d5:30:6b:22:5f:5a:ba:
                    64:b3:3f:fb:ca:16:64:dd:fa:58:fb:48:13:19:48:72:
                    a1:5a:a0:09:c7:01:80:be:24:7e:75:4f:5d:23:e1:fd:
                    85:8d:00:ba:4f:50:ac:76:85:50:b5:12:40:7a:94:eb:
                    70:62:58:0e:25:04:9b:9c:a4:75:6e:82:0b:f8:19:12:
                    d4:b2:31:20:66:52:99:fe:82:eb:d3:6c:c3:3f:e4:c8:
                    26:c8:92:ca:67:2e:df:3d:04:59:90:36:e3:92:7e:21:
                    11:98:0b:0d:38:4d:a8:67:5a:e9:91:a0:fb:b5:a0:dc:
                    a3:9a:51:f7:3d:ff:3b:3d:1a:7c:d3:c5:91:4e:dc:ef:
                    29:d2:58:fa:6e:0c:e9:c9:33:91:97:4d:6c:59:ae:3c:
                    6e:65:81:85:bf:08:b5:39:a7:96:22:80:c4:49:dc:49:
                    6e:9a:36:76:04:c1:95:9c:9e:59:65:5a:50:03:17:97
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9e:cf:f3:a3:98:ec:e8:f8:aa:68:aa:49:3f:cd:4b:bb:
        40:1a:7c:e7:32:a6:a5:2b:83:39:c3:30:61:37:74:d3:
        32:53:30:e7:4a:df:5b:25:18:9c:c7:1b:f5:6b:8a:ef:
        a1:2c:b1:36:20:d4:2c:30:2b:03:43:81:84:85:ef:b9:
        eb:d9:3a:37:23:16:25:a4:96:68:03:f7:bc:06:32:00:
        d3:93:a3:6f:01:56:93:f4:70:4f:4e:da:8a:60:fd:f9:
        78:4a:2b:88:3c:1c:7e:c5:14:8a:e3:14:23:15:92:73:
        42:93:33:47:61:68:da:a0:22:ed:4d:2b:a2:d5:55:79:
        27:13:9b:07:df:a8:41:5a:89:78:37:19:de:04:69:70:
        f7:05:ea:cd:d6:ec:bb:5c:5e:e4:30:8d:7b:3b:3e:39:
        43:15:86:a2:10:dd:e6:57:6e:86:d5:3f:fb:3a:60:04:
        3d:38:ca:73:55:11:8f:1d:7a:85:b5:d5:25:2d:30:09:
        04:e0:38:a3:2f:2d:06:d6:e0:1b:57:f1:8c:b6:66:fa:
        43:8c:15:14:54:7e:87:72:4e:d9:c7:84:18:b4:fa:86:
        c3:f0:9d:ec:c3:7f:26:6b:a3:d0:a1:f0:2b:ed:57:00:
        01:61:43:e2:f0:7e:be:8e:0a:ba:e9:6a:1d:bf:f7:9b
    Fingerprint (SHA-256):
        22:CA:4E:66:92:72:14:DF:39:A2:90:A7:63:4F:E8:E1:F9:CB:D6:44:8D:72:02:06:E4:2F:8D:22:64:EC:90:71
    Fingerprint (SHA1):
        A1:62:D3:FB:AC:F0:14:54:89:54:09:54:49:5B:80:35:2E:8E:50:68
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #304: create cert with valid SAN parameter (15) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN --dump-ext-val 2.5.29.17
writing output to /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/sanext.der
cert.sh: #305: dump extension 2.5.29.17 to file /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/sanext.der (16) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #306: create cert with valid SAN parameter (17) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #307: expect failure to list cert, because we deleted it (18) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/sanext.der: error 0: Success
cert.sh: #308: create cert with invalid generic ext parameter (19) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/sanext.der: error 0: Success
cert.sh: #309: create cert with invalid generic ext parameter (20) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/sanext.der: error 0: Success
cert.sh: #310: create cert with invalid generic ext parameter (21) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric 2.5.29.17:not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/sanext.der
Generating key.  This may take a few moments...
cert.sh: #311: create cert with valid generic ext parameter (22) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:c9:8e
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Sun Aug 06 23:43:35 2017
            Not After : Mon Nov 06 23:43:35 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:00:3c:18:a1:d4:01:c2:75:a9:6a:27:0b:0f:f4:89:
                    54:e4:55:2f:20:80:11:12:70:e7:85:fb:be:06:33:9b:
                    38:21:7e:a3:a4:96:d2:bc:19:f8:38:09:b0:d8:13:fa:
                    84:b2:a9:aa:a1:df:67:bb:90:bd:00:96:38:8f:af:b6:
                    7b:85:5f:c0:e9:5f:f5:2b:76:fb:9f:57:c8:88:e1:4c:
                    08:75:91:3f:b2:b3:50:a9:35:6d:0d:5d:64:7b:12:ca:
                    52:1c:ca:37:2b:ef:30:8e:5e:c5:e3:31:4f:f6:a8:bc:
                    20:16:4f:60:25:c0:81:19:16:1a:e8:6a:a8:3b:d7:19:
                    96:01:f8:e6:ad:72:f6:89:cb:8d:0f:66:02:c7:4b:16:
                    71:14:7c:39:4f:10:5c:b6:16:5f:7e:cc:65:0e:dc:ac:
                    d0:72:97:3d:c6:63:a7:1e:08:05:5b:5a:75:cd:1f:7a:
                    fd:ce:a9:df:d9:9e:46:7d:0e:20:fb:cb:43:61:63:99:
                    3f:5f:95:0c:1f:b4:fd:4b:bd:76:c3:74:34:9d:71:20:
                    82:9e:81:7f:7d:d4:98:5f:fe:3f:72:42:a9:48:5f:9a:
                    57:fd:d4:11:8e:e7:c1:1c:39:6f:02:71:7d:b6:ef:f1:
                    e1:3b:58:d6:c2:13:d6:3e:d0:83:2a:99:9d:06:75:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        94:1f:8d:cd:39:78:71:41:2d:25:fb:9c:13:05:39:ff:
        59:72:85:0a:ed:9c:fe:1f:a9:a0:a4:86:2a:ee:cc:61:
        3f:63:7d:42:39:82:ad:1c:a7:24:ec:2e:93:fa:64:70:
        eb:c5:fa:eb:0d:bc:ac:8b:8c:94:15:8c:7b:2a:1b:f2:
        c9:6f:d5:c7:52:f6:a4:64:40:a9:6d:04:dd:a4:91:5f:
        61:0a:ff:f4:10:e1:f0:2a:71:7e:eb:15:8a:0c:86:63:
        7f:54:ab:b4:15:8e:58:80:ef:97:43:6c:ed:4e:93:ab:
        7a:33:b7:78:6a:13:3b:67:df:d1:a5:b5:c3:a4:de:ac:
        9f:86:d0:9f:27:82:ce:5a:a3:fb:17:a3:51:2b:55:b1:
        48:ef:e4:62:b6:1e:be:99:4d:44:ec:67:e6:c7:3a:ee:
        9a:3e:a1:89:68:7c:d7:5c:97:4d:0a:0e:06:a0:64:aa:
        cb:66:cd:8f:7b:4c:9c:4c:ea:b0:e7:2a:1f:ab:e4:9a:
        93:5d:be:81:db:2b:1b:8d:50:ef:99:20:9b:ee:35:0f:
        af:05:73:a6:2a:31:c7:97:c0:bb:ab:e3:02:bb:11:0a:
        12:32:1f:29:2c:32:f5:88:31:c4:67:fc:32:af:e4:3a:
        4b:28:a1:50:cc:ea:0b:2d:85:97:c3:04:0c:a0:f2:e4
    Fingerprint (SHA-256):
        F9:31:38:5D:CA:C6:B3:28:78:A4:DC:C7:3A:83:7C:3A:F2:3F:1F:67:78:F0:52:D0:A9:7D:1E:C9:3D:00:8E:1C
    Fingerprint (SHA1):
        49:28:F6:D2:43:8D:C9:68:D1:C8:8F:6E:47:A0:F0:D1:7A:E7:45:1B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #312: create cert with valid generic ext parameter (23) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #313: create cert with valid generic ext parameter (24) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #314: expect failure to list cert, because we deleted it (25) - PASSED
cert.sh: Create A Password Test Cert  ==============
cert.sh: Create A Password Test Ca  --------
cert.sh: Creating a CA Certificate PasswordCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dbpass
cert.sh: Creating CA Cert DB --------------------------
certutil -s "CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dbpass -f ../tests.pw
cert.sh: #315: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dbpass
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #316: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert PasswordCA  --------------------------
certutil -s "CN=NSS Password Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dbpass -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #317: Creating CA Cert PasswordCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n PasswordCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dbpass -o root.cert
cert.sh: #318: Exporting Root Cert - PASSED
cert.sh: Changing password on Password Test Cert's Cert DB --------------------------
certutil -W -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dbpass -f ../tests.pw -@ ../tests.fipspw
Password changed successfully.
cert.sh: #319: Changing password on Password Test Cert's Cert DB - PASSED
cert.sh: Generate Certificate for Password Test Cert with new password --------------------------
certutil -s "CN=Password Test Cert, E=password@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCert -c PasswordCA -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dbpass -f ../tests.fipspw -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #320: Generate Certificate for Password Test Cert with new password - PASSED
cert.sh SUCCESS: PASSWORD passed
cert.sh: Verify Certificate for Password Test Cert with new password --------------------------
certutil -V -n PasswordCert -u S -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dbpass -f ../tests.fipspw
certutil: certificate is valid
cert.sh: #321: Verify Certificate for Password Test Cert with new password - PASSED
cert.sh: Creating Distrusted Certificate
cert.sh: Initializing Distrusted's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
cert.sh: #322: Initializing Distrusted's Cert DB - PASSED
cert.sh: Loading root cert module to Distrusted's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #323: Loading root cert module to Distrusted's Cert DB - PASSED
cert.sh: Import Root CA for Distrusted --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -i ../CA/TestCA.ca.cert
cert.sh: #324: Import Root CA for Distrusted - PASSED
cert.sh: Import DSA Root CA for Distrusted --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -i ../CA/TestCA-dsa.ca.cert
cert.sh: #325: Import DSA Root CA for Distrusted - PASSED
cert.sh: Import EC Root CA for Distrusted --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -i ../CA/TestCA-ec.ca.cert
cert.sh: #326: Import EC Root CA for Distrusted - PASSED
cert.sh: Generate Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #327: Generate Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's Request --------------------------
certutil -C -c TestCA -m 2000 -v 60 -d ../CA -i req -o Distrusted.cert -f ../tests.pw 
cert.sh: #328: Sign Distrusted's Request - PASSED
cert.sh: Import Distrusted's Cert --------------------------
certutil -A -n Distrusted -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #329: Import Distrusted's Cert - PASSED
cert.sh SUCCESS: Distrusted's Cert Created
cert.sh: Generate DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #330: Generate DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 2000 -v 60 -d ../CA -i req -o Distrusted-dsa.cert -f ../tests.pw 
cert.sh: #331: Sign Distrusted's DSA Request - PASSED
cert.sh: Import Distrusted's DSA Cert --------------------------
certutil -A -n Distrusted-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #332: Import Distrusted's DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #333: Generate mixed DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 22000 -v 60 -d ../CA -i req -o Distrusted-dsamixed.cert -f ../tests.pw 
cert.sh: #334: Sign Distrusted's DSA Request with RSA - PASSED
cert.sh: Import Distrusted's mixed DSA Cert --------------------------
certutil -A -n Distrusted-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #335: Import Distrusted's mixed DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #336: Generate EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request --------------------------
certutil -C -c TestCA-ec -m 2000 -v 60 -d ../CA -i req -o Distrusted-ec.cert -f ../tests.pw 
cert.sh: #337: Sign Distrusted's EC Request - PASSED
cert.sh: Import Distrusted's EC Cert --------------------------
certutil -A -n Distrusted-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #338: Import Distrusted's EC Cert - PASSED
cert.sh SUCCESS: Distrusted's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #339: Generate mixed EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request with RSA --------------------------
certutil -C -c TestCA -m 12000 -v 60 -d ../CA -i req -o Distrusted-ecmixed.cert -f ../tests.pw 
cert.sh: #340: Sign Distrusted's EC Request with RSA - PASSED
cert.sh: Import Distrusted's mixed EC Cert --------------------------
certutil -A -n Distrusted-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #341: Import Distrusted's mixed EC Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed EC Cert Created
cert.sh: Mark CERT as unstrusted --------------------------
certutil -M -n Distrusted -t p,p,p -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
cert.sh: #342: Mark CERT as unstrusted - PASSED
cert.sh: Creating Distrusted Intermediate
cert.sh: Creating a CA Certificate DistrustedCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA
cert.sh: Creating CA Cert DistrustedCA  --------------------------
certutil -s "CN=DistrustedCA, E=DistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n DistrustedCA -t ,, -v 600 -c TestCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2010
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Is this a critical extension [y/N]?
cert.sh: #343: Creating CA Cert DistrustedCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n DistrustedCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -o root.cert
cert.sh: #344: Exporting Root Cert - PASSED
cert.sh: Import Distrusted Intermediate --------------------------
certutil -A -n DistrustedCA -t p,p,p -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -i ../CA/DistrustedCA.ca.cert
cert.sh: #345: Import Distrusted Intermediate - PASSED
cert.sh: Generate Cert Request for Leaf Chained to Distrusted CA --------------------------
certutil -s "CN=LeafChainedToDistrustedCA, E=LeafChainedToDistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #346: Generate Cert Request for Leaf Chained to Distrusted CA - PASSED
cp: './req' and '/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA/req' are the same file
cert.sh: Sign LeafChainedToDistrustedCA's Request --------------------------
certutil -C -c DistrustedCA -m 100 -v 60 -d ../CA -i req -o LeafChainedToDistrustedCA.cert -f ../tests.pw
cert.sh: #347: Sign LeafChainedToDistrustedCA's Request - PASSED
cert.sh: Import LeafChainedToDistrustedCA's Cert  -t u,u,u --------------------------
certutil -A -n LeafChainedToDistrustedCA -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -i LeafChainedToDistrustedCA.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #348: Import LeafChainedToDistrustedCA's Cert  -t u,u,u - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Server --------------------------
certutil -V -n LeafChainedToDistrustedCA -u V -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #349: Verify LeafChainedToDistrustedCA Cert for SSL Server - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Client --------------------------
certutil -V -n LeafChainedToDistrustedCA -u C -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #350: Verify LeafChainedToDistrustedCA Cert for SSL Client - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u S -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #351: Verify LeafChainedToDistrustedCA Cert for Email signer - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email recipient --------------------------
certutil -V -n LeafChainedToDistrustedCA -u R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #352: Verify LeafChainedToDistrustedCA Cert for Email recipient - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for OCSP responder --------------------------
certutil -V -n LeafChainedToDistrustedCA -u O -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #353: Verify LeafChainedToDistrustedCA Cert for OCSP responder - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Object Signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u J -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #354: Verify LeafChainedToDistrustedCA Cert for Object Signer - PASSED
cert.sh: Verify Distrusted Cert for SSL Server --------------------------
certutil -V -n Distrusted -u V -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #355: Verify Distrusted Cert for SSL Server - PASSED
cert.sh: Verify Distrusted Cert for SSL Client --------------------------
certutil -V -n Distrusted -u C -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #356: Verify Distrusted Cert for SSL Client - PASSED
cert.sh: Verify Distrusted Cert for Email signer --------------------------
certutil -V -n Distrusted -u S -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #357: Verify Distrusted Cert for Email signer - PASSED
cert.sh: Verify Distrusted Cert for Email recipient --------------------------
certutil -V -n Distrusted -u R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #358: Verify Distrusted Cert for Email recipient - PASSED
cert.sh: Verify Distrusted Cert for OCSP responder --------------------------
certutil -V -n Distrusted -u O -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #359: Verify Distrusted Cert for OCSP responder - PASSED
cert.sh: Verify Distrusted Cert for Object Signer --------------------------
certutil -V -n Distrusted -u J -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #360: Verify Distrusted Cert for Object Signer - PASSED
cert.sh: OCSP response creation selftest
cert.sh: perform selftest --------------------------
ocspresp /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA serverCA chain-1-serverCA -f ../tests.pw
cert.sh: #361: perform selftest - PASSED
cert.sh: Creating Client CA Issued Certificates Range 40 - 52 ===
cert.sh: Generate Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #362: Generate Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o TestUser40.cert -f ../tests.pw 
cert.sh: #363: Sign TestUser40's Request - PASSED
cert.sh: Import TestUser40's Cert --------------------------
certutil -A -n TestUser40 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #364: Import TestUser40's Cert - PASSED
cert.sh SUCCESS: TestUser40's Cert Created
cert.sh: Generate DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #365: Generate DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o TestUser40-dsa.cert -f ../tests.pw 
cert.sh: #366: Sign TestUser40's DSA Request - PASSED
cert.sh: Import TestUser40's DSA Cert --------------------------
certutil -A -n TestUser40-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #367: Import TestUser40's DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #368: Generate mixed DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o TestUser40-dsamixed.cert -f ../tests.pw 
cert.sh: #369: Sign TestUser40's DSA Request with RSA - PASSED
cert.sh: Import TestUser40's mixed DSA Cert --------------------------
certutil -A -n TestUser40-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #370: Import TestUser40's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #371: Generate EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o TestUser40-ec.cert -f ../tests.pw 
cert.sh: #372: Sign TestUser40's EC Request - PASSED
cert.sh: Import TestUser40's EC Cert --------------------------
certutil -A -n TestUser40-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #373: Import TestUser40's EC Cert - PASSED
cert.sh SUCCESS: TestUser40's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #374: Generate mixed EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o TestUser40-ecmixed.cert -f ../tests.pw 
cert.sh: #375: Sign TestUser40's EC Request with RSA - PASSED
cert.sh: Import TestUser40's mixed EC Cert --------------------------
certutil -A -n TestUser40-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #376: Import TestUser40's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #377: Generate Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's Request --------------------------
certutil -C -c TestCA -m 41 -v 60 -d ../CA -i req -o TestUser41.cert -f ../tests.pw 
cert.sh: #378: Sign TestUser41's Request - PASSED
cert.sh: Import TestUser41's Cert --------------------------
certutil -A -n TestUser41 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #379: Import TestUser41's Cert - PASSED
cert.sh SUCCESS: TestUser41's Cert Created
cert.sh: Generate DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #380: Generate DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 41 -v 60 -d ../CA -i req -o TestUser41-dsa.cert -f ../tests.pw 
cert.sh: #381: Sign TestUser41's DSA Request - PASSED
cert.sh: Import TestUser41's DSA Cert --------------------------
certutil -A -n TestUser41-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #382: Import TestUser41's DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #383: Generate mixed DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20041 -v 60 -d ../CA -i req -o TestUser41-dsamixed.cert -f ../tests.pw 
cert.sh: #384: Sign TestUser41's DSA Request with RSA - PASSED
cert.sh: Import TestUser41's mixed DSA Cert --------------------------
certutil -A -n TestUser41-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #385: Import TestUser41's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #386: Generate EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request --------------------------
certutil -C -c TestCA-ec -m 41 -v 60 -d ../CA -i req -o TestUser41-ec.cert -f ../tests.pw 
cert.sh: #387: Sign TestUser41's EC Request - PASSED
cert.sh: Import TestUser41's EC Cert --------------------------
certutil -A -n TestUser41-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #388: Import TestUser41's EC Cert - PASSED
cert.sh SUCCESS: TestUser41's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #389: Generate mixed EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10041 -v 60 -d ../CA -i req -o TestUser41-ecmixed.cert -f ../tests.pw 
cert.sh: #390: Sign TestUser41's EC Request with RSA - PASSED
cert.sh: Import TestUser41's mixed EC Cert --------------------------
certutil -A -n TestUser41-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #391: Import TestUser41's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #392: Generate Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's Request --------------------------
certutil -C -c TestCA -m 42 -v 60 -d ../CA -i req -o TestUser42.cert -f ../tests.pw 
cert.sh: #393: Sign TestUser42's Request - PASSED
cert.sh: Import TestUser42's Cert --------------------------
certutil -A -n TestUser42 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #394: Import TestUser42's Cert - PASSED
cert.sh SUCCESS: TestUser42's Cert Created
cert.sh: Generate DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #395: Generate DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 42 -v 60 -d ../CA -i req -o TestUser42-dsa.cert -f ../tests.pw 
cert.sh: #396: Sign TestUser42's DSA Request - PASSED
cert.sh: Import TestUser42's DSA Cert --------------------------
certutil -A -n TestUser42-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #397: Import TestUser42's DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #398: Generate mixed DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20042 -v 60 -d ../CA -i req -o TestUser42-dsamixed.cert -f ../tests.pw 
cert.sh: #399: Sign TestUser42's DSA Request with RSA - PASSED
cert.sh: Import TestUser42's mixed DSA Cert --------------------------
certutil -A -n TestUser42-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #400: Import TestUser42's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #401: Generate EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request --------------------------
certutil -C -c TestCA-ec -m 42 -v 60 -d ../CA -i req -o TestUser42-ec.cert -f ../tests.pw 
cert.sh: #402: Sign TestUser42's EC Request - PASSED
cert.sh: Import TestUser42's EC Cert --------------------------
certutil -A -n TestUser42-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #403: Import TestUser42's EC Cert - PASSED
cert.sh SUCCESS: TestUser42's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #404: Generate mixed EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10042 -v 60 -d ../CA -i req -o TestUser42-ecmixed.cert -f ../tests.pw 
cert.sh: #405: Sign TestUser42's EC Request with RSA - PASSED
cert.sh: Import TestUser42's mixed EC Cert --------------------------
certutil -A -n TestUser42-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #406: Import TestUser42's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #407: Generate Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's Request --------------------------
certutil -C -c TestCA -m 43 -v 60 -d ../CA -i req -o TestUser43.cert -f ../tests.pw 
cert.sh: #408: Sign TestUser43's Request - PASSED
cert.sh: Import TestUser43's Cert --------------------------
certutil -A -n TestUser43 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #409: Import TestUser43's Cert - PASSED
cert.sh SUCCESS: TestUser43's Cert Created
cert.sh: Generate DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #410: Generate DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 43 -v 60 -d ../CA -i req -o TestUser43-dsa.cert -f ../tests.pw 
cert.sh: #411: Sign TestUser43's DSA Request - PASSED
cert.sh: Import TestUser43's DSA Cert --------------------------
certutil -A -n TestUser43-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #412: Import TestUser43's DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #413: Generate mixed DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20043 -v 60 -d ../CA -i req -o TestUser43-dsamixed.cert -f ../tests.pw 
cert.sh: #414: Sign TestUser43's DSA Request with RSA - PASSED
cert.sh: Import TestUser43's mixed DSA Cert --------------------------
certutil -A -n TestUser43-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #415: Import TestUser43's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #416: Generate EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request --------------------------
certutil -C -c TestCA-ec -m 43 -v 60 -d ../CA -i req -o TestUser43-ec.cert -f ../tests.pw 
cert.sh: #417: Sign TestUser43's EC Request - PASSED
cert.sh: Import TestUser43's EC Cert --------------------------
certutil -A -n TestUser43-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #418: Import TestUser43's EC Cert - PASSED
cert.sh SUCCESS: TestUser43's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #419: Generate mixed EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10043 -v 60 -d ../CA -i req -o TestUser43-ecmixed.cert -f ../tests.pw 
cert.sh: #420: Sign TestUser43's EC Request with RSA - PASSED
cert.sh: Import TestUser43's mixed EC Cert --------------------------
certutil -A -n TestUser43-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #421: Import TestUser43's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #422: Generate Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's Request --------------------------
certutil -C -c TestCA -m 44 -v 60 -d ../CA -i req -o TestUser44.cert -f ../tests.pw 
cert.sh: #423: Sign TestUser44's Request - PASSED
cert.sh: Import TestUser44's Cert --------------------------
certutil -A -n TestUser44 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #424: Import TestUser44's Cert - PASSED
cert.sh SUCCESS: TestUser44's Cert Created
cert.sh: Generate DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #425: Generate DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 44 -v 60 -d ../CA -i req -o TestUser44-dsa.cert -f ../tests.pw 
cert.sh: #426: Sign TestUser44's DSA Request - PASSED
cert.sh: Import TestUser44's DSA Cert --------------------------
certutil -A -n TestUser44-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #427: Import TestUser44's DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #428: Generate mixed DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20044 -v 60 -d ../CA -i req -o TestUser44-dsamixed.cert -f ../tests.pw 
cert.sh: #429: Sign TestUser44's DSA Request with RSA - PASSED
cert.sh: Import TestUser44's mixed DSA Cert --------------------------
certutil -A -n TestUser44-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #430: Import TestUser44's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #431: Generate EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request --------------------------
certutil -C -c TestCA-ec -m 44 -v 60 -d ../CA -i req -o TestUser44-ec.cert -f ../tests.pw 
cert.sh: #432: Sign TestUser44's EC Request - PASSED
cert.sh: Import TestUser44's EC Cert --------------------------
certutil -A -n TestUser44-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #433: Import TestUser44's EC Cert - PASSED
cert.sh SUCCESS: TestUser44's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #434: Generate mixed EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10044 -v 60 -d ../CA -i req -o TestUser44-ecmixed.cert -f ../tests.pw 
cert.sh: #435: Sign TestUser44's EC Request with RSA - PASSED
cert.sh: Import TestUser44's mixed EC Cert --------------------------
certutil -A -n TestUser44-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #436: Import TestUser44's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #437: Generate Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's Request --------------------------
certutil -C -c TestCA -m 45 -v 60 -d ../CA -i req -o TestUser45.cert -f ../tests.pw 
cert.sh: #438: Sign TestUser45's Request - PASSED
cert.sh: Import TestUser45's Cert --------------------------
certutil -A -n TestUser45 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #439: Import TestUser45's Cert - PASSED
cert.sh SUCCESS: TestUser45's Cert Created
cert.sh: Generate DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #440: Generate DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 45 -v 60 -d ../CA -i req -o TestUser45-dsa.cert -f ../tests.pw 
cert.sh: #441: Sign TestUser45's DSA Request - PASSED
cert.sh: Import TestUser45's DSA Cert --------------------------
certutil -A -n TestUser45-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #442: Import TestUser45's DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #443: Generate mixed DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20045 -v 60 -d ../CA -i req -o TestUser45-dsamixed.cert -f ../tests.pw 
cert.sh: #444: Sign TestUser45's DSA Request with RSA - PASSED
cert.sh: Import TestUser45's mixed DSA Cert --------------------------
certutil -A -n TestUser45-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #445: Import TestUser45's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #446: Generate EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request --------------------------
certutil -C -c TestCA-ec -m 45 -v 60 -d ../CA -i req -o TestUser45-ec.cert -f ../tests.pw 
cert.sh: #447: Sign TestUser45's EC Request - PASSED
cert.sh: Import TestUser45's EC Cert --------------------------
certutil -A -n TestUser45-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #448: Import TestUser45's EC Cert - PASSED
cert.sh SUCCESS: TestUser45's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #449: Generate mixed EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10045 -v 60 -d ../CA -i req -o TestUser45-ecmixed.cert -f ../tests.pw 
cert.sh: #450: Sign TestUser45's EC Request with RSA - PASSED
cert.sh: Import TestUser45's mixed EC Cert --------------------------
certutil -A -n TestUser45-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #451: Import TestUser45's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #452: Generate Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's Request --------------------------
certutil -C -c TestCA -m 46 -v 60 -d ../CA -i req -o TestUser46.cert -f ../tests.pw 
cert.sh: #453: Sign TestUser46's Request - PASSED
cert.sh: Import TestUser46's Cert --------------------------
certutil -A -n TestUser46 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #454: Import TestUser46's Cert - PASSED
cert.sh SUCCESS: TestUser46's Cert Created
cert.sh: Generate DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #455: Generate DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 46 -v 60 -d ../CA -i req -o TestUser46-dsa.cert -f ../tests.pw 
cert.sh: #456: Sign TestUser46's DSA Request - PASSED
cert.sh: Import TestUser46's DSA Cert --------------------------
certutil -A -n TestUser46-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #457: Import TestUser46's DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #458: Generate mixed DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20046 -v 60 -d ../CA -i req -o TestUser46-dsamixed.cert -f ../tests.pw 
cert.sh: #459: Sign TestUser46's DSA Request with RSA - PASSED
cert.sh: Import TestUser46's mixed DSA Cert --------------------------
certutil -A -n TestUser46-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #460: Import TestUser46's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #461: Generate EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request --------------------------
certutil -C -c TestCA-ec -m 46 -v 60 -d ../CA -i req -o TestUser46-ec.cert -f ../tests.pw 
cert.sh: #462: Sign TestUser46's EC Request - PASSED
cert.sh: Import TestUser46's EC Cert --------------------------
certutil -A -n TestUser46-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #463: Import TestUser46's EC Cert - PASSED
cert.sh SUCCESS: TestUser46's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #464: Generate mixed EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10046 -v 60 -d ../CA -i req -o TestUser46-ecmixed.cert -f ../tests.pw 
cert.sh: #465: Sign TestUser46's EC Request with RSA - PASSED
cert.sh: Import TestUser46's mixed EC Cert --------------------------
certutil -A -n TestUser46-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #466: Import TestUser46's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #467: Generate Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's Request --------------------------
certutil -C -c TestCA -m 47 -v 60 -d ../CA -i req -o TestUser47.cert -f ../tests.pw 
cert.sh: #468: Sign TestUser47's Request - PASSED
cert.sh: Import TestUser47's Cert --------------------------
certutil -A -n TestUser47 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #469: Import TestUser47's Cert - PASSED
cert.sh SUCCESS: TestUser47's Cert Created
cert.sh: Generate DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #470: Generate DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 47 -v 60 -d ../CA -i req -o TestUser47-dsa.cert -f ../tests.pw 
cert.sh: #471: Sign TestUser47's DSA Request - PASSED
cert.sh: Import TestUser47's DSA Cert --------------------------
certutil -A -n TestUser47-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #472: Import TestUser47's DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #473: Generate mixed DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20047 -v 60 -d ../CA -i req -o TestUser47-dsamixed.cert -f ../tests.pw 
cert.sh: #474: Sign TestUser47's DSA Request with RSA - PASSED
cert.sh: Import TestUser47's mixed DSA Cert --------------------------
certutil -A -n TestUser47-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #475: Import TestUser47's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #476: Generate EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request --------------------------
certutil -C -c TestCA-ec -m 47 -v 60 -d ../CA -i req -o TestUser47-ec.cert -f ../tests.pw 
cert.sh: #477: Sign TestUser47's EC Request - PASSED
cert.sh: Import TestUser47's EC Cert --------------------------
certutil -A -n TestUser47-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #478: Import TestUser47's EC Cert - PASSED
cert.sh SUCCESS: TestUser47's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #479: Generate mixed EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10047 -v 60 -d ../CA -i req -o TestUser47-ecmixed.cert -f ../tests.pw 
cert.sh: #480: Sign TestUser47's EC Request with RSA - PASSED
cert.sh: Import TestUser47's mixed EC Cert --------------------------
certutil -A -n TestUser47-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #481: Import TestUser47's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #482: Generate Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's Request --------------------------
certutil -C -c TestCA -m 48 -v 60 -d ../CA -i req -o TestUser48.cert -f ../tests.pw 
cert.sh: #483: Sign TestUser48's Request - PASSED
cert.sh: Import TestUser48's Cert --------------------------
certutil -A -n TestUser48 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #484: Import TestUser48's Cert - PASSED
cert.sh SUCCESS: TestUser48's Cert Created
cert.sh: Generate DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #485: Generate DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 48 -v 60 -d ../CA -i req -o TestUser48-dsa.cert -f ../tests.pw 
cert.sh: #486: Sign TestUser48's DSA Request - PASSED
cert.sh: Import TestUser48's DSA Cert --------------------------
certutil -A -n TestUser48-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #487: Import TestUser48's DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #488: Generate mixed DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20048 -v 60 -d ../CA -i req -o TestUser48-dsamixed.cert -f ../tests.pw 
cert.sh: #489: Sign TestUser48's DSA Request with RSA - PASSED
cert.sh: Import TestUser48's mixed DSA Cert --------------------------
certutil -A -n TestUser48-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #490: Import TestUser48's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #491: Generate EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request --------------------------
certutil -C -c TestCA-ec -m 48 -v 60 -d ../CA -i req -o TestUser48-ec.cert -f ../tests.pw 
cert.sh: #492: Sign TestUser48's EC Request - PASSED
cert.sh: Import TestUser48's EC Cert --------------------------
certutil -A -n TestUser48-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #493: Import TestUser48's EC Cert - PASSED
cert.sh SUCCESS: TestUser48's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #494: Generate mixed EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10048 -v 60 -d ../CA -i req -o TestUser48-ecmixed.cert -f ../tests.pw 
cert.sh: #495: Sign TestUser48's EC Request with RSA - PASSED
cert.sh: Import TestUser48's mixed EC Cert --------------------------
certutil -A -n TestUser48-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #496: Import TestUser48's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #497: Generate Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's Request --------------------------
certutil -C -c TestCA -m 49 -v 60 -d ../CA -i req -o TestUser49.cert -f ../tests.pw 
cert.sh: #498: Sign TestUser49's Request - PASSED
cert.sh: Import TestUser49's Cert --------------------------
certutil -A -n TestUser49 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #499: Import TestUser49's Cert - PASSED
cert.sh SUCCESS: TestUser49's Cert Created
cert.sh: Generate DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #500: Generate DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 49 -v 60 -d ../CA -i req -o TestUser49-dsa.cert -f ../tests.pw 
cert.sh: #501: Sign TestUser49's DSA Request - PASSED
cert.sh: Import TestUser49's DSA Cert --------------------------
certutil -A -n TestUser49-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #502: Import TestUser49's DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #503: Generate mixed DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20049 -v 60 -d ../CA -i req -o TestUser49-dsamixed.cert -f ../tests.pw 
cert.sh: #504: Sign TestUser49's DSA Request with RSA - PASSED
cert.sh: Import TestUser49's mixed DSA Cert --------------------------
certutil -A -n TestUser49-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #505: Import TestUser49's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #506: Generate EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request --------------------------
certutil -C -c TestCA-ec -m 49 -v 60 -d ../CA -i req -o TestUser49-ec.cert -f ../tests.pw 
cert.sh: #507: Sign TestUser49's EC Request - PASSED
cert.sh: Import TestUser49's EC Cert --------------------------
certutil -A -n TestUser49-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #508: Import TestUser49's EC Cert - PASSED
cert.sh SUCCESS: TestUser49's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #509: Generate mixed EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10049 -v 60 -d ../CA -i req -o TestUser49-ecmixed.cert -f ../tests.pw 
cert.sh: #510: Sign TestUser49's EC Request with RSA - PASSED
cert.sh: Import TestUser49's mixed EC Cert --------------------------
certutil -A -n TestUser49-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #511: Import TestUser49's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #512: Generate Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o TestUser50.cert -f ../tests.pw 
cert.sh: #513: Sign TestUser50's Request - PASSED
cert.sh: Import TestUser50's Cert --------------------------
certutil -A -n TestUser50 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #514: Import TestUser50's Cert - PASSED
cert.sh SUCCESS: TestUser50's Cert Created
cert.sh: Generate DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #515: Generate DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o TestUser50-dsa.cert -f ../tests.pw 
cert.sh: #516: Sign TestUser50's DSA Request - PASSED
cert.sh: Import TestUser50's DSA Cert --------------------------
certutil -A -n TestUser50-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #517: Import TestUser50's DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #518: Generate mixed DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o TestUser50-dsamixed.cert -f ../tests.pw 
cert.sh: #519: Sign TestUser50's DSA Request with RSA - PASSED
cert.sh: Import TestUser50's mixed DSA Cert --------------------------
certutil -A -n TestUser50-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #520: Import TestUser50's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #521: Generate EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o TestUser50-ec.cert -f ../tests.pw 
cert.sh: #522: Sign TestUser50's EC Request - PASSED
cert.sh: Import TestUser50's EC Cert --------------------------
certutil -A -n TestUser50-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #523: Import TestUser50's EC Cert - PASSED
cert.sh SUCCESS: TestUser50's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #524: Generate mixed EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o TestUser50-ecmixed.cert -f ../tests.pw 
cert.sh: #525: Sign TestUser50's EC Request with RSA - PASSED
cert.sh: Import TestUser50's mixed EC Cert --------------------------
certutil -A -n TestUser50-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #526: Import TestUser50's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #527: Generate Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's Request --------------------------
certutil -C -c TestCA -m 51 -v 60 -d ../CA -i req -o TestUser51.cert -f ../tests.pw 
cert.sh: #528: Sign TestUser51's Request - PASSED
cert.sh: Import TestUser51's Cert --------------------------
certutil -A -n TestUser51 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #529: Import TestUser51's Cert - PASSED
cert.sh SUCCESS: TestUser51's Cert Created
cert.sh: Generate DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #530: Generate DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 51 -v 60 -d ../CA -i req -o TestUser51-dsa.cert -f ../tests.pw 
cert.sh: #531: Sign TestUser51's DSA Request - PASSED
cert.sh: Import TestUser51's DSA Cert --------------------------
certutil -A -n TestUser51-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #532: Import TestUser51's DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #533: Generate mixed DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20051 -v 60 -d ../CA -i req -o TestUser51-dsamixed.cert -f ../tests.pw 
cert.sh: #534: Sign TestUser51's DSA Request with RSA - PASSED
cert.sh: Import TestUser51's mixed DSA Cert --------------------------
certutil -A -n TestUser51-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #535: Import TestUser51's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #536: Generate EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request --------------------------
certutil -C -c TestCA-ec -m 51 -v 60 -d ../CA -i req -o TestUser51-ec.cert -f ../tests.pw 
cert.sh: #537: Sign TestUser51's EC Request - PASSED
cert.sh: Import TestUser51's EC Cert --------------------------
certutil -A -n TestUser51-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #538: Import TestUser51's EC Cert - PASSED
cert.sh SUCCESS: TestUser51's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #539: Generate mixed EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10051 -v 60 -d ../CA -i req -o TestUser51-ecmixed.cert -f ../tests.pw 
cert.sh: #540: Sign TestUser51's EC Request with RSA - PASSED
cert.sh: Import TestUser51's mixed EC Cert --------------------------
certutil -A -n TestUser51-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #541: Import TestUser51's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #542: Generate Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's Request --------------------------
certutil -C -c TestCA -m 52 -v 60 -d ../CA -i req -o TestUser52.cert -f ../tests.pw 
cert.sh: #543: Sign TestUser52's Request - PASSED
cert.sh: Import TestUser52's Cert --------------------------
certutil -A -n TestUser52 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #544: Import TestUser52's Cert - PASSED
cert.sh SUCCESS: TestUser52's Cert Created
cert.sh: Generate DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #545: Generate DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 52 -v 60 -d ../CA -i req -o TestUser52-dsa.cert -f ../tests.pw 
cert.sh: #546: Sign TestUser52's DSA Request - PASSED
cert.sh: Import TestUser52's DSA Cert --------------------------
certutil -A -n TestUser52-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #547: Import TestUser52's DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #548: Generate mixed DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20052 -v 60 -d ../CA -i req -o TestUser52-dsamixed.cert -f ../tests.pw 
cert.sh: #549: Sign TestUser52's DSA Request with RSA - PASSED
cert.sh: Import TestUser52's mixed DSA Cert --------------------------
certutil -A -n TestUser52-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #550: Import TestUser52's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #551: Generate EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request --------------------------
certutil -C -c TestCA-ec -m 52 -v 60 -d ../CA -i req -o TestUser52-ec.cert -f ../tests.pw 
cert.sh: #552: Sign TestUser52's EC Request - PASSED
cert.sh: Import TestUser52's EC Cert --------------------------
certutil -A -n TestUser52-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #553: Import TestUser52's EC Cert - PASSED
cert.sh SUCCESS: TestUser52's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #554: Generate mixed EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10052 -v 60 -d ../CA -i req -o TestUser52-ecmixed.cert -f ../tests.pw 
cert.sh: #555: Sign TestUser52's EC Request with RSA - PASSED
cert.sh: Import TestUser52's mixed EC Cert --------------------------
certutil -A -n TestUser52-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #556: Import TestUser52's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed EC Cert Created
cert.sh: Creating CA CRL =====================================
cert.sh: Generating CRL for range 40-42 TestCA authority --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -G -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or
cert.sh: #557: Generating CRL for range 40-42 TestCA authority - PASSED
cert.sh: Generating CRL (DSA) for range 40-42 TestCA-dsa authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -G -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or-dsa
cert.sh: #558: Generating CRL (DSA) for range 40-42 TestCA-dsa authority - PASSED
cert.sh: Generating CRL (ECC) for range 40-42 TestCA-ec authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -G -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or-ec
cert.sh: #559: Generating CRL (ECC) for range 40-42 TestCA-ec authority - PASSED
cert.sh: Modifying CA CRL by adding one more cert ============
cert.sh: Modify CRL by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or1 -i ../server/root.crl_40-42_or
cert.sh: #560: Modify CRL by adding one more cert - PASSED
cert.sh: Modify CRL (DSA) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or1-dsa -i ../server/root.crl_40-42_or-dsa
cert.sh: #561: Modify CRL (DSA) by adding one more cert - PASSED
cert.sh: Modify CRL (ECC) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or1-ec -i ../server/root.crl_40-42_or-ec
cert.sh: #562: Modify CRL (ECC) by adding one more cert - PASSED
cert.sh: Modifying CA CRL by removing one cert ===============
cert.sh: Modify CRL by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #563: Modify CRL by removing one cert - PASSED
cert.sh: Modify CRL (DSA) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #564: Modify CRL (DSA) by removing one cert - PASSED
cert.sh: Modify CRL (ECC) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42-ec -i ../server/root.crl_40-42_or1-ec
cert.sh: #565: Modify CRL (ECC) by removing one cert - PASSED
cert.sh: Creating CA CRL for groups 1 and 2  ===============
cert.sh: Creating CRL for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_43-48 -i ../server/root.crl_40-42
cert.sh: #566: Creating CRL for groups 1 and 2 - PASSED
cert.sh: Creating CRL (ECC) for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_43-48-ec -i ../server/root.crl_40-42-ec
cert.sh: #567: Creating CRL (ECC) for groups 1 and 2 - PASSED
cert.sh: Creating CA CRL for groups 1, 2 and 3  ===============
cert.sh: Creating CRL for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_49-52 -i ../server/root.crl_43-48
cert.sh: #568: Creating CRL for groups 1, 2 and 3 - PASSED
cert.sh: Creating CRL (ECC) for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_49-52-ec -i ../server/root.crl_43-48-ec
cert.sh: #569: Creating CRL (ECC) for groups 1, 2 and 3 - PASSED
cert.sh: Importing Server CA Issued CRL for certs  trough 52
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -D -n TestCA -f ../tests.pw -d ../server
crlutil: could not find TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #570: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42 -n TestCA -f ../tests.pw -d ../server
cert.sh: #571: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -D -n TestCA-ec -f ../tests.pw -d ../server
crlutil: could not find TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #572: Importing CRL (ECC) for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42-ec -n TestCA-ec -f ../tests.pw -d ../server
cert.sh: #573: Importing CRL (ECC) for groups 1 - PASSED
cert.sh SUCCESS: SSL CRL prep passed
cert.sh cert.sh: finished cert.sh
TIMESTAMP cert END: Sun Aug  6 23:43:53 UTC 2017
Running tests for dbtests
TIMESTAMP dbtests BEGIN: Sun Aug  6 23:43:53 UTC 2017
dbtests.sh: CERT and Key DB Tests ===============================
---------------------------------------------------------------
| test opening the database read/write in a nonexisting directory
---------------------------------------------------------------
certutil: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #574: Certutil didn't work in a nonexisting dir 255 - PASSED
dbdir selected is ./non_existent_dir
ERROR: Directory "./non_existent_dir" does not exist.
dbtest: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #575: Dbtest readonly didn't work in a nonexisting dir 46 - PASSED
---------------------------------------------------------------
| test force opening the database in a nonexisting directory
---------------------------------------------------------------
dbdir selected is ./non_existent_dir
ERROR: Directory "./non_existent_dir" does not exist.
dbtests.sh: #576: Dbtest force succeeded in a nonexisting dir 0 - PASSED
---------------------------------------------------------------
| test opening the database readonly in an empty directory
---------------------------------------------------------------
tstclnt: unable to open cert database: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #577: Tstclnt didn't work in an empty dir 1 - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/key3.db" does not exist.
dbtest: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #578: Dbtest readonly didn't work in an empty dir 46 - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir
dbtests.sh: #579: Dbtest logout after empty DB Init has key - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir
dbtests.sh: #580: Dbtest password DB Init maintains needlogin state - PASSED
certutil: could not find certificate named "xxxx": SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #581: Certutil didn't work in an empty dir 255 - PASSED
---------------------------------------------------------------
| test force opening the database  readonly in a empty directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/key3.db" does not exist.
dbtests.sh: #582: Dbtest force readonly succeeded in an empty dir 0 - PASSED
---------------------------------------------------------------
| test opening the database r/w in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir
ERROR: Directory "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir" is not writeable.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/secmod.db" is not writeable.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/cert8.db" is not writeable.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/key3.db" is not writeable.
dbtest: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #583: Dbtest r/w didn't work in an readonly dir 46 - PASSED
certutil: could not find certificate named "TestUser": SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #584: Certutil didn't work in an readonly dir 255 - PASSED
---------------------------------------------------------------
| test opening the database ronly in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/secmod.db
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/cert8.db
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/key3.db
dbtests.sh: #585: Dbtest readonly succeeded in a readonly dir 0 - PASSED
---------------------------------------------------------------
| test force opening the database  r/w in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir
ERROR: Directory "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir" is not writeable.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/secmod.db" is not writeable.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/cert8.db" is not writeable.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/key3.db" is not writeable.
dbtests.sh: #586: Dbtest force succeeded in a readonly dir 0 - PASSED
---------------------------------------------------------------
| ls -l /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir
---------------------------------------------------------------
dr-xr-xr-x 2 mockbuild mockbuild   4096 Aug  6 23:43 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir
-r--r----- 1 mockbuild mockbuild   1225 Aug  6 23:43 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/TestUser-dsa.cert
-r--r----- 1 mockbuild mockbuild   1425 Aug  6 23:43 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/TestUser-dsamixed.cert
-r--r----- 1 mockbuild mockbuild    581 Aug  6 23:43 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/TestUser-ec.cert
-r--r----- 1 mockbuild mockbuild    705 Aug  6 23:43 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/TestUser-ecmixed.cert
-r--r----- 1 mockbuild mockbuild    870 Aug  6 23:43 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/TestUser.cert
-r-------- 1 mockbuild mockbuild 229376 Aug  6 23:43 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/cert8.db
-r-------- 1 mockbuild mockbuild 118784 Aug  6 23:43 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/key3.db
-r--r----- 1 mockbuild mockbuild    395 Aug  6 23:43 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/req
-r-------- 1 mockbuild mockbuild  16384 Aug  6 23:43 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/secmod.db
---------------------------------------------------------------
| test creating a new cert with a conflicting nickname
---------------------------------------------------------------
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/conflictdir
certutil: could not add certificate to token or database: SEC_ERROR_ADDING_CERT: Error adding certificate to database.
dbtests.sh: #587: Nicknane conflict test, could not import conflict nickname 255 - PASSED
---------------------------------------------------------------
| test importing an old cert to a conflicting nickname
---------------------------------------------------------------
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 40 (0x28)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Bob,E=Bob@bogus.com,O=BOGUS NSS,L=Mountain View,ST=Calif
            ornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:79:a0:a4:e8:dc:5a:a1:f9:71:68:dc:59:2b:23:fb:
                    02:45:08:fa:e4:ec:81:db:c3:18:07:11:0b:f3:e4:fa:
                    89:c3:a7:f3:06:63:ee:83:c4:f7:66:bf:3f:23:e4:bd:
                    3f:67:9c:ff:fc:fc:fc:74:94:33:da:96:b2:6d:da:a4:
                    70:fb:41:b5:3a:7f:74:77:50:c1:9e:53:05:96:44:4c:
                    11:3e:34:e5:57:4c:c5:60:88:db:95:fe:25:b0:1f:66:
                    d3:2f:b6:d2:9e:e9:56:68:eb:33:b7:14:1c:23:d3:81:
                    18:14:70:dd:fb:21:dd:b5:45:10:64:82:c1:ec:6b:7a:
                    c3:ed:09:43:47:d4:cc:11:3d:36:6c:e8:7d:5e:be:e8:
                    d1:c2:11:d0:de:4f:69:5a:18:47:b7:aa:9a:b8:ae:78:
                    e5:1c:28:8a:36:e3:ad:51:9d:fd:12:09:26:42:2a:f0:
                    2f:00:fb:79:08:e6:6d:bc:36:51:3e:22:72:e8:51:64:
                    1f:1e:c6:38:f8:2b:6c:27:23:ac:11:02:35:25:7d:59:
                    10:17:94:02:41:59:23:70:3d:fd:8d:0f:e9:b3:28:f1:
                    b6:dd:2d:dd:ed:1b:33:ac:3d:37:be:78:ed:12:33:92:
                    7c:59:b6:51:44:52:04:88:6b:16:93:cb:0b:69:c0:1f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        49:8d:34:02:36:2b:9a:28:b3:03:d6:75:f5:aa:5d:a9:
        d9:dc:95:f0:fb:43:b8:6b:72:34:38:ec:9d:7a:97:d3:
        6c:da:02:5b:da:2e:8f:7d:f1:59:b5:ba:58:18:c5:1d:
        4e:d9:51:ae:5f:53:6e:1b:45:28:11:0b:4c:5f:2a:dd:
        c4:8d:0f:cd:9d:f5:17:cc:41:46:02:e1:f5:0a:e6:ba:
        ca:9e:92:65:fa:1a:97:07:d7:96:5e:da:10:a4:b7:09:
        87:88:c5:a8:87:86:b3:bd:cf:48:8c:70:e0:96:9d:18:
        c9:5f:f4:0a:0b:e4:48:b5:99:37:2a:5e:77:11:11:d6:
        0d:5a:91:d7:5a:44:9e:65:22:af:65:96:f2:7d:c1:4e:
        75:08:c0:47:1b:c6:99:71:cb:36:71:07:58:0b:68:45:
        73:5e:09:04:b6:74:b0:5b:b3:82:4b:7b:ec:57:fa:6d:
        6b:14:1d:51:d8:ed:9d:67:16:69:c6:e5:b0:e1:a5:17:
        23:dd:bf:8f:bf:ac:37:9a:9d:8e:c6:b5:ca:be:f4:d9:
        0c:28:20:71:8b:67:66:04:03:8b:1b:84:e8:b8:d2:67:
        3c:2c:49:45:53:4d:e7:19:9f:31:c7:31:39:16:c0:29:
        a9:1d:21:a1:d3:2b:d0:45:2d:e0:5f:fd:94:d8:b5:61
    Fingerprint (SHA-256):
        B1:93:35:D5:98:62:80:4E:A9:5B:05:41:51:71:B5:A2:A4:B9:AF:EF:C4:5E:C3:EF:83:A9:25:47:07:4F:71:E3
    Fingerprint (SHA1):
        8E:41:D5:E8:4D:C9:11:C8:5E:0C:F9:7C:73:7C:D0:A3:78:E3:AD:B7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
dbtests.sh: #588: Nicknane conflict test-setting nickname conflict was correctly rejected - PASSED
TIMESTAMP dbtests END: Sun Aug  6 23:43:53 UTC 2017
Running tests for tools
TIMESTAMP tools BEGIN: Sun Aug  6 23:43:53 UTC 2017
tools.sh: Tools Tests with ECC ===============================
tools.sh: Exporting Alice's email cert & key - default ciphers
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #589: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                74:c1:3c:59:d4:24:9b:90:c4:68:59:2d:a7:e7:9f:51
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #590: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #591: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's email EC cert & key---------------
pk12util -o Alice-ec.p12 -n "Alice-ec" -d ../alicedir -k ../tests.pw \
         -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #592: Exporting Alice's email EC cert & key (pk12util -o)  - PASSED
tools.sh: Importing Alice's email EC cert & key --------------
pk12util -i Alice-ec.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #593: Importing Alice's email EC cert & key (pk12util -i)  - PASSED
tools.sh: Listing Alice's pk12 EC file -----------------
pk12util -l Alice-ec.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice-ec
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                82:9d:cb:7b:a6:b7:ea:f3:42:3c:03:92:49:ed:20:81
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: X9.62 ECDSA signature with SHA256
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Sun Aug 06 23:43:25 2017
            Not After : Sat Aug 06 23:43:25 2067
        Subject: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Califor
            nia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:23
            EC Public Key:
                PublicValue:
                    04:00:07:bc:ff:20:10:36:46:e9:73:43:d6:2a:f5:e6:
                    68:d7:85:f5:67:ea:63:60:35:43:7a:57:47:ef:fa:6e:
                    d8:62:0f:96:da:a3:67:da:3f:e2:b9:1c:f0:66:d7:ac:
                    e4:71:81:b2:f5:c5:1b:33:56:d1:7c:8b:0a:de:55:66:
                    f5:f5:29:00:1f:05:ba:8e:4b:ba:16:9c:4d:7e:5b:07:
                    52:ee:85:9f:65:69:ce:9f:5a:74:82:f6:30:68:1f:f8:
                    c1:dc:74:0c:da:bc:73:4c:af:53:7c:79:63:c2:a4:bc:
                    a2:5b:b7:98:99:97:8f:17:74:8d:67:f2:1d:20:6e:01:
                    6f:f7:36:96:e7
                Curve: SECG elliptic curve secp521r1 (aka NIST P-521)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: X9.62 ECDSA signature with SHA256
    Signature:
        30:81:87:02:42:01:50:b7:0f:f6:48:26:65:b2:38:d3:
        81:aa:57:e6:00:98:fd:01:9a:d1:eb:ec:07:ba:a6:28:
        c5:c0:86:35:62:42:45:a4:a1:dc:8e:f8:2d:88:cb:f4:
        7f:61:28:30:21:22:83:2f:8f:2c:00:fb:bc:87:db:a6:
        f8:27:f8:e6:cc:d5:a7:02:41:15:69:15:77:32:f9:d2:
        b0:62:38:86:7f:35:e0:a3:64:35:51:7b:e2:82:b4:d2:
        b7:8d:88:06:02:75:84:dd:5b:84:85:30:44:52:94:ad:
        39:d6:fa:e0:b8:e9:ca:cd:14:71:48:9e:6e:b4:15:8d:
        88:8e:38:63:15:f0:b0:be:3e:ab
    Fingerprint (SHA-256):
        46:01:EA:C7:47:19:53:62:C4:AF:D7:D0:84:D6:D0:C2:6A:4F:45:C3:55:72:DC:24:C0:F8:8C:57:1A:4C:12:54
    Fingerprint (SHA1):
        0E:62:8E:33:AD:A6:06:FC:BE:24:1B:0A:6C:FA:F2:32:66:F2:E0:CD
    Friendly Name: TestCA-ec
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: X9.62 ECDSA signature with SHA256
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice-ec@bogus.com,O=BOGUS NSS,L=Mountain View,S
            T=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:22
            EC Public Key:
                PublicValue:
                    04:51:63:9d:a4:9c:51:10:a6:1c:db:3d:59:ce:d3:44:
                    33:e2:4c:d1:e6:34:64:0a:8c:a1:13:04:82:10:63:5f:
                    36:07:91:e6:66:fe:d6:dc:ea:f1:c9:85:e5:c1:8b:a1:
                    8a:02:7f:2d:83:ad:cc:cf:99:67:7c:30:34:18:b7:db:
                    33:6b:84:eb:ca:68:1d:09:bf:32:ed:00:54:42:01:8a:
                    c3:43:8a:0c:60:30:f4:4c:e0:7c:49:4d:45:ba:a0:01:
                    42
                Curve: SECG elliptic curve secp384r1 (aka NIST P-384)
    Signature Algorithm: X9.62 ECDSA signature with SHA256
    Signature:
        30:81:88:02:42:01:41:3e:89:21:f5:70:97:e5:a6:c1:
        34:f1:a7:71:1b:8d:e7:99:d6:d9:7f:df:56:77:35:8f:
        66:f4:21:32:4a:f1:4a:2a:94:fc:fa:7b:42:30:de:53:
        02:ba:51:0f:44:89:d8:68:c7:76:8f:3f:b0:37:4e:a3:
        d0:c1:cc:39:c5:66:fb:02:42:01:05:14:cc:58:87:44:
        f1:a9:7e:2f:d5:f5:f4:51:c9:f9:0b:37:55:93:6c:94:
        95:dc:4d:d1:d7:36:d2:8a:f7:55:21:14:60:35:8c:c8:
        ff:f5:d5:7c:a6:85:03:6e:12:4b:73:ee:da:a4:70:12:
        64:e6:6b:3e:93:d0:fe:be:31:51:18
    Fingerprint (SHA-256):
        41:5B:9D:7D:FB:1F:02:FA:16:FF:1E:3E:D8:EA:9B:C9:08:7C:A5:9E:20:B5:D9:13:03:8B:01:8E:2F:D4:F8:16
    Fingerprint (SHA1):
        EB:A3:A3:12:D5:67:37:2E:DC:38:F3:83:14:27:16:60:20:A3:40:5F
    Friendly Name: Alice-ec
tools.sh: #594: Listing Alice's pk12 EC file (pk12util -l)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #595: Exporting with [RC2-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                fc:e6:63:e4:38:d6:f5:79:3b:89:04:4d:43:69:80:d4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #596: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #597: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #598: Exporting with [RC2-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                44:70:24:5e:41:a8:fb:6f:be:64:7a:e8:82:86:59:18
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #599: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #600: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #601: Exporting with [RC2-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                31:31:80:03:3b:1c:e8:9c:cf:7d:5c:f0:56:06:0e:58
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #602: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #603: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #604: Exporting with [RC2-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                aa:62:f3:0e:30:43:d4:4d:0a:d0:0c:69:4a:9a:05:c7
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #605: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #606: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #607: Exporting with [RC2-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                7c:39:0b:3a:55:78:b4:5d:8c:f9:c8:4d:51:23:cb:88
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #608: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #609: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #610: Exporting with [RC2-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                c9:e8:34:5c:41:0b:f5:06:1a:6c:77:93:5e:65:4b:1f
            Iteration Count: 2000 (0x7d0)
tools.sh: #611: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #612: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #613: Exporting with [DES-EDE3-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                a5:5e:5e:ee:cf:a4:22:e9:ca:b1:cf:17:12:36:e9:b0
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #614: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #615: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #616: Exporting with [DES-EDE3-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                b7:d1:33:96:61:d9:ca:ae:b7:e2:63:3f:5c:6a:30:ee
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #617: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #618: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #619: Exporting with [DES-EDE3-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                fa:3f:f3:40:d6:f6:14:08:2e:6e:a7:f5:8e:bd:1b:4d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #620: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #621: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #622: Exporting with [DES-EDE3-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                3b:1e:1a:48:7f:f9:38:bb:a8:5d:f5:36:c6:45:1f:ff
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #623: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #624: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #625: Exporting with [DES-EDE3-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                f3:1e:c1:e7:b8:08:ee:6f:bc:34:d0:80:bc:f2:bf:5d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #626: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #627: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #628: Exporting with [DES-EDE3-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                91:29:10:76:8b:12:b5:37:dd:c8:7a:04:c7:08:ed:37
            Iteration Count: 2000 (0x7d0)
tools.sh: #629: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #630: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #631: Exporting with [AES-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e9:0e:b1:4d:c5:1e:e9:b9:7e:6a:92:fe:db:70:06:08
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:db:23:21:65:12:17:2f:e3:ec:22:7f:c4:d7:e4:
                    6d:ed
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #632: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #633: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #634: Exporting with [AES-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        56:43:ca:73:55:80:79:d7:37:1d:a4:a8:57:f1:b2:64
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:ff:38:56:11:0a:94:e2:ed:6e:b9:87:50:18:d2:
                    c0:05
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #635: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #636: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #637: Exporting with [AES-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        71:d6:2c:b1:05:e2:a6:53:7a:a1:5a:6d:91:a9:11:f0
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:8c:57:23:4a:a9:15:bf:ce:e9:75:c8:06:71:76:
                    47:44
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #638: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #639: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #640: Exporting with [AES-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        9b:94:41:ac:e9:66:c6:15:2b:47:0d:7f:bd:ae:d9:fc
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:8d:01:d5:40:fb:e7:82:a9:f6:79:9b:8b:7d:78:
                    6c:62
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #641: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #642: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #643: Exporting with [AES-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        9f:fa:43:8c:a2:43:dc:c9:44:52:be:ad:7a:78:be:45
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:55:6e:ae:70:47:b6:8d:f7:e3:54:54:49:43:b2:
                    e5:93
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #644: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #645: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #646: Exporting with [AES-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        70:75:32:57:e2:66:d1:64:14:56:fa:79:84:3a:f4:87
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:29:e2:9a:ca:b6:e4:52:ca:75:ae:8c:91:a7:aa:
                    53:b1
tools.sh: #647: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #648: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #649: Exporting with [AES-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        2d:2a:39:47:18:bd:42:ef:67:be:50:56:5e:56:cb:9a
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:f4:1c:36:fd:c7:6f:46:97:04:c0:72:a8:8c:b8:
                    54:65
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #650: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #651: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #652: Exporting with [AES-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        78:07:e6:9b:d9:bc:b1:73:8d:14:60:a9:f8:5d:67:d2
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:1a:7e:83:92:09:d5:f9:42:20:f2:c4:1c:49:f8:
                    f6:88
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #653: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #654: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #655: Exporting with [AES-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        93:80:fe:3a:a7:fe:21:e8:20:30:ea:1a:31:a3:26:67
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:50:4c:89:c3:48:c1:9a:4f:a8:35:5d:d9:9a:2b:
                    47:b5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #656: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #657: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #658: Exporting with [AES-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        25:4a:2d:39:f6:b9:df:b0:99:55:b0:1c:28:98:71:8d
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:d1:f4:7a:5d:52:21:17:fa:4c:25:53:05:8d:7e:
                    b2:a8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #659: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #660: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #661: Exporting with [AES-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        8b:74:ea:a9:3d:d3:84:6e:38:f3:e6:d5:20:8a:cb:4d
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:5a:d8:3f:43:40:95:f8:a5:dc:0a:76:77:d6:53:
                    e6:33
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #662: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #663: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #664: Exporting with [AES-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        34:5e:aa:2c:aa:53:e4:9e:2b:be:e5:fa:b5:11:7d:e9
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:8a:b6:82:2f:25:e5:42:3f:cb:4b:88:ad:4f:86:
                    cf:13
tools.sh: #665: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #666: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #667: Exporting with [AES-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b6:7f:16:ee:8e:ea:7a:14:8a:58:81:d1:5f:24:eb:c1
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:66:3d:2f:5a:4a:3b:8d:d8:e9:5a:ee:e0:e0:0c:
                    07:84
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #668: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #669: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #670: Exporting with [AES-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        9c:2a:8e:9e:ab:b3:37:cf:9b:42:0f:06:5d:0b:3f:ac
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:61:c7:f4:55:e8:91:15:3b:8c:53:23:05:68:c1:
                    c5:b7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #671: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #672: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #673: Exporting with [AES-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        c9:1e:54:63:ca:3e:62:47:26:db:b5:fe:13:00:20:07
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:96:d3:99:6a:c0:30:18:2d:67:58:6a:a4:bf:33:
                    db:11
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #674: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #675: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #676: Exporting with [AES-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e5:95:34:e6:fe:c6:53:81:a6:41:28:fe:fb:fd:76:d1
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:b0:cb:ed:cd:85:28:af:6f:5f:1c:e5:e7:47:6a:
                    d6:a6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #677: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #678: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #679: Exporting with [AES-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ff:3a:39:c7:ea:73:46:31:e9:5c:7b:31:e3:b9:82:0e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:4f:06:cc:f0:56:2b:4c:bf:18:0b:75:95:2c:48:
                    b6:a6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #680: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #681: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #682: Exporting with [AES-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        3c:90:48:00:14:4b:e7:22:b8:f9:b9:82:eb:f6:23:7e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:3d:fa:58:be:ae:0f:b5:ee:2c:8a:c2:09:6d:43:
                    1f:e3
tools.sh: #683: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #684: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #685: Exporting with [CAMELLIA-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        00:94:6f:53:a7:0b:17:d6:6a:b4:95:48:89:8d:55:f0
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:e9:82:ed:6f:59:b9:04:b2:7d:a5:55:86:eb:e7:
                    79:94
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #686: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #687: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #688: Exporting with [CAMELLIA-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b0:c1:77:50:87:b0:57:04:1a:43:3a:45:0d:20:1f:7d
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:21:bf:c5:6b:c3:a8:a4:f8:4b:f7:b5:3d:93:5e:
                    1c:16
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #689: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #690: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #691: Exporting with [CAMELLIA-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b5:df:7b:0b:40:51:8f:e5:17:6d:54:12:b3:b6:07:47
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:e4:33:89:2b:08:73:7b:5e:8e:15:83:dc:eb:49:
                    40:19
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #692: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #693: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #694: Exporting with [CAMELLIA-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f5:74:bd:69:d3:17:87:02:cf:84:5a:12:c2:1c:1c:6e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:a0:84:eb:a1:4a:97:ca:59:c4:7c:e6:58:9c:72:
                    72:eb
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #695: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #696: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #697: Exporting with [CAMELLIA-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        d1:97:8c:b5:6f:51:01:e0:ec:84:3c:8d:ef:06:75:fb
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:c7:bf:27:49:fb:c5:0b:9a:0b:f9:23:bc:5a:bd:
                    b8:a0
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #698: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #699: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #700: Exporting with [CAMELLIA-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        3f:56:b5:e7:63:1c:1e:83:c8:fc:3a:46:5a:b0:ae:ca
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:29:0c:ba:cd:30:ba:58:4c:5e:1c:4d:f6:3d:ce:
                    4d:a7
tools.sh: #701: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #702: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #703: Exporting with [CAMELLIA-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        41:57:3d:54:50:92:ff:94:47:a1:6d:32:6b:c4:fc:cf
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:3e:88:ed:06:a1:7a:38:60:18:a0:7e:c2:40:df:
                    ee:a5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #704: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #705: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #706: Exporting with [CAMELLIA-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        6c:30:5b:7e:59:91:d9:7b:eb:5d:08:94:e3:2b:a5:0b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:8e:a3:b6:5e:fb:d5:f1:d1:49:bf:c1:5f:c2:95:
                    26:95
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #707: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #708: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #709: Exporting with [CAMELLIA-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        6d:0e:b7:01:6a:e3:a0:f8:dd:1a:dd:ba:21:9a:7a:2c
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:9a:bb:3f:72:8a:9b:9c:32:bc:b4:13:b4:41:6f:
                    5c:47
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #710: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #711: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #712: Exporting with [CAMELLIA-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        05:c1:31:a1:9f:c2:1f:b5:51:0b:3c:ae:99:9d:c1:16
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:15:48:3a:d3:6c:6e:c4:85:41:69:70:f1:1f:bd:
                    ce:b9
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #713: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #714: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #715: Exporting with [CAMELLIA-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b3:51:18:5f:be:0a:8c:4e:09:21:fe:df:1c:36:aa:4a
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:e1:2d:17:64:6f:05:17:f4:27:bd:fd:0d:de:82:
                    ee:3e
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #716: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #717: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #718: Exporting with [CAMELLIA-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b1:f2:85:ad:ff:6f:9b:ce:1e:51:66:70:68:b5:a8:1b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:9c:e6:11:cd:ec:c3:3c:b5:31:4d:6a:f3:66:f7:
                    29:e3
tools.sh: #719: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #720: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #721: Exporting with [CAMELLIA-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f7:11:84:69:b3:f1:f6:54:76:1b:66:d8:f5:b2:84:98
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:5e:f1:2f:34:d6:79:5e:5e:fa:eb:04:e6:09:35:
                    e2:e1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #722: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #723: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #724: Exporting with [CAMELLIA-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        42:4a:9c:43:a4:39:50:e2:fa:13:24:56:a6:d2:60:0a
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:54:96:cb:3b:17:25:9f:ab:36:f3:87:28:46:7a:
                    71:22
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #725: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #726: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #727: Exporting with [CAMELLIA-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        37:0a:24:e7:c8:32:5c:83:1b:eb:11:24:ba:54:28:30
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:b9:5e:78:68:02:a0:08:c6:67:c9:ee:9d:ee:ae:
                    5d:6c
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #728: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #729: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #730: Exporting with [CAMELLIA-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        44:48:d8:76:ee:a4:7f:f1:bd:2e:c9:28:8d:53:a4:6f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:d4:2d:76:48:cd:c3:14:86:5b:4d:14:1a:ae:53:
                    24:19
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #731: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #732: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #733: Exporting with [CAMELLIA-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        69:92:60:55:ee:2c:91:4e:ab:21:62:c1:b4:4f:02:f3
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:f4:5c:6e:75:22:19:2e:b8:1e:7a:a4:4c:f7:0a:
                    84:5b
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #734: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #735: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #736: Exporting with [CAMELLIA-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b2:a1:8b:3d:e2:e6:12:53:a4:99:97:be:e1:38:a0:29
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:ca:83:08:65:88:bd:12:8a:1d:8e:db:1e:dc:31:
                    be:43
tools.sh: #737: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #738: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #739: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                bb:d6:53:2c:92:03:ba:fc:13:e8:3f:72:0c:e7:54:ed
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #740: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #741: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #742: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                a6:fc:22:c9:1d:12:cc:dc:2f:20:2e:d6:fd:af:fc:fb
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #743: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #744: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #745: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                09:97:63:f9:c8:41:45:4c:7a:3f:31:09:bd:1f:6a:d6
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #746: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #747: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #748: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                89:7b:fa:cb:24:ba:0e:48:83:20:0f:1a:6a:9d:62:4b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #749: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #750: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #751: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                06:77:b5:17:7d:94:d7:57:64:71:98:35:47:4f:61:57
            Iteration Count: 2000 (0x7d0)
tools.sh: #752: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #753: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #754: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                77:3f:b3:d5:a7:19:a4:36:97:8d:38:d3:10:97:78:54
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #755: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #756: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #757: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                93:d8:2e:a2:df:ff:01:18:0c:05:2a:f0:9c:55:49:46
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #758: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #759: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #760: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                4f:21:0e:be:8b:bc:7b:93:2c:9c:df:89:80:4c:26:0b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #761: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #762: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #763: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                f5:74:b9:b5:72:b1:e8:88:a3:6c:87:d8:1e:f7:45:96
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #764: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #765: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #766: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                1e:f9:1d:d9:3d:fc:9d:c8:8d:43:e8:d1:b1:c9:63:2f
            Iteration Count: 2000 (0x7d0)
tools.sh: #767: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #768: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #769: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                73:a4:15:7e:55:f2:d2:f2:52:6b:4f:d5:43:1d:a5:7b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #770: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #771: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #772: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                b7:73:44:04:aa:a7:44:94:43:ab:c5:90:18:9c:9e:8f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #773: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #774: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #775: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                24:b8:ee:d4:bf:84:5b:2a:a5:4a:21:83:56:45:4a:2c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #776: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #777: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #778: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                53:a8:a6:22:0a:26:45:cb:dc:e1:98:95:70:4a:ca:c2
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #779: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #780: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #781: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                79:fc:21:26:2f:1a:ef:80:9f:e8:84:36:a9:6a:cb:78
            Iteration Count: 2000 (0x7d0)
tools.sh: #782: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #783: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #784: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                20:c8:f9:1c:93:2e:c8:61:9a:17:de:c6:e5:5f:7e:a9
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #785: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #786: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #787: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                85:ed:8a:43:7d:87:9f:9c:f7:f1:31:04:b5:46:d7:c0
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #788: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #789: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #790: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                2b:e0:30:83:96:28:7e:62:d4:8e:ac:aa:ce:79:41:81
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #791: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #792: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #793: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                8a:ea:29:2f:89:49:70:7a:ee:cb:da:ba:dd:5a:39:d8
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #794: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #795: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:null]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #796: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                f1:2b:2a:2e:c2:61:cb:d7:9e:26:97:43:44:88:ee:5b
            Iteration Count: 2000 (0x7d0)
tools.sh: #797: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #798: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #799: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                8a:35:22:9d:28:76:ca:1b:62:d9:8f:e6:8f:98:6e:b3
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #800: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #801: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #802: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                bc:fc:b7:43:4b:48:cb:5c:02:8b:e5:2c:8f:9c:c1:db
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #803: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #804: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #805: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                96:24:fe:77:d7:c3:95:87:27:a2:66:eb:fe:60:61:2c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #806: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #807: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #808: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                99:ef:00:e2:d7:c5:a0:a1:84:2f:30:74:54:34:e5:8f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #809: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #810: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #811: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                7b:a2:7f:2d:0a:e3:9b:02:ec:1c:06:ee:ab:7c:d6:06
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #812: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #813: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #814: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                81:84:31:c7:cf:e7:a7:e0:67:ea:20:63:85:34:68:4e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #815: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #816: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #817: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                3c:b3:f3:f2:6f:47:af:1d:56:97:29:85:b9:08:fb:10
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #818: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #819: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #820: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                26:37:71:c0:7f:e8:50:64:c1:d7:10:13:63:aa:19:0c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #821: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #822: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #823: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                5e:6f:bb:b6:ee:a2:8a:06:7f:73:13:73:90:78:80:82
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #824: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #825: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #826: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                b7:90:25:c6:d3:e0:1b:e4:02:74:4e:fa:29:22:f9:92
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #827: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #828: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c null
pk12util: Algorithm: "null": SEC_ERROR_INVALID_ALGORITHM: security library: invalid algorithm.
tools.sh: #829: Exporting with [null:default] (pk12util -o)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #830: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Create objsign cert -------------------------------
signtool -G "objectsigner" -d ../tools/signdir -p "nss"
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit the browser before continuing this operation. Enter 
"y" to continue, or anything else to abort: 
Enter certificate information.  All fields are optional. Acceptable
characters are numbers, letters, spaces, and apostrophes.
certificate common name: organization: organization unit: state or province: country (must be exactly 2 characters): username: email address: generated public/private key pair
certificate request generated
certificate has been signed
certificate "objsigner" added to database
Exported certificate to x509.raw and x509.cacert.
tools.sh: #831: Create objsign cert (signtool -G)  - PASSED
tools.sh: Signing a jar of files ----------------------------
signtool -Z nojs.jar -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
adding ../tools/html/sign.html to nojs.jar...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.jar...(deflated 28%)
Generating zigbert.sf file..
adding ../tools/html/META-INF/manifest.mf to nojs.jar...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.jar...(deflated 36%)
adding ../tools/html/META-INF/zigbert.rsa to nojs.jar...(deflated 33%)
tree "../tools/html" signed successfully
tools.sh: #832: Signing a jar of files (signtool -Z)  - PASSED
tools.sh: Listing signed files in jar ----------------------
signtool -v nojs.jar -d ../tools/signdir -p nss -k objsigner
archive "nojs.jar" has passed crypto verification.
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
found a RSA signature file: META-INF/zigbert.rsa
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #833: Listing signed files in jar (signtool -v)  - PASSED
tools.sh: Show who signed jar ------------------------------
signtool -w nojs.jar -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #834: Show who signed jar (signtool -w)  - PASSED
tools.sh: Signing a xpi of files ----------------------------
signtool -Z nojs.xpi -X -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
--> signjs.html
Generating zigbert.sf file..
Creating XPI Compatible Archive 
adding ../tools/html/META-INF/zigbert.rsa to nojs.xpi...(deflated 33%)
--> sign.html
adding ../tools/html/sign.html to nojs.xpi...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.xpi...(deflated 28%)
adding ../tools/html/META-INF/manifest.mf to nojs.xpi...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.xpi...(deflated 36%)
tree "../tools/html" signed successfully
tools.sh: #835: Signing a xpi of files (signtool -Z -X)  - PASSED
tools.sh: Listing signed files in xpi ----------------------
signtool -v nojs.xpi -d ../tools/signdir -p nss -k objsigner
archive "nojs.xpi" has passed crypto verification.
found a RSA signature file: META-INF/zigbert.rsa
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #836: Listing signed files in xpi (signtool -v)  - PASSED
tools.sh: Show who signed xpi ------------------------------
signtool -w nojs.xpi -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #837: Show who signed xpi (signtool -w)  - PASSED
TIMESTAMP tools END: Sun Aug  6 23:43:58 UTC 2017
Running tests for fips
TIMESTAMP fips BEGIN: Sun Aug  6 23:43:58 UTC 2017
fips.sh: FIPS 140 Compliance Tests ===============================
fips.sh: Verify this module is in FIPS mode  -----------------
modutil -dbdir ../fips -list
Listing of PKCS #11 Modules
-----------------------------------------------------------
  1. NSS Internal FIPS PKCS #11 Module
	 slots: 1 slot attached
	status: loaded
	 slot: NSS FIPS 140-2 User Private Key Services
	token: NSS FIPS 140-2 Certificate DB
  2. RootCerts
	library name: /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
	 slots: 1 slot attached
	status: loaded
	 slot: NSS Builtin Objects
	token: Builtin Object Token
-----------------------------------------------------------
FIPS mode enabled.
fips.sh: #838: Verify this module is in FIPS mode (modutil -chkfips true) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #839: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys -------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      c4f24205802c27a60638268541dc2e203f03e8b6   NSS FIPS 140-2 Certificate DB:FIPS_PUB_140_Test_Certificate
fips.sh: #840: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Attempt to list FIPS module keys with incorrect password
certutil -d ../fips -K -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests.fipsbadpw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
Incorrect password/PIN entered.
certutil: could not authenticate to token NSS FIPS 140-2 Certificate DB.: SEC_ERROR_BAD_PASSWORD: The security password entered is incorrect.
fips.sh: #841: Attempt to list FIPS module keys with incorrect password (certutil -K) . - PASSED
certutil -K returned 255
fips.sh: Validate the certificate --------------------------
certutil -d ../fips -V -n FIPS_PUB_140_Test_Certificate -u SR -e -f ../tests.fipspw
certutil: certificate is valid
fips.sh: #842: Validate the certificate (certutil -V -e) . - PASSED
fips.sh: Export the certificate and key as a PKCS#12 file --
pk12util -d ../fips -o fips140.p12 -n FIPS_PUB_140_Test_Certificate -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 EXPORT SUCCESSFUL
fips.sh: #843: Export the certificate and key as a PKCS#12 file (pk12util -o) . - PASSED
fips.sh: Export the certificate as a DER-encoded file ------
certutil -d ../fips -L -n FIPS_PUB_140_Test_Certificate -r -o fips140.crt
fips.sh: #844: Export the certificate as a DER (certutil -L -r) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #845: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Delete the certificate and key from the FIPS module
certutil -d ../fips -F -n FIPS_PUB_140_Test_Certificate -f ../tests.fipspw
fips.sh: #846: Delete the certificate and key from the FIPS module (certutil -F) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #847: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys.
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
certutil: no keys found
fips.sh: #848: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #849: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #850: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      c4f24205802c27a60638268541dc2e203f03e8b6   FIPS_PUB_140_Test_Certificate
fips.sh: #851: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Delete the certificate from the FIPS module
certutil -d ../fips -D -n FIPS_PUB_140_Test_Certificate
fips.sh: #852: Delete the certificate from the FIPS module (certutil -D) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #853: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #854: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #855: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      c4f24205802c27a60638268541dc2e203f03e8b6   FIPS_PUB_140_Test_Certificate
fips.sh: #856: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Run PK11MODE in FIPSMODE  -----------------
pk11mode -d ../fips -p fips- -f ../tests.fipspw
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
**** Total number of TESTS ran in FIPS MODE is 106. ****
**** ALL TESTS PASSED ****
fips.sh: #857: Run PK11MODE in FIPS mode (pk11mode) . - PASSED
fips.sh: Run PK11MODE in Non FIPSMODE  -----------------
pk11mode -d ../fips -p nonfips- -f ../tests.fipspw -n
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
**** Total number of TESTS ran in NON FIPS MODE is 104. ****
**** ALL TESTS PASSED ****
fips.sh: #858: Run PK11MODE in Non FIPS mode (pk11mode -n) . - PASSED
mkdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest1.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
fips.sh: Detect mangled softoken--------------------------
mangling /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle/libsoftokn3.so
mangle -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle/libsoftokn3.so -o -8 -b 5
cp /usr/lib64/libsoftokn3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
Changing byte 0x0003fd70 (261488): from 00 (0) to 20 (32)
LD_LIBRARY_PATH=/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle dbtest -r -d ../fips
fips.sh: #859: Init NSS with a corrupted library (dbtest -r) . - PASSED
fips.sh done
TIMESTAMP fips END: Sun Aug  6 23:44:04 UTC 2017
Running tests for sdr
TIMESTAMP sdr BEGIN: Sun Aug  6 23:44:04 UTC 2017
sdr.sh: SDR Tests ===============================
sdr.sh: Creating an SDR key/SDR Encrypt - Value 1
sdrtest -d . -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests.v1.8843 -t "Test1"
sdr.sh: #860: Creating SDR Key/Encrypt - Value 1  - PASSED
sdr.sh: SDR Encrypt - Value 2
sdrtest -d . -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests.v2.8843 -t "The quick brown fox jumped over the lazy dog"
sdr.sh: #861: Encrypt - Value 2  - PASSED
sdr.sh: SDR Encrypt - Value 3
sdrtest -d . -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests.v3.8843 -t "1234567"
sdr.sh: #862: Encrypt - Value 3  - PASSED
sdr.sh: SDR Decrypt - Value 1
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests.v1.8843 -t "Test1"
sdr.sh: #863: Decrypt - Value 1  - PASSED
sdr.sh: SDR Decrypt - Value 2
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests.v2.8843 -t "The quick brown fox jumped over the lazy dog"
sdr.sh: #864: Decrypt - Value 2  - PASSED
sdr.sh: SDR Decrypt - Value 3
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests.v3.8843 -t "1234567"
sdr.sh: #865: Decrypt - Value 3  - PASSED
TIMESTAMP sdr END: Sun Aug  6 23:44:04 UTC 2017
Running tests for crmf
TIMESTAMP crmf BEGIN: Sun Aug  6 23:44:04 UTC 2017
crmf.sh: CRMF/CMMF Tests ===============================
crmf.sh: CRMF/CMMF Tests ------------------------------
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss crmf decode
crmftest v1.0
Generating CRMF request
Decoding CRMF request
crmftest: Processing cert request 0
crmftest: Processing cert request 1
Exiting successfully!!!
crmf.sh: #866: CRMF test . - PASSED
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss cmmf
crmftest v1.0
Doing CMMF Stuff
Exiting successfully!!!
crmf.sh: #867: CMMF test . - PASSED
TIMESTAMP crmf END: Sun Aug  6 23:44:04 UTC 2017
Running tests for smime
TIMESTAMP smime BEGIN: Sun Aug  6 23:44:04 UTC 2017
smime.sh: S/MIME Tests with ECC ===============================
smime.sh: Signing Detached Message {SHA1} ------------------
cmsutil -S -T -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA1
smime.sh: #868: Create Detached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #869: Verifying Alice's Detached Signature (SHA1) . - PASSED
smime.sh: Signing Attached Message (SHA1) ------------------
cmsutil -S -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA1
smime.sh: #870: Create Attached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.sig.SHA1 -d ../bobdir -o alice.data.SHA1
smime.sh: #871: Decode Alice's Attached Signature (SHA1) . - PASSED
diff alice.txt alice.data.SHA1
smime.sh: #872: Compare Attached Signed Data and Original (SHA1) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA1} ------------------
cmsutil -S -T -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA1
smime.sh: #873: Create Detached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #874: Verifying Alice's Detached Signature (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA1) ------------------
cmsutil -S -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA1
smime.sh: #875: Create Attached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.sig.SHA1 -d ../bobdir -o alice-ec.data.SHA1
smime.sh: #876: Decode Alice's Attached Signature (ECDSA w/ SHA1) . - PASSED
diff alice.txt alice-ec.data.SHA1
smime.sh: #877: Compare Attached Signed Data and Original (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Detached Message {SHA256} ------------------
cmsutil -S -T -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA256
smime.sh: #878: Create Detached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #879: Verifying Alice's Detached Signature (SHA256) . - PASSED
smime.sh: Signing Attached Message (SHA256) ------------------
cmsutil -S -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA256
smime.sh: #880: Create Attached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.sig.SHA256 -d ../bobdir -o alice.data.SHA256
smime.sh: #881: Decode Alice's Attached Signature (SHA256) . - PASSED
diff alice.txt alice.data.SHA256
smime.sh: #882: Compare Attached Signed Data and Original (SHA256) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA256} ------------------
cmsutil -S -T -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA256
smime.sh: #883: Create Detached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #884: Verifying Alice's Detached Signature (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA256) ------------------
cmsutil -S -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA256
smime.sh: #885: Create Attached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.sig.SHA256 -d ../bobdir -o alice-ec.data.SHA256
smime.sh: #886: Decode Alice's Attached Signature (ECDSA w/ SHA256) . - PASSED
diff alice.txt alice-ec.data.SHA256
smime.sh: #887: Compare Attached Signed Data and Original (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Detached Message {SHA384} ------------------
cmsutil -S -T -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA384
smime.sh: #888: Create Detached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #889: Verifying Alice's Detached Signature (SHA384) . - PASSED
smime.sh: Signing Attached Message (SHA384) ------------------
cmsutil -S -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA384
smime.sh: #890: Create Attached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.sig.SHA384 -d ../bobdir -o alice.data.SHA384
smime.sh: #891: Decode Alice's Attached Signature (SHA384) . - PASSED
diff alice.txt alice.data.SHA384
smime.sh: #892: Compare Attached Signed Data and Original (SHA384) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA384} ------------------
cmsutil -S -T -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA384
smime.sh: #893: Create Detached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #894: Verifying Alice's Detached Signature (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA384) ------------------
cmsutil -S -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA384
smime.sh: #895: Create Attached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.sig.SHA384 -d ../bobdir -o alice-ec.data.SHA384
smime.sh: #896: Decode Alice's Attached Signature (ECDSA w/ SHA384) . - PASSED
diff alice.txt alice-ec.data.SHA384
smime.sh: #897: Compare Attached Signed Data and Original (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Detached Message {SHA512} ------------------
cmsutil -S -T -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA512
smime.sh: #898: Create Detached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #899: Verifying Alice's Detached Signature (SHA512) . - PASSED
smime.sh: Signing Attached Message (SHA512) ------------------
cmsutil -S -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA512
smime.sh: #900: Create Attached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.sig.SHA512 -d ../bobdir -o alice.data.SHA512
smime.sh: #901: Decode Alice's Attached Signature (SHA512) . - PASSED
diff alice.txt alice.data.SHA512
smime.sh: #902: Compare Attached Signed Data and Original (SHA512) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA512} ------------------
cmsutil -S -T -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA512
smime.sh: #903: Create Detached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #904: Verifying Alice's Detached Signature (ECDSA w/ SHA512) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA512) ------------------
cmsutil -S -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA512
smime.sh: #905: Create Attached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.sig.SHA512 -d ../bobdir -o alice-ec.data.SHA512
smime.sh: #906: Decode Alice's Attached Signature (ECDSA w/ SHA512) . - PASSED
diff alice.txt alice-ec.data.SHA512
smime.sh: #907: Compare Attached Signed Data and Original (ECDSA w/ SHA512) . - PASSED
smime.sh: Enveloped Data Tests ------------------------------
cmsutil -E -r bob@bogus.com -i alice.txt -d ../alicedir -p nss \
        -o alice.env
smime.sh: #908: Create Enveloped Data Alice . - PASSED
cmsutil -D -i alice.env -d ../bobdir -p nss -o alice.data1
smime.sh: #909: Decode Enveloped Data Alice . - PASSED
diff alice.txt alice.data1
smime.sh: #910: Compare Decoded Enveloped Data and Original . - PASSED
smime.sh: Testing multiple recipients ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o alicecc.env \
        -r bob@bogus.com,dave@bogus.com
smime.sh: #911: Create Multiple Recipients Enveloped Data Alice . - PASSED
smime.sh: Testing multiple email addrs ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o aliceve.env \
        -r eve@bogus.net
smime.sh: #912: Encrypt to a Multiple Email cert . - PASSED
cmsutil -D -i alicecc.env -d ../bobdir -p nss -o alice.data2
smime.sh: #913: Decode Multiple Recipients Enveloped Data Alice by Bob . - PASSED
cmsutil -D -i alicecc.env -d ../dave -p nss -o alice.data3
smime.sh: #914: Decode Multiple Recipients Enveloped Data Alice by Dave . - PASSED
cmsutil -D -i aliceve.env -d ../eve -p nss -o alice.data4
smime.sh: #915: Decrypt with a Multiple Email cert . - PASSED
smime.sh: #916: Compare Decoded Mult. Recipients Enveloped Data Alice/Bob . - PASSED
smime.sh: #917: Compare Decoded Mult. Recipients Enveloped Data Alice/Dave . - PASSED
smime.sh: #918: Compare Decoded with Multiple Email cert . - PASSED
smime.sh: Sending CERTS-ONLY Message ------------------------------
cmsutil -O -r "Alice,bob@bogus.com,dave@bogus.com" \
        -d ../alicedir > co.der
smime.sh: #919: Create Certs-Only Alice . - PASSED
cmsutil -D -i co.der -d ../bobdir
smime.sh: #920: Verify Certs-Only by CA . - PASSED
smime.sh: Encrypted-Data Message ---------------------------------
cmsutil -C -i alice.txt -e alicehello.env -d ../alicedir \
        -r "bob@bogus.com" > alice.enc
smime.sh: #921: Create Encrypted-Data . - PASSED
cmsutil -D -i alice.enc -d ../bobdir -e alicehello.env -p nss \
        -o alice.data2
smime.sh: #922: Decode Encrypted-Data . - PASSED
smime.sh: #923: Compare Decoded and Original Data . - PASSED
smime.sh: p7 util Data Tests ------------------------------
p7env -d ../alicedir -r Alice -i alice.txt -o alice_p7.env
smime.sh: #924: Creating envelope for user Alice . - PASSED
p7content -d ../alicedir -i alice.env -o alice_p7.data
smime.sh: #925: Verifying file delivered to user Alice . - PASSED
diff alice.txt alice_p7.data.sed
smime.sh: #926: Compare Decoded Enveloped Data and Original . - PASSED
p7sign -d ../alicedir -k Alice -i alice.txt -o alice.sig -p nss -e
smime.sh: #927: Signing file for user Alice . - PASSED
p7verify -d ../alicedir -c alice.txt -s alice.sig
Signature is valid.
smime.sh: #928: Verifying file delivered to user Alice . - PASSED
TIMESTAMP smime END: Sun Aug  6 23:44:05 UTC 2017
Running tests for ssl
TIMESTAMP ssl BEGIN: Sun Aug  6 23:44:05 UTC 2017
ssl.sh: SSL tests ===============================
ssl.sh: CRL SSL Client Tests   - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:05 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19237 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19237 found at Sun Aug  6 23:44:05 UTC 2017
selfserv_9009 with PID 19237 started at Sun Aug  6 23:44:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #929: TLS Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 19237 at Sun Aug  6 23:44:05 UTC 2017
kill -USR1 19237
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 19237 killed at Sun Aug  6 23:44:05 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:05 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19293 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19293 found at Sun Aug  6 23:44:05 UTC 2017
selfserv_9009 with PID 19293 started at Sun Aug  6 23:44:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #930: TLS Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 19293 at Sun Aug  6 23:44:05 UTC 2017
kill -USR1 19293
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 19293 killed at Sun Aug  6 23:44:05 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:05 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19349 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19349 found at Sun Aug  6 23:44:05 UTC 2017
selfserv_9009 with PID 19349 started at Sun Aug  6 23:44:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #931: TLS Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 19349 at Sun Aug  6 23:44:06 UTC 2017
kill -USR1 19349
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 19349 killed at Sun Aug  6 23:44:06 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:06 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19417 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19417 found at Sun Aug  6 23:44:06 UTC 2017
selfserv_9009 with PID 19417 started at Sun Aug  6 23:44:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #932: TLS Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 19417 at Sun Aug  6 23:44:06 UTC 2017
kill -USR1 19417
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 19417 killed at Sun Aug  6 23:44:06 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:06 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19473 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19473 found at Sun Aug  6 23:44:06 UTC 2017
selfserv_9009 with PID 19473 started at Sun Aug  6 23:44:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #933: TLS Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 19473 at Sun Aug  6 23:44:06 UTC 2017
kill -USR1 19473
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 19473 killed at Sun Aug  6 23:44:06 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:06 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19529 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19529 found at Sun Aug  6 23:44:06 UTC 2017
selfserv_9009 with PID 19529 started at Sun Aug  6 23:44:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #934: TLS Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 19529 at Sun Aug  6 23:44:06 UTC 2017
kill -USR1 19529
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 19529 killed at Sun Aug  6 23:44:06 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:06 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19597 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19597 found at Sun Aug  6 23:44:06 UTC 2017
selfserv_9009 with PID 19597 started at Sun Aug  6 23:44:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #935: TLS Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 19597 at Sun Aug  6 23:44:06 UTC 2017
kill -USR1 19597
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 19597 killed at Sun Aug  6 23:44:06 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:06 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19653 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19653 found at Sun Aug  6 23:44:06 UTC 2017
selfserv_9009 with PID 19653 started at Sun Aug  6 23:44:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #936: TLS Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 19653 at Sun Aug  6 23:44:06 UTC 2017
kill -USR1 19653
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 19653 killed at Sun Aug  6 23:44:06 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:06 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19709 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19709 found at Sun Aug  6 23:44:06 UTC 2017
selfserv_9009 with PID 19709 started at Sun Aug  6 23:44:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #937: TLS Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 19709 at Sun Aug  6 23:44:06 UTC 2017
kill -USR1 19709
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 19709 killed at Sun Aug  6 23:44:06 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:06 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19777 found at Sun Aug  6 23:44:06 UTC 2017
selfserv_9009 with PID 19777 started at Sun Aug  6 23:44:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #938: TLS Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 19777 at Sun Aug  6 23:44:06 UTC 2017
kill -USR1 19777
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 19777 killed at Sun Aug  6 23:44:06 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:06 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19833 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19833 found at Sun Aug  6 23:44:06 UTC 2017
selfserv_9009 with PID 19833 started at Sun Aug  6 23:44:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #939: TLS Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 19833 at Sun Aug  6 23:44:06 UTC 2017
kill -USR1 19833
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 19833 killed at Sun Aug  6 23:44:07 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:07 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19889 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19889 found at Sun Aug  6 23:44:07 UTC 2017
selfserv_9009 with PID 19889 started at Sun Aug  6 23:44:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #940: TLS Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 19889 at Sun Aug  6 23:44:07 UTC 2017
kill -USR1 19889
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 19889 killed at Sun Aug  6 23:44:07 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:07 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19958 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19958 found at Sun Aug  6 23:44:07 UTC 2017
selfserv_9009 with PID 19958 started at Sun Aug  6 23:44:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #941: TLS Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 19958 at Sun Aug  6 23:44:07 UTC 2017
kill -USR1 19958
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 19958 killed at Sun Aug  6 23:44:07 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:07 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20014 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20014 found at Sun Aug  6 23:44:07 UTC 2017
selfserv_9009 with PID 20014 started at Sun Aug  6 23:44:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #942: TLS Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 20014 at Sun Aug  6 23:44:07 UTC 2017
kill -USR1 20014
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20014 killed at Sun Aug  6 23:44:07 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:07 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20070 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20070 found at Sun Aug  6 23:44:07 UTC 2017
selfserv_9009 with PID 20070 started at Sun Aug  6 23:44:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #943: TLS Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 20070 at Sun Aug  6 23:44:07 UTC 2017
kill -USR1 20070
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20070 killed at Sun Aug  6 23:44:07 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:07 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20139 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20139 found at Sun Aug  6 23:44:07 UTC 2017
selfserv_9009 with PID 20139 started at Sun Aug  6 23:44:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #944: TLS Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 20139 at Sun Aug  6 23:44:07 UTC 2017
kill -USR1 20139
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20139 killed at Sun Aug  6 23:44:07 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:07 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20195 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20195 found at Sun Aug  6 23:44:07 UTC 2017
selfserv_9009 with PID 20195 started at Sun Aug  6 23:44:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #945: TLS Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 20195 at Sun Aug  6 23:44:07 UTC 2017
kill -USR1 20195
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20195 killed at Sun Aug  6 23:44:07 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:07 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20251 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20251 found at Sun Aug  6 23:44:07 UTC 2017
selfserv_9009 with PID 20251 started at Sun Aug  6 23:44:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #946: TLS Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 20251 at Sun Aug  6 23:44:07 UTC 2017
kill -USR1 20251
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20251 killed at Sun Aug  6 23:44:07 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:07 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20319 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20319 found at Sun Aug  6 23:44:07 UTC 2017
selfserv_9009 with PID 20319 started at Sun Aug  6 23:44:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #947: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 20319 at Sun Aug  6 23:44:07 UTC 2017
kill -USR1 20319
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20319 killed at Sun Aug  6 23:44:07 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:07 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20375 found at Sun Aug  6 23:44:07 UTC 2017
selfserv_9009 with PID 20375 started at Sun Aug  6 23:44:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #948: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 20375 at Sun Aug  6 23:44:07 UTC 2017
kill -USR1 20375
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20375 killed at Sun Aug  6 23:44:07 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:07 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20431 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20431 found at Sun Aug  6 23:44:07 UTC 2017
selfserv_9009 with PID 20431 started at Sun Aug  6 23:44:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #949: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 20431 at Sun Aug  6 23:44:08 UTC 2017
kill -USR1 20431
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20431 killed at Sun Aug  6 23:44:08 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:08 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20500 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20500 found at Sun Aug  6 23:44:08 UTC 2017
selfserv_9009 with PID 20500 started at Sun Aug  6 23:44:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #950: SSL3 Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 20500 at Sun Aug  6 23:44:08 UTC 2017
kill -USR1 20500
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20500 killed at Sun Aug  6 23:44:08 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:08 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20557 found at Sun Aug  6 23:44:08 UTC 2017
selfserv_9009 with PID 20557 started at Sun Aug  6 23:44:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #951: SSL3 Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 20557 at Sun Aug  6 23:44:08 UTC 2017
kill -USR1 20557
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20557 killed at Sun Aug  6 23:44:08 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:08 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20613 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20613 found at Sun Aug  6 23:44:08 UTC 2017
selfserv_9009 with PID 20613 started at Sun Aug  6 23:44:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #952: SSL3 Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 20613 at Sun Aug  6 23:44:08 UTC 2017
kill -USR1 20613
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20613 killed at Sun Aug  6 23:44:08 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:08 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20681 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20681 found at Sun Aug  6 23:44:08 UTC 2017
selfserv_9009 with PID 20681 started at Sun Aug  6 23:44:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #953: SSL3 Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 20681 at Sun Aug  6 23:44:08 UTC 2017
kill -USR1 20681
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20681 killed at Sun Aug  6 23:44:08 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:08 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20737 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20737 found at Sun Aug  6 23:44:08 UTC 2017
selfserv_9009 with PID 20737 started at Sun Aug  6 23:44:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #954: SSL3 Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 20737 at Sun Aug  6 23:44:08 UTC 2017
kill -USR1 20737
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20737 killed at Sun Aug  6 23:44:08 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:08 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20793 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20793 found at Sun Aug  6 23:44:08 UTC 2017
selfserv_9009 with PID 20793 started at Sun Aug  6 23:44:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #955: SSL3 Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 20793 at Sun Aug  6 23:44:08 UTC 2017
kill -USR1 20793
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20793 killed at Sun Aug  6 23:44:08 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:08 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20861 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20861 found at Sun Aug  6 23:44:08 UTC 2017
selfserv_9009 with PID 20861 started at Sun Aug  6 23:44:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #956: SSL3 Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 20861 at Sun Aug  6 23:44:09 UTC 2017
kill -USR1 20861
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20861 killed at Sun Aug  6 23:44:09 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:09 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20917 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20917 found at Sun Aug  6 23:44:09 UTC 2017
selfserv_9009 with PID 20917 started at Sun Aug  6 23:44:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #957: SSL3 Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 20917 at Sun Aug  6 23:44:09 UTC 2017
kill -USR1 20917
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20917 killed at Sun Aug  6 23:44:09 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:09 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20973 found at Sun Aug  6 23:44:09 UTC 2017
selfserv_9009 with PID 20973 started at Sun Aug  6 23:44:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #958: SSL3 Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 20973 at Sun Aug  6 23:44:09 UTC 2017
kill -USR1 20973
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20973 killed at Sun Aug  6 23:44:09 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:09 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21041 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21041 found at Sun Aug  6 23:44:09 UTC 2017
selfserv_9009 with PID 21041 started at Sun Aug  6 23:44:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #959: SSL3 Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 21041 at Sun Aug  6 23:44:09 UTC 2017
kill -USR1 21041
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21041 killed at Sun Aug  6 23:44:09 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:09 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21097 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21097 found at Sun Aug  6 23:44:09 UTC 2017
selfserv_9009 with PID 21097 started at Sun Aug  6 23:44:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #960: SSL3 Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 21097 at Sun Aug  6 23:44:09 UTC 2017
kill -USR1 21097
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21097 killed at Sun Aug  6 23:44:09 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:09 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21153 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21153 found at Sun Aug  6 23:44:09 UTC 2017
selfserv_9009 with PID 21153 started at Sun Aug  6 23:44:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #961: SSL3 Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 21153 at Sun Aug  6 23:44:09 UTC 2017
kill -USR1 21153
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21153 killed at Sun Aug  6 23:44:09 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:09 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21221 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21221 found at Sun Aug  6 23:44:09 UTC 2017
selfserv_9009 with PID 21221 started at Sun Aug  6 23:44:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #962: SSL3 Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 21221 at Sun Aug  6 23:44:09 UTC 2017
kill -USR1 21221
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21221 killed at Sun Aug  6 23:44:09 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:09 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21277 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21277 found at Sun Aug  6 23:44:09 UTC 2017
selfserv_9009 with PID 21277 started at Sun Aug  6 23:44:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #963: SSL3 Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 21277 at Sun Aug  6 23:44:09 UTC 2017
kill -USR1 21277
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21277 killed at Sun Aug  6 23:44:09 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:09 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21333 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21333 found at Sun Aug  6 23:44:09 UTC 2017
selfserv_9009 with PID 21333 started at Sun Aug  6 23:44:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #964: SSL3 Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 21333 at Sun Aug  6 23:44:09 UTC 2017
kill -USR1 21333
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21333 killed at Sun Aug  6 23:44:09 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:09 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21402 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21402 found at Sun Aug  6 23:44:09 UTC 2017
selfserv_9009 with PID 21402 started at Sun Aug  6 23:44:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #965: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 21402 at Sun Aug  6 23:44:09 UTC 2017
kill -USR1 21402
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21402 killed at Sun Aug  6 23:44:09 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:09 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21458 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21458 found at Sun Aug  6 23:44:09 UTC 2017
selfserv_9009 with PID 21458 started at Sun Aug  6 23:44:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #966: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 21458 at Sun Aug  6 23:44:10 UTC 2017
kill -USR1 21458
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21458 killed at Sun Aug  6 23:44:10 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:10 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21514 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21514 found at Sun Aug  6 23:44:10 UTC 2017
selfserv_9009 with PID 21514 started at Sun Aug  6 23:44:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #967: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 21514 at Sun Aug  6 23:44:10 UTC 2017
kill -USR1 21514
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21514 killed at Sun Aug  6 23:44:10 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:10 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21582 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21582 found at Sun Aug  6 23:44:10 UTC 2017
selfserv_9009 with PID 21582 started at Sun Aug  6 23:44:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #968: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 21582 at Sun Aug  6 23:44:10 UTC 2017
kill -USR1 21582
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21582 killed at Sun Aug  6 23:44:10 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:10 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21638 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21638 found at Sun Aug  6 23:44:10 UTC 2017
selfserv_9009 with PID 21638 started at Sun Aug  6 23:44:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #969: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 21638 at Sun Aug  6 23:44:10 UTC 2017
kill -USR1 21638
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21638 killed at Sun Aug  6 23:44:10 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:10 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21694 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21694 found at Sun Aug  6 23:44:10 UTC 2017
selfserv_9009 with PID 21694 started at Sun Aug  6 23:44:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #970: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 21694 at Sun Aug  6 23:44:10 UTC 2017
kill -USR1 21694
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21694 killed at Sun Aug  6 23:44:10 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:10 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21762 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21762 found at Sun Aug  6 23:44:10 UTC 2017
selfserv_9009 with PID 21762 started at Sun Aug  6 23:44:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #971: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 21762 at Sun Aug  6 23:44:10 UTC 2017
kill -USR1 21762
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21762 killed at Sun Aug  6 23:44:10 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:10 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21818 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21818 found at Sun Aug  6 23:44:10 UTC 2017
selfserv_9009 with PID 21818 started at Sun Aug  6 23:44:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #972: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 21818 at Sun Aug  6 23:44:10 UTC 2017
kill -USR1 21818
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21818 killed at Sun Aug  6 23:44:10 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:10 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21874 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21874 found at Sun Aug  6 23:44:10 UTC 2017
selfserv_9009 with PID 21874 started at Sun Aug  6 23:44:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #973: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 21874 at Sun Aug  6 23:44:11 UTC 2017
kill -USR1 21874
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21874 killed at Sun Aug  6 23:44:11 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:11 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21944 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21944 found at Sun Aug  6 23:44:11 UTC 2017
selfserv_9009 with PID 21944 started at Sun Aug  6 23:44:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #974: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 21944 at Sun Aug  6 23:44:11 UTC 2017
kill -USR1 21944
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21944 killed at Sun Aug  6 23:44:11 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:11 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22001 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22001 found at Sun Aug  6 23:44:11 UTC 2017
selfserv_9009 with PID 22001 started at Sun Aug  6 23:44:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #975: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 22001 at Sun Aug  6 23:44:11 UTC 2017
kill -USR1 22001
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22001 killed at Sun Aug  6 23:44:11 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:11 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22057 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22057 found at Sun Aug  6 23:44:11 UTC 2017
selfserv_9009 with PID 22057 started at Sun Aug  6 23:44:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #976: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 22057 at Sun Aug  6 23:44:11 UTC 2017
kill -USR1 22057
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22057 killed at Sun Aug  6 23:44:11 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:11 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22125 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22125 found at Sun Aug  6 23:44:11 UTC 2017
selfserv_9009 with PID 22125 started at Sun Aug  6 23:44:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #977: TLS Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 22125 at Sun Aug  6 23:44:11 UTC 2017
kill -USR1 22125
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22125 killed at Sun Aug  6 23:44:11 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:11 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22181 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22181 found at Sun Aug  6 23:44:11 UTC 2017
selfserv_9009 with PID 22181 started at Sun Aug  6 23:44:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #978: TLS Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 22181 at Sun Aug  6 23:44:11 UTC 2017
kill -USR1 22181
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22181 killed at Sun Aug  6 23:44:11 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:11 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22237 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22237 found at Sun Aug  6 23:44:11 UTC 2017
selfserv_9009 with PID 22237 started at Sun Aug  6 23:44:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #979: TLS Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 22237 at Sun Aug  6 23:44:11 UTC 2017
kill -USR1 22237
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22237 killed at Sun Aug  6 23:44:11 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:11 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22305 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22305 found at Sun Aug  6 23:44:11 UTC 2017
selfserv_9009 with PID 22305 started at Sun Aug  6 23:44:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #980: TLS Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 22305 at Sun Aug  6 23:44:11 UTC 2017
kill -USR1 22305
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22305 killed at Sun Aug  6 23:44:11 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:11 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22361 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22361 found at Sun Aug  6 23:44:11 UTC 2017
selfserv_9009 with PID 22361 started at Sun Aug  6 23:44:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #981: TLS Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 22361 at Sun Aug  6 23:44:12 UTC 2017
kill -USR1 22361
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22361 killed at Sun Aug  6 23:44:12 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:12 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:12 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22417 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22417 found at Sun Aug  6 23:44:12 UTC 2017
selfserv_9009 with PID 22417 started at Sun Aug  6 23:44:12 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #982: TLS Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 22417 at Sun Aug  6 23:44:12 UTC 2017
kill -USR1 22417
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22417 killed at Sun Aug  6 23:44:12 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:12 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:12 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22485 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22485 found at Sun Aug  6 23:44:12 UTC 2017
selfserv_9009 with PID 22485 started at Sun Aug  6 23:44:12 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #983: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 22485 at Sun Aug  6 23:44:12 UTC 2017
kill -USR1 22485
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22485 killed at Sun Aug  6 23:44:12 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:12 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:12 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22542 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22542 found at Sun Aug  6 23:44:12 UTC 2017
selfserv_9009 with PID 22542 started at Sun Aug  6 23:44:12 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #984: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 22542 at Sun Aug  6 23:44:12 UTC 2017
kill -USR1 22542
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22542 killed at Sun Aug  6 23:44:12 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:12 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:12 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22598 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22598 found at Sun Aug  6 23:44:12 UTC 2017
selfserv_9009 with PID 22598 started at Sun Aug  6 23:44:12 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #985: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 22598 at Sun Aug  6 23:44:12 UTC 2017
kill -USR1 22598
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22598 killed at Sun Aug  6 23:44:12 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:12 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:12 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22666 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22666 found at Sun Aug  6 23:44:12 UTC 2017
selfserv_9009 with PID 22666 started at Sun Aug  6 23:44:12 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #986: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 22666 at Sun Aug  6 23:44:12 UTC 2017
kill -USR1 22666
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22666 killed at Sun Aug  6 23:44:12 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:12 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:12 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22722 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22722 found at Sun Aug  6 23:44:12 UTC 2017
selfserv_9009 with PID 22722 started at Sun Aug  6 23:44:12 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #987: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 22722 at Sun Aug  6 23:44:12 UTC 2017
kill -USR1 22722
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22722 killed at Sun Aug  6 23:44:12 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:12 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:12 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22778 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22778 found at Sun Aug  6 23:44:12 UTC 2017
selfserv_9009 with PID 22778 started at Sun Aug  6 23:44:12 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #988: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 22778 at Sun Aug  6 23:44:13 UTC 2017
kill -USR1 22778
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22778 killed at Sun Aug  6 23:44:13 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:13 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22847 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22847 found at Sun Aug  6 23:44:13 UTC 2017
selfserv_9009 with PID 22847 started at Sun Aug  6 23:44:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #989: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 22847 at Sun Aug  6 23:44:13 UTC 2017
kill -USR1 22847
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22847 killed at Sun Aug  6 23:44:13 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:13 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22903 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22903 found at Sun Aug  6 23:44:13 UTC 2017
selfserv_9009 with PID 22903 started at Sun Aug  6 23:44:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #990: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 22903 at Sun Aug  6 23:44:13 UTC 2017
kill -USR1 22903
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22903 killed at Sun Aug  6 23:44:13 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:13 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22959 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22959 found at Sun Aug  6 23:44:13 UTC 2017
selfserv_9009 with PID 22959 started at Sun Aug  6 23:44:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #991: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 22959 at Sun Aug  6 23:44:13 UTC 2017
kill -USR1 22959
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22959 killed at Sun Aug  6 23:44:13 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:13 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23027 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23027 found at Sun Aug  6 23:44:13 UTC 2017
selfserv_9009 with PID 23027 started at Sun Aug  6 23:44:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #992: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 23027 at Sun Aug  6 23:44:13 UTC 2017
kill -USR1 23027
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23027 killed at Sun Aug  6 23:44:13 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:13 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23084 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23084 found at Sun Aug  6 23:44:13 UTC 2017
selfserv_9009 with PID 23084 started at Sun Aug  6 23:44:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #993: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 23084 at Sun Aug  6 23:44:13 UTC 2017
kill -USR1 23084
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23084 killed at Sun Aug  6 23:44:13 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:13 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23140 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23140 found at Sun Aug  6 23:44:13 UTC 2017
selfserv_9009 with PID 23140 started at Sun Aug  6 23:44:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #994: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 23140 at Sun Aug  6 23:44:13 UTC 2017
kill -USR1 23140
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23140 killed at Sun Aug  6 23:44:13 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:13 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23209 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23209 found at Sun Aug  6 23:44:13 UTC 2017
selfserv_9009 with PID 23209 started at Sun Aug  6 23:44:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #995: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 23209 at Sun Aug  6 23:44:13 UTC 2017
kill -USR1 23209
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23209 killed at Sun Aug  6 23:44:13 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:13 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23265 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23265 found at Sun Aug  6 23:44:14 UTC 2017
selfserv_9009 with PID 23265 started at Sun Aug  6 23:44:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #996: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 23265 at Sun Aug  6 23:44:14 UTC 2017
kill -USR1 23265
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23265 killed at Sun Aug  6 23:44:14 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:14 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23321 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23321 found at Sun Aug  6 23:44:14 UTC 2017
selfserv_9009 with PID 23321 started at Sun Aug  6 23:44:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #997: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 23321 at Sun Aug  6 23:44:14 UTC 2017
kill -USR1 23321
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23321 killed at Sun Aug  6 23:44:14 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:14 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23389 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23389 found at Sun Aug  6 23:44:14 UTC 2017
selfserv_9009 with PID 23389 started at Sun Aug  6 23:44:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #998: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 23389 at Sun Aug  6 23:44:14 UTC 2017
kill -USR1 23389
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23389 killed at Sun Aug  6 23:44:14 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:14 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23447 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23447 found at Sun Aug  6 23:44:14 UTC 2017
selfserv_9009 with PID 23447 started at Sun Aug  6 23:44:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #999: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 23447 at Sun Aug  6 23:44:14 UTC 2017
kill -USR1 23447
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23447 killed at Sun Aug  6 23:44:14 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:14 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23503 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23503 found at Sun Aug  6 23:44:14 UTC 2017
selfserv_9009 with PID 23503 started at Sun Aug  6 23:44:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1000: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 23503 at Sun Aug  6 23:44:14 UTC 2017
kill -USR1 23503
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23503 killed at Sun Aug  6 23:44:14 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:14 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23571 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23571 found at Sun Aug  6 23:44:14 UTC 2017
selfserv_9009 with PID 23571 started at Sun Aug  6 23:44:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1001: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 23571 at Sun Aug  6 23:44:14 UTC 2017
kill -USR1 23571
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23571 killed at Sun Aug  6 23:44:14 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:14 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23627 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23627 found at Sun Aug  6 23:44:14 UTC 2017
selfserv_9009 with PID 23627 started at Sun Aug  6 23:44:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1002: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 23627 at Sun Aug  6 23:44:14 UTC 2017
kill -USR1 23627
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23627 killed at Sun Aug  6 23:44:14 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:14 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23683 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23683 found at Sun Aug  6 23:44:14 UTC 2017
selfserv_9009 with PID 23683 started at Sun Aug  6 23:44:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1003: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 23683 at Sun Aug  6 23:44:14 UTC 2017
kill -USR1 23683
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23683 killed at Sun Aug  6 23:44:14 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:14 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23751 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23751 found at Sun Aug  6 23:44:14 UTC 2017
selfserv_9009 with PID 23751 started at Sun Aug  6 23:44:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1004: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 23751 at Sun Aug  6 23:44:15 UTC 2017
kill -USR1 23751
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23751 killed at Sun Aug  6 23:44:15 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23807 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23807 found at Sun Aug  6 23:44:15 UTC 2017
selfserv_9009 with PID 23807 started at Sun Aug  6 23:44:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1005: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 23807 at Sun Aug  6 23:44:15 UTC 2017
kill -USR1 23807
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23807 killed at Sun Aug  6 23:44:15 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23863 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23863 found at Sun Aug  6 23:44:15 UTC 2017
selfserv_9009 with PID 23863 started at Sun Aug  6 23:44:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1006: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 23863 at Sun Aug  6 23:44:15 UTC 2017
kill -USR1 23863
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23863 killed at Sun Aug  6 23:44:15 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23931 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23931 found at Sun Aug  6 23:44:15 UTC 2017
selfserv_9009 with PID 23931 started at Sun Aug  6 23:44:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1007: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 23931 at Sun Aug  6 23:44:15 UTC 2017
kill -USR1 23931
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23931 killed at Sun Aug  6 23:44:15 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23987 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23987 found at Sun Aug  6 23:44:15 UTC 2017
selfserv_9009 with PID 23987 started at Sun Aug  6 23:44:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1008: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 23987 at Sun Aug  6 23:44:15 UTC 2017
kill -USR1 23987
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23987 killed at Sun Aug  6 23:44:15 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24044 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24044 found at Sun Aug  6 23:44:15 UTC 2017
selfserv_9009 with PID 24044 started at Sun Aug  6 23:44:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1009: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 24044 at Sun Aug  6 23:44:15 UTC 2017
kill -USR1 24044
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24044 killed at Sun Aug  6 23:44:15 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24112 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24112 found at Sun Aug  6 23:44:15 UTC 2017
selfserv_9009 with PID 24112 started at Sun Aug  6 23:44:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1010: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 24112 at Sun Aug  6 23:44:15 UTC 2017
kill -USR1 24112
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24112 killed at Sun Aug  6 23:44:15 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24168 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24168 found at Sun Aug  6 23:44:15 UTC 2017
selfserv_9009 with PID 24168 started at Sun Aug  6 23:44:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1011: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 24168 at Sun Aug  6 23:44:15 UTC 2017
kill -USR1 24168
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24168 killed at Sun Aug  6 23:44:15 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24224 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24224 found at Sun Aug  6 23:44:15 UTC 2017
selfserv_9009 with PID 24224 started at Sun Aug  6 23:44:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1012: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 24224 at Sun Aug  6 23:44:15 UTC 2017
kill -USR1 24224
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24224 killed at Sun Aug  6 23:44:15 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24292 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24292 found at Sun Aug  6 23:44:15 UTC 2017
selfserv_9009 with PID 24292 started at Sun Aug  6 23:44:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1013: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 24292 at Sun Aug  6 23:44:15 UTC 2017
kill -USR1 24292
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24292 killed at Sun Aug  6 23:44:15 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:16 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24348 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24348 found at Sun Aug  6 23:44:16 UTC 2017
selfserv_9009 with PID 24348 started at Sun Aug  6 23:44:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1014: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 24348 at Sun Aug  6 23:44:16 UTC 2017
kill -USR1 24348
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24348 killed at Sun Aug  6 23:44:16 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:16 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24404 found at Sun Aug  6 23:44:16 UTC 2017
selfserv_9009 with PID 24404 started at Sun Aug  6 23:44:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1015: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 24404 at Sun Aug  6 23:44:16 UTC 2017
kill -USR1 24404
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24404 killed at Sun Aug  6 23:44:16 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:16 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24472 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24472 found at Sun Aug  6 23:44:16 UTC 2017
selfserv_9009 with PID 24472 started at Sun Aug  6 23:44:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1016: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 24472 at Sun Aug  6 23:44:16 UTC 2017
kill -USR1 24472
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24472 killed at Sun Aug  6 23:44:16 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:16 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24528 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24528 found at Sun Aug  6 23:44:16 UTC 2017
selfserv_9009 with PID 24528 started at Sun Aug  6 23:44:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1017: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 24528 at Sun Aug  6 23:44:16 UTC 2017
kill -USR1 24528
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24528 killed at Sun Aug  6 23:44:16 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:16 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24586 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24586 found at Sun Aug  6 23:44:16 UTC 2017
selfserv_9009 with PID 24586 started at Sun Aug  6 23:44:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1018: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 24586 at Sun Aug  6 23:44:16 UTC 2017
kill -USR1 24586
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24586 killed at Sun Aug  6 23:44:16 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:16 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24663 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24663 found at Sun Aug  6 23:44:16 UTC 2017
selfserv_9009 with PID 24663 started at Sun Aug  6 23:44:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1019: TLS Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 24663 at Sun Aug  6 23:44:16 UTC 2017
kill -USR1 24663
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24663 killed at Sun Aug  6 23:44:16 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:16 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24719 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24719 found at Sun Aug  6 23:44:16 UTC 2017
selfserv_9009 with PID 24719 started at Sun Aug  6 23:44:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1020: TLS Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 24719 at Sun Aug  6 23:44:16 UTC 2017
kill -USR1 24719
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24719 killed at Sun Aug  6 23:44:16 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:16 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24775 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24775 found at Sun Aug  6 23:44:16 UTC 2017
selfserv_9009 with PID 24775 started at Sun Aug  6 23:44:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1021: TLS Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 24775 at Sun Aug  6 23:44:16 UTC 2017
kill -USR1 24775
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24775 killed at Sun Aug  6 23:44:16 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:16 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24843 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24843 found at Sun Aug  6 23:44:16 UTC 2017
selfserv_9009 with PID 24843 started at Sun Aug  6 23:44:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1022: TLS Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 24843 at Sun Aug  6 23:44:16 UTC 2017
kill -USR1 24843
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24843 killed at Sun Aug  6 23:44:17 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:17 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24899 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24899 found at Sun Aug  6 23:44:17 UTC 2017
selfserv_9009 with PID 24899 started at Sun Aug  6 23:44:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1023: TLS Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 24899 at Sun Aug  6 23:44:17 UTC 2017
kill -USR1 24899
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24899 killed at Sun Aug  6 23:44:17 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:17 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24955 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24955 found at Sun Aug  6 23:44:17 UTC 2017
selfserv_9009 with PID 24955 started at Sun Aug  6 23:44:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1024: TLS Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 24955 at Sun Aug  6 23:44:17 UTC 2017
kill -USR1 24955
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24955 killed at Sun Aug  6 23:44:17 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:17 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25024 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25024 found at Sun Aug  6 23:44:17 UTC 2017
selfserv_9009 with PID 25024 started at Sun Aug  6 23:44:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1025: TLS Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 25024 at Sun Aug  6 23:44:17 UTC 2017
kill -USR1 25024
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25024 killed at Sun Aug  6 23:44:17 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:17 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25080 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25080 found at Sun Aug  6 23:44:17 UTC 2017
selfserv_9009 with PID 25080 started at Sun Aug  6 23:44:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1026: TLS Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 25080 at Sun Aug  6 23:44:17 UTC 2017
kill -USR1 25080
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25080 killed at Sun Aug  6 23:44:17 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:17 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25136 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25136 found at Sun Aug  6 23:44:17 UTC 2017
selfserv_9009 with PID 25136 started at Sun Aug  6 23:44:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1027: TLS Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 25136 at Sun Aug  6 23:44:17 UTC 2017
kill -USR1 25136
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25136 killed at Sun Aug  6 23:44:17 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:17 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25205 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25205 found at Sun Aug  6 23:44:17 UTC 2017
selfserv_9009 with PID 25205 started at Sun Aug  6 23:44:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1028: TLS Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 25205 at Sun Aug  6 23:44:17 UTC 2017
kill -USR1 25205
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25205 killed at Sun Aug  6 23:44:17 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:17 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25261 found at Sun Aug  6 23:44:17 UTC 2017
selfserv_9009 with PID 25261 started at Sun Aug  6 23:44:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1029: TLS Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 25261 at Sun Aug  6 23:44:17 UTC 2017
kill -USR1 25261
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25261 killed at Sun Aug  6 23:44:17 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:17 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25317 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25317 found at Sun Aug  6 23:44:17 UTC 2017
selfserv_9009 with PID 25317 started at Sun Aug  6 23:44:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1030: TLS Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 25317 at Sun Aug  6 23:44:17 UTC 2017
kill -USR1 25317
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25317 killed at Sun Aug  6 23:44:17 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:17 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25385 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25385 found at Sun Aug  6 23:44:17 UTC 2017
selfserv_9009 with PID 25385 started at Sun Aug  6 23:44:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1031: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 25385 at Sun Aug  6 23:44:18 UTC 2017
kill -USR1 25385
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25385 killed at Sun Aug  6 23:44:18 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:18 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25442 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25442 found at Sun Aug  6 23:44:18 UTC 2017
selfserv_9009 with PID 25442 started at Sun Aug  6 23:44:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1032: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 25442 at Sun Aug  6 23:44:18 UTC 2017
kill -USR1 25442
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25442 killed at Sun Aug  6 23:44:18 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:18 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25498 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25498 found at Sun Aug  6 23:44:18 UTC 2017
selfserv_9009 with PID 25498 started at Sun Aug  6 23:44:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1033: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 25498 at Sun Aug  6 23:44:18 UTC 2017
kill -USR1 25498
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25498 killed at Sun Aug  6 23:44:18 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:18 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25566 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25566 found at Sun Aug  6 23:44:18 UTC 2017
selfserv_9009 with PID 25566 started at Sun Aug  6 23:44:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1034: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 25566 at Sun Aug  6 23:44:18 UTC 2017
kill -USR1 25566
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25566 killed at Sun Aug  6 23:44:18 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:18 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25622 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25622 found at Sun Aug  6 23:44:18 UTC 2017
selfserv_9009 with PID 25622 started at Sun Aug  6 23:44:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1035: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 25622 at Sun Aug  6 23:44:18 UTC 2017
kill -USR1 25622
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25622 killed at Sun Aug  6 23:44:18 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:18 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25678 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25678 found at Sun Aug  6 23:44:18 UTC 2017
selfserv_9009 with PID 25678 started at Sun Aug  6 23:44:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1036: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 25678 at Sun Aug  6 23:44:18 UTC 2017
kill -USR1 25678
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25678 killed at Sun Aug  6 23:44:18 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:18 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25746 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25746 found at Sun Aug  6 23:44:18 UTC 2017
selfserv_9009 with PID 25746 started at Sun Aug  6 23:44:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1037: SSL3 Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 25746 at Sun Aug  6 23:44:18 UTC 2017
kill -USR1 25746
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25746 killed at Sun Aug  6 23:44:18 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:18 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25802 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25802 found at Sun Aug  6 23:44:18 UTC 2017
selfserv_9009 with PID 25802 started at Sun Aug  6 23:44:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1038: SSL3 Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 25802 at Sun Aug  6 23:44:18 UTC 2017
kill -USR1 25802
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25802 killed at Sun Aug  6 23:44:18 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:18 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25858 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25858 found at Sun Aug  6 23:44:18 UTC 2017
selfserv_9009 with PID 25858 started at Sun Aug  6 23:44:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1039: SSL3 Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 25858 at Sun Aug  6 23:44:18 UTC 2017
kill -USR1 25858
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25858 killed at Sun Aug  6 23:44:18 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:18 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25926 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25926 found at Sun Aug  6 23:44:18 UTC 2017
selfserv_9009 with PID 25926 started at Sun Aug  6 23:44:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1040: SSL3 Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 25926 at Sun Aug  6 23:44:19 UTC 2017
kill -USR1 25926
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25926 killed at Sun Aug  6 23:44:19 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:19 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25982 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25982 found at Sun Aug  6 23:44:19 UTC 2017
selfserv_9009 with PID 25982 started at Sun Aug  6 23:44:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1041: SSL3 Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 25982 at Sun Aug  6 23:44:19 UTC 2017
kill -USR1 25982
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25982 killed at Sun Aug  6 23:44:19 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:19 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26038 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26038 found at Sun Aug  6 23:44:19 UTC 2017
selfserv_9009 with PID 26038 started at Sun Aug  6 23:44:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1042: SSL3 Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 26038 at Sun Aug  6 23:44:19 UTC 2017
kill -USR1 26038
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26038 killed at Sun Aug  6 23:44:19 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:19 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26106 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26106 found at Sun Aug  6 23:44:19 UTC 2017
selfserv_9009 with PID 26106 started at Sun Aug  6 23:44:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1043: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 26106 at Sun Aug  6 23:44:19 UTC 2017
kill -USR1 26106
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26106 killed at Sun Aug  6 23:44:19 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:19 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26162 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26162 found at Sun Aug  6 23:44:19 UTC 2017
selfserv_9009 with PID 26162 started at Sun Aug  6 23:44:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1044: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 26162 at Sun Aug  6 23:44:19 UTC 2017
kill -USR1 26162
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26162 killed at Sun Aug  6 23:44:19 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:19 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26218 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26218 found at Sun Aug  6 23:44:19 UTC 2017
selfserv_9009 with PID 26218 started at Sun Aug  6 23:44:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1045: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 26218 at Sun Aug  6 23:44:19 UTC 2017
kill -USR1 26218
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26218 killed at Sun Aug  6 23:44:19 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:19 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26286 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26286 found at Sun Aug  6 23:44:19 UTC 2017
selfserv_9009 with PID 26286 started at Sun Aug  6 23:44:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1046: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 26286 at Sun Aug  6 23:44:19 UTC 2017
kill -USR1 26286
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26286 killed at Sun Aug  6 23:44:19 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:19 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26342 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26342 found at Sun Aug  6 23:44:19 UTC 2017
selfserv_9009 with PID 26342 started at Sun Aug  6 23:44:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1047: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 26342 at Sun Aug  6 23:44:19 UTC 2017
kill -USR1 26342
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26342 killed at Sun Aug  6 23:44:19 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:19 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26398 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26398 found at Sun Aug  6 23:44:19 UTC 2017
selfserv_9009 with PID 26398 started at Sun Aug  6 23:44:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1048: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 26398 at Sun Aug  6 23:44:20 UTC 2017
kill -USR1 26398
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26398 killed at Sun Aug  6 23:44:20 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:20 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26466 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26466 found at Sun Aug  6 23:44:20 UTC 2017
selfserv_9009 with PID 26466 started at Sun Aug  6 23:44:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1049: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 26466 at Sun Aug  6 23:44:20 UTC 2017
kill -USR1 26466
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26466 killed at Sun Aug  6 23:44:20 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:20 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26522 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26522 found at Sun Aug  6 23:44:20 UTC 2017
selfserv_9009 with PID 26522 started at Sun Aug  6 23:44:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1050: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 26522 at Sun Aug  6 23:44:20 UTC 2017
kill -USR1 26522
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26522 killed at Sun Aug  6 23:44:20 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:20 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26578 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26578 found at Sun Aug  6 23:44:20 UTC 2017
selfserv_9009 with PID 26578 started at Sun Aug  6 23:44:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1051: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 26578 at Sun Aug  6 23:44:20 UTC 2017
kill -USR1 26578
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26578 killed at Sun Aug  6 23:44:20 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:20 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26646 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26646 found at Sun Aug  6 23:44:20 UTC 2017
selfserv_9009 with PID 26646 started at Sun Aug  6 23:44:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1052: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 26646 at Sun Aug  6 23:44:20 UTC 2017
kill -USR1 26646
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26646 killed at Sun Aug  6 23:44:20 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:20 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26702 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26702 found at Sun Aug  6 23:44:20 UTC 2017
selfserv_9009 with PID 26702 started at Sun Aug  6 23:44:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1053: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 26702 at Sun Aug  6 23:44:20 UTC 2017
kill -USR1 26702
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26702 killed at Sun Aug  6 23:44:20 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:20 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26758 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26758 found at Sun Aug  6 23:44:20 UTC 2017
selfserv_9009 with PID 26758 started at Sun Aug  6 23:44:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1054: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 26758 at Sun Aug  6 23:44:20 UTC 2017
kill -USR1 26758
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26758 killed at Sun Aug  6 23:44:20 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:20 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26826 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26826 found at Sun Aug  6 23:44:20 UTC 2017
selfserv_9009 with PID 26826 started at Sun Aug  6 23:44:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1055: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 26826 at Sun Aug  6 23:44:21 UTC 2017
kill -USR1 26826
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26826 killed at Sun Aug  6 23:44:21 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:21 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26882 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26882 found at Sun Aug  6 23:44:21 UTC 2017
selfserv_9009 with PID 26882 started at Sun Aug  6 23:44:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1056: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 26882 at Sun Aug  6 23:44:21 UTC 2017
kill -USR1 26882
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26882 killed at Sun Aug  6 23:44:21 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:21 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26939 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26939 found at Sun Aug  6 23:44:21 UTC 2017
selfserv_9009 with PID 26939 started at Sun Aug  6 23:44:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1057: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 26939 at Sun Aug  6 23:44:21 UTC 2017
kill -USR1 26939
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26939 killed at Sun Aug  6 23:44:21 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:21 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27007 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27007 found at Sun Aug  6 23:44:21 UTC 2017
selfserv_9009 with PID 27007 started at Sun Aug  6 23:44:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1058: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 27007 at Sun Aug  6 23:44:21 UTC 2017
kill -USR1 27007
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27007 killed at Sun Aug  6 23:44:21 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:21 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27063 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27063 found at Sun Aug  6 23:44:21 UTC 2017
selfserv_9009 with PID 27063 started at Sun Aug  6 23:44:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1059: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 27063 at Sun Aug  6 23:44:21 UTC 2017
kill -USR1 27063
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27063 killed at Sun Aug  6 23:44:21 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:21 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27119 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27119 found at Sun Aug  6 23:44:21 UTC 2017
selfserv_9009 with PID 27119 started at Sun Aug  6 23:44:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1060: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 27119 at Sun Aug  6 23:44:21 UTC 2017
kill -USR1 27119
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27119 killed at Sun Aug  6 23:44:21 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:21 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27187 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27187 found at Sun Aug  6 23:44:21 UTC 2017
selfserv_9009 with PID 27187 started at Sun Aug  6 23:44:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1061: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 27187 at Sun Aug  6 23:44:21 UTC 2017
kill -USR1 27187
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27187 killed at Sun Aug  6 23:44:21 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:21 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27243 found at Sun Aug  6 23:44:21 UTC 2017
selfserv_9009 with PID 27243 started at Sun Aug  6 23:44:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1062: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 27243 at Sun Aug  6 23:44:22 UTC 2017
kill -USR1 27243
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27243 killed at Sun Aug  6 23:44:22 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:22 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27299 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27299 found at Sun Aug  6 23:44:22 UTC 2017
selfserv_9009 with PID 27299 started at Sun Aug  6 23:44:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1063: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 27299 at Sun Aug  6 23:44:22 UTC 2017
kill -USR1 27299
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27299 killed at Sun Aug  6 23:44:22 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:22 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27367 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27367 found at Sun Aug  6 23:44:22 UTC 2017
selfserv_9009 with PID 27367 started at Sun Aug  6 23:44:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1064: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 27367 at Sun Aug  6 23:44:22 UTC 2017
kill -USR1 27367
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27367 killed at Sun Aug  6 23:44:22 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:22 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27423 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27423 found at Sun Aug  6 23:44:22 UTC 2017
selfserv_9009 with PID 27423 started at Sun Aug  6 23:44:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1065: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 27423 at Sun Aug  6 23:44:22 UTC 2017
kill -USR1 27423
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27423 killed at Sun Aug  6 23:44:22 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:22 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27479 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27479 found at Sun Aug  6 23:44:22 UTC 2017
selfserv_9009 with PID 27479 started at Sun Aug  6 23:44:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1066: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 27479 at Sun Aug  6 23:44:22 UTC 2017
kill -USR1 27479
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27479 killed at Sun Aug  6 23:44:22 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:22 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27547 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27547 found at Sun Aug  6 23:44:22 UTC 2017
selfserv_9009 with PID 27547 started at Sun Aug  6 23:44:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1067: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 27547 at Sun Aug  6 23:44:22 UTC 2017
kill -USR1 27547
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27547 killed at Sun Aug  6 23:44:22 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:22 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27603 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27603 found at Sun Aug  6 23:44:22 UTC 2017
selfserv_9009 with PID 27603 started at Sun Aug  6 23:44:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1068: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 27603 at Sun Aug  6 23:44:22 UTC 2017
kill -USR1 27603
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27603 killed at Sun Aug  6 23:44:22 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:22 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27659 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27659 found at Sun Aug  6 23:44:22 UTC 2017
selfserv_9009 with PID 27659 started at Sun Aug  6 23:44:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1069: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 27659 at Sun Aug  6 23:44:22 UTC 2017
kill -USR1 27659
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27659 killed at Sun Aug  6 23:44:22 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:22 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27727 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27727 found at Sun Aug  6 23:44:22 UTC 2017
selfserv_9009 with PID 27727 started at Sun Aug  6 23:44:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1070: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 27727 at Sun Aug  6 23:44:23 UTC 2017
kill -USR1 27727
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27727 killed at Sun Aug  6 23:44:23 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:23 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27783 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27783 found at Sun Aug  6 23:44:23 UTC 2017
selfserv_9009 with PID 27783 started at Sun Aug  6 23:44:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1071: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 27783 at Sun Aug  6 23:44:23 UTC 2017
kill -USR1 27783
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27783 killed at Sun Aug  6 23:44:23 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:23 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27839 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27839 found at Sun Aug  6 23:44:23 UTC 2017
selfserv_9009 with PID 27839 started at Sun Aug  6 23:44:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1072: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 27839 at Sun Aug  6 23:44:23 UTC 2017
kill -USR1 27839
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27839 killed at Sun Aug  6 23:44:23 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:23 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27907 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27907 found at Sun Aug  6 23:44:23 UTC 2017
selfserv_9009 with PID 27907 started at Sun Aug  6 23:44:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1073: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 27907 at Sun Aug  6 23:44:23 UTC 2017
kill -USR1 27907
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27907 killed at Sun Aug  6 23:44:23 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:23 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27963 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27963 found at Sun Aug  6 23:44:23 UTC 2017
selfserv_9009 with PID 27963 started at Sun Aug  6 23:44:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1074: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 27963 at Sun Aug  6 23:44:23 UTC 2017
kill -USR1 27963
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27963 killed at Sun Aug  6 23:44:23 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:44:23 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28019 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28019 found at Sun Aug  6 23:44:23 UTC 2017
selfserv_9009 with PID 28019 started at Sun Aug  6 23:44:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1075: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 28019 at Sun Aug  6 23:44:23 UTC 2017
kill -USR1 28019
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 28019 killed at Sun Aug  6 23:44:23 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:23 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28087 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28087 found at Sun Aug  6 23:44:23 UTC 2017
selfserv_9009 with PID 28087 started at Sun Aug  6 23:44:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1076: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 28087 at Sun Aug  6 23:44:23 UTC 2017
kill -USR1 28087
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 28087 killed at Sun Aug  6 23:44:23 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:23 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28143 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28143 found at Sun Aug  6 23:44:23 UTC 2017
selfserv_9009 with PID 28143 started at Sun Aug  6 23:44:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1077: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 28143 at Sun Aug  6 23:44:23 UTC 2017
kill -USR1 28143
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 28143 killed at Sun Aug  6 23:44:23 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:23 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28199 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28199 found at Sun Aug  6 23:44:23 UTC 2017
selfserv_9009 with PID 28199 started at Sun Aug  6 23:44:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1078: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 28199 at Sun Aug  6 23:44:23 UTC 2017
kill -USR1 28199
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 28199 killed at Sun Aug  6 23:44:23 UTC 2017
ssl.sh: Cache CRL SSL Client Tests   - with ECC ===============================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/authin.tl.tmp
0
selfserv_9009 starting at Sun Aug  6 23:44:23 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:23 UTC 2017
selfserv_9009 with PID 28262 started at Sun Aug  6 23:44:23 UTC 2017
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:24 UTC 2017
ssl.sh: #1079: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:24 UTC 2017
ssl.sh: #1080: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:24 UTC 2017
ssl.sh: #1081: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:24 UTC 2017
ssl.sh: #1082: TLS Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:24 UTC 2017
ssl.sh: #1083: TLS Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:24 UTC 2017
ssl.sh: #1084: TLS Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:24 UTC 2017
ssl.sh: #1085: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:24 UTC 2017
ssl.sh: #1086: TLS Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:24 UTC 2017
ssl.sh: #1087: TLS Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:24 UTC 2017
ssl.sh: #1088: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:24 UTC 2017
ssl.sh: #1089: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:24 UTC 2017
ssl.sh: #1090: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:24 UTC 2017
ssl.sh: #1091: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:24 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1092: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:24 UTC 2017
ssl.sh: #1093: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:24 UTC 2017
ssl.sh: #1094: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:25 UTC 2017
ssl.sh: #1095: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:25 UTC 2017
ssl.sh: #1096: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:25 UTC 2017
ssl.sh: #1097: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:25 UTC 2017
ssl.sh: #1098: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:25 UTC 2017
ssl.sh: #1099: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:25 UTC 2017
ssl.sh: #1100: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:25 UTC 2017
ssl.sh: #1101: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:25 UTC 2017
ssl.sh: #1102: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:25 UTC 2017
ssl.sh: #1103: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:25 UTC 2017
ssl.sh: #1104: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:25 UTC 2017
ssl.sh: #1105: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:25 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1106: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:25 UTC 2017
ssl.sh: #1107: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:25 UTC 2017
ssl.sh: #1108: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:25 UTC 2017
ssl.sh: #1109: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:25 UTC 2017
ssl.sh: #1110: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:25 UTC 2017
ssl.sh: #1111: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:26 UTC 2017
ssl.sh: #1112: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:26 UTC 2017
ssl.sh: #1113: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:26 UTC 2017
ssl.sh: #1114: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:26 UTC 2017
ssl.sh: #1115: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:26 UTC 2017
ssl.sh: #1116: TLS Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:26 UTC 2017
ssl.sh: #1117: TLS Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:26 UTC 2017
ssl.sh: #1118: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28262 found at Sun Aug  6 23:44:26 UTC 2017
ssl.sh: #1119: TLS Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 28262 at Sun Aug  6 23:44:26 UTC 2017
kill -USR1 28262
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 28262 killed at Sun Aug  6 23:44:26 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:26 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:26 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:26 UTC 2017
selfserv_9009 with PID 29690 started at Sun Aug  6 23:44:26 UTC 2017
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:26 UTC 2017
ssl.sh: #1120: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:26 UTC 2017
ssl.sh: #1121: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:26 UTC 2017
ssl.sh: #1122: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:26 UTC 2017
ssl.sh: #1123: SSL3 Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:26 UTC 2017
ssl.sh: #1124: SSL3 Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:26 UTC 2017
ssl.sh: #1125: SSL3 Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:26 UTC 2017
ssl.sh: #1126: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:26 UTC 2017
ssl.sh: #1127: SSL3 Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:26 UTC 2017
ssl.sh: #1128: SSL3 Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:26 UTC 2017
ssl.sh: #1129: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:27 UTC 2017
ssl.sh: #1130: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:27 UTC 2017
ssl.sh: #1131: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:27 UTC 2017
ssl.sh: #1132: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:27 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1133: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:27 UTC 2017
ssl.sh: #1134: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:27 UTC 2017
ssl.sh: #1135: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:27 UTC 2017
ssl.sh: #1136: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:27 UTC 2017
ssl.sh: #1137: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:27 UTC 2017
ssl.sh: #1138: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:27 UTC 2017
ssl.sh: #1139: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:27 UTC 2017
ssl.sh: #1140: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:27 UTC 2017
ssl.sh: #1141: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:27 UTC 2017
ssl.sh: #1142: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:27 UTC 2017
ssl.sh: #1143: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:27 UTC 2017
ssl.sh: #1144: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:27 UTC 2017
ssl.sh: #1145: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:27 UTC 2017
ssl.sh: #1146: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:27 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1147: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:27 UTC 2017
ssl.sh: #1148: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:27 UTC 2017
ssl.sh: #1149: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:27 UTC 2017
ssl.sh: #1150: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:27 UTC 2017
ssl.sh: #1151: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:28 UTC 2017
ssl.sh: #1152: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:28 UTC 2017
ssl.sh: #1153: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:28 UTC 2017
ssl.sh: #1154: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:28 UTC 2017
ssl.sh: #1155: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:28 UTC 2017
ssl.sh: #1156: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:28 UTC 2017
ssl.sh: #1157: SSL3 Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:28 UTC 2017
ssl.sh: #1158: SSL3 Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:28 UTC 2017
ssl.sh: #1159: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29690 found at Sun Aug  6 23:44:28 UTC 2017
ssl.sh: #1160: SSL3 Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 29690 at Sun Aug  6 23:44:28 UTC 2017
kill -USR1 29690
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 29690 killed at Sun Aug  6 23:44:28 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:28 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:28 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:28 UTC 2017
selfserv_9009 with PID 31113 started at Sun Aug  6 23:44:28 UTC 2017
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:28 UTC 2017
ssl.sh: #1161: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:28 UTC 2017
ssl.sh: #1162: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:28 UTC 2017
ssl.sh: #1163: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:28 UTC 2017
ssl.sh: #1164: TLS Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:28 UTC 2017
ssl.sh: #1165: TLS Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:29 UTC 2017
ssl.sh: #1166: TLS Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:29 UTC 2017
ssl.sh: #1167: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:29 UTC 2017
ssl.sh: #1168: TLS Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:29 UTC 2017
ssl.sh: #1169: TLS Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:29 UTC 2017
ssl.sh: #1170: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:29 UTC 2017
ssl.sh: #1171: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:29 UTC 2017
ssl.sh: #1172: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:29 UTC 2017
ssl.sh: #1173: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:29 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1174: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:29 UTC 2017
ssl.sh: #1175: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:29 UTC 2017
ssl.sh: #1176: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:29 UTC 2017
ssl.sh: #1177: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:29 UTC 2017
ssl.sh: #1178: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:29 UTC 2017
ssl.sh: #1179: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:30 UTC 2017
ssl.sh: #1180: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:30 UTC 2017
ssl.sh: #1181: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:30 UTC 2017
ssl.sh: #1182: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:30 UTC 2017
ssl.sh: #1183: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:30 UTC 2017
ssl.sh: #1184: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:30 UTC 2017
ssl.sh: #1185: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:30 UTC 2017
ssl.sh: #1186: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:30 UTC 2017
ssl.sh: #1187: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:30 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1188: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:30 UTC 2017
ssl.sh: #1189: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:30 UTC 2017
ssl.sh: #1190: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:30 UTC 2017
ssl.sh: #1191: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:30 UTC 2017
ssl.sh: #1192: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:30 UTC 2017
ssl.sh: #1193: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:30 UTC 2017
ssl.sh: #1194: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:31 UTC 2017
ssl.sh: #1195: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:31 UTC 2017
ssl.sh: #1196: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:31 UTC 2017
ssl.sh: #1197: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:31 UTC 2017
ssl.sh: #1198: TLS Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:31 UTC 2017
ssl.sh: #1199: TLS Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:31 UTC 2017
ssl.sh: #1200: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31113 found at Sun Aug  6 23:44:31 UTC 2017
ssl.sh: #1201: TLS Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 31113 at Sun Aug  6 23:44:31 UTC 2017
kill -USR1 31113
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31113 killed at Sun Aug  6 23:44:31 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:31 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:31 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:31 UTC 2017
selfserv_9009 with PID 32545 started at Sun Aug  6 23:44:31 UTC 2017
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:31 UTC 2017
ssl.sh: #1202: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:31 UTC 2017
ssl.sh: #1203: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:31 UTC 2017
ssl.sh: #1204: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:31 UTC 2017
ssl.sh: #1205: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:31 UTC 2017
ssl.sh: #1206: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:31 UTC 2017
ssl.sh: #1207: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:31 UTC 2017
ssl.sh: #1208: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:31 UTC 2017
ssl.sh: #1209: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:31 UTC 2017
ssl.sh: #1210: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:31 UTC 2017
ssl.sh: #1211: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:32 UTC 2017
ssl.sh: #1212: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:32 UTC 2017
ssl.sh: #1213: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:32 UTC 2017
ssl.sh: #1214: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:32 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1215: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:32 UTC 2017
ssl.sh: #1216: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:32 UTC 2017
ssl.sh: #1217: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:32 UTC 2017
ssl.sh: #1218: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:32 UTC 2017
ssl.sh: #1219: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:32 UTC 2017
ssl.sh: #1220: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:32 UTC 2017
ssl.sh: #1221: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:32 UTC 2017
ssl.sh: #1222: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:32 UTC 2017
ssl.sh: #1223: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:32 UTC 2017
ssl.sh: #1224: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:32 UTC 2017
ssl.sh: #1225: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:32 UTC 2017
ssl.sh: #1226: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:32 UTC 2017
ssl.sh: #1227: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:32 UTC 2017
ssl.sh: #1228: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:32 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1229: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:33 UTC 2017
ssl.sh: #1230: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:33 UTC 2017
ssl.sh: #1231: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:33 UTC 2017
ssl.sh: #1232: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:33 UTC 2017
ssl.sh: #1233: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:33 UTC 2017
ssl.sh: #1234: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:33 UTC 2017
ssl.sh: #1235: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:33 UTC 2017
ssl.sh: #1236: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:33 UTC 2017
ssl.sh: #1237: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:33 UTC 2017
ssl.sh: #1238: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:33 UTC 2017
ssl.sh: #1239: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:33 UTC 2017
ssl.sh: #1240: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:33 UTC 2017
ssl.sh: #1241: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32545 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32545 found at Sun Aug  6 23:44:33 UTC 2017
ssl.sh: #1242: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 32545 at Sun Aug  6 23:44:33 UTC 2017
kill -USR1 32545
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 32545 killed at Sun Aug  6 23:44:33 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:33 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:33 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1606 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1606 found at Sun Aug  6 23:44:33 UTC 2017
selfserv_9009 with PID 1606 started at Sun Aug  6 23:44:33 UTC 2017
trying to kill selfserv_9009 with PID 1606 at Sun Aug  6 23:44:33 UTC 2017
kill -USR1 1606
./ssl.sh: line 197:  1606 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9009 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 1606 killed at Sun Aug  6 23:44:33 UTC 2017
selfserv_9009 starting at Sun Aug  6 23:44:33 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:33 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:33 UTC 2017
selfserv_9009 with PID 1648 started at Sun Aug  6 23:44:33 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:33 UTC 2017
ssl.sh: #1243: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:33 UTC 2017
ssl.sh: #1244: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:33 UTC 2017
ssl.sh: #1245: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:34 UTC 2017
ssl.sh: #1246: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:34 UTC 2017
ssl.sh: #1247: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:34 UTC 2017
ssl.sh: #1248: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:34 UTC 2017
ssl.sh: #1249: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:34 UTC 2017
ssl.sh: #1250: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:34 UTC 2017
ssl.sh: #1251: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:34 UTC 2017
ssl.sh: #1252: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:34 UTC 2017
ssl.sh: #1253: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:34 UTC 2017
ssl.sh: #1254: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:34 UTC 2017
ssl.sh: #1255: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:34 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1256: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:34 UTC 2017
ssl.sh: #1257: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:34 UTC 2017
ssl.sh: #1258: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:35 UTC 2017
ssl.sh: #1259: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:35 UTC 2017
ssl.sh: #1260: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:35 UTC 2017
ssl.sh: #1261: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:35 UTC 2017
ssl.sh: #1262: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:35 UTC 2017
ssl.sh: #1263: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:35 UTC 2017
ssl.sh: #1264: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:35 UTC 2017
ssl.sh: #1265: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:35 UTC 2017
ssl.sh: #1266: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:35 UTC 2017
ssl.sh: #1267: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:35 UTC 2017
ssl.sh: #1268: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:35 UTC 2017
ssl.sh: #1269: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:35 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1270: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:36 UTC 2017
ssl.sh: #1271: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:36 UTC 2017
ssl.sh: #1272: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:36 UTC 2017
ssl.sh: #1273: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:36 UTC 2017
ssl.sh: #1274: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:36 UTC 2017
ssl.sh: #1275: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:36 UTC 2017
ssl.sh: #1276: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:36 UTC 2017
ssl.sh: #1277: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:36 UTC 2017
ssl.sh: #1278: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:36 UTC 2017
ssl.sh: #1279: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:36 UTC 2017
ssl.sh: #1280: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:36 UTC 2017
ssl.sh: #1281: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:36 UTC 2017
ssl.sh: #1282: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1648 found at Sun Aug  6 23:44:36 UTC 2017
ssl.sh: #1283: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 1648 at Sun Aug  6 23:44:36 UTC 2017
kill -USR1 1648
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 1648 killed at Sun Aug  6 23:44:36 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:37 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:37 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:37 UTC 2017
selfserv_9009 with PID 3114 started at Sun Aug  6 23:44:37 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:37 UTC 2017
ssl.sh: #1284: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:37 UTC 2017
ssl.sh: #1285: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:37 UTC 2017
ssl.sh: #1286: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:37 UTC 2017
ssl.sh: #1287: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:37 UTC 2017
ssl.sh: #1288: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:37 UTC 2017
ssl.sh: #1289: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:37 UTC 2017
ssl.sh: #1290: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:37 UTC 2017
ssl.sh: #1291: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:37 UTC 2017
ssl.sh: #1292: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:37 UTC 2017
ssl.sh: #1293: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:37 UTC 2017
ssl.sh: #1294: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:38 UTC 2017
ssl.sh: #1295: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:38 UTC 2017
ssl.sh: #1296: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:38 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1297: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:38 UTC 2017
ssl.sh: #1298: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:38 UTC 2017
ssl.sh: #1299: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:38 UTC 2017
ssl.sh: #1300: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:38 UTC 2017
ssl.sh: #1301: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:38 UTC 2017
ssl.sh: #1302: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:38 UTC 2017
ssl.sh: #1303: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:38 UTC 2017
ssl.sh: #1304: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:38 UTC 2017
ssl.sh: #1305: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:38 UTC 2017
ssl.sh: #1306: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:38 UTC 2017
ssl.sh: #1307: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:39 UTC 2017
ssl.sh: #1308: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:39 UTC 2017
ssl.sh: #1309: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:39 UTC 2017
ssl.sh: #1310: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:39 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1311: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:39 UTC 2017
ssl.sh: #1312: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:39 UTC 2017
ssl.sh: #1313: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:39 UTC 2017
ssl.sh: #1314: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:39 UTC 2017
ssl.sh: #1315: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:39 UTC 2017
ssl.sh: #1316: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:39 UTC 2017
ssl.sh: #1317: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:39 UTC 2017
ssl.sh: #1318: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:39 UTC 2017
ssl.sh: #1319: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:39 UTC 2017
ssl.sh: #1320: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:40 UTC 2017
ssl.sh: #1321: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:40 UTC 2017
ssl.sh: #1322: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:40 UTC 2017
ssl.sh: #1323: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3114 found at Sun Aug  6 23:44:40 UTC 2017
ssl.sh: #1324: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 3114 at Sun Aug  6 23:44:40 UTC 2017
kill -USR1 3114
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 3114 killed at Sun Aug  6 23:44:40 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:40 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:40 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:40 UTC 2017
selfserv_9009 with PID 4546 started at Sun Aug  6 23:44:40 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:40 UTC 2017
ssl.sh: #1325: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:40 UTC 2017
ssl.sh: #1326: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:40 UTC 2017
ssl.sh: #1327: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:40 UTC 2017
ssl.sh: #1328: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:40 UTC 2017
ssl.sh: #1329: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:40 UTC 2017
ssl.sh: #1330: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:40 UTC 2017
ssl.sh: #1331: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:40 UTC 2017
ssl.sh: #1332: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:40 UTC 2017
ssl.sh: #1333: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:40 UTC 2017
ssl.sh: #1334: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:40 UTC 2017
ssl.sh: #1335: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:41 UTC 2017
ssl.sh: #1336: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:41 UTC 2017
ssl.sh: #1337: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:41 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1338: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:41 UTC 2017
ssl.sh: #1339: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:41 UTC 2017
ssl.sh: #1340: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:41 UTC 2017
ssl.sh: #1341: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:41 UTC 2017
ssl.sh: #1342: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:41 UTC 2017
ssl.sh: #1343: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:41 UTC 2017
ssl.sh: #1344: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:41 UTC 2017
ssl.sh: #1345: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:41 UTC 2017
ssl.sh: #1346: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:41 UTC 2017
ssl.sh: #1347: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:41 UTC 2017
ssl.sh: #1348: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:41 UTC 2017
ssl.sh: #1349: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:41 UTC 2017
ssl.sh: #1350: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:41 UTC 2017
ssl.sh: #1351: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:41 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1352: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:41 UTC 2017
ssl.sh: #1353: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:42 UTC 2017
ssl.sh: #1354: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:42 UTC 2017
ssl.sh: #1355: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:42 UTC 2017
ssl.sh: #1356: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:42 UTC 2017
ssl.sh: #1357: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:42 UTC 2017
ssl.sh: #1358: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:42 UTC 2017
ssl.sh: #1359: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:42 UTC 2017
ssl.sh: #1360: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:42 UTC 2017
ssl.sh: #1361: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:42 UTC 2017
ssl.sh: #1362: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:42 UTC 2017
ssl.sh: #1363: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:42 UTC 2017
ssl.sh: #1364: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4546 found at Sun Aug  6 23:44:42 UTC 2017
ssl.sh: #1365: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 4546 at Sun Aug  6 23:44:42 UTC 2017
kill -USR1 4546
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4546 killed at Sun Aug  6 23:44:42 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:42 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:42 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:42 UTC 2017
selfserv_9009 with PID 5973 started at Sun Aug  6 23:44:42 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:42 UTC 2017
ssl.sh: #1366: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:42 UTC 2017
ssl.sh: #1367: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:42 UTC 2017
ssl.sh: #1368: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:42 UTC 2017
ssl.sh: #1369: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:43 UTC 2017
ssl.sh: #1370: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:43 UTC 2017
ssl.sh: #1371: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:43 UTC 2017
ssl.sh: #1372: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:43 UTC 2017
ssl.sh: #1373: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:43 UTC 2017
ssl.sh: #1374: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:43 UTC 2017
ssl.sh: #1375: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:43 UTC 2017
ssl.sh: #1376: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:43 UTC 2017
ssl.sh: #1377: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:43 UTC 2017
ssl.sh: #1378: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:43 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1379: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:43 UTC 2017
ssl.sh: #1380: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:44 UTC 2017
ssl.sh: #1381: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:44 UTC 2017
ssl.sh: #1382: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:44 UTC 2017
ssl.sh: #1383: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:44 UTC 2017
ssl.sh: #1384: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:44 UTC 2017
ssl.sh: #1385: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:44 UTC 2017
ssl.sh: #1386: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:44 UTC 2017
ssl.sh: #1387: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:44 UTC 2017
ssl.sh: #1388: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:44 UTC 2017
ssl.sh: #1389: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:44 UTC 2017
ssl.sh: #1390: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:44 UTC 2017
ssl.sh: #1391: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:45 UTC 2017
ssl.sh: #1392: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:45 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1393: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:45 UTC 2017
ssl.sh: #1394: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:45 UTC 2017
ssl.sh: #1395: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:45 UTC 2017
ssl.sh: #1396: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:45 UTC 2017
ssl.sh: #1397: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:45 UTC 2017
ssl.sh: #1398: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:45 UTC 2017
ssl.sh: #1399: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:45 UTC 2017
ssl.sh: #1400: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:45 UTC 2017
ssl.sh: #1401: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:45 UTC 2017
ssl.sh: #1402: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:45 UTC 2017
ssl.sh: #1403: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:46 UTC 2017
ssl.sh: #1404: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:46 UTC 2017
ssl.sh: #1405: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5973 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5973 found at Sun Aug  6 23:44:46 UTC 2017
ssl.sh: #1406: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 5973 at Sun Aug  6 23:44:46 UTC 2017
kill -USR1 5973
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 5973 killed at Sun Aug  6 23:44:46 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:46 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:46 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:46 UTC 2017
selfserv_9009 with PID 7399 started at Sun Aug  6 23:44:46 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:46 UTC 2017
ssl.sh: #1407: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:46 UTC 2017
ssl.sh: #1408: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:46 UTC 2017
ssl.sh: #1409: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:46 UTC 2017
ssl.sh: #1410: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:46 UTC 2017
ssl.sh: #1411: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:46 UTC 2017
ssl.sh: #1412: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:46 UTC 2017
ssl.sh: #1413: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:47 UTC 2017
ssl.sh: #1414: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:47 UTC 2017
ssl.sh: #1415: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:47 UTC 2017
ssl.sh: #1416: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:47 UTC 2017
ssl.sh: #1417: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:47 UTC 2017
ssl.sh: #1418: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:47 UTC 2017
ssl.sh: #1419: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:47 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1420: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:47 UTC 2017
ssl.sh: #1421: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:47 UTC 2017
ssl.sh: #1422: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:47 UTC 2017
ssl.sh: #1423: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:47 UTC 2017
ssl.sh: #1424: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:47 UTC 2017
ssl.sh: #1425: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:48 UTC 2017
ssl.sh: #1426: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:48 UTC 2017
ssl.sh: #1427: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:48 UTC 2017
ssl.sh: #1428: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:48 UTC 2017
ssl.sh: #1429: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:48 UTC 2017
ssl.sh: #1430: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:48 UTC 2017
ssl.sh: #1431: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:48 UTC 2017
ssl.sh: #1432: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:48 UTC 2017
ssl.sh: #1433: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:48 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1434: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:48 UTC 2017
ssl.sh: #1435: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:48 UTC 2017
ssl.sh: #1436: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:49 UTC 2017
ssl.sh: #1437: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:49 UTC 2017
ssl.sh: #1438: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:49 UTC 2017
ssl.sh: #1439: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:49 UTC 2017
ssl.sh: #1440: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:49 UTC 2017
ssl.sh: #1441: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:49 UTC 2017
ssl.sh: #1442: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:49 UTC 2017
ssl.sh: #1443: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:49 UTC 2017
ssl.sh: #1444: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:49 UTC 2017
ssl.sh: #1445: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:49 UTC 2017
ssl.sh: #1446: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7399 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7399 found at Sun Aug  6 23:44:49 UTC 2017
ssl.sh: #1447: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 7399 at Sun Aug  6 23:44:49 UTC 2017
kill -USR1 7399
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7399 killed at Sun Aug  6 23:44:49 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:49 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:49 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:49 UTC 2017
selfserv_9009 with PID 8823 started at Sun Aug  6 23:44:49 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:49 UTC 2017
ssl.sh: #1448: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:50 UTC 2017
ssl.sh: #1449: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:50 UTC 2017
ssl.sh: #1450: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:50 UTC 2017
ssl.sh: #1451: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:50 UTC 2017
ssl.sh: #1452: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:50 UTC 2017
ssl.sh: #1453: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:50 UTC 2017
ssl.sh: #1454: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:50 UTC 2017
ssl.sh: #1455: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:50 UTC 2017
ssl.sh: #1456: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:50 UTC 2017
ssl.sh: #1457: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:50 UTC 2017
ssl.sh: #1458: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:50 UTC 2017
ssl.sh: #1459: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:50 UTC 2017
ssl.sh: #1460: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:50 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1461: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:50 UTC 2017
ssl.sh: #1462: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:50 UTC 2017
ssl.sh: #1463: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:50 UTC 2017
ssl.sh: #1464: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:51 UTC 2017
ssl.sh: #1465: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:51 UTC 2017
ssl.sh: #1466: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:51 UTC 2017
ssl.sh: #1467: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:51 UTC 2017
ssl.sh: #1468: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:51 UTC 2017
ssl.sh: #1469: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:51 UTC 2017
ssl.sh: #1470: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:51 UTC 2017
ssl.sh: #1471: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:51 UTC 2017
ssl.sh: #1472: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:51 UTC 2017
ssl.sh: #1473: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:51 UTC 2017
ssl.sh: #1474: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:51 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1475: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:51 UTC 2017
ssl.sh: #1476: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:51 UTC 2017
ssl.sh: #1477: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:51 UTC 2017
ssl.sh: #1478: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:51 UTC 2017
ssl.sh: #1479: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:51 UTC 2017
ssl.sh: #1480: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:52 UTC 2017
ssl.sh: #1481: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:52 UTC 2017
ssl.sh: #1482: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:52 UTC 2017
ssl.sh: #1483: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:52 UTC 2017
ssl.sh: #1484: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:52 UTC 2017
ssl.sh: #1485: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:52 UTC 2017
ssl.sh: #1486: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:52 UTC 2017
ssl.sh: #1487: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8823 found at Sun Aug  6 23:44:52 UTC 2017
ssl.sh: #1488: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 8823 at Sun Aug  6 23:44:52 UTC 2017
kill -USR1 8823
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 8823 killed at Sun Aug  6 23:44:52 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:52 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:52 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10253 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10253 found at Sun Aug  6 23:44:52 UTC 2017
selfserv_9009 with PID 10253 started at Sun Aug  6 23:44:52 UTC 2017
trying to kill selfserv_9009 with PID 10253 at Sun Aug  6 23:44:52 UTC 2017
kill -USR1 10253
./ssl.sh: line 197: 10253 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9009 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 10253 killed at Sun Aug  6 23:44:52 UTC 2017
selfserv_9009 starting at Sun Aug  6 23:44:52 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:52 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:52 UTC 2017
selfserv_9009 with PID 10295 started at Sun Aug  6 23:44:52 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:52 UTC 2017
ssl.sh: #1489: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:52 UTC 2017
ssl.sh: #1490: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:52 UTC 2017
ssl.sh: #1491: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:52 UTC 2017
ssl.sh: #1492: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:52 UTC 2017
ssl.sh: #1493: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:53 UTC 2017
ssl.sh: #1494: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:53 UTC 2017
ssl.sh: #1495: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:53 UTC 2017
ssl.sh: #1496: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:53 UTC 2017
ssl.sh: #1497: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:53 UTC 2017
ssl.sh: #1498: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:53 UTC 2017
ssl.sh: #1499: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:53 UTC 2017
ssl.sh: #1500: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:53 UTC 2017
ssl.sh: #1501: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:53 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1502: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:53 UTC 2017
ssl.sh: #1503: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:53 UTC 2017
ssl.sh: #1504: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:53 UTC 2017
ssl.sh: #1505: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:53 UTC 2017
ssl.sh: #1506: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:54 UTC 2017
ssl.sh: #1507: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:54 UTC 2017
ssl.sh: #1508: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:54 UTC 2017
ssl.sh: #1509: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:54 UTC 2017
ssl.sh: #1510: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:54 UTC 2017
ssl.sh: #1511: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:54 UTC 2017
ssl.sh: #1512: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:54 UTC 2017
ssl.sh: #1513: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:54 UTC 2017
ssl.sh: #1514: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:54 UTC 2017
ssl.sh: #1515: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:54 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1516: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:54 UTC 2017
ssl.sh: #1517: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:54 UTC 2017
ssl.sh: #1518: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:55 UTC 2017
ssl.sh: #1519: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:55 UTC 2017
ssl.sh: #1520: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:55 UTC 2017
ssl.sh: #1521: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:55 UTC 2017
ssl.sh: #1522: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:55 UTC 2017
ssl.sh: #1523: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:55 UTC 2017
ssl.sh: #1524: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:55 UTC 2017
ssl.sh: #1525: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:55 UTC 2017
ssl.sh: #1526: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:55 UTC 2017
ssl.sh: #1527: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:55 UTC 2017
ssl.sh: #1528: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10295 found at Sun Aug  6 23:44:55 UTC 2017
ssl.sh: #1529: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 10295 at Sun Aug  6 23:44:55 UTC 2017
kill -USR1 10295
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 10295 killed at Sun Aug  6 23:44:55 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:55 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:55 UTC 2017
selfserv_9009 with PID 11724 started at Sun Aug  6 23:44:55 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:55 UTC 2017
ssl.sh: #1530: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:56 UTC 2017
ssl.sh: #1531: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:56 UTC 2017
ssl.sh: #1532: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:56 UTC 2017
ssl.sh: #1533: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:56 UTC 2017
ssl.sh: #1534: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:56 UTC 2017
ssl.sh: #1535: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:56 UTC 2017
ssl.sh: #1536: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:56 UTC 2017
ssl.sh: #1537: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:56 UTC 2017
ssl.sh: #1538: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:56 UTC 2017
ssl.sh: #1539: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:56 UTC 2017
ssl.sh: #1540: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:56 UTC 2017
ssl.sh: #1541: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:56 UTC 2017
ssl.sh: #1542: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:57 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1543: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:57 UTC 2017
ssl.sh: #1544: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:57 UTC 2017
ssl.sh: #1545: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:57 UTC 2017
ssl.sh: #1546: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:57 UTC 2017
ssl.sh: #1547: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:57 UTC 2017
ssl.sh: #1548: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:57 UTC 2017
ssl.sh: #1549: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:57 UTC 2017
ssl.sh: #1550: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:57 UTC 2017
ssl.sh: #1551: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:57 UTC 2017
ssl.sh: #1552: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:57 UTC 2017
ssl.sh: #1553: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:57 UTC 2017
ssl.sh: #1554: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:57 UTC 2017
ssl.sh: #1555: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:58 UTC 2017
ssl.sh: #1556: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:58 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1557: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:58 UTC 2017
ssl.sh: #1558: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:58 UTC 2017
ssl.sh: #1559: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:58 UTC 2017
ssl.sh: #1560: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:58 UTC 2017
ssl.sh: #1561: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:58 UTC 2017
ssl.sh: #1562: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:58 UTC 2017
ssl.sh: #1563: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:58 UTC 2017
ssl.sh: #1564: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:58 UTC 2017
ssl.sh: #1565: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:58 UTC 2017
ssl.sh: #1566: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:58 UTC 2017
ssl.sh: #1567: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:59 UTC 2017
ssl.sh: #1568: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:59 UTC 2017
ssl.sh: #1569: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11724 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11724 found at Sun Aug  6 23:44:59 UTC 2017
ssl.sh: #1570: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 11724 at Sun Aug  6 23:44:59 UTC 2017
kill -USR1 11724
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 11724 killed at Sun Aug  6 23:44:59 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:44:59 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:44:59 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:44:59 UTC 2017
selfserv_9009 with PID 13158 started at Sun Aug  6 23:44:59 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:44:59 UTC 2017
ssl.sh: #1571: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:44:59 UTC 2017
ssl.sh: #1572: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:44:59 UTC 2017
ssl.sh: #1573: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:44:59 UTC 2017
ssl.sh: #1574: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:44:59 UTC 2017
ssl.sh: #1575: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:44:59 UTC 2017
ssl.sh: #1576: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:44:59 UTC 2017
ssl.sh: #1577: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:44:59 UTC 2017
ssl.sh: #1578: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:44:59 UTC 2017
ssl.sh: #1579: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:44:59 UTC 2017
ssl.sh: #1580: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:44:59 UTC 2017
ssl.sh: #1581: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:44:59 UTC 2017
ssl.sh: #1582: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:44:59 UTC 2017
ssl.sh: #1583: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:45:00 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1584: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:45:00 UTC 2017
ssl.sh: #1585: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:45:00 UTC 2017
ssl.sh: #1586: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:45:00 UTC 2017
ssl.sh: #1587: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:45:00 UTC 2017
ssl.sh: #1588: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:45:00 UTC 2017
ssl.sh: #1589: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:45:00 UTC 2017
ssl.sh: #1590: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:45:00 UTC 2017
ssl.sh: #1591: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:45:00 UTC 2017
ssl.sh: #1592: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:45:00 UTC 2017
ssl.sh: #1593: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:45:00 UTC 2017
ssl.sh: #1594: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:45:00 UTC 2017
ssl.sh: #1595: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:45:00 UTC 2017
ssl.sh: #1596: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:45:00 UTC 2017
ssl.sh: #1597: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:45:00 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1598: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:45:00 UTC 2017
ssl.sh: #1599: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:45:00 UTC 2017
ssl.sh: #1600: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:45:00 UTC 2017
ssl.sh: #1601: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:45:00 UTC 2017
ssl.sh: #1602: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:45:01 UTC 2017
ssl.sh: #1603: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:45:01 UTC 2017
ssl.sh: #1604: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:45:01 UTC 2017
ssl.sh: #1605: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:45:01 UTC 2017
ssl.sh: #1606: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:45:01 UTC 2017
ssl.sh: #1607: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:45:01 UTC 2017
ssl.sh: #1608: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:45:01 UTC 2017
ssl.sh: #1609: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:45:01 UTC 2017
ssl.sh: #1610: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13158 found at Sun Aug  6 23:45:01 UTC 2017
ssl.sh: #1611: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 13158 at Sun Aug  6 23:45:01 UTC 2017
kill -USR1 13158
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 13158 killed at Sun Aug  6 23:45:01 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:01 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:01 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:01 UTC 2017
selfserv_9009 with PID 14587 started at Sun Aug  6 23:45:01 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:01 UTC 2017
ssl.sh: #1612: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:01 UTC 2017
ssl.sh: #1613: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:01 UTC 2017
ssl.sh: #1614: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:01 UTC 2017
ssl.sh: #1615: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:01 UTC 2017
ssl.sh: #1616: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:02 UTC 2017
ssl.sh: #1617: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:02 UTC 2017
ssl.sh: #1618: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:02 UTC 2017
ssl.sh: #1619: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:02 UTC 2017
ssl.sh: #1620: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:02 UTC 2017
ssl.sh: #1621: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:02 UTC 2017
ssl.sh: #1622: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:02 UTC 2017
ssl.sh: #1623: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:02 UTC 2017
ssl.sh: #1624: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:02 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1625: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:02 UTC 2017
ssl.sh: #1626: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:02 UTC 2017
ssl.sh: #1627: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:03 UTC 2017
ssl.sh: #1628: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:03 UTC 2017
ssl.sh: #1629: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:03 UTC 2017
ssl.sh: #1630: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:03 UTC 2017
ssl.sh: #1631: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:03 UTC 2017
ssl.sh: #1632: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:03 UTC 2017
ssl.sh: #1633: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:03 UTC 2017
ssl.sh: #1634: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:03 UTC 2017
ssl.sh: #1635: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:03 UTC 2017
ssl.sh: #1636: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:03 UTC 2017
ssl.sh: #1637: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:03 UTC 2017
ssl.sh: #1638: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:04 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1639: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:04 UTC 2017
ssl.sh: #1640: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:04 UTC 2017
ssl.sh: #1641: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:04 UTC 2017
ssl.sh: #1642: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:04 UTC 2017
ssl.sh: #1643: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:04 UTC 2017
ssl.sh: #1644: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:04 UTC 2017
ssl.sh: #1645: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:04 UTC 2017
ssl.sh: #1646: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:04 UTC 2017
ssl.sh: #1647: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:04 UTC 2017
ssl.sh: #1648: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:04 UTC 2017
ssl.sh: #1649: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:04 UTC 2017
ssl.sh: #1650: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:05 UTC 2017
ssl.sh: #1651: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14587 found at Sun Aug  6 23:45:05 UTC 2017
ssl.sh: #1652: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 14587 at Sun Aug  6 23:45:05 UTC 2017
kill -USR1 14587
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 14587 killed at Sun Aug  6 23:45:05 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:05 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:05 UTC 2017
selfserv_9009 with PID 16011 started at Sun Aug  6 23:45:05 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:05 UTC 2017
ssl.sh: #1653: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:05 UTC 2017
ssl.sh: #1654: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:05 UTC 2017
ssl.sh: #1655: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:05 UTC 2017
ssl.sh: #1656: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:05 UTC 2017
ssl.sh: #1657: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:05 UTC 2017
ssl.sh: #1658: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:05 UTC 2017
ssl.sh: #1659: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:05 UTC 2017
ssl.sh: #1660: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:05 UTC 2017
ssl.sh: #1661: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:06 UTC 2017
ssl.sh: #1662: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:06 UTC 2017
ssl.sh: #1663: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:06 UTC 2017
ssl.sh: #1664: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:06 UTC 2017
ssl.sh: #1665: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:06 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1666: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:06 UTC 2017
ssl.sh: #1667: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:06 UTC 2017
ssl.sh: #1668: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:06 UTC 2017
ssl.sh: #1669: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:06 UTC 2017
ssl.sh: #1670: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:06 UTC 2017
ssl.sh: #1671: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:06 UTC 2017
ssl.sh: #1672: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:07 UTC 2017
ssl.sh: #1673: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:07 UTC 2017
ssl.sh: #1674: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:07 UTC 2017
ssl.sh: #1675: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:07 UTC 2017
ssl.sh: #1676: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:07 UTC 2017
ssl.sh: #1677: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:07 UTC 2017
ssl.sh: #1678: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:07 UTC 2017
ssl.sh: #1679: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:07 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1680: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:07 UTC 2017
ssl.sh: #1681: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:07 UTC 2017
ssl.sh: #1682: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:07 UTC 2017
ssl.sh: #1683: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:07 UTC 2017
ssl.sh: #1684: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:08 UTC 2017
ssl.sh: #1685: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:08 UTC 2017
ssl.sh: #1686: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:08 UTC 2017
ssl.sh: #1687: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:08 UTC 2017
ssl.sh: #1688: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:08 UTC 2017
ssl.sh: #1689: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:08 UTC 2017
ssl.sh: #1690: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:08 UTC 2017
ssl.sh: #1691: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:08 UTC 2017
ssl.sh: #1692: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16011 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16011 found at Sun Aug  6 23:45:08 UTC 2017
ssl.sh: #1693: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 16011 at Sun Aug  6 23:45:08 UTC 2017
kill -USR1 16011
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 16011 killed at Sun Aug  6 23:45:08 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:08 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:08 UTC 2017
selfserv_9009 with PID 17436 started at Sun Aug  6 23:45:08 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:08 UTC 2017
ssl.sh: #1694: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:08 UTC 2017
ssl.sh: #1695: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:08 UTC 2017
ssl.sh: #1696: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:09 UTC 2017
ssl.sh: #1697: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:09 UTC 2017
ssl.sh: #1698: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:09 UTC 2017
ssl.sh: #1699: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:09 UTC 2017
ssl.sh: #1700: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:09 UTC 2017
ssl.sh: #1701: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:09 UTC 2017
ssl.sh: #1702: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:09 UTC 2017
ssl.sh: #1703: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:09 UTC 2017
ssl.sh: #1704: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:09 UTC 2017
ssl.sh: #1705: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:09 UTC 2017
ssl.sh: #1706: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:09 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1707: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:09 UTC 2017
ssl.sh: #1708: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:09 UTC 2017
ssl.sh: #1709: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:09 UTC 2017
ssl.sh: #1710: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:09 UTC 2017
ssl.sh: #1711: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:09 UTC 2017
ssl.sh: #1712: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:10 UTC 2017
ssl.sh: #1713: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:10 UTC 2017
ssl.sh: #1714: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:10 UTC 2017
ssl.sh: #1715: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:10 UTC 2017
ssl.sh: #1716: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:10 UTC 2017
ssl.sh: #1717: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:10 UTC 2017
ssl.sh: #1718: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:10 UTC 2017
ssl.sh: #1719: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:10 UTC 2017
ssl.sh: #1720: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:10 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1721: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:10 UTC 2017
ssl.sh: #1722: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:10 UTC 2017
ssl.sh: #1723: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:10 UTC 2017
ssl.sh: #1724: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:10 UTC 2017
ssl.sh: #1725: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:10 UTC 2017
ssl.sh: #1726: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:10 UTC 2017
ssl.sh: #1727: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:10 UTC 2017
ssl.sh: #1728: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:11 UTC 2017
ssl.sh: #1729: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:11 UTC 2017
ssl.sh: #1730: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:11 UTC 2017
ssl.sh: #1731: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:11 UTC 2017
ssl.sh: #1732: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:11 UTC 2017
ssl.sh: #1733: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17436 found at Sun Aug  6 23:45:11 UTC 2017
ssl.sh: #1734: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 17436 at Sun Aug  6 23:45:11 UTC 2017
kill -USR1 17436
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 17436 killed at Sun Aug  6 23:45:11 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:11 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18864 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 18864 found at Sun Aug  6 23:45:11 UTC 2017
selfserv_9009 with PID 18864 started at Sun Aug  6 23:45:11 UTC 2017
trying to kill selfserv_9009 with PID 18864 at Sun Aug  6 23:45:11 UTC 2017
kill -USR1 18864
./ssl.sh: line 197: 18864 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9009 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 18864 killed at Sun Aug  6 23:45:11 UTC 2017
ssl.sh: SSL - FIPS mode on for server ===============================
ssl.sh: Turning FIPS on for the  server
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -fips true -force
FIPS mode enabled.
ssl.sh: #1735:  (modutil -fips true) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -list
ssl.sh: #1736:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
  1. NSS Internal FIPS PKCS #11 Module
ssl.sh: #1737:  (grep "FIPS PKCS #11") produced a returncode of 0, expected is 0 - PASSED
ssl.sh: Turning FIPS on for the extended  server
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -fips true -force
FIPS mode enabled.
ssl.sh: #1738:  (modutil -fips true) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -list
ssl.sh: #1739:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
  1. NSS Internal FIPS PKCS #11 Module
ssl.sh: #1740:  (grep "FIPS PKCS #11") produced a returncode of 0, expected is 0 - PASSED
ssl.sh: SSL Cipher Coverage  - server fips/client normal  - with ECC ===============================
selfserv_9009 starting at Sun Aug  6 23:45:11 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18975 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 18975 found at Sun Aug  6 23:45:11 UTC 2017
selfserv_9009 with PID 18975 started at Sun Aug  6 23:45:11 UTC 2017
ssl.sh: running SSL3_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c c -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1741: SSL3_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1742: SSL3_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c e -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1743: SSL3_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c i -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1744: SSL3_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c n -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1745: SSL3_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c v -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1746: SSL3_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c y -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1747: SSL3_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c z -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1748: SSL3_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :009F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1749: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :00A3 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1750: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :009D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1751: TLS_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c c -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1752: TLS_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1753: TLS_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c e -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1754: TLS_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c i -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1755: TLS_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c n -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1756: TLS_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c v -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1757: TLS_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c y -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1758: TLS_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c z -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1759: TLS_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c c -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1760: TLS11_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1761: TLS11_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c e -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1762: TLS11_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c i -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1763: TLS11_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c n -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1764: TLS11_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c v -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1765: TLS11_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c y -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1766: TLS11_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c z -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1767: TLS11_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c c -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1768: TLS12_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1769: TLS12_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c e -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1770: TLS12_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c i -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1771: TLS12_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c n -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1772: TLS12_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c v -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1773: TLS12_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c y -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1774: TLS12_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c z -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1775: TLS12_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :0016 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1776: TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :0032 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1777: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :0033 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1778: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :0038 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1779: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :0039 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1780: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :003B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1781: TLS12_RSA_WITH_NULL_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :003C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1782: TLS12_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :003D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1783: TLS12_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :0040 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1784: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :0067 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1785: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :006A -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1786: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :006B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1787: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :009C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1788: TLS12_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :009E -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1789: TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :00A2 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1790: TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :CCAA -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1791: TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C001 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1792: TLS_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C002 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1793: TLS_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C003 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1794: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C004 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1795: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C005 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1796: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C006 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1797: TLS_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C007 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1798: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C008 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1799: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C009 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1800: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00A -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1801: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00B -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1802: TLS_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00C -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1803: TLS_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00D -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1804: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00E -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1805: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00F -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1806: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C010 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1807: TLS_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C011 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1808: TLS_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C012 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1809: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C013 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1810: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C014 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1811: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C001 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1812: TLS11_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C002 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1813: TLS11_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C003 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1814: TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C004 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1815: TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C005 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1816: TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C006 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1817: TLS11_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C007 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1818: TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C008 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1819: TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C009 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1820: TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00A -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1821: TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00B -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1822: TLS11_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00C -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1823: TLS11_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00D -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1824: TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00E -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1825: TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00F -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1826: TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C010 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1827: TLS11_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C011 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1828: TLS11_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C012 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1829: TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C013 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1830: TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C014 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1831: TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C001 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1832: TLS12_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C002 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1833: TLS12_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C003 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1834: TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C004 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1835: TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C005 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1836: TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C006 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1837: TLS12_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C007 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1838: TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C008 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1839: TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C009 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1840: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00A -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1841: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1842: TLS12_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1843: TLS12_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1844: TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00E -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1845: TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1846: TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C010 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1847: TLS12_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C011 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1848: TLS12_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C012 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1849: TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C013 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1850: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C014 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1851: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C023 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1852: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C024 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1853: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C027 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1854: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C028 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1855: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C02B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1856: TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C02C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1857: TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C02F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1858: TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C030 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1859: TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :CCA8 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1860: TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :CCA9 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1861: TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 18975 at Sun Aug  6 23:45:15 UTC 2017
kill -USR1 18975
selfserv: 0 cache hits; 121 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 18975 killed at Sun Aug  6 23:45:15 UTC 2017
ssl.sh: SSL Client Authentication  - server fips/client normal  - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21246 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21246 found at Sun Aug  6 23:45:15 UTC 2017
selfserv_9009 with PID 21246 started at Sun Aug  6 23:45:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1862: TLS Request don't require client auth (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 21246 at Sun Aug  6 23:45:15 UTC 2017
kill -USR1 21246
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21246 killed at Sun Aug  6 23:45:15 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21303 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21303 found at Sun Aug  6 23:45:15 UTC 2017
selfserv_9009 with PID 21303 started at Sun Aug  6 23:45:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1863: TLS Request don't require client auth (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 21303 at Sun Aug  6 23:45:15 UTC 2017
kill -USR1 21303
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21303 killed at Sun Aug  6 23:45:15 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21361 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21361 found at Sun Aug  6 23:45:15 UTC 2017
selfserv_9009 with PID 21361 started at Sun Aug  6 23:45:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1864: TLS Request don't require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 21361 at Sun Aug  6 23:45:15 UTC 2017
kill -USR1 21361
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21361 killed at Sun Aug  6 23:45:15 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21418 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21418 found at Sun Aug  6 23:45:15 UTC 2017
selfserv_9009 with PID 21418 started at Sun Aug  6 23:45:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1865: TLS Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 21418 at Sun Aug  6 23:45:15 UTC 2017
kill -USR1 21418
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21418 killed at Sun Aug  6 23:45:15 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21475 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21475 found at Sun Aug  6 23:45:15 UTC 2017
selfserv_9009 with PID 21475 started at Sun Aug  6 23:45:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1866: TLS Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 21475 at Sun Aug  6 23:45:15 UTC 2017
kill -USR1 21475
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21475 killed at Sun Aug  6 23:45:15 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21532 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21532 found at Sun Aug  6 23:45:15 UTC 2017
selfserv_9009 with PID 21532 started at Sun Aug  6 23:45:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1867: TLS Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 21532 at Sun Aug  6 23:45:15 UTC 2017
kill -USR1 21532
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21532 killed at Sun Aug  6 23:45:15 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21589 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21589 found at Sun Aug  6 23:45:15 UTC 2017
selfserv_9009 with PID 21589 started at Sun Aug  6 23:45:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1868: SSL3 Request don't require client auth (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 21589 at Sun Aug  6 23:45:16 UTC 2017
kill -USR1 21589
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21589 killed at Sun Aug  6 23:45:16 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:16 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21646 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21646 found at Sun Aug  6 23:45:16 UTC 2017
selfserv_9009 with PID 21646 started at Sun Aug  6 23:45:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1869: SSL3 Request don't require client auth (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 21646 at Sun Aug  6 23:45:16 UTC 2017
kill -USR1 21646
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21646 killed at Sun Aug  6 23:45:16 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:16 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21703 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21703 found at Sun Aug  6 23:45:16 UTC 2017
selfserv_9009 with PID 21703 started at Sun Aug  6 23:45:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1870: SSL3 Request don't require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 21703 at Sun Aug  6 23:45:16 UTC 2017
kill -USR1 21703
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21703 killed at Sun Aug  6 23:45:16 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:16 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21760 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21760 found at Sun Aug  6 23:45:16 UTC 2017
selfserv_9009 with PID 21760 started at Sun Aug  6 23:45:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1871: SSL3 Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 21760 at Sun Aug  6 23:45:16 UTC 2017
kill -USR1 21760
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21760 killed at Sun Aug  6 23:45:16 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:16 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21817 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21817 found at Sun Aug  6 23:45:16 UTC 2017
selfserv_9009 with PID 21817 started at Sun Aug  6 23:45:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1872: SSL3 Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 21817 at Sun Aug  6 23:45:16 UTC 2017
kill -USR1 21817
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21817 killed at Sun Aug  6 23:45:16 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:16 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21874 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21874 found at Sun Aug  6 23:45:16 UTC 2017
selfserv_9009 with PID 21874 started at Sun Aug  6 23:45:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1873: SSL3 Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 21874 at Sun Aug  6 23:45:16 UTC 2017
kill -USR1 21874
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21874 killed at Sun Aug  6 23:45:16 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:16 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21932 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21932 found at Sun Aug  6 23:45:16 UTC 2017
selfserv_9009 with PID 21932 started at Sun Aug  6 23:45:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1874: TLS Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 21932 at Sun Aug  6 23:45:16 UTC 2017
kill -USR1 21932
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21932 killed at Sun Aug  6 23:45:16 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:16 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21991 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21991 found at Sun Aug  6 23:45:16 UTC 2017
selfserv_9009 with PID 21991 started at Sun Aug  6 23:45:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1875: TLS Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 21991 at Sun Aug  6 23:45:16 UTC 2017
kill -USR1 21991
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21991 killed at Sun Aug  6 23:45:16 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:16 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22048 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22048 found at Sun Aug  6 23:45:16 UTC 2017
selfserv_9009 with PID 22048 started at Sun Aug  6 23:45:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1876: TLS Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 22048 at Sun Aug  6 23:45:17 UTC 2017
kill -USR1 22048
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22048 killed at Sun Aug  6 23:45:17 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:17 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22105 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22105 found at Sun Aug  6 23:45:17 UTC 2017
selfserv_9009 with PID 22105 started at Sun Aug  6 23:45:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1877: TLS Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 22105 at Sun Aug  6 23:45:17 UTC 2017
kill -USR1 22105
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22105 killed at Sun Aug  6 23:45:17 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:17 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22162 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22162 found at Sun Aug  6 23:45:17 UTC 2017
selfserv_9009 with PID 22162 started at Sun Aug  6 23:45:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1878: TLS Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 22162 at Sun Aug  6 23:45:17 UTC 2017
kill -USR1 22162
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22162 killed at Sun Aug  6 23:45:17 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:17 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22219 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22219 found at Sun Aug  6 23:45:17 UTC 2017
selfserv_9009 with PID 22219 started at Sun Aug  6 23:45:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1879: TLS Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 22219 at Sun Aug  6 23:45:17 UTC 2017
kill -USR1 22219
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22219 killed at Sun Aug  6 23:45:17 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:17 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22276 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22276 found at Sun Aug  6 23:45:17 UTC 2017
selfserv_9009 with PID 22276 started at Sun Aug  6 23:45:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1880: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 22276 at Sun Aug  6 23:45:17 UTC 2017
kill -USR1 22276
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22276 killed at Sun Aug  6 23:45:17 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:17 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22333 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22333 found at Sun Aug  6 23:45:17 UTC 2017
selfserv_9009 with PID 22333 started at Sun Aug  6 23:45:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1881: TLS 1.0 Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 22333 at Sun Aug  6 23:45:17 UTC 2017
kill -USR1 22333
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22333 killed at Sun Aug  6 23:45:17 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:17 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22390 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22390 found at Sun Aug  6 23:45:17 UTC 2017
selfserv_9009 with PID 22390 started at Sun Aug  6 23:45:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1882: TLS 1.0 Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 22390 at Sun Aug  6 23:45:17 UTC 2017
kill -USR1 22390
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22390 killed at Sun Aug  6 23:45:17 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:17 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22447 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22447 found at Sun Aug  6 23:45:17 UTC 2017
selfserv_9009 with PID 22447 started at Sun Aug  6 23:45:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1883: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 22447 at Sun Aug  6 23:45:18 UTC 2017
kill -USR1 22447
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22447 killed at Sun Aug  6 23:45:18 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:18 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22504 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22504 found at Sun Aug  6 23:45:18 UTC 2017
selfserv_9009 with PID 22504 started at Sun Aug  6 23:45:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1884: TLS 1.0 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 22504 at Sun Aug  6 23:45:18 UTC 2017
kill -USR1 22504
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22504 killed at Sun Aug  6 23:45:18 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:18 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22562 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22562 found at Sun Aug  6 23:45:18 UTC 2017
selfserv_9009 with PID 22562 started at Sun Aug  6 23:45:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1885: TLS 1.0 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 22562 at Sun Aug  6 23:45:18 UTC 2017
kill -USR1 22562
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22562 killed at Sun Aug  6 23:45:18 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:18 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22619 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22619 found at Sun Aug  6 23:45:18 UTC 2017
selfserv_9009 with PID 22619 started at Sun Aug  6 23:45:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1886: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 22619 at Sun Aug  6 23:45:18 UTC 2017
kill -USR1 22619
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22619 killed at Sun Aug  6 23:45:18 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:18 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22676 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22676 found at Sun Aug  6 23:45:18 UTC 2017
selfserv_9009 with PID 22676 started at Sun Aug  6 23:45:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1887: SSL3 Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 22676 at Sun Aug  6 23:45:18 UTC 2017
kill -USR1 22676
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22676 killed at Sun Aug  6 23:45:18 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:18 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22733 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22733 found at Sun Aug  6 23:45:18 UTC 2017
selfserv_9009 with PID 22733 started at Sun Aug  6 23:45:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1888: SSL3 Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 22733 at Sun Aug  6 23:45:18 UTC 2017
kill -USR1 22733
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22733 killed at Sun Aug  6 23:45:18 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:18 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22790 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22790 found at Sun Aug  6 23:45:18 UTC 2017
selfserv_9009 with PID 22790 started at Sun Aug  6 23:45:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1889: SSL3 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 22790 at Sun Aug  6 23:45:18 UTC 2017
kill -USR1 22790
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22790 killed at Sun Aug  6 23:45:18 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:18 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22848 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22848 found at Sun Aug  6 23:45:18 UTC 2017
selfserv_9009 with PID 22848 started at Sun Aug  6 23:45:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1890: SSL3 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 22848 at Sun Aug  6 23:45:19 UTC 2017
kill -USR1 22848
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22848 killed at Sun Aug  6 23:45:19 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:19 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22905 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22905 found at Sun Aug  6 23:45:19 UTC 2017
selfserv_9009 with PID 22905 started at Sun Aug  6 23:45:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1891: SSL3 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 22905 at Sun Aug  6 23:45:19 UTC 2017
kill -USR1 22905
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22905 killed at Sun Aug  6 23:45:19 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:19 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22977 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22977 found at Sun Aug  6 23:45:19 UTC 2017
selfserv_9009 with PID 22977 started at Sun Aug  6 23:45:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1892: TLS Request don't require client auth (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 22977 at Sun Aug  6 23:45:19 UTC 2017
kill -USR1 22977
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22977 killed at Sun Aug  6 23:45:19 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:19 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23034 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23034 found at Sun Aug  6 23:45:19 UTC 2017
selfserv_9009 with PID 23034 started at Sun Aug  6 23:45:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1893: TLS Request don't require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 23034 at Sun Aug  6 23:45:19 UTC 2017
kill -USR1 23034
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23034 killed at Sun Aug  6 23:45:19 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:19 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23092 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23092 found at Sun Aug  6 23:45:19 UTC 2017
selfserv_9009 with PID 23092 started at Sun Aug  6 23:45:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1894: TLS Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 23092 at Sun Aug  6 23:45:19 UTC 2017
kill -USR1 23092
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23092 killed at Sun Aug  6 23:45:19 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:19 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23149 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23149 found at Sun Aug  6 23:45:19 UTC 2017
selfserv_9009 with PID 23149 started at Sun Aug  6 23:45:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1895: TLS Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 23149 at Sun Aug  6 23:45:19 UTC 2017
kill -USR1 23149
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23149 killed at Sun Aug  6 23:45:19 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:19 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23207 found at Sun Aug  6 23:45:19 UTC 2017
selfserv_9009 with PID 23207 started at Sun Aug  6 23:45:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1896: SSL3 Request don't require client auth (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 23207 at Sun Aug  6 23:45:19 UTC 2017
kill -USR1 23207
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23207 killed at Sun Aug  6 23:45:19 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:19 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23264 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23264 found at Sun Aug  6 23:45:19 UTC 2017
selfserv_9009 with PID 23264 started at Sun Aug  6 23:45:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1897: SSL3 Request don't require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 23264 at Sun Aug  6 23:45:19 UTC 2017
kill -USR1 23264
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23264 killed at Sun Aug  6 23:45:19 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:20 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23321 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23321 found at Sun Aug  6 23:45:20 UTC 2017
selfserv_9009 with PID 23321 started at Sun Aug  6 23:45:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1898: SSL3 Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 23321 at Sun Aug  6 23:45:20 UTC 2017
kill -USR1 23321
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23321 killed at Sun Aug  6 23:45:20 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:20 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23378 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23378 found at Sun Aug  6 23:45:20 UTC 2017
selfserv_9009 with PID 23378 started at Sun Aug  6 23:45:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1899: SSL3 Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 23378 at Sun Aug  6 23:45:20 UTC 2017
kill -USR1 23378
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23378 killed at Sun Aug  6 23:45:20 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:20 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23437 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23437 found at Sun Aug  6 23:45:20 UTC 2017
selfserv_9009 with PID 23437 started at Sun Aug  6 23:45:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1900: TLS Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 23437 at Sun Aug  6 23:45:20 UTC 2017
kill -USR1 23437
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23437 killed at Sun Aug  6 23:45:20 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:20 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23494 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23494 found at Sun Aug  6 23:45:20 UTC 2017
selfserv_9009 with PID 23494 started at Sun Aug  6 23:45:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1901: TLS Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 23494 at Sun Aug  6 23:45:20 UTC 2017
kill -USR1 23494
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23494 killed at Sun Aug  6 23:45:20 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:20 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23551 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23551 found at Sun Aug  6 23:45:20 UTC 2017
selfserv_9009 with PID 23551 started at Sun Aug  6 23:45:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1902: TLS Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 23551 at Sun Aug  6 23:45:20 UTC 2017
kill -USR1 23551
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23551 killed at Sun Aug  6 23:45:20 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:20 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23608 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23608 found at Sun Aug  6 23:45:20 UTC 2017
selfserv_9009 with PID 23608 started at Sun Aug  6 23:45:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1903: TLS Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 23608 at Sun Aug  6 23:45:20 UTC 2017
kill -USR1 23608
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23608 killed at Sun Aug  6 23:45:20 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:20 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23665 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23665 found at Sun Aug  6 23:45:20 UTC 2017
selfserv_9009 with PID 23665 started at Sun Aug  6 23:45:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1904: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 23665 at Sun Aug  6 23:45:21 UTC 2017
kill -USR1 23665
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23665 killed at Sun Aug  6 23:45:21 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:21 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23722 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23722 found at Sun Aug  6 23:45:21 UTC 2017
selfserv_9009 with PID 23722 started at Sun Aug  6 23:45:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1905: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 23722 at Sun Aug  6 23:45:21 UTC 2017
kill -USR1 23722
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23722 killed at Sun Aug  6 23:45:21 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:21 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23779 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23779 found at Sun Aug  6 23:45:21 UTC 2017
selfserv_9009 with PID 23779 started at Sun Aug  6 23:45:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1906: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 23779 at Sun Aug  6 23:45:21 UTC 2017
kill -USR1 23779
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23779 killed at Sun Aug  6 23:45:21 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:21 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23836 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23836 found at Sun Aug  6 23:45:21 UTC 2017
selfserv_9009 with PID 23836 started at Sun Aug  6 23:45:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1907: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 23836 at Sun Aug  6 23:45:21 UTC 2017
kill -USR1 23836
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23836 killed at Sun Aug  6 23:45:21 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:21 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23893 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23893 found at Sun Aug  6 23:45:21 UTC 2017
selfserv_9009 with PID 23893 started at Sun Aug  6 23:45:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1908: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 23893 at Sun Aug  6 23:45:21 UTC 2017
kill -USR1 23893
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23893 killed at Sun Aug  6 23:45:21 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:21 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23950 found at Sun Aug  6 23:45:21 UTC 2017
selfserv_9009 with PID 23950 started at Sun Aug  6 23:45:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1909: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 23950 at Sun Aug  6 23:45:21 UTC 2017
kill -USR1 23950
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23950 killed at Sun Aug  6 23:45:21 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:21 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24007 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24007 found at Sun Aug  6 23:45:21 UTC 2017
selfserv_9009 with PID 24007 started at Sun Aug  6 23:45:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1910: SSL3 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 24007 at Sun Aug  6 23:45:21 UTC 2017
kill -USR1 24007
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24007 killed at Sun Aug  6 23:45:21 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:21 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24065 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24065 found at Sun Aug  6 23:45:21 UTC 2017
selfserv_9009 with PID 24065 started at Sun Aug  6 23:45:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1911: SSL3 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 24065 at Sun Aug  6 23:45:22 UTC 2017
kill -USR1 24065
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24065 killed at Sun Aug  6 23:45:22 UTC 2017
ssl.sh: TLS Server hello response without SNI ----
selfserv_9009 starting at Sun Aug  6 23:45:22 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24143 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24143 found at Sun Aug  6 23:45:22 UTC 2017
selfserv_9009 with PID 24143 started at Sun Aug  6 23:45:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1912: TLS Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 24143 at Sun Aug  6 23:45:22 UTC 2017
kill -USR1 24143
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24143 killed at Sun Aug  6 23:45:22 UTC 2017
ssl.sh: TLS Server hello response with SNI ----
selfserv_9009 starting at Sun Aug  6 23:45:22 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24206 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24206 found at Sun Aug  6 23:45:22 UTC 2017
selfserv_9009 with PID 24206 started at Sun Aug  6 23:45:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1913: TLS Server hello response with SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 24206 at Sun Aug  6 23:45:22 UTC 2017
kill -USR1 24206
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24206 killed at Sun Aug  6 23:45:22 UTC 2017
ssl.sh: TLS Server response with alert ----
selfserv_9009 starting at Sun Aug  6 23:45:22 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24269 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24269 found at Sun Aug  6 23:45:22 UTC 2017
selfserv_9009 with PID 24269 started at Sun Aug  6 23:45:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12182:
SSL peer has no certificate for the requested DNS name.
tstclnt: write to SSL socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #1914: TLS Server response with alert produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 24269 at Sun Aug  6 23:45:22 UTC 2017
kill -USR1 24269
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24269 killed at Sun Aug  6 23:45:22 UTC 2017
ssl.sh: SSL3 Server hello response without SNI ----
selfserv_9009 starting at Sun Aug  6 23:45:22 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24332 found at Sun Aug  6 23:45:22 UTC 2017
selfserv_9009 with PID 24332 started at Sun Aug  6 23:45:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -c v -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1915: SSL3 Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 24332 at Sun Aug  6 23:45:22 UTC 2017
kill -USR1 24332
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24332 killed at Sun Aug  6 23:45:22 UTC 2017
ssl.sh: SSL3 Server hello response with SNI: SSL don't have SH extensions ----
selfserv_9009 starting at Sun Aug  6 23:45:22 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24395 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24395 found at Sun Aug  6 23:45:22 UTC 2017
selfserv_9009 with PID 24395 started at Sun Aug  6 23:45:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
tstclnt: authentication of server cert failed: SSL_ERROR_BAD_CERT_DOMAIN: Unable to communicate securely with peer: requested domain name does not match the server's certificate.
ssl.sh: #1916: SSL3 Server hello response with SNI: SSL don't have SH extensions produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 24395 at Sun Aug  6 23:45:22 UTC 2017
kill -USR1 24395
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24395 killed at Sun Aug  6 23:45:22 UTC 2017
ssl.sh: TLS Server hello response without SNI ----
selfserv_9009 starting at Sun Aug  6 23:45:22 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24458 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24458 found at Sun Aug  6 23:45:22 UTC 2017
selfserv_9009 with PID 24458 started at Sun Aug  6 23:45:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1917: TLS Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 24458 at Sun Aug  6 23:45:22 UTC 2017
kill -USR1 24458
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24458 killed at Sun Aug  6 23:45:22 UTC 2017
ssl.sh: TLS Server hello response with SNI ----
selfserv_9009 starting at Sun Aug  6 23:45:22 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24521 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24521 found at Sun Aug  6 23:45:22 UTC 2017
selfserv_9009 with PID 24521 started at Sun Aug  6 23:45:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1918: TLS Server hello response with SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 24521 at Sun Aug  6 23:45:22 UTC 2017
kill -USR1 24521
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24521 killed at Sun Aug  6 23:45:22 UTC 2017
ssl.sh: TLS Server hello response with SNI: Change name on 2d HS ----
selfserv_9009 starting at Sun Aug  6 23:45:22 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24586 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24586 found at Sun Aug  6 23:45:22 UTC 2017
selfserv_9009 with PID 24586 started at Sun Aug  6 23:45:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v-w nss -n TestUser -a localhost-sni.localdomain -a localhost.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Usage:  tstclnt -h host [-a 1st_hs_name ] [-a 2nd_hs_name ] [-p port]
[-D | -d certdir] [-C] [-b | -R root-module] 
[-n nickname] [-Bafosvx] [-c ciphers] [-Y] [-Z]
[-V [min-version]:[max-version]] [-K] [-T] [-U]
[-r N] [-w passwd] [-W pwfile] [-q [-t seconds]] [-I groups]
[-A requestfile] [-L totalconnections]-a name              Send different SNI name. 1st_hs_name - at first
                     handshake, 2nd_hs_name - at second handshake.
                     Default is host from the -h argument.
-h host              Hostname to connect with
-p port              Port number for SSL server
-d certdir           Directory with cert database (default is ~/.netscape)
-D                   Run without a cert database
-b                   Load the default "builtins" root CA module
-R                   Load the given root CA module
-C                   Print certificate chain information
                     (use -C twice to print more certificate details)
                     (use -C three times to include PEM format certificate dumps)
-n nickname          Nickname of key and cert for client auth
-V [min]:[max]       Restricts the set of enabled SSL/TLS protocols versions.
                     All versions are enabled by default.
                     Possible values for min/max: ssl3 tls1.0 tls1.1 tls1.2 tls1.3
                     Example: "-V ssl3:" enables SSL 3 and newer.
-K                   Send TLS_FALLBACK_SCSV
-S                   Prints only payload data. Skips HTTP header.
-f                   Client speaks first. 
-O                   Use synchronous certificate validation
-o                   Override bad server cert. Make it OK.
-s                   Disable SSL socket locking.
-v                   Verbose progress reporting.
-q                   Ping the server and then exit.
-t seconds           Timeout for server ping (default: no timeout).
-r N                 Renegotiate N times (resuming session if N>1).
-u                   Enable the session ticket extension.
-z                   Enable compression.
-g                   Enable false start.
-T                   Enable the cert_status extension (OCSP stapling).
-U                   Enable the signed_certificate_timestamp extension.
-F                   Require fresh revocation info from side channel.
                     -F once means: require for server cert only
                     -F twice means: require for intermediates, too
                     (Connect, handshake with server, disable dynamic download
                      of OCSP/CRL, verify cert using CERT_PKIXVerifyCert.)
                     Exit code:
                     0: have fresh and valid revocation data, status good
                     1: cert failed to verify, prior to revocation checking
                     2: missing, old or invalid revocation data
                     3: have fresh and valid revocation data, status revoked
-M                   Test -F allows 0=any (default), 1=only OCSP, 2=only CRL
-c ciphers           Restrict ciphers
-Y                   Print cipher values allowed for parameter -c and exit
-4                   Enforce using an IPv4 destination address
-6                   Enforce using an IPv6 destination address
                     (Options -4 and -6 cannot be combined.)
-G                   Enable the extended master secret extension [RFC7627]
-H                   Require the use of FFDHE supported groups [I-D.ietf-tls-negotiated-ff-dhe]
-A                   Read from a file instead of stdin
-Z                   Allow 0-RTT data (TLS 1.3 only)
-L                   Disconnect and reconnect up to N times total
-I                   Comma separated list of enabled groups for TLS key exchange.
                     The following values are valid:
                     P256, P384, P521, x25519, FF2048, FF3072, FF4096, FF6144, FF8192
ssl.sh: #1919: TLS Server hello response with SNI: Change name on 2d HS produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 24586 at Sun Aug  6 23:45:22 UTC 2017
kill -USR1 24586
./ssl.sh: line 197: 24586 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9009 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24586 killed at Sun Aug  6 23:45:22 UTC 2017
ssl.sh: TLS Server hello response with SNI: Change name to invalid 2d HS ----
selfserv_9009 starting at Sun Aug  6 23:45:22 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24641 found at Sun Aug  6 23:45:22 UTC 2017
selfserv_9009 with PID 24641 started at Sun Aug  6 23:45:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12182:
SSL peer has no certificate for the requested DNS name.
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #1920: TLS Server hello response with SNI: Change name to invalid 2d HS produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 24641 at Sun Aug  6 23:45:23 UTC 2017
kill -USR1 24641
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24641 killed at Sun Aug  6 23:45:23 UTC 2017
ssl.sh: TLS Server response with alert ----
selfserv_9009 starting at Sun Aug  6 23:45:23 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24704 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24704 found at Sun Aug  6 23:45:23 UTC 2017
selfserv_9009 with PID 24704 started at Sun Aug  6 23:45:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12182:
SSL peer has no certificate for the requested DNS name.
tstclnt: write to SSL socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #1921: TLS Server response with alert produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 24704 at Sun Aug  6 23:45:23 UTC 2017
kill -USR1 24704
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24704 killed at Sun Aug  6 23:45:23 UTC 2017
ssl.sh: SSL Cert Status (OCSP Stapling)  - server fips/client normal  - with ECC ===============================
ssl.sh: skipping  OCSP stapling, signed response, good status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, signed response, revoked status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, signed response, unknown status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, unsigned failure response (non-FIPS only)
ssl.sh: skipping  OCSP stapling, good status, bad signature (non-FIPS only)
ssl.sh: skipping  OCSP stapling, invalid cert status data (non-FIPS only)
ssl.sh: skipping  Valid cert, Server doesn't staple (non-FIPS only)
ssl.sh: skipping  Stress OCSP stapling, server uses random status (non-FIPS only)
ssl.sh: SSL Stress Test  - server fips/client normal  - with ECC ===============================
ssl.sh: Stress SSL3 RC4 128 with MD5 ----
selfserv_9009 starting at Sun Aug  6 23:45:23 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24811 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24811 found at Sun Aug  6 23:45:23 UTC 2017
selfserv_9009 with PID 24811 started at Sun Aug  6 23:45:23 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -c 1000 -C c -V ssl3:ssl3 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:23 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:45:23 UTC 2017
ssl.sh: #1922: Stress SSL3 RC4 128 with MD5 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 24811 at Sun Aug  6 23:45:23 UTC 2017
kill -USR1 24811
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24811 killed at Sun Aug  6 23:45:23 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 ----
selfserv_9009 starting at Sun Aug  6 23:45:23 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24882 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24882 found at Sun Aug  6 23:45:23 UTC 2017
selfserv_9009 with PID 24882 started at Sun Aug  6 23:45:23 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -c 1000 -C c \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:23 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:45:23 UTC 2017
ssl.sh: #1923: Stress TLS  RC4 128 with MD5 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 24882 at Sun Aug  6 23:45:23 UTC 2017
kill -USR1 24882
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24882 killed at Sun Aug  6 23:45:23 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (false start) ----
selfserv_9009 starting at Sun Aug  6 23:45:23 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24953 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24953 found at Sun Aug  6 23:45:23 UTC 2017
selfserv_9009 with PID 24953 started at Sun Aug  6 23:45:23 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -c 1000 -C c -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:23 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:45:23 UTC 2017
ssl.sh: #1924: Stress TLS  RC4 128 with MD5 (false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 24953 at Sun Aug  6 23:45:23 UTC 2017
kill -USR1 24953
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24953 killed at Sun Aug  6 23:45:23 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket) ----
selfserv_9009 starting at Sun Aug  6 23:45:23 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25025 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25025 found at Sun Aug  6 23:45:23 UTC 2017
selfserv_9009 with PID 25025 started at Sun Aug  6 23:45:23 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:23 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Sun Aug  6 23:45:24 UTC 2017
ssl.sh: #1925: Stress TLS  RC4 128 with MD5 (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 25025 at Sun Aug  6 23:45:24 UTC 2017
kill -USR1 25025
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25025 killed at Sun Aug  6 23:45:24 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (compression) ----
selfserv_9009 starting at Sun Aug  6 23:45:24 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -z -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:24 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25096 found at Sun Aug  6 23:45:24 UTC 2017
selfserv_9009 with PID 25096 started at Sun Aug  6 23:45:24 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C c -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:24 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:45:24 UTC 2017
ssl.sh: #1926: Stress TLS  RC4 128 with MD5 (compression) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 25096 at Sun Aug  6 23:45:24 UTC 2017
kill -USR1 25096
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25096 killed at Sun Aug  6 23:45:24 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket, compression) ----
selfserv_9009 starting at Sun Aug  6 23:45:24 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -z -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:24 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25168 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25168 found at Sun Aug  6 23:45:24 UTC 2017
selfserv_9009 with PID 25168 started at Sun Aug  6 23:45:24 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:24 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Sun Aug  6 23:45:24 UTC 2017
ssl.sh: #1927: Stress TLS  RC4 128 with MD5 (session ticket, compression) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 25168 at Sun Aug  6 23:45:24 UTC 2017
kill -USR1 25168
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25168 killed at Sun Aug  6 23:45:24 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) ----
selfserv_9009 starting at Sun Aug  6 23:45:24 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -z -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:24 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25239 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25239 found at Sun Aug  6 23:45:24 UTC 2017
selfserv_9009 with PID 25239 started at Sun Aug  6 23:45:24 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:24 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Sun Aug  6 23:45:24 UTC 2017
ssl.sh: #1928: Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 25239 at Sun Aug  6 23:45:24 UTC 2017
kill -USR1 25239
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25239 killed at Sun Aug  6 23:45:24 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI) ----
selfserv_9009 starting at Sun Aug  6 23:45:24 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -a localhost-sni.localdomain -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:24 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25316 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25316 found at Sun Aug  6 23:45:24 UTC 2017
selfserv_9009 with PID 25316 started at Sun Aug  6 23:45:24 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:24 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Sun Aug  6 23:45:24 UTC 2017
ssl.sh: #1929: Stress TLS RC4 128 with MD5 (session ticket, SNI) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 25316 at Sun Aug  6 23:45:24 UTC 2017
kill -USR1 25316
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25316 killed at Sun Aug  6 23:45:24 UTC 2017
ssl.sh: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:24 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:24 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25402 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25402 found at Sun Aug  6 23:45:24 UTC 2017
selfserv_9009 with PID 25402 started at Sun Aug  6 23:45:24 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -c 100 -C c -V ssl3:ssl3 -N -n TestUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:24 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:45:25 UTC 2017
ssl.sh: #1930: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 25402 at Sun Aug  6 23:45:25 UTC 2017
kill -USR1 25402
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25402 killed at Sun Aug  6 23:45:25 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:25 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:25 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25473 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25473 found at Sun Aug  6 23:45:25 UTC 2017
selfserv_9009 with PID 25473 started at Sun Aug  6 23:45:25 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -c 100 -C c -N -n TestUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:25 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:45:25 UTC 2017
ssl.sh: #1931: Stress TLS RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 25473 at Sun Aug  6 23:45:25 UTC 2017
kill -USR1 25473
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25473 killed at Sun Aug  6 23:45:25 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:25 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:25 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25543 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25543 found at Sun Aug  6 23:45:25 UTC 2017
selfserv_9009 with PID 25543 started at Sun Aug  6 23:45:25 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:25 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sun Aug  6 23:45:25 UTC 2017
ssl.sh: #1932: Stress TLS RC4 128 with MD5 (session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 25543 at Sun Aug  6 23:45:25 UTC 2017
kill -USR1 25543
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25543 killed at Sun Aug  6 23:45:25 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:25 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:25 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25614 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25614 found at Sun Aug  6 23:45:25 UTC 2017
selfserv_9009 with PID 25614 started at Sun Aug  6 23:45:25 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:25 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:45:25 UTC 2017
ssl.sh: #1933: Stress TLS RC4 128 with MD5 (compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 25614 at Sun Aug  6 23:45:25 UTC 2017
kill -USR1 25614
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25614 killed at Sun Aug  6 23:45:25 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth, false start) ----
selfserv_9009 starting at Sun Aug  6 23:45:25 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:25 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25685 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25685 found at Sun Aug  6 23:45:25 UTC 2017
selfserv_9009 with PID 25685 started at Sun Aug  6 23:45:25 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:25 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:45:25 UTC 2017
ssl.sh: #1934: Stress TLS RC4 128 with MD5 (compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 25685 at Sun Aug  6 23:45:25 UTC 2017
kill -USR1 25685
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25685 killed at Sun Aug  6 23:45:25 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:25 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:25 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25756 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25756 found at Sun Aug  6 23:45:25 UTC 2017
selfserv_9009 with PID 25756 started at Sun Aug  6 23:45:25 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:25 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sun Aug  6 23:45:26 UTC 2017
ssl.sh: #1935: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 25756 at Sun Aug  6 23:45:26 UTC 2017
kill -USR1 25756
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25756 killed at Sun Aug  6 23:45:26 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) ----
selfserv_9009 starting at Sun Aug  6 23:45:26 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:26 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25827 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25827 found at Sun Aug  6 23:45:26 UTC 2017
selfserv_9009 with PID 25827 started at Sun Aug  6 23:45:26 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:26 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sun Aug  6 23:45:26 UTC 2017
ssl.sh: #1936: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 25827 at Sun Aug  6 23:45:26 UTC 2017
kill -USR1 25827
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25827 killed at Sun Aug  6 23:45:26 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) ----
selfserv_9009 starting at Sun Aug  6 23:45:26 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -a localhost-sni.localdomain -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:26 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25904 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25904 found at Sun Aug  6 23:45:26 UTC 2017
selfserv_9009 with PID 25904 started at Sun Aug  6 23:45:26 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:26 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Sun Aug  6 23:45:26 UTC 2017
ssl.sh: #1937: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 25904 at Sun Aug  6 23:45:26 UTC 2017
kill -USR1 25904
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25904 killed at Sun Aug  6 23:45:26 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) ----
selfserv_9009 starting at Sun Aug  6 23:45:26 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -a localhost-sni.localdomain -k localhost-sni.localdomain -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:26 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25981 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25981 found at Sun Aug  6 23:45:26 UTC 2017
selfserv_9009 with PID 25981 started at Sun Aug  6 23:45:26 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u -a localhost-sni.localdomain \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:26 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Sun Aug  6 23:45:26 UTC 2017
ssl.sh: #1938: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 25981 at Sun Aug  6 23:45:26 UTC 2017
kill -USR1 25981
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25981 killed at Sun Aug  6 23:45:26 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) ----
selfserv_9009 starting at Sun Aug  6 23:45:26 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C009 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:26 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26067 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26067 found at Sun Aug  6 23:45:26 UTC 2017
selfserv_9009 with PID 26067 started at Sun Aug  6 23:45:26 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C009 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:26 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:45:27 UTC 2017
ssl.sh: #1939: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 26067 at Sun Aug  6 23:45:27 UTC 2017
kill -USR1 26067
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26067 killed at Sun Aug  6 23:45:27 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) ----
selfserv_9009 starting at Sun Aug  6 23:45:27 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C023 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:27 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26137 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26137 found at Sun Aug  6 23:45:27 UTC 2017
selfserv_9009 with PID 26137 started at Sun Aug  6 23:45:27 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C023 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:27 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:45:27 UTC 2017
ssl.sh: #1940: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 26137 at Sun Aug  6 23:45:27 UTC 2017
kill -USR1 26137
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26137 killed at Sun Aug  6 23:45:27 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) ----
selfserv_9009 starting at Sun Aug  6 23:45:27 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C02B -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:27 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:45:27 UTC 2017
selfserv_9009 with PID 26207 started at Sun Aug  6 23:45:27 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C02B -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:27 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:45:28 UTC 2017
ssl.sh: #1941: Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 26207 at Sun Aug  6 23:45:28 UTC 2017
kill -USR1 26207
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26207 killed at Sun Aug  6 23:45:28 UTC 2017
ssl.sh: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) ----
selfserv_9009 starting at Sun Aug  6 23:45:28 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C004 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:28 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26277 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26277 found at Sun Aug  6 23:45:28 UTC 2017
selfserv_9009 with PID 26277 started at Sun Aug  6 23:45:28 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C004 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:28 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:45:29 UTC 2017
ssl.sh: #1942: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 26277 at Sun Aug  6 23:45:29 UTC 2017
kill -USR1 26277
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26277 killed at Sun Aug  6 23:45:29 UTC 2017
ssl.sh: Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) ----
selfserv_9009 starting at Sun Aug  6 23:45:29 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C00E -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:29 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26347 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26347 found at Sun Aug  6 23:45:29 UTC 2017
selfserv_9009 with PID 26347 started at Sun Aug  6 23:45:29 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C00E -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:29 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:45:29 UTC 2017
ssl.sh: #1943: Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 26347 at Sun Aug  6 23:45:29 UTC 2017
kill -USR1 26347
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26347 killed at Sun Aug  6 23:45:29 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA ----
selfserv_9009 starting at Sun Aug  6 23:45:29 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C013 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:29 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26417 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26417 found at Sun Aug  6 23:45:29 UTC 2017
selfserv_9009 with PID 26417 started at Sun Aug  6 23:45:29 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :C013 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:29 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:45:29 UTC 2017
ssl.sh: #1944: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 26417 at Sun Aug  6 23:45:29 UTC 2017
kill -USR1 26417
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26417 killed at Sun Aug  6 23:45:29 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 ----
selfserv_9009 starting at Sun Aug  6 23:45:30 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C027 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:30 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26488 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26488 found at Sun Aug  6 23:45:30 UTC 2017
selfserv_9009 with PID 26488 started at Sun Aug  6 23:45:30 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :C027 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:30 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:45:30 UTC 2017
ssl.sh: #1945: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 26488 at Sun Aug  6 23:45:30 UTC 2017
kill -USR1 26488
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26488 killed at Sun Aug  6 23:45:30 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 GCM ----
selfserv_9009 starting at Sun Aug  6 23:45:30 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C02F -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:30 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26559 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26559 found at Sun Aug  6 23:45:30 UTC 2017
selfserv_9009 with PID 26559 started at Sun Aug  6 23:45:30 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :C02F \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:30 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:45:30 UTC 2017
ssl.sh: #1946: Stress TLS  ECDHE-RSA   AES 128 GCM produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 26559 at Sun Aug  6 23:45:30 UTC 2017
kill -USR1 26559
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26559 killed at Sun Aug  6 23:45:30 UTC 2017
ssl.sh: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) ----
selfserv_9009 starting at Sun Aug  6 23:45:30 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C004 -u -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:30 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26630 found at Sun Aug  6 23:45:30 UTC 2017
selfserv_9009 with PID 26630 started at Sun Aug  6 23:45:30 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :C004 -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:30 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Sun Aug  6 23:45:30 UTC 2017
ssl.sh: #1947: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 26630 at Sun Aug  6 23:45:30 UTC 2017
kill -USR1 26630
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26630 killed at Sun Aug  6 23:45:30 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) ----
selfserv_9009 starting at Sun Aug  6 23:45:30 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C009 -u -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:30 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26701 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26701 found at Sun Aug  6 23:45:30 UTC 2017
selfserv_9009 with PID 26701 started at Sun Aug  6 23:45:30 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C009 -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:30 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sun Aug  6 23:45:30 UTC 2017
ssl.sh: #1948: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 26701 at Sun Aug  6 23:45:30 UTC 2017
kill -USR1 26701
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26701 killed at Sun Aug  6 23:45:30 UTC 2017
ssl.sh: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:30 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C009 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:30 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26787 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26787 found at Sun Aug  6 23:45:30 UTC 2017
selfserv_9009 with PID 26787 started at Sun Aug  6 23:45:30 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C009 -N -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:30 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Sun Aug  6 23:45:31 UTC 2017
ssl.sh: #1949: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 26787 at Sun Aug  6 23:45:31 UTC 2017
kill -USR1 26787
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26787 killed at Sun Aug  6 23:45:31 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:31 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:31 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26857 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26857 found at Sun Aug  6 23:45:31 UTC 2017
selfserv_9009 with PID 26857 started at Sun Aug  6 23:45:31 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:31 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:45:31 UTC 2017
ssl.sh: #1950: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 26857 at Sun Aug  6 23:45:31 UTC 2017
kill -USR1 26857
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26857 killed at Sun Aug  6 23:45:31 UTC 2017
ssl.sh: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:31 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C004 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:31 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26929 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26929 found at Sun Aug  6 23:45:31 UTC 2017
selfserv_9009 with PID 26929 started at Sun Aug  6 23:45:31 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C004 -N -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:31 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Sun Aug  6 23:45:31 UTC 2017
ssl.sh: #1951: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 26929 at Sun Aug  6 23:45:31 UTC 2017
kill -USR1 26929
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26929 killed at Sun Aug  6 23:45:31 UTC 2017
ssl.sh: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:31 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C00E -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:31 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26999 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26999 found at Sun Aug  6 23:45:31 UTC 2017
selfserv_9009 with PID 26999 started at Sun Aug  6 23:45:31 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C00E -N -n TestUser-ecmixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:31 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Sun Aug  6 23:45:31 UTC 2017
ssl.sh: #1952: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 26999 at Sun Aug  6 23:45:31 UTC 2017
kill -USR1 26999
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26999 killed at Sun Aug  6 23:45:31 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:31 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:31 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27069 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27069 found at Sun Aug  6 23:45:31 UTC 2017
selfserv_9009 with PID 27069 started at Sun Aug  6 23:45:31 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:31 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:45:31 UTC 2017
ssl.sh: #1953: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 27069 at Sun Aug  6 23:45:31 UTC 2017
kill -USR1 27069
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27069 killed at Sun Aug  6 23:45:31 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:31 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -u -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:31 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27140 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27140 found at Sun Aug  6 23:45:31 UTC 2017
selfserv_9009 with PID 27140 started at Sun Aug  6 23:45:31 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:31 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sun Aug  6 23:45:31 UTC 2017
ssl.sh: #1954: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 27140 at Sun Aug  6 23:45:31 UTC 2017
kill -USR1 27140
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27140 killed at Sun Aug  6 23:45:31 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) ----
selfserv_9009 starting at Sun Aug  6 23:45:31 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0016 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:31 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27226 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27226 found at Sun Aug  6 23:45:31 UTC 2017
selfserv_9009 with PID 27226 started at Sun Aug  6 23:45:31 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0016 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:31 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:45:32 UTC 2017
ssl.sh: #1955: Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 27226 at Sun Aug  6 23:45:32 UTC 2017
kill -USR1 27226
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27226 killed at Sun Aug  6 23:45:32 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA ----
selfserv_9009 starting at Sun Aug  6 23:45:32 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0033 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:32 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27296 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27296 found at Sun Aug  6 23:45:32 UTC 2017
selfserv_9009 with PID 27296 started at Sun Aug  6 23:45:32 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :0033 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:32 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:45:32 UTC 2017
ssl.sh: #1956: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 27296 at Sun Aug  6 23:45:32 UTC 2017
kill -USR1 27296
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27296 killed at Sun Aug  6 23:45:32 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) ----
selfserv_9009 starting at Sun Aug  6 23:45:32 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0039 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:32 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27367 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27367 found at Sun Aug  6 23:45:32 UTC 2017
selfserv_9009 with PID 27367 started at Sun Aug  6 23:45:32 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0039 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:32 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:45:32 UTC 2017
ssl.sh: #1957: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 27367 at Sun Aug  6 23:45:32 UTC 2017
kill -USR1 27367
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27367 killed at Sun Aug  6 23:45:32 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) ----
selfserv_9009 starting at Sun Aug  6 23:45:32 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0040 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:32 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27445 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27445 found at Sun Aug  6 23:45:32 UTC 2017
selfserv_9009 with PID 27445 started at Sun Aug  6 23:45:32 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0040 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:32 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:45:33 UTC 2017
ssl.sh: #1958: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 27445 at Sun Aug  6 23:45:33 UTC 2017
kill -USR1 27445
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27445 killed at Sun Aug  6 23:45:33 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) ----
selfserv_9009 starting at Sun Aug  6 23:45:33 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0038 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:33 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27525 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27525 found at Sun Aug  6 23:45:33 UTC 2017
selfserv_9009 with PID 27525 started at Sun Aug  6 23:45:33 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :0038 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:33 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Sun Aug  6 23:45:35 UTC 2017
ssl.sh: #1959: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 27525 at Sun Aug  6 23:45:35 UTC 2017
kill -USR1 27525
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27525 killed at Sun Aug  6 23:45:35 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse ----
selfserv_9009 starting at Sun Aug  6 23:45:35 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :006A -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:35 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27605 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27605 found at Sun Aug  6 23:45:35 UTC 2017
selfserv_9009 with PID 27605 started at Sun Aug  6 23:45:35 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :006A -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:35 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Sun Aug  6 23:45:37 UTC 2017
ssl.sh: #1960: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 27605 at Sun Aug  6 23:45:37 UTC 2017
kill -USR1 27605
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27605 killed at Sun Aug  6 23:45:37 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) ----
selfserv_9009 starting at Sun Aug  6 23:45:37 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :006B -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:37 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27675 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27675 found at Sun Aug  6 23:45:37 UTC 2017
selfserv_9009 with PID 27675 started at Sun Aug  6 23:45:37 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :006B -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:37 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:45:37 UTC 2017
ssl.sh: #1961: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 27675 at Sun Aug  6 23:45:37 UTC 2017
kill -USR1 27675
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27675 killed at Sun Aug  6 23:45:37 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) ----
selfserv_9009 starting at Sun Aug  6 23:45:37 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :009E -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:37 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27745 found at Sun Aug  6 23:45:37 UTC 2017
selfserv_9009 with PID 27745 started at Sun Aug  6 23:45:37 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :009E -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:37 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:45:38 UTC 2017
ssl.sh: #1962: Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 27745 at Sun Aug  6 23:45:38 UTC 2017
kill -USR1 27745
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27745 killed at Sun Aug  6 23:45:38 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) ----
selfserv_9009 starting at Sun Aug  6 23:45:38 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :009F -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:38 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27815 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27815 found at Sun Aug  6 23:45:38 UTC 2017
selfserv_9009 with PID 27815 started at Sun Aug  6 23:45:38 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :009F -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:38 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 6 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:45:38 UTC 2017
ssl.sh: #1963: Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 27815 at Sun Aug  6 23:45:38 UTC 2017
kill -USR1 27815
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27815 killed at Sun Aug  6 23:45:38 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:38 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0032 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:38 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27900 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27900 found at Sun Aug  6 23:45:38 UTC 2017
selfserv_9009 with PID 27900 started at Sun Aug  6 23:45:38 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0032 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:38 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:45:38 UTC 2017
ssl.sh: #1964: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 27900 at Sun Aug  6 23:45:38 UTC 2017
kill -USR1 27900
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27900 killed at Sun Aug  6 23:45:38 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:38 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0067 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:38 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27970 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27970 found at Sun Aug  6 23:45:38 UTC 2017
selfserv_9009 with PID 27970 started at Sun Aug  6 23:45:38 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :0067 -n TestUser-dsamixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:38 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:45:38 UTC 2017
ssl.sh: #1965: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 27970 at Sun Aug  6 23:45:38 UTC 2017
kill -USR1 27970
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27970 killed at Sun Aug  6 23:45:39 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:39 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A2 -u -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:39 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28056 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28056 found at Sun Aug  6 23:45:39 UTC 2017
selfserv_9009 with PID 28056 started at Sun Aug  6 23:45:39 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A2 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:39 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Sun Aug  6 23:45:41 UTC 2017
ssl.sh: #1966: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 28056 at Sun Aug  6 23:45:41 UTC 2017
kill -USR1 28056
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 28056 killed at Sun Aug  6 23:45:41 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:42 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A3 -u -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:42 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28126 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28126 found at Sun Aug  6 23:45:42 UTC 2017
selfserv_9009 with PID 28126 started at Sun Aug  6 23:45:42 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A3 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Sun Aug  6 23:45:44 UTC 2017
ssl.sh: #1967: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 28126 at Sun Aug  6 23:45:44 UTC 2017
kill -USR1 28126
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 28126 killed at Sun Aug  6 23:45:44 UTC 2017
ssl.sh: SSL Cipher Coverage Extended Test - server fips/client normal  - with ECC ===============================
selfserv_9009 starting at Sun Aug  6 23:45:44 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:44 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28188 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28188 found at Sun Aug  6 23:45:44 UTC 2017
selfserv_9009 with PID 28188 started at Sun Aug  6 23:45:44 UTC 2017
ssl.sh: running SSL3_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c c -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1968: SSL3_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1969: SSL3_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c e -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1970: SSL3_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c i -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1971: SSL3_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c n -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1972: SSL3_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c v -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1973: SSL3_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c y -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1974: SSL3_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c z -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1975: SSL3_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :009F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1976: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :00A3 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1977: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :009D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1978: TLS_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c c -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1979: TLS_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1980: TLS_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c e -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1981: TLS_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c i -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1982: TLS_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c n -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1983: TLS_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c v -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1984: TLS_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c y -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1985: TLS_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c z -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1986: TLS_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c c -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1987: TLS11_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1988: TLS11_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c e -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1989: TLS11_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c i -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1990: TLS11_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c n -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1991: TLS11_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c v -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1992: TLS11_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c y -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1993: TLS11_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c z -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1994: TLS11_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c c -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1995: TLS12_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1996: TLS12_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c e -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1997: TLS12_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c i -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1998: TLS12_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c n -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1999: TLS12_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c v -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2000: TLS12_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c y -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2001: TLS12_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c z -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2002: TLS12_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :0016 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2003: TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :0032 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2004: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :0033 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2005: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :0038 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2006: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :0039 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2007: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :003B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2008: TLS12_RSA_WITH_NULL_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :003C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2009: TLS12_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :003D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2010: TLS12_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :0040 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2011: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :0067 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2012: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :006A -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2013: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :006B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2014: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :009C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2015: TLS12_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :009E -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2016: TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :00A2 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2017: TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :CCAA -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2018: TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C001 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2019: TLS_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C002 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2020: TLS_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C003 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2021: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C004 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2022: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C005 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2023: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C006 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2024: TLS_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C007 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2025: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C008 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2026: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C009 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2027: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00A -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2028: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00B -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2029: TLS_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00C -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2030: TLS_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00D -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2031: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00E -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2032: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00F -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2033: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C010 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2034: TLS_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C011 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2035: TLS_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C012 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2036: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C013 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2037: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C014 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2038: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C001 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2039: TLS11_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C002 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2040: TLS11_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C003 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2041: TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C004 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2042: TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C005 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2043: TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C006 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2044: TLS11_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C007 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2045: TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C008 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2046: TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C009 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2047: TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00A -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2048: TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00B -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2049: TLS11_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00C -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2050: TLS11_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00D -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2051: TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00E -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2052: TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00F -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2053: TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C010 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2054: TLS11_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C011 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2055: TLS11_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C012 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2056: TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C013 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2057: TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C014 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2058: TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C001 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2059: TLS12_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C002 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2060: TLS12_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C003 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2061: TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C004 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2062: TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C005 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2063: TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C006 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2064: TLS12_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C007 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2065: TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C008 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2066: TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C009 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2067: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00A -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2068: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2069: TLS12_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2070: TLS12_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2071: TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00E -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2072: TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2073: TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C010 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2074: TLS12_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C011 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2075: TLS12_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C012 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2076: TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C013 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2077: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C014 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2078: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C023 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2079: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C024 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2080: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C027 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2081: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C028 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2082: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C02B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2083: TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C02C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2084: TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C02F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2085: TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C030 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2086: TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :CCA8 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2087: TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :CCA9 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2088: TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 28188 at Sun Aug  6 23:45:48 UTC 2017
kill -USR1 28188
selfserv: 0 cache hits; 121 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 28188 killed at Sun Aug  6 23:45:48 UTC 2017
ssl.sh: SSL Client Authentication Extended Test - server fips/client normal  - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:48 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:48 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30457 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30457 found at Sun Aug  6 23:45:48 UTC 2017
selfserv_9009 with PID 30457 started at Sun Aug  6 23:45:48 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2089: TLS Request don't require client auth (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 30457 at Sun Aug  6 23:45:48 UTC 2017
kill -USR1 30457
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 30457 killed at Sun Aug  6 23:45:48 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:48 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:48 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30514 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30514 found at Sun Aug  6 23:45:48 UTC 2017
selfserv_9009 with PID 30514 started at Sun Aug  6 23:45:48 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2090: TLS Request don't require client auth (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 30514 at Sun Aug  6 23:45:48 UTC 2017
kill -USR1 30514
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 30514 killed at Sun Aug  6 23:45:48 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:48 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:48 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30571 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30571 found at Sun Aug  6 23:45:48 UTC 2017
selfserv_9009 with PID 30571 started at Sun Aug  6 23:45:48 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2091: TLS Request don't require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 30571 at Sun Aug  6 23:45:49 UTC 2017
kill -USR1 30571
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 30571 killed at Sun Aug  6 23:45:49 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:49 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:49 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30628 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30628 found at Sun Aug  6 23:45:49 UTC 2017
selfserv_9009 with PID 30628 started at Sun Aug  6 23:45:49 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2092: TLS Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 30628 at Sun Aug  6 23:45:49 UTC 2017
kill -USR1 30628
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 30628 killed at Sun Aug  6 23:45:49 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:49 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:49 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30685 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30685 found at Sun Aug  6 23:45:49 UTC 2017
selfserv_9009 with PID 30685 started at Sun Aug  6 23:45:49 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2093: TLS Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 30685 at Sun Aug  6 23:45:49 UTC 2017
kill -USR1 30685
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 30685 killed at Sun Aug  6 23:45:49 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:49 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:49 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30742 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30742 found at Sun Aug  6 23:45:49 UTC 2017
selfserv_9009 with PID 30742 started at Sun Aug  6 23:45:49 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2094: TLS Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 30742 at Sun Aug  6 23:45:49 UTC 2017
kill -USR1 30742
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 30742 killed at Sun Aug  6 23:45:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:49 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:49 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30799 found at Sun Aug  6 23:45:49 UTC 2017
selfserv_9009 with PID 30799 started at Sun Aug  6 23:45:49 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2095: SSL3 Request don't require client auth (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 30799 at Sun Aug  6 23:45:49 UTC 2017
kill -USR1 30799
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 30799 killed at Sun Aug  6 23:45:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:49 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:49 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30856 found at Sun Aug  6 23:45:49 UTC 2017
selfserv_9009 with PID 30856 started at Sun Aug  6 23:45:49 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2096: SSL3 Request don't require client auth (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 30856 at Sun Aug  6 23:45:49 UTC 2017
kill -USR1 30856
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 30856 killed at Sun Aug  6 23:45:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:49 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:49 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30913 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30913 found at Sun Aug  6 23:45:49 UTC 2017
selfserv_9009 with PID 30913 started at Sun Aug  6 23:45:49 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2097: SSL3 Request don't require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 30913 at Sun Aug  6 23:45:49 UTC 2017
kill -USR1 30913
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 30913 killed at Sun Aug  6 23:45:49 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:49 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:49 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30970 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30970 found at Sun Aug  6 23:45:49 UTC 2017
selfserv_9009 with PID 30970 started at Sun Aug  6 23:45:49 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2098: SSL3 Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 30970 at Sun Aug  6 23:45:49 UTC 2017
kill -USR1 30970
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 30970 killed at Sun Aug  6 23:45:49 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:50 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31027 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31027 found at Sun Aug  6 23:45:50 UTC 2017
selfserv_9009 with PID 31027 started at Sun Aug  6 23:45:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2099: SSL3 Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 31027 at Sun Aug  6 23:45:50 UTC 2017
kill -USR1 31027
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31027 killed at Sun Aug  6 23:45:50 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:50 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31084 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31084 found at Sun Aug  6 23:45:50 UTC 2017
selfserv_9009 with PID 31084 started at Sun Aug  6 23:45:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2100: SSL3 Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 31084 at Sun Aug  6 23:45:50 UTC 2017
kill -USR1 31084
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31084 killed at Sun Aug  6 23:45:50 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:50 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31141 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31141 found at Sun Aug  6 23:45:50 UTC 2017
selfserv_9009 with PID 31141 started at Sun Aug  6 23:45:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2101: TLS Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 31141 at Sun Aug  6 23:45:50 UTC 2017
kill -USR1 31141
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31141 killed at Sun Aug  6 23:45:50 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:50 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31198 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31198 found at Sun Aug  6 23:45:50 UTC 2017
selfserv_9009 with PID 31198 started at Sun Aug  6 23:45:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2102: TLS Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 31198 at Sun Aug  6 23:45:50 UTC 2017
kill -USR1 31198
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31198 killed at Sun Aug  6 23:45:50 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:50 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31255 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31255 found at Sun Aug  6 23:45:50 UTC 2017
selfserv_9009 with PID 31255 started at Sun Aug  6 23:45:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2103: TLS Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 31255 at Sun Aug  6 23:45:50 UTC 2017
kill -USR1 31255
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31255 killed at Sun Aug  6 23:45:50 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:50 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31313 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31313 found at Sun Aug  6 23:45:50 UTC 2017
selfserv_9009 with PID 31313 started at Sun Aug  6 23:45:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2104: TLS Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 31313 at Sun Aug  6 23:45:50 UTC 2017
kill -USR1 31313
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31313 killed at Sun Aug  6 23:45:50 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:50 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31372 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31372 found at Sun Aug  6 23:45:50 UTC 2017
selfserv_9009 with PID 31372 started at Sun Aug  6 23:45:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2105: TLS Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 31372 at Sun Aug  6 23:45:50 UTC 2017
kill -USR1 31372
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31372 killed at Sun Aug  6 23:45:51 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:51 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:51 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31429 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31429 found at Sun Aug  6 23:45:51 UTC 2017
selfserv_9009 with PID 31429 started at Sun Aug  6 23:45:51 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2106: TLS Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 31429 at Sun Aug  6 23:45:51 UTC 2017
kill -USR1 31429
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31429 killed at Sun Aug  6 23:45:51 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:51 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:51 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31486 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31486 found at Sun Aug  6 23:45:51 UTC 2017
selfserv_9009 with PID 31486 started at Sun Aug  6 23:45:51 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2107: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 31486 at Sun Aug  6 23:45:51 UTC 2017
kill -USR1 31486
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31486 killed at Sun Aug  6 23:45:51 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:51 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:51 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31543 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31543 found at Sun Aug  6 23:45:51 UTC 2017
selfserv_9009 with PID 31543 started at Sun Aug  6 23:45:51 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2108: TLS 1.0 Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 31543 at Sun Aug  6 23:45:51 UTC 2017
kill -USR1 31543
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31543 killed at Sun Aug  6 23:45:51 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:51 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:51 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31602 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31602 found at Sun Aug  6 23:45:51 UTC 2017
selfserv_9009 with PID 31602 started at Sun Aug  6 23:45:51 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2109: TLS 1.0 Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 31602 at Sun Aug  6 23:45:51 UTC 2017
kill -USR1 31602
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31602 killed at Sun Aug  6 23:45:51 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:51 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:51 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31659 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31659 found at Sun Aug  6 23:45:51 UTC 2017
selfserv_9009 with PID 31659 started at Sun Aug  6 23:45:51 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2110: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 31659 at Sun Aug  6 23:45:51 UTC 2017
kill -USR1 31659
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31659 killed at Sun Aug  6 23:45:51 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:51 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:51 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31716 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31716 found at Sun Aug  6 23:45:51 UTC 2017
selfserv_9009 with PID 31716 started at Sun Aug  6 23:45:51 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2111: TLS 1.0 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 31716 at Sun Aug  6 23:45:51 UTC 2017
kill -USR1 31716
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31716 killed at Sun Aug  6 23:45:51 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:51 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:51 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31775 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31775 found at Sun Aug  6 23:45:51 UTC 2017
selfserv_9009 with PID 31775 started at Sun Aug  6 23:45:51 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2112: TLS 1.0 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 31775 at Sun Aug  6 23:45:52 UTC 2017
kill -USR1 31775
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31775 killed at Sun Aug  6 23:45:52 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:52 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:52 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31832 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31832 found at Sun Aug  6 23:45:52 UTC 2017
selfserv_9009 with PID 31832 started at Sun Aug  6 23:45:52 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2113: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 31832 at Sun Aug  6 23:45:52 UTC 2017
kill -USR1 31832
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31832 killed at Sun Aug  6 23:45:52 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:52 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:52 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31890 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31890 found at Sun Aug  6 23:45:52 UTC 2017
selfserv_9009 with PID 31890 started at Sun Aug  6 23:45:52 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2114: SSL3 Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 31890 at Sun Aug  6 23:45:52 UTC 2017
kill -USR1 31890
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31890 killed at Sun Aug  6 23:45:52 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:52 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:52 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31947 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31947 found at Sun Aug  6 23:45:52 UTC 2017
selfserv_9009 with PID 31947 started at Sun Aug  6 23:45:52 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2115: SSL3 Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 31947 at Sun Aug  6 23:45:52 UTC 2017
kill -USR1 31947
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31947 killed at Sun Aug  6 23:45:52 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:52 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:52 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32004 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32004 found at Sun Aug  6 23:45:52 UTC 2017
selfserv_9009 with PID 32004 started at Sun Aug  6 23:45:52 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2116: SSL3 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 32004 at Sun Aug  6 23:45:52 UTC 2017
kill -USR1 32004
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 32004 killed at Sun Aug  6 23:45:52 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:52 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:52 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32061 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32061 found at Sun Aug  6 23:45:52 UTC 2017
selfserv_9009 with PID 32061 started at Sun Aug  6 23:45:52 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2117: SSL3 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 32061 at Sun Aug  6 23:45:52 UTC 2017
kill -USR1 32061
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 32061 killed at Sun Aug  6 23:45:52 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:52 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:52 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32118 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32118 found at Sun Aug  6 23:45:52 UTC 2017
selfserv_9009 with PID 32118 started at Sun Aug  6 23:45:52 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2118: SSL3 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 32118 at Sun Aug  6 23:45:52 UTC 2017
kill -USR1 32118
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 32118 killed at Sun Aug  6 23:45:52 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:52 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:52 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32191 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32191 found at Sun Aug  6 23:45:52 UTC 2017
selfserv_9009 with PID 32191 started at Sun Aug  6 23:45:52 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2119: TLS Request don't require client auth (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 32191 at Sun Aug  6 23:45:52 UTC 2017
kill -USR1 32191
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 32191 killed at Sun Aug  6 23:45:52 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:53 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32248 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32248 found at Sun Aug  6 23:45:53 UTC 2017
selfserv_9009 with PID 32248 started at Sun Aug  6 23:45:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2120: TLS Request don't require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 32248 at Sun Aug  6 23:45:53 UTC 2017
kill -USR1 32248
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 32248 killed at Sun Aug  6 23:45:53 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:53 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32305 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32305 found at Sun Aug  6 23:45:53 UTC 2017
selfserv_9009 with PID 32305 started at Sun Aug  6 23:45:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2121: TLS Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 32305 at Sun Aug  6 23:45:53 UTC 2017
kill -USR1 32305
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 32305 killed at Sun Aug  6 23:45:53 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:53 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32362 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32362 found at Sun Aug  6 23:45:53 UTC 2017
selfserv_9009 with PID 32362 started at Sun Aug  6 23:45:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2122: TLS Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 32362 at Sun Aug  6 23:45:53 UTC 2017
kill -USR1 32362
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 32362 killed at Sun Aug  6 23:45:53 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:53 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32419 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32419 found at Sun Aug  6 23:45:53 UTC 2017
selfserv_9009 with PID 32419 started at Sun Aug  6 23:45:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2123: SSL3 Request don't require client auth (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 32419 at Sun Aug  6 23:45:53 UTC 2017
kill -USR1 32419
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 32419 killed at Sun Aug  6 23:45:53 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:53 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32477 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32477 found at Sun Aug  6 23:45:53 UTC 2017
selfserv_9009 with PID 32477 started at Sun Aug  6 23:45:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2124: SSL3 Request don't require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 32477 at Sun Aug  6 23:45:53 UTC 2017
kill -USR1 32477
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 32477 killed at Sun Aug  6 23:45:53 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:53 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32534 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32534 found at Sun Aug  6 23:45:53 UTC 2017
selfserv_9009 with PID 32534 started at Sun Aug  6 23:45:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2125: SSL3 Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 32534 at Sun Aug  6 23:45:53 UTC 2017
kill -USR1 32534
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 32534 killed at Sun Aug  6 23:45:53 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:53 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32591 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32591 found at Sun Aug  6 23:45:53 UTC 2017
selfserv_9009 with PID 32591 started at Sun Aug  6 23:45:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2126: SSL3 Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 32591 at Sun Aug  6 23:45:53 UTC 2017
kill -USR1 32591
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 32591 killed at Sun Aug  6 23:45:53 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:53 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32648 found at Sun Aug  6 23:45:53 UTC 2017
selfserv_9009 with PID 32648 started at Sun Aug  6 23:45:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2127: TLS Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 32648 at Sun Aug  6 23:45:54 UTC 2017
kill -USR1 32648
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 32648 killed at Sun Aug  6 23:45:54 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:54 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32705 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32705 found at Sun Aug  6 23:45:54 UTC 2017
selfserv_9009 with PID 32705 started at Sun Aug  6 23:45:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2128: TLS Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 32705 at Sun Aug  6 23:45:54 UTC 2017
kill -USR1 32705
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 32705 killed at Sun Aug  6 23:45:54 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:54 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32762 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32762 found at Sun Aug  6 23:45:54 UTC 2017
selfserv_9009 with PID 32762 started at Sun Aug  6 23:45:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2129: TLS Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 32762 at Sun Aug  6 23:45:54 UTC 2017
kill -USR1 32762
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 32762 killed at Sun Aug  6 23:45:54 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:54 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 352 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 352 found at Sun Aug  6 23:45:54 UTC 2017
selfserv_9009 with PID 352 started at Sun Aug  6 23:45:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2130: TLS Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 352 at Sun Aug  6 23:45:54 UTC 2017
kill -USR1 352
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 352 killed at Sun Aug  6 23:45:54 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:54 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 409 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 409 found at Sun Aug  6 23:45:54 UTC 2017
selfserv_9009 with PID 409 started at Sun Aug  6 23:45:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2131: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 409 at Sun Aug  6 23:45:54 UTC 2017
kill -USR1 409
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 409 killed at Sun Aug  6 23:45:54 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:54 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 469 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 469 found at Sun Aug  6 23:45:54 UTC 2017
selfserv_9009 with PID 469 started at Sun Aug  6 23:45:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2132: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 469 at Sun Aug  6 23:45:54 UTC 2017
kill -USR1 469
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 469 killed at Sun Aug  6 23:45:54 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:54 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 529 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 529 found at Sun Aug  6 23:45:54 UTC 2017
selfserv_9009 with PID 529 started at Sun Aug  6 23:45:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2133: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 529 at Sun Aug  6 23:45:55 UTC 2017
kill -USR1 529
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 529 killed at Sun Aug  6 23:45:55 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:55 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 588 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 588 found at Sun Aug  6 23:45:55 UTC 2017
selfserv_9009 with PID 588 started at Sun Aug  6 23:45:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2134: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 588 at Sun Aug  6 23:45:55 UTC 2017
kill -USR1 588
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 588 killed at Sun Aug  6 23:45:55 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:55 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 660 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 660 found at Sun Aug  6 23:45:55 UTC 2017
selfserv_9009 with PID 660 started at Sun Aug  6 23:45:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2135: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 660 at Sun Aug  6 23:45:55 UTC 2017
kill -USR1 660
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 660 killed at Sun Aug  6 23:45:55 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:55 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 718 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 718 found at Sun Aug  6 23:45:55 UTC 2017
selfserv_9009 with PID 718 started at Sun Aug  6 23:45:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2136: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 718 at Sun Aug  6 23:45:55 UTC 2017
kill -USR1 718
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 718 killed at Sun Aug  6 23:45:55 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:45:55 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 780 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 780 found at Sun Aug  6 23:45:55 UTC 2017
selfserv_9009 with PID 780 started at Sun Aug  6 23:45:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2137: SSL3 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 780 at Sun Aug  6 23:45:55 UTC 2017
kill -USR1 780
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 780 killed at Sun Aug  6 23:45:55 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:55 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 839 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 839 found at Sun Aug  6 23:45:55 UTC 2017
selfserv_9009 with PID 839 started at Sun Aug  6 23:45:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2138: SSL3 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 839 at Sun Aug  6 23:45:55 UTC 2017
kill -USR1 839
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 839 killed at Sun Aug  6 23:45:55 UTC 2017
ssl.sh: skipping  TLS Server hello response without SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI for Extended Test
ssl.sh: skipping  TLS Server response with alert for Extended Test
ssl.sh: skipping  SSL3 Server hello response without SNI for Extended Test
ssl.sh: skipping  SSL3 Server hello response with SNI: SSL don't have SH extensions for Extended Test
ssl.sh: skipping  TLS Server hello response without SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI: Change name on 2d HS for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI: Change name to invalid 2d HS for Extended Test
ssl.sh: skipping  TLS Server response with alert for Extended Test
ssl.sh: SSL Cert Status (OCSP Stapling) Extended Test - server fips/client normal  - with ECC ===============================
ssl.sh: skipping  OCSP stapling, signed response, good status for Extended Test
ssl.sh: skipping  OCSP stapling, signed response, revoked status for Extended Test
ssl.sh: skipping  OCSP stapling, signed response, unknown status for Extended Test
ssl.sh: skipping  OCSP stapling, unsigned failure response for Extended Test
ssl.sh: skipping  OCSP stapling, good status, bad signature for Extended Test
ssl.sh: skipping  OCSP stapling, invalid cert status data for Extended Test
ssl.sh: skipping  Valid cert, Server doesn't staple for Extended Test
ssl.sh: skipping  Stress OCSP stapling, server uses random status for Extended Test
ssl.sh: SSL Stress Test Extended Test - server fips/client normal  - with ECC ===============================
ssl.sh: Stress SSL3 RC4 128 with MD5 ----
selfserv_9009 starting at Sun Aug  6 23:45:55 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1004 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1004 found at Sun Aug  6 23:45:55 UTC 2017
selfserv_9009 with PID 1004 started at Sun Aug  6 23:45:55 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -c 1000 -C c -V ssl3:ssl3 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:55 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:45:56 UTC 2017
ssl.sh: #2139: Stress SSL3 RC4 128 with MD5 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 1004 at Sun Aug  6 23:45:56 UTC 2017
kill -USR1 1004
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 1004 killed at Sun Aug  6 23:45:56 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 ----
selfserv_9009 starting at Sun Aug  6 23:45:56 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:56 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1086 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1086 found at Sun Aug  6 23:45:56 UTC 2017
selfserv_9009 with PID 1086 started at Sun Aug  6 23:45:56 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -c 1000 -C c \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:56 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:45:56 UTC 2017
ssl.sh: #2140: Stress TLS  RC4 128 with MD5 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 1086 at Sun Aug  6 23:45:56 UTC 2017
kill -USR1 1086
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 1086 killed at Sun Aug  6 23:45:56 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (false start) ----
selfserv_9009 starting at Sun Aug  6 23:45:56 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:56 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1184 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1184 found at Sun Aug  6 23:45:56 UTC 2017
selfserv_9009 with PID 1184 started at Sun Aug  6 23:45:56 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -c 1000 -C c -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:56 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:45:56 UTC 2017
ssl.sh: #2141: Stress TLS  RC4 128 with MD5 (false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 1184 at Sun Aug  6 23:45:56 UTC 2017
kill -USR1 1184
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 1184 killed at Sun Aug  6 23:45:56 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket) ----
selfserv_9009 starting at Sun Aug  6 23:45:56 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:56 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1258 found at Sun Aug  6 23:45:56 UTC 2017
selfserv_9009 with PID 1258 started at Sun Aug  6 23:45:56 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:56 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Sun Aug  6 23:45:56 UTC 2017
ssl.sh: #2142: Stress TLS  RC4 128 with MD5 (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 1258 at Sun Aug  6 23:45:56 UTC 2017
kill -USR1 1258
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 1258 killed at Sun Aug  6 23:45:56 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (compression) ----
selfserv_9009 starting at Sun Aug  6 23:45:56 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -z -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:56 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1330 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1330 found at Sun Aug  6 23:45:56 UTC 2017
selfserv_9009 with PID 1330 started at Sun Aug  6 23:45:56 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C c -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:56 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:45:56 UTC 2017
ssl.sh: #2143: Stress TLS  RC4 128 with MD5 (compression) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 1330 at Sun Aug  6 23:45:56 UTC 2017
kill -USR1 1330
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 1330 killed at Sun Aug  6 23:45:56 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket, compression) ----
selfserv_9009 starting at Sun Aug  6 23:45:56 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -z -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:56 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1401 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1401 found at Sun Aug  6 23:45:56 UTC 2017
selfserv_9009 with PID 1401 started at Sun Aug  6 23:45:56 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:56 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Sun Aug  6 23:45:57 UTC 2017
ssl.sh: #2144: Stress TLS  RC4 128 with MD5 (session ticket, compression) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 1401 at Sun Aug  6 23:45:57 UTC 2017
kill -USR1 1401
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 1401 killed at Sun Aug  6 23:45:57 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) ----
selfserv_9009 starting at Sun Aug  6 23:45:57 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -z -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:57 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1473 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1473 found at Sun Aug  6 23:45:57 UTC 2017
selfserv_9009 with PID 1473 started at Sun Aug  6 23:45:57 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:57 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Sun Aug  6 23:45:57 UTC 2017
ssl.sh: #2145: Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 1473 at Sun Aug  6 23:45:57 UTC 2017
kill -USR1 1473
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 1473 killed at Sun Aug  6 23:45:57 UTC 2017
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI) for Extended Test
ssl.sh: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:57 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:57 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1562 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1562 found at Sun Aug  6 23:45:57 UTC 2017
selfserv_9009 with PID 1562 started at Sun Aug  6 23:45:57 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -c 100 -C c -V ssl3:ssl3 -N -n ExtendedSSLUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:57 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:45:57 UTC 2017
ssl.sh: #2146: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 1562 at Sun Aug  6 23:45:57 UTC 2017
kill -USR1 1562
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 1562 killed at Sun Aug  6 23:45:57 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:57 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:57 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1632 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1632 found at Sun Aug  6 23:45:57 UTC 2017
selfserv_9009 with PID 1632 started at Sun Aug  6 23:45:57 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -c 100 -C c -N -n ExtendedSSLUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:57 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:45:58 UTC 2017
ssl.sh: #2147: Stress TLS RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 1632 at Sun Aug  6 23:45:58 UTC 2017
kill -USR1 1632
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 1632 killed at Sun Aug  6 23:45:58 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:58 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:58 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1710 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1710 found at Sun Aug  6 23:45:58 UTC 2017
selfserv_9009 with PID 1710 started at Sun Aug  6 23:45:58 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:58 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sun Aug  6 23:45:58 UTC 2017
ssl.sh: #2148: Stress TLS RC4 128 with MD5 (session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 1710 at Sun Aug  6 23:45:58 UTC 2017
kill -USR1 1710
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 1710 killed at Sun Aug  6 23:45:58 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:58 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:58 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1792 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1792 found at Sun Aug  6 23:45:58 UTC 2017
selfserv_9009 with PID 1792 started at Sun Aug  6 23:45:58 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:58 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:45:58 UTC 2017
ssl.sh: #2149: Stress TLS RC4 128 with MD5 (compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 1792 at Sun Aug  6 23:45:58 UTC 2017
kill -USR1 1792
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 1792 killed at Sun Aug  6 23:45:58 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth, false start) ----
selfserv_9009 starting at Sun Aug  6 23:45:58 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:58 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1865 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1865 found at Sun Aug  6 23:45:58 UTC 2017
selfserv_9009 with PID 1865 started at Sun Aug  6 23:45:58 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:58 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:45:58 UTC 2017
ssl.sh: #2150: Stress TLS RC4 128 with MD5 (compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 1865 at Sun Aug  6 23:45:58 UTC 2017
kill -USR1 1865
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 1865 killed at Sun Aug  6 23:45:58 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:45:58 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:58 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1956 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1956 found at Sun Aug  6 23:45:58 UTC 2017
selfserv_9009 with PID 1956 started at Sun Aug  6 23:45:58 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:58 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sun Aug  6 23:45:58 UTC 2017
ssl.sh: #2151: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 1956 at Sun Aug  6 23:45:58 UTC 2017
kill -USR1 1956
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 1956 killed at Sun Aug  6 23:45:58 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) ----
selfserv_9009 starting at Sun Aug  6 23:45:58 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:58 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2027 found at Sun Aug  6 23:45:58 UTC 2017
selfserv_9009 with PID 2027 started at Sun Aug  6 23:45:58 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:58 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sun Aug  6 23:45:58 UTC 2017
ssl.sh: #2152: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 2027 at Sun Aug  6 23:45:58 UTC 2017
kill -USR1 2027
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 2027 killed at Sun Aug  6 23:45:58 UTC 2017
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) for Extended Test
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) for Extended Test
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) ----
selfserv_9009 starting at Sun Aug  6 23:45:58 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C009 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:58 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2117 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2117 found at Sun Aug  6 23:45:58 UTC 2017
selfserv_9009 with PID 2117 started at Sun Aug  6 23:45:58 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C009 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:58 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:45:59 UTC 2017
ssl.sh: #2153: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 2117 at Sun Aug  6 23:45:59 UTC 2017
kill -USR1 2117
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 2117 killed at Sun Aug  6 23:45:59 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) ----
selfserv_9009 starting at Sun Aug  6 23:45:59 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C023 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:45:59 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2187 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2187 found at Sun Aug  6 23:45:59 UTC 2017
selfserv_9009 with PID 2187 started at Sun Aug  6 23:45:59 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C023 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:45:59 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:46:00 UTC 2017
ssl.sh: #2154: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 2187 at Sun Aug  6 23:46:00 UTC 2017
kill -USR1 2187
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 2187 killed at Sun Aug  6 23:46:00 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) ----
selfserv_9009 starting at Sun Aug  6 23:46:00 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C02B -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:46:00 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2257 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2257 found at Sun Aug  6 23:46:00 UTC 2017
selfserv_9009 with PID 2257 started at Sun Aug  6 23:46:00 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C02B -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:46:00 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:46:01 UTC 2017
ssl.sh: #2155: Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 2257 at Sun Aug  6 23:46:01 UTC 2017
kill -USR1 2257
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 2257 killed at Sun Aug  6 23:46:01 UTC 2017
ssl.sh: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) ----
selfserv_9009 starting at Sun Aug  6 23:46:01 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C004 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:46:01 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2327 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2327 found at Sun Aug  6 23:46:01 UTC 2017
selfserv_9009 with PID 2327 started at Sun Aug  6 23:46:01 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C004 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:46:01 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:46:02 UTC 2017
ssl.sh: #2156: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 2327 at Sun Aug  6 23:46:02 UTC 2017
kill -USR1 2327
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 2327 killed at Sun Aug  6 23:46:02 UTC 2017
ssl.sh: Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) ----
selfserv_9009 starting at Sun Aug  6 23:46:02 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C00E -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:46:02 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2397 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2397 found at Sun Aug  6 23:46:02 UTC 2017
selfserv_9009 with PID 2397 started at Sun Aug  6 23:46:02 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C00E -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:46:02 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:46:03 UTC 2017
ssl.sh: #2157: Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 2397 at Sun Aug  6 23:46:03 UTC 2017
kill -USR1 2397
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 2397 killed at Sun Aug  6 23:46:03 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA ----
selfserv_9009 starting at Sun Aug  6 23:46:03 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C013 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:46:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2467 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2467 found at Sun Aug  6 23:46:03 UTC 2017
selfserv_9009 with PID 2467 started at Sun Aug  6 23:46:03 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :C013 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:46:03 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:46:03 UTC 2017
ssl.sh: #2158: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 2467 at Sun Aug  6 23:46:03 UTC 2017
kill -USR1 2467
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 2467 killed at Sun Aug  6 23:46:03 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 ----
selfserv_9009 starting at Sun Aug  6 23:46:03 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C027 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:46:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2538 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2538 found at Sun Aug  6 23:46:03 UTC 2017
selfserv_9009 with PID 2538 started at Sun Aug  6 23:46:03 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :C027 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:46:03 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:46:03 UTC 2017
ssl.sh: #2159: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 2538 at Sun Aug  6 23:46:03 UTC 2017
kill -USR1 2538
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 2538 killed at Sun Aug  6 23:46:03 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 GCM ----
selfserv_9009 starting at Sun Aug  6 23:46:03 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C02F -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:46:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2611 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2611 found at Sun Aug  6 23:46:03 UTC 2017
selfserv_9009 with PID 2611 started at Sun Aug  6 23:46:03 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :C02F \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:46:03 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:46:03 UTC 2017
ssl.sh: #2160: Stress TLS  ECDHE-RSA   AES 128 GCM produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 2611 at Sun Aug  6 23:46:03 UTC 2017
kill -USR1 2611
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 2611 killed at Sun Aug  6 23:46:03 UTC 2017
ssl.sh: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) ----
selfserv_9009 starting at Sun Aug  6 23:46:03 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C004 -u -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:46:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2683 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2683 found at Sun Aug  6 23:46:03 UTC 2017
selfserv_9009 with PID 2683 started at Sun Aug  6 23:46:03 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :C004 -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:46:03 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Sun Aug  6 23:46:04 UTC 2017
ssl.sh: #2161: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 2683 at Sun Aug  6 23:46:04 UTC 2017
kill -USR1 2683
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 2683 killed at Sun Aug  6 23:46:04 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) ----
selfserv_9009 starting at Sun Aug  6 23:46:04 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C009 -u -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:46:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2754 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2754 found at Sun Aug  6 23:46:04 UTC 2017
selfserv_9009 with PID 2754 started at Sun Aug  6 23:46:04 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C009 -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:46:04 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sun Aug  6 23:46:04 UTC 2017
ssl.sh: #2162: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 2754 at Sun Aug  6 23:46:04 UTC 2017
kill -USR1 2754
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 2754 killed at Sun Aug  6 23:46:04 UTC 2017
ssl.sh: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:46:04 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C009 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:46:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2840 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2840 found at Sun Aug  6 23:46:04 UTC 2017
selfserv_9009 with PID 2840 started at Sun Aug  6 23:46:04 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C009 -N -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:46:04 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Sun Aug  6 23:46:04 UTC 2017
ssl.sh: #2163: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 2840 at Sun Aug  6 23:46:04 UTC 2017
kill -USR1 2840
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 2840 killed at Sun Aug  6 23:46:04 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:46:04 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:46:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2910 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2910 found at Sun Aug  6 23:46:04 UTC 2017
selfserv_9009 with PID 2910 started at Sun Aug  6 23:46:04 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:46:04 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:46:04 UTC 2017
ssl.sh: #2164: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 2910 at Sun Aug  6 23:46:04 UTC 2017
kill -USR1 2910
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 2910 killed at Sun Aug  6 23:46:04 UTC 2017
ssl.sh: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:46:04 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C004 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:46:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2981 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2981 found at Sun Aug  6 23:46:04 UTC 2017
selfserv_9009 with PID 2981 started at Sun Aug  6 23:46:04 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C004 -N -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:46:04 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Sun Aug  6 23:46:05 UTC 2017
ssl.sh: #2165: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 2981 at Sun Aug  6 23:46:05 UTC 2017
kill -USR1 2981
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 2981 killed at Sun Aug  6 23:46:05 UTC 2017
ssl.sh: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:46:05 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C00E -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:46:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3051 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3051 found at Sun Aug  6 23:46:05 UTC 2017
selfserv_9009 with PID 3051 started at Sun Aug  6 23:46:05 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C00E -N -n ExtendedSSLUser-ecmixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:46:05 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Sun Aug  6 23:46:05 UTC 2017
ssl.sh: #2166: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 3051 at Sun Aug  6 23:46:05 UTC 2017
kill -USR1 3051
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 3051 killed at Sun Aug  6 23:46:05 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) ----
selfserv_9009 starting at Sun Aug  6 23:46:05 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:46:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3121 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3121 found at Sun Aug  6 23:46:05 UTC 2017
selfserv_9009 with PID 3121 started at Sun Aug  6 23:46:05 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:46:05 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:46:05 UTC 2017
ssl.sh: #2167: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 3121 at Sun Aug  6 23:46:05 UTC 2017
kill -USR1 3121
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 3121 killed at Sun Aug  6 23:46:05 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:46:05 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -u -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:46:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3192 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3192 found at Sun Aug  6 23:46:05 UTC 2017
selfserv_9009 with PID 3192 started at Sun Aug  6 23:46:05 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:46:05 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sun Aug  6 23:46:05 UTC 2017
ssl.sh: #2168: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 3192 at Sun Aug  6 23:46:05 UTC 2017
kill -USR1 3192
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 3192 killed at Sun Aug  6 23:46:05 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) ----
selfserv_9009 starting at Sun Aug  6 23:46:05 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0016 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:46:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3278 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3278 found at Sun Aug  6 23:46:05 UTC 2017
selfserv_9009 with PID 3278 started at Sun Aug  6 23:46:05 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0016 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:46:05 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:46:05 UTC 2017
ssl.sh: #2169: Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 3278 at Sun Aug  6 23:46:05 UTC 2017
kill -USR1 3278
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 3278 killed at Sun Aug  6 23:46:05 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA ----
selfserv_9009 starting at Sun Aug  6 23:46:05 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0033 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:46:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3348 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3348 found at Sun Aug  6 23:46:05 UTC 2017
selfserv_9009 with PID 3348 started at Sun Aug  6 23:46:05 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :0033 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:46:05 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:46:06 UTC 2017
ssl.sh: #2170: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 3348 at Sun Aug  6 23:46:06 UTC 2017
kill -USR1 3348
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 3348 killed at Sun Aug  6 23:46:06 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) ----
selfserv_9009 starting at Sun Aug  6 23:46:06 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0039 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:46:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3419 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3419 found at Sun Aug  6 23:46:06 UTC 2017
selfserv_9009 with PID 3419 started at Sun Aug  6 23:46:06 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0039 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:46:06 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:46:06 UTC 2017
ssl.sh: #2171: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 3419 at Sun Aug  6 23:46:06 UTC 2017
kill -USR1 3419
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 3419 killed at Sun Aug  6 23:46:06 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) ----
selfserv_9009 starting at Sun Aug  6 23:46:06 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0040 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:46:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3490 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3490 found at Sun Aug  6 23:46:06 UTC 2017
selfserv_9009 with PID 3490 started at Sun Aug  6 23:46:06 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0040 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:46:06 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:46:06 UTC 2017
ssl.sh: #2172: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 3490 at Sun Aug  6 23:46:06 UTC 2017
kill -USR1 3490
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 3490 killed at Sun Aug  6 23:46:06 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) ----
selfserv_9009 starting at Sun Aug  6 23:46:06 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0038 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:46:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3570 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3570 found at Sun Aug  6 23:46:06 UTC 2017
selfserv_9009 with PID 3570 started at Sun Aug  6 23:46:06 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :0038 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:46:06 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Sun Aug  6 23:46:09 UTC 2017
ssl.sh: #2173: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 3570 at Sun Aug  6 23:46:09 UTC 2017
kill -USR1 3570
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 3570 killed at Sun Aug  6 23:46:09 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse ----
selfserv_9009 starting at Sun Aug  6 23:46:09 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :006A -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:46:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3652 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3652 found at Sun Aug  6 23:46:09 UTC 2017
selfserv_9009 with PID 3652 started at Sun Aug  6 23:46:09 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :006A -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:46:09 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Sun Aug  6 23:46:12 UTC 2017
ssl.sh: #2174: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 3652 at Sun Aug  6 23:46:12 UTC 2017
kill -USR1 3652
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 3652 killed at Sun Aug  6 23:46:12 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) ----
selfserv_9009 starting at Sun Aug  6 23:46:12 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :006B -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:46:12 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3723 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3723 found at Sun Aug  6 23:46:12 UTC 2017
selfserv_9009 with PID 3723 started at Sun Aug  6 23:46:12 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :006B -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:46:12 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:46:12 UTC 2017
ssl.sh: #2175: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 3723 at Sun Aug  6 23:46:12 UTC 2017
kill -USR1 3723
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 3723 killed at Sun Aug  6 23:46:12 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) ----
selfserv_9009 starting at Sun Aug  6 23:46:12 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :009E -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:46:12 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3794 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3794 found at Sun Aug  6 23:46:12 UTC 2017
selfserv_9009 with PID 3794 started at Sun Aug  6 23:46:12 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :009E -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:46:12 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:46:12 UTC 2017
ssl.sh: #2176: Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 3794 at Sun Aug  6 23:46:12 UTC 2017
kill -USR1 3794
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 3794 killed at Sun Aug  6 23:46:12 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) ----
selfserv_9009 starting at Sun Aug  6 23:46:12 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :009F -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:46:12 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3864 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3864 found at Sun Aug  6 23:46:12 UTC 2017
selfserv_9009 with PID 3864 started at Sun Aug  6 23:46:12 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :009F -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:46:12 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:46:12 UTC 2017
ssl.sh: #2177: Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 3864 at Sun Aug  6 23:46:13 UTC 2017
kill -USR1 3864
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 3864 killed at Sun Aug  6 23:46:13 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:46:13 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0032 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:46:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3949 found at Sun Aug  6 23:46:13 UTC 2017
selfserv_9009 with PID 3949 started at Sun Aug  6 23:46:13 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0032 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:46:13 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:46:13 UTC 2017
ssl.sh: #2178: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 3949 at Sun Aug  6 23:46:13 UTC 2017
kill -USR1 3949
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 3949 killed at Sun Aug  6 23:46:13 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:46:13 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0067 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:46:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4019 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4019 found at Sun Aug  6 23:46:13 UTC 2017
selfserv_9009 with PID 4019 started at Sun Aug  6 23:46:13 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :0067 -n ExtendedSSLUser-dsamixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:46:13 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:46:13 UTC 2017
ssl.sh: #2179: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 4019 at Sun Aug  6 23:46:13 UTC 2017
kill -USR1 4019
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4019 killed at Sun Aug  6 23:46:13 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:46:13 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A2 -u -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:46:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4107 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4107 found at Sun Aug  6 23:46:13 UTC 2017
selfserv_9009 with PID 4107 started at Sun Aug  6 23:46:13 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A2 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:46:13 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Sun Aug  6 23:46:17 UTC 2017
ssl.sh: #2180: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 4107 at Sun Aug  6 23:46:17 UTC 2017
kill -USR1 4107
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4107 killed at Sun Aug  6 23:46:17 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:46:17 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A3 -u -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:46:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4177 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4177 found at Sun Aug  6 23:46:17 UTC 2017
selfserv_9009 with PID 4177 started at Sun Aug  6 23:46:17 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A3 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:46:17 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Sun Aug  6 23:46:21 UTC 2017
ssl.sh: #2181: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 4177 at Sun Aug  6 23:46:21 UTC 2017
kill -USR1 4177
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4177 killed at Sun Aug  6 23:46:21 UTC 2017
ssl.sh: SSL - FIPS mode off for server ===============================
ssl.sh: Turning FIPS off for the  server
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -fips false -force
FIPS mode disabled.
ssl.sh: #2182:  (modutil -fips false) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -list
ssl.sh: #2183:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
ssl.sh: #2184:  (grep "FIPS PKCS #11") produced a returncode of 1, expected is 1 - PASSED
ssl.sh: Turning FIPS off for the extended  server
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -fips false -force
FIPS mode disabled.
ssl.sh: #2185:  (modutil -fips false) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -list
ssl.sh: #2186:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
ssl.sh: #2187:  (grep "FIPS PKCS #11") produced a returncode of 1, expected is 1 - PASSED
ssl.sh: SSL - FIPS mode on for client ===============================
ssl.sh: Turning FIPS on for the  client
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -fips true -force
FIPS mode enabled.
ssl.sh: #2188:  (modutil -fips true) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -list
ssl.sh: #2189:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
  1. NSS Internal FIPS PKCS #11 Module
ssl.sh: #2190:  (grep "FIPS PKCS #11") produced a returncode of 0, expected is 0 - PASSED
ssl.sh: Turning FIPS on for the extended  client
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -fips true -force
FIPS mode enabled.
ssl.sh: #2191:  (modutil -fips true) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -list
ssl.sh: #2192:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
  1. NSS Internal FIPS PKCS #11 Module
ssl.sh: #2193:  (grep "FIPS PKCS #11") produced a returncode of 0, expected is 0 - PASSED
ssl.sh: SSL Cipher Coverage  - server normal/client fips  - with ECC ===============================
selfserv_9009 starting at Sun Aug  6 23:46:22 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:46:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4370 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4370 found at Sun Aug  6 23:46:22 UTC 2017
selfserv_9009 with PID 4370 started at Sun Aug  6 23:46:22 UTC 2017
ssl.sh: running SSL3_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c c -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2194: SSL3_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2195: SSL3_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c e -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2196: SSL3_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c i -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2197: SSL3_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c n -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2198: SSL3_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c v -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2199: SSL3_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c y -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2200: SSL3_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c z -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2201: SSL3_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :009F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2202: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :00A3 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2203: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :009D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2204: TLS_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c c -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2205: TLS_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2206: TLS_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c e -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2207: TLS_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c i -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2208: TLS_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c n -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2209: TLS_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c v -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2210: TLS_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c y -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2211: TLS_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c z -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2212: TLS_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c c -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2213: TLS11_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2214: TLS11_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c e -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2215: TLS11_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c i -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2216: TLS11_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c n -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2217: TLS11_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c v -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2218: TLS11_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c y -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2219: TLS11_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c z -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2220: TLS11_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c c -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2221: TLS12_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2222: TLS12_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c e -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2223: TLS12_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c i -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2224: TLS12_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c n -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2225: TLS12_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c v -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2226: TLS12_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c y -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2227: TLS12_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c z -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2228: TLS12_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :0016 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2229: TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :0032 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2230: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :0033 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2231: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :0038 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2232: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :0039 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2233: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :003B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2234: TLS12_RSA_WITH_NULL_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :003C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2235: TLS12_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :003D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2236: TLS12_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :0040 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2237: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :0067 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2238: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :006A -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2239: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :006B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2240: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :009C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2241: TLS12_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :009E -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2242: TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :00A2 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2243: TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :CCAA -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2244: TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C001 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2245: TLS_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C002 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2246: TLS_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C003 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2247: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C004 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2248: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C005 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2249: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C006 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2250: TLS_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C007 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2251: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C008 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2252: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C009 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2253: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00A -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2254: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00B -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2255: TLS_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00C -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2256: TLS_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00D -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2257: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00E -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2258: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00F -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2259: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C010 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2260: TLS_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C011 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2261: TLS_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C012 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2262: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C013 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2263: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C014 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2264: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C001 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2265: TLS11_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C002 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2266: TLS11_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C003 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2267: TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C004 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2268: TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C005 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2269: TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C006 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2270: TLS11_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C007 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2271: TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C008 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2272: TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C009 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2273: TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00A -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2274: TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00B -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2275: TLS11_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00C -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2276: TLS11_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00D -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2277: TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00E -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2278: TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00F -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2279: TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C010 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2280: TLS11_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C011 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2281: TLS11_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C012 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2282: TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C013 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2283: TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C014 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2284: TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C001 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2285: TLS12_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C002 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2286: TLS12_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C003 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2287: TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C004 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2288: TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C005 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2289: TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C006 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2290: TLS12_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C007 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2291: TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C008 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2292: TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C009 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2293: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00A -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2294: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2295: TLS12_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2296: TLS12_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2297: TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00E -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2298: TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2299: TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C010 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2300: TLS12_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C011 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2301: TLS12_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C012 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2302: TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C013 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2303: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C014 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2304: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C023 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2305: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C024 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2306: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C027 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2307: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C028 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2308: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C02B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2309: TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C02C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2310: TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C02F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2311: TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C030 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2312: TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :CCA8 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2313: TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :CCA9 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2314: TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 4370 at Sun Aug  6 23:46:28 UTC 2017
kill -USR1 4370
selfserv: 0 cache hits; 121 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4370 killed at Sun Aug  6 23:46:28 UTC 2017
ssl.sh: SSL Client Authentication  - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  TLS Request don't require client auth (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:46:28 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:46:28 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6647 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6647 found at Sun Aug  6 23:46:29 UTC 2017
selfserv_9009 with PID 6647 started at Sun Aug  6 23:46:29 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2315: TLS Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 6647 at Sun Aug  6 23:46:29 UTC 2017
kill -USR1 6647
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 6647 killed at Sun Aug  6 23:46:29 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:46:29 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:46:29 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6704 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6704 found at Sun Aug  6 23:46:29 UTC 2017
selfserv_9009 with PID 6704 started at Sun Aug  6 23:46:29 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2316: TLS Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 6704 at Sun Aug  6 23:46:55 UTC 2017
kill -USR1 6704
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 6704 killed at Sun Aug  6 23:46:55 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:46:55 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:46:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6769 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6769 found at Sun Aug  6 23:46:55 UTC 2017
selfserv_9009 with PID 6769 started at Sun Aug  6 23:46:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2317: TLS Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 6769 at Sun Aug  6 23:46:55 UTC 2017
kill -USR1 6769
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 6769 killed at Sun Aug  6 23:46:55 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:46:55 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:46:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6832 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6832 found at Sun Aug  6 23:46:55 UTC 2017
selfserv_9009 with PID 6832 started at Sun Aug  6 23:46:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2318: SSL3 Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 6832 at Sun Aug  6 23:46:55 UTC 2017
kill -USR1 6832
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 6832 killed at Sun Aug  6 23:46:55 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:46:55 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:46:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6889 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6889 found at Sun Aug  6 23:46:55 UTC 2017
selfserv_9009 with PID 6889 started at Sun Aug  6 23:46:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2319: SSL3 Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 6889 at Sun Aug  6 23:47:18 UTC 2017
kill -USR1 6889
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 6889 killed at Sun Aug  6 23:47:18 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:47:18 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:47:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6946 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6946 found at Sun Aug  6 23:47:18 UTC 2017
selfserv_9009 with PID 6946 started at Sun Aug  6 23:47:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2320: SSL3 Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 6946 at Sun Aug  6 23:47:18 UTC 2017
kill -USR1 6946
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 6946 killed at Sun Aug  6 23:47:18 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:47:18 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:47:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7009 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7009 found at Sun Aug  6 23:47:18 UTC 2017
selfserv_9009 with PID 7009 started at Sun Aug  6 23:47:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2321: TLS Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 7009 at Sun Aug  6 23:47:18 UTC 2017
kill -USR1 7009
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7009 killed at Sun Aug  6 23:47:18 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:47:18 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:47:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7066 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7066 found at Sun Aug  6 23:47:18 UTC 2017
selfserv_9009 with PID 7066 started at Sun Aug  6 23:47:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2322: TLS Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 7066 at Sun Aug  6 23:47:44 UTC 2017
kill -USR1 7066
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7066 killed at Sun Aug  6 23:47:44 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:47:44 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:47:44 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7151 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7151 found at Sun Aug  6 23:47:44 UTC 2017
selfserv_9009 with PID 7151 started at Sun Aug  6 23:47:44 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2323: TLS Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 7151 at Sun Aug  6 23:47:45 UTC 2017
kill -USR1 7151
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7151 killed at Sun Aug  6 23:47:45 UTC 2017
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:47:45 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:47:45 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7214 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7214 found at Sun Aug  6 23:47:45 UTC 2017
selfserv_9009 with PID 7214 started at Sun Aug  6 23:47:45 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2324: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 7214 at Sun Aug  6 23:47:45 UTC 2017
kill -USR1 7214
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7214 killed at Sun Aug  6 23:47:45 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:47:45 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:47:45 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7271 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7271 found at Sun Aug  6 23:47:45 UTC 2017
selfserv_9009 with PID 7271 started at Sun Aug  6 23:47:45 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2325: TLS 1.0 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 7271 at Sun Aug  6 23:48:11 UTC 2017
kill -USR1 7271
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7271 killed at Sun Aug  6 23:48:11 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:48:11 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:48:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7329 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7329 found at Sun Aug  6 23:48:11 UTC 2017
selfserv_9009 with PID 7329 started at Sun Aug  6 23:48:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2326: TLS 1.0 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 7329 at Sun Aug  6 23:48:11 UTC 2017
kill -USR1 7329
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7329 killed at Sun Aug  6 23:48:11 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:48:11 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:48:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7392 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7392 found at Sun Aug  6 23:48:11 UTC 2017
selfserv_9009 with PID 7392 started at Sun Aug  6 23:48:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2327: SSL3 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 7392 at Sun Aug  6 23:48:11 UTC 2017
kill -USR1 7392
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7392 killed at Sun Aug  6 23:48:11 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:48:11 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:48:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7449 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7449 found at Sun Aug  6 23:48:11 UTC 2017
selfserv_9009 with PID 7449 started at Sun Aug  6 23:48:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2328: SSL3 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 7449 at Sun Aug  6 23:48:34 UTC 2017
kill -USR1 7449
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7449 killed at Sun Aug  6 23:48:34 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:48:34 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:48:34 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7514 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7514 found at Sun Aug  6 23:48:34 UTC 2017
selfserv_9009 with PID 7514 started at Sun Aug  6 23:48:34 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2329: SSL3 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 7514 at Sun Aug  6 23:48:34 UTC 2017
kill -USR1 7514
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7514 killed at Sun Aug  6 23:48:34 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (EC) (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:48:34 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:48:34 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7590 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7590 found at Sun Aug  6 23:48:34 UTC 2017
selfserv_9009 with PID 7590 started at Sun Aug  6 23:48:34 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2330: TLS Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 7590 at Sun Aug  6 23:49:00 UTC 2017
kill -USR1 7590
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7590 killed at Sun Aug  6 23:49:00 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:49:00 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:49:00 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7647 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7647 found at Sun Aug  6 23:49:00 UTC 2017
selfserv_9009 with PID 7647 started at Sun Aug  6 23:49:00 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2331: TLS Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 7647 at Sun Aug  6 23:49:00 UTC 2017
kill -USR1 7647
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7647 killed at Sun Aug  6 23:49:00 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (EC) (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:49:00 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:49:00 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7708 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7708 found at Sun Aug  6 23:49:01 UTC 2017
selfserv_9009 with PID 7708 started at Sun Aug  6 23:49:01 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2332: SSL3 Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 7708 at Sun Aug  6 23:49:24 UTC 2017
kill -USR1 7708
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7708 killed at Sun Aug  6 23:49:24 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:49:24 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:49:24 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7765 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7765 found at Sun Aug  6 23:49:24 UTC 2017
selfserv_9009 with PID 7765 started at Sun Aug  6 23:49:24 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2333: SSL3 Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 7765 at Sun Aug  6 23:49:24 UTC 2017
kill -USR1 7765
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7765 killed at Sun Aug  6 23:49:24 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:49:24 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:49:24 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7826 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7826 found at Sun Aug  6 23:49:24 UTC 2017
selfserv_9009 with PID 7826 started at Sun Aug  6 23:49:24 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2334: TLS Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 7826 at Sun Aug  6 23:49:50 UTC 2017
kill -USR1 7826
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7826 killed at Sun Aug  6 23:49:50 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:49:50 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:49:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7891 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7891 found at Sun Aug  6 23:49:50 UTC 2017
selfserv_9009 with PID 7891 started at Sun Aug  6 23:49:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2335: TLS Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 7891 at Sun Aug  6 23:49:50 UTC 2017
kill -USR1 7891
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7891 killed at Sun Aug  6 23:49:50 UTC 2017
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:49:50 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:49:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7952 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7952 found at Sun Aug  6 23:49:50 UTC 2017
selfserv_9009 with PID 7952 started at Sun Aug  6 23:49:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2336: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 7952 at Sun Aug  6 23:50:16 UTC 2017
kill -USR1 7952
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7952 killed at Sun Aug  6 23:50:16 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:50:16 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8009 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8009 found at Sun Aug  6 23:50:16 UTC 2017
selfserv_9009 with PID 8009 started at Sun Aug  6 23:50:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2337: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 8009 at Sun Aug  6 23:50:16 UTC 2017
kill -USR1 8009
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 8009 killed at Sun Aug  6 23:50:16 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:50:16 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8070 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8070 found at Sun Aug  6 23:50:16 UTC 2017
selfserv_9009 with PID 8070 started at Sun Aug  6 23:50:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2338: SSL3 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 8070 at Sun Aug  6 23:50:39 UTC 2017
kill -USR1 8070
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 8070 killed at Sun Aug  6 23:50:39 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:50:39 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:39 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8135 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8135 found at Sun Aug  6 23:50:39 UTC 2017
selfserv_9009 with PID 8135 started at Sun Aug  6 23:50:39 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2339: SSL3 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 8135 at Sun Aug  6 23:50:39 UTC 2017
kill -USR1 8135
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 8135 killed at Sun Aug  6 23:50:39 UTC 2017
ssl.sh: TLS Server hello response without SNI ----
selfserv_9009 starting at Sun Aug  6 23:50:39 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:39 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8214 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8214 found at Sun Aug  6 23:50:39 UTC 2017
selfserv_9009 with PID 8214 started at Sun Aug  6 23:50:40 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2340: TLS Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 8214 at Sun Aug  6 23:50:40 UTC 2017
kill -USR1 8214
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 8214 killed at Sun Aug  6 23:50:40 UTC 2017
ssl.sh: TLS Server hello response with SNI ----
selfserv_9009 starting at Sun Aug  6 23:50:40 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:40 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8277 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8277 found at Sun Aug  6 23:50:40 UTC 2017
selfserv_9009 with PID 8277 started at Sun Aug  6 23:50:40 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2341: TLS Server hello response with SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 8277 at Sun Aug  6 23:50:40 UTC 2017
kill -USR1 8277
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 8277 killed at Sun Aug  6 23:50:40 UTC 2017
ssl.sh: TLS Server response with alert ----
selfserv_9009 starting at Sun Aug  6 23:50:40 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:40 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8340 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8340 found at Sun Aug  6 23:50:40 UTC 2017
selfserv_9009 with PID 8340 started at Sun Aug  6 23:50:40 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12182:
SSL peer has no certificate for the requested DNS name.
tstclnt: write to SSL socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #2342: TLS Server response with alert produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 8340 at Sun Aug  6 23:50:40 UTC 2017
kill -USR1 8340
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 8340 killed at Sun Aug  6 23:50:40 UTC 2017
ssl.sh: SSL3 Server hello response without SNI ----
selfserv_9009 starting at Sun Aug  6 23:50:40 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:40 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8403 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8403 found at Sun Aug  6 23:50:40 UTC 2017
selfserv_9009 with PID 8403 started at Sun Aug  6 23:50:40 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -c v -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2343: SSL3 Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 8403 at Sun Aug  6 23:50:40 UTC 2017
kill -USR1 8403
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 8403 killed at Sun Aug  6 23:50:40 UTC 2017
ssl.sh: SSL3 Server hello response with SNI: SSL don't have SH extensions ----
selfserv_9009 starting at Sun Aug  6 23:50:40 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:40 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8466 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8466 found at Sun Aug  6 23:50:40 UTC 2017
selfserv_9009 with PID 8466 started at Sun Aug  6 23:50:40 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
tstclnt: authentication of server cert failed: SSL_ERROR_BAD_CERT_DOMAIN: Unable to communicate securely with peer: requested domain name does not match the server's certificate.
ssl.sh: #2344: SSL3 Server hello response with SNI: SSL don't have SH extensions produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 8466 at Sun Aug  6 23:50:40 UTC 2017
kill -USR1 8466
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 8466 killed at Sun Aug  6 23:50:40 UTC 2017
ssl.sh: TLS Server hello response without SNI ----
selfserv_9009 starting at Sun Aug  6 23:50:40 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:40 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8529 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8529 found at Sun Aug  6 23:50:40 UTC 2017
selfserv_9009 with PID 8529 started at Sun Aug  6 23:50:40 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2345: TLS Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 8529 at Sun Aug  6 23:50:40 UTC 2017
kill -USR1 8529
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 8529 killed at Sun Aug  6 23:50:40 UTC 2017
ssl.sh: TLS Server hello response with SNI ----
selfserv_9009 starting at Sun Aug  6 23:50:40 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:40 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8592 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8592 found at Sun Aug  6 23:50:40 UTC 2017
selfserv_9009 with PID 8592 started at Sun Aug  6 23:50:40 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2346: TLS Server hello response with SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 8592 at Sun Aug  6 23:50:40 UTC 2017
kill -USR1 8592
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 8592 killed at Sun Aug  6 23:50:40 UTC 2017
ssl.sh: TLS Server hello response with SNI: Change name on 2d HS ----
selfserv_9009 starting at Sun Aug  6 23:50:40 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:40 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8655 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8655 found at Sun Aug  6 23:50:40 UTC 2017
selfserv_9009 with PID 8655 started at Sun Aug  6 23:50:40 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v-w nss -n TestUser -a localhost-sni.localdomain -a localhost.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Usage:  tstclnt -h host [-a 1st_hs_name ] [-a 2nd_hs_name ] [-p port]
[-D | -d certdir] [-C] [-b | -R root-module] 
[-n nickname] [-Bafosvx] [-c ciphers] [-Y] [-Z]
[-V [min-version]:[max-version]] [-K] [-T] [-U]
[-r N] [-w passwd] [-W pwfile] [-q [-t seconds]] [-I groups]
[-A requestfile] [-L totalconnections]-a name              Send different SNI name. 1st_hs_name - at first
                     handshake, 2nd_hs_name - at second handshake.
                     Default is host from the -h argument.
-h host              Hostname to connect with
-p port              Port number for SSL server
-d certdir           Directory with cert database (default is ~/.netscape)
-D                   Run without a cert database
-b                   Load the default "builtins" root CA module
-R                   Load the given root CA module
-C                   Print certificate chain information
                     (use -C twice to print more certificate details)
                     (use -C three times to include PEM format certificate dumps)
-n nickname          Nickname of key and cert for client auth
-V [min]:[max]       Restricts the set of enabled SSL/TLS protocols versions.
                     All versions are enabled by default.
                     Possible values for min/max: ssl3 tls1.0 tls1.1 tls1.2 tls1.3
                     Example: "-V ssl3:" enables SSL 3 and newer.
-K                   Send TLS_FALLBACK_SCSV
-S                   Prints only payload data. Skips HTTP header.
-f                   Client speaks first. 
-O                   Use synchronous certificate validation
-o                   Override bad server cert. Make it OK.
-s                   Disable SSL socket locking.
-v                   Verbose progress reporting.
-q                   Ping the server and then exit.
-t seconds           Timeout for server ping (default: no timeout).
-r N                 Renegotiate N times (resuming session if N>1).
-u                   Enable the session ticket extension.
-z                   Enable compression.
-g                   Enable false start.
-T                   Enable the cert_status extension (OCSP stapling).
-U                   Enable the signed_certificate_timestamp extension.
-F                   Require fresh revocation info from side channel.
                     -F once means: require for server cert only
                     -F twice means: require for intermediates, too
                     (Connect, handshake with server, disable dynamic download
                      of OCSP/CRL, verify cert using CERT_PKIXVerifyCert.)
                     Exit code:
                     0: have fresh and valid revocation data, status good
                     1: cert failed to verify, prior to revocation checking
                     2: missing, old or invalid revocation data
                     3: have fresh and valid revocation data, status revoked
-M                   Test -F allows 0=any (default), 1=only OCSP, 2=only CRL
-c ciphers           Restrict ciphers
-Y                   Print cipher values allowed for parameter -c and exit
-4                   Enforce using an IPv4 destination address
-6                   Enforce using an IPv6 destination address
                     (Options -4 and -6 cannot be combined.)
-G                   Enable the extended master secret extension [RFC7627]
-H                   Require the use of FFDHE supported groups [I-D.ietf-tls-negotiated-ff-dhe]
-A                   Read from a file instead of stdin
-Z                   Allow 0-RTT data (TLS 1.3 only)
-L                   Disconnect and reconnect up to N times total
-I                   Comma separated list of enabled groups for TLS key exchange.
                     The following values are valid:
                     P256, P384, P521, x25519, FF2048, FF3072, FF4096, FF6144, FF8192
ssl.sh: #2347: TLS Server hello response with SNI: Change name on 2d HS produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 8655 at Sun Aug  6 23:50:40 UTC 2017
kill -USR1 8655
./ssl.sh: line 197:  8655 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9009 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 8655 killed at Sun Aug  6 23:50:40 UTC 2017
ssl.sh: TLS Server hello response with SNI: Change name to invalid 2d HS ----
selfserv_9009 starting at Sun Aug  6 23:50:40 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:40 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8718 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8718 found at Sun Aug  6 23:50:40 UTC 2017
selfserv_9009 with PID 8718 started at Sun Aug  6 23:50:40 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12182:
SSL peer has no certificate for the requested DNS name.
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #2348: TLS Server hello response with SNI: Change name to invalid 2d HS produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 8718 at Sun Aug  6 23:50:40 UTC 2017
kill -USR1 8718
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 8718 killed at Sun Aug  6 23:50:40 UTC 2017
ssl.sh: TLS Server response with alert ----
selfserv_9009 starting at Sun Aug  6 23:50:40 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:40 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8781 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8781 found at Sun Aug  6 23:50:40 UTC 2017
selfserv_9009 with PID 8781 started at Sun Aug  6 23:50:40 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12182:
SSL peer has no certificate for the requested DNS name.
tstclnt: write to SSL socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #2349: TLS Server response with alert produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 8781 at Sun Aug  6 23:50:40 UTC 2017
kill -USR1 8781
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 8781 killed at Sun Aug  6 23:50:40 UTC 2017
ssl.sh: SSL Cert Status (OCSP Stapling)  - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  OCSP stapling, signed response, good status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, signed response, revoked status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, signed response, unknown status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, unsigned failure response (non-FIPS only)
ssl.sh: skipping  OCSP stapling, good status, bad signature (non-FIPS only)
ssl.sh: skipping  OCSP stapling, invalid cert status data (non-FIPS only)
ssl.sh: skipping  Valid cert, Server doesn't staple (non-FIPS only)
ssl.sh: skipping  Stress OCSP stapling, server uses random status (non-FIPS only)
ssl.sh: SSL Stress Test  - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  Form is subject to the terms of the Mozilla Public (non-FIPS only)
ssl.sh: skipping  If a copy of the MPL was not distributed with this (non-FIPS only)
ssl.sh: skipping  obtain one at http://mozilla.org/MPL/2.0/. (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  the stress tests for SSL/TLS. (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  client                         Test Case name (non-FIPS only)
ssl.sh: skipping  params (non-FIPS only)
ssl.sh: skipping  ------                         --------------- (non-FIPS only)
ssl.sh: skipping  Stress SSL3 RC4 128 with MD5 (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (false start) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (compression) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket, compression) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) (non-FIPS only)
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:50:40 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:40 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8882 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8882 found at Sun Aug  6 23:50:40 UTC 2017
selfserv_9009 with PID 8882 started at Sun Aug  6 23:50:40 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -c 100 -C c -V ssl3:ssl3 -N -n TestUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:50:40 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:50:41 UTC 2017
ssl.sh: #2350: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 8882 at Sun Aug  6 23:50:41 UTC 2017
kill -USR1 8882
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 8882 killed at Sun Aug  6 23:50:41 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:50:41 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:41 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8952 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8952 found at Sun Aug  6 23:50:41 UTC 2017
selfserv_9009 with PID 8952 started at Sun Aug  6 23:50:41 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -c 100 -C c -N -n TestUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:50:41 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:50:41 UTC 2017
ssl.sh: #2351: Stress TLS RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 8952 at Sun Aug  6 23:50:41 UTC 2017
kill -USR1 8952
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 8952 killed at Sun Aug  6 23:50:41 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:50:41 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:41 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9024 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9024 found at Sun Aug  6 23:50:41 UTC 2017
selfserv_9009 with PID 9024 started at Sun Aug  6 23:50:41 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:50:41 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sun Aug  6 23:50:41 UTC 2017
ssl.sh: #2352: Stress TLS RC4 128 with MD5 (session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 9024 at Sun Aug  6 23:50:41 UTC 2017
kill -USR1 9024
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 9024 killed at Sun Aug  6 23:50:41 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:50:41 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:41 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9095 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9095 found at Sun Aug  6 23:50:41 UTC 2017
selfserv_9009 with PID 9095 started at Sun Aug  6 23:50:41 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:50:41 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:50:41 UTC 2017
ssl.sh: #2353: Stress TLS RC4 128 with MD5 (compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 9095 at Sun Aug  6 23:50:41 UTC 2017
kill -USR1 9095
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 9095 killed at Sun Aug  6 23:50:41 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth, false start) ----
selfserv_9009 starting at Sun Aug  6 23:50:41 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:41 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9166 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9166 found at Sun Aug  6 23:50:41 UTC 2017
selfserv_9009 with PID 9166 started at Sun Aug  6 23:50:41 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:50:41 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:50:41 UTC 2017
ssl.sh: #2354: Stress TLS RC4 128 with MD5 (compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 9166 at Sun Aug  6 23:50:41 UTC 2017
kill -USR1 9166
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 9166 killed at Sun Aug  6 23:50:41 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:50:41 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:41 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9238 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9238 found at Sun Aug  6 23:50:41 UTC 2017
selfserv_9009 with PID 9238 started at Sun Aug  6 23:50:41 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:50:41 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sun Aug  6 23:50:41 UTC 2017
ssl.sh: #2355: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 9238 at Sun Aug  6 23:50:41 UTC 2017
kill -USR1 9238
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 9238 killed at Sun Aug  6 23:50:41 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) ----
selfserv_9009 starting at Sun Aug  6 23:50:41 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:41 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9309 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9309 found at Sun Aug  6 23:50:41 UTC 2017
selfserv_9009 with PID 9309 started at Sun Aug  6 23:50:41 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:50:41 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sun Aug  6 23:50:42 UTC 2017
ssl.sh: #2356: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 9309 at Sun Aug  6 23:50:42 UTC 2017
kill -USR1 9309
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 9309 killed at Sun Aug  6 23:50:42 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) ----
selfserv_9009 starting at Sun Aug  6 23:50:42 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -a localhost-sni.localdomain -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:42 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9386 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9386 found at Sun Aug  6 23:50:42 UTC 2017
selfserv_9009 with PID 9386 started at Sun Aug  6 23:50:42 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:50:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Sun Aug  6 23:50:42 UTC 2017
ssl.sh: #2357: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 9386 at Sun Aug  6 23:50:42 UTC 2017
kill -USR1 9386
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 9386 killed at Sun Aug  6 23:50:42 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) ----
selfserv_9009 starting at Sun Aug  6 23:50:42 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -a localhost-sni.localdomain -k localhost-sni.localdomain -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:42 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9464 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9464 found at Sun Aug  6 23:50:42 UTC 2017
selfserv_9009 with PID 9464 started at Sun Aug  6 23:50:42 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u -a localhost-sni.localdomain \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:50:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Sun Aug  6 23:50:42 UTC 2017
ssl.sh: #2358: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 9464 at Sun Aug  6 23:50:42 UTC 2017
kill -USR1 9464
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 9464 killed at Sun Aug  6 23:50:42 UTC 2017
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  ############################ (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 CBC with SHA (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 GCM (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:50:42 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C009 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:42 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9568 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9568 found at Sun Aug  6 23:50:42 UTC 2017
selfserv_9009 with PID 9568 started at Sun Aug  6 23:50:42 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C009 -N -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:50:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Sun Aug  6 23:50:42 UTC 2017
ssl.sh: #2359: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 9568 at Sun Aug  6 23:50:42 UTC 2017
kill -USR1 9568
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 9568 killed at Sun Aug  6 23:50:42 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:50:42 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:42 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9638 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9638 found at Sun Aug  6 23:50:42 UTC 2017
selfserv_9009 with PID 9638 started at Sun Aug  6 23:50:42 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:50:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:50:42 UTC 2017
ssl.sh: #2360: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 9638 at Sun Aug  6 23:50:42 UTC 2017
kill -USR1 9638
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 9638 killed at Sun Aug  6 23:50:42 UTC 2017
ssl.sh: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:50:42 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C004 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:42 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9709 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9709 found at Sun Aug  6 23:50:42 UTC 2017
selfserv_9009 with PID 9709 started at Sun Aug  6 23:50:42 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C004 -N -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:50:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Sun Aug  6 23:50:43 UTC 2017
ssl.sh: #2361: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 9709 at Sun Aug  6 23:50:43 UTC 2017
kill -USR1 9709
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 9709 killed at Sun Aug  6 23:50:43 UTC 2017
ssl.sh: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:50:43 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C00E -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:43 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9779 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9779 found at Sun Aug  6 23:50:43 UTC 2017
selfserv_9009 with PID 9779 started at Sun Aug  6 23:50:43 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C00E -N -n TestUser-ecmixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:50:43 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Sun Aug  6 23:50:43 UTC 2017
ssl.sh: #2362: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 9779 at Sun Aug  6 23:50:43 UTC 2017
kill -USR1 9779
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 9779 killed at Sun Aug  6 23:50:43 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) ----
selfserv_9009 starting at Sun Aug  6 23:50:43 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:43 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9849 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9849 found at Sun Aug  6 23:50:43 UTC 2017
selfserv_9009 with PID 9849 started at Sun Aug  6 23:50:43 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:50:43 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:50:43 UTC 2017
ssl.sh: #2363: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 9849 at Sun Aug  6 23:50:43 UTC 2017
kill -USR1 9849
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 9849 killed at Sun Aug  6 23:50:43 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:50:43 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -u -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:43 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9920 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9920 found at Sun Aug  6 23:50:43 UTC 2017
selfserv_9009 with PID 9920 started at Sun Aug  6 23:50:43 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:50:43 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sun Aug  6 23:50:43 UTC 2017
ssl.sh: #2364: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 9920 at Sun Aug  6 23:50:43 UTC 2017
kill -USR1 9920
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 9920 killed at Sun Aug  6 23:50:43 UTC 2017
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  ############################ (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  -V_ssl3:tls1.2_-c_1000_-C_:0038_-u Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (session ticket) (non-FIPS only)
ssl.sh: skipping  session ticket test, once session tickets with DHE_DSS are working (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  -V_ssl3:tls1.2_-c_1000_-C_:006A    Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (non-FIPS only)
ssl.sh: skipping  reuse test, once the session cache with DHE_DSS is working (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:50:43 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0032 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:43 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10029 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10029 found at Sun Aug  6 23:50:43 UTC 2017
selfserv_9009 with PID 10029 started at Sun Aug  6 23:50:43 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0032 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:50:43 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:50:43 UTC 2017
ssl.sh: #2365: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 10029 at Sun Aug  6 23:50:43 UTC 2017
kill -USR1 10029
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 10029 killed at Sun Aug  6 23:50:44 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:50:44 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0067 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:44 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10101 found at Sun Aug  6 23:50:44 UTC 2017
selfserv_9009 with PID 10101 started at Sun Aug  6 23:50:44 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :0067 -n TestUser-dsamixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:50:44 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:50:44 UTC 2017
ssl.sh: #2366: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 10101 at Sun Aug  6 23:50:44 UTC 2017
kill -USR1 10101
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 10101 killed at Sun Aug  6 23:50:44 UTC 2017
ssl.sh: skipping  session ticket test, once session tickets with DHE_DSS are working (non-FIPS only)
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:50:44 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A2 -u -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:44 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10184 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10184 found at Sun Aug  6 23:50:44 UTC 2017
selfserv_9009 with PID 10184 started at Sun Aug  6 23:50:44 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A2 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:50:44 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Sun Aug  6 23:50:47 UTC 2017
ssl.sh: #2367: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 10184 at Sun Aug  6 23:50:47 UTC 2017
kill -USR1 10184
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 10184 killed at Sun Aug  6 23:50:47 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:50:47 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A3 -u -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:47 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10254 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10254 found at Sun Aug  6 23:50:47 UTC 2017
selfserv_9009 with PID 10254 started at Sun Aug  6 23:50:47 UTC 2017
strsclnt -q -p 9009 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A3 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:50:47 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Sun Aug  6 23:50:50 UTC 2017
ssl.sh: #2368: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 10254 at Sun Aug  6 23:50:50 UTC 2017
kill -USR1 10254
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 10254 killed at Sun Aug  6 23:50:50 UTC 2017
ssl.sh: SSL Cipher Coverage Extended Test - server normal/client fips  - with ECC ===============================
selfserv_9009 starting at Sun Aug  6 23:50:50 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10316 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10316 found at Sun Aug  6 23:50:50 UTC 2017
selfserv_9009 with PID 10316 started at Sun Aug  6 23:50:50 UTC 2017
ssl.sh: running SSL3_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c c -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2369: SSL3_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2370: SSL3_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c e -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2371: SSL3_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c i -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2372: SSL3_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c n -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2373: SSL3_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c v -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2374: SSL3_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c y -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2375: SSL3_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c z -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2376: SSL3_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :009F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2377: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :00A3 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2378: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :009D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2379: TLS_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c c -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2380: TLS_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2381: TLS_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c e -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2382: TLS_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c i -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2383: TLS_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c n -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2384: TLS_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c v -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2385: TLS_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c y -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2386: TLS_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c z -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2387: TLS_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c c -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2388: TLS11_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2389: TLS11_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c e -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2390: TLS11_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c i -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2391: TLS11_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c n -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2392: TLS11_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c v -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2393: TLS11_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c y -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2394: TLS11_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c z -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2395: TLS11_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c c -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2396: TLS12_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2397: TLS12_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c e -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2398: TLS12_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c i -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2399: TLS12_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c n -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2400: TLS12_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c v -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2401: TLS12_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c y -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2402: TLS12_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c z -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2403: TLS12_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :0016 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2404: TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :0032 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2405: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :0033 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2406: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :0038 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2407: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :0039 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2408: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :003B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2409: TLS12_RSA_WITH_NULL_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :003C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2410: TLS12_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :003D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2411: TLS12_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :0040 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2412: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :0067 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2413: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :006A -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2414: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :006B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2415: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :009C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2416: TLS12_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :009E -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2417: TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :00A2 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2418: TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :CCAA -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2419: TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C001 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2420: TLS_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C002 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2421: TLS_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C003 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2422: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C004 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2423: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C005 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2424: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C006 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2425: TLS_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C007 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2426: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C008 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2427: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C009 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2428: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00A -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2429: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00B -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2430: TLS_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00C -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2431: TLS_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00D -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2432: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00E -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2433: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00F -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2434: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C010 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2435: TLS_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C011 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2436: TLS_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C012 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2437: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C013 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2438: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C014 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2439: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C001 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2440: TLS11_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C002 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2441: TLS11_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C003 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2442: TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C004 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2443: TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C005 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2444: TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C006 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2445: TLS11_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C007 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2446: TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C008 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2447: TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C009 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2448: TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00A -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2449: TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00B -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2450: TLS11_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00C -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2451: TLS11_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00D -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2452: TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00E -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2453: TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00F -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2454: TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C010 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2455: TLS11_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C011 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2456: TLS11_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C012 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2457: TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C013 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2458: TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C014 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2459: TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C001 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2460: TLS12_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C002 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2461: TLS12_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C003 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2462: TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C004 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2463: TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C005 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2464: TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C006 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2465: TLS12_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C007 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2466: TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C008 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2467: TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C009 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2468: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00A -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2469: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2470: TLS12_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2471: TLS12_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2472: TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00E -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2473: TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C00F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2474: TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C010 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2475: TLS12_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C011 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2476: TLS12_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C012 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2477: TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C013 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2478: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C014 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2479: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C023 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2480: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C024 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2481: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C027 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2482: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C028 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2483: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C02B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2484: TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C02C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2485: TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C02F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2486: TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :C030 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2487: TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :CCA8 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2488: TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9009 -h localhost.localdomain -c :CCA9 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2489: TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 10316 at Sun Aug  6 23:50:57 UTC 2017
kill -USR1 10316
selfserv: 0 cache hits; 121 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 10316 killed at Sun Aug  6 23:50:57 UTC 2017
ssl.sh: SSL Client Authentication Extended Test - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  TLS Request don't require client auth (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:50:57 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:57 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12596 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12596 found at Sun Aug  6 23:50:57 UTC 2017
selfserv_9009 with PID 12596 started at Sun Aug  6 23:50:57 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2490: TLS Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 12596 at Sun Aug  6 23:50:57 UTC 2017
kill -USR1 12596
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 12596 killed at Sun Aug  6 23:50:57 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:50:57 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:50:57 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12654 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12654 found at Sun Aug  6 23:50:57 UTC 2017
selfserv_9009 with PID 12654 started at Sun Aug  6 23:50:57 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2491: TLS Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 12654 at Sun Aug  6 23:51:24 UTC 2017
kill -USR1 12654
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 12654 killed at Sun Aug  6 23:51:24 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:51:24 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:51:24 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12711 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12711 found at Sun Aug  6 23:51:24 UTC 2017
selfserv_9009 with PID 12711 started at Sun Aug  6 23:51:24 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2492: TLS Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 12711 at Sun Aug  6 23:51:24 UTC 2017
kill -USR1 12711
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 12711 killed at Sun Aug  6 23:51:24 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:51:24 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:51:24 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12774 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12774 found at Sun Aug  6 23:51:24 UTC 2017
selfserv_9009 with PID 12774 started at Sun Aug  6 23:51:24 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2493: SSL3 Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 12774 at Sun Aug  6 23:51:24 UTC 2017
kill -USR1 12774
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 12774 killed at Sun Aug  6 23:51:24 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:51:24 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:51:24 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12831 found at Sun Aug  6 23:51:24 UTC 2017
selfserv_9009 with PID 12831 started at Sun Aug  6 23:51:24 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2494: SSL3 Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 12831 at Sun Aug  6 23:51:47 UTC 2017
kill -USR1 12831
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 12831 killed at Sun Aug  6 23:51:47 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:51:47 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:51:47 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12897 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12897 found at Sun Aug  6 23:51:47 UTC 2017
selfserv_9009 with PID 12897 started at Sun Aug  6 23:51:47 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2495: SSL3 Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 12897 at Sun Aug  6 23:51:47 UTC 2017
kill -USR1 12897
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 12897 killed at Sun Aug  6 23:51:47 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:51:47 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:51:47 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12961 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12961 found at Sun Aug  6 23:51:47 UTC 2017
selfserv_9009 with PID 12961 started at Sun Aug  6 23:51:47 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2496: TLS Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 12961 at Sun Aug  6 23:51:47 UTC 2017
kill -USR1 12961
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 12961 killed at Sun Aug  6 23:51:47 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:51:47 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:51:47 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13020 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13020 found at Sun Aug  6 23:51:47 UTC 2017
selfserv_9009 with PID 13020 started at Sun Aug  6 23:51:47 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2497: TLS Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 13020 at Sun Aug  6 23:52:15 UTC 2017
kill -USR1 13020
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 13020 killed at Sun Aug  6 23:52:15 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:52:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:52:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13096 found at Sun Aug  6 23:52:15 UTC 2017
selfserv_9009 with PID 13096 started at Sun Aug  6 23:52:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2498: TLS Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 13096 at Sun Aug  6 23:52:15 UTC 2017
kill -USR1 13096
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 13096 killed at Sun Aug  6 23:52:15 UTC 2017
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:52:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:52:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13160 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13160 found at Sun Aug  6 23:52:15 UTC 2017
selfserv_9009 with PID 13160 started at Sun Aug  6 23:52:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2499: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 13160 at Sun Aug  6 23:52:15 UTC 2017
kill -USR1 13160
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 13160 killed at Sun Aug  6 23:52:15 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:52:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:52:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13217 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13217 found at Sun Aug  6 23:52:15 UTC 2017
selfserv_9009 with PID 13217 started at Sun Aug  6 23:52:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2500: TLS 1.0 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 13217 at Sun Aug  6 23:52:42 UTC 2017
kill -USR1 13217
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 13217 killed at Sun Aug  6 23:52:42 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:52:42 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:52:42 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13283 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13283 found at Sun Aug  6 23:52:42 UTC 2017
selfserv_9009 with PID 13283 started at Sun Aug  6 23:52:42 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2501: TLS 1.0 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 13283 at Sun Aug  6 23:52:42 UTC 2017
kill -USR1 13283
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 13283 killed at Sun Aug  6 23:52:42 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:52:42 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:52:42 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13346 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13346 found at Sun Aug  6 23:52:42 UTC 2017
selfserv_9009 with PID 13346 started at Sun Aug  6 23:52:42 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2502: SSL3 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 13346 at Sun Aug  6 23:52:42 UTC 2017
kill -USR1 13346
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 13346 killed at Sun Aug  6 23:52:42 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:52:42 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:52:42 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13404 found at Sun Aug  6 23:52:42 UTC 2017
selfserv_9009 with PID 13404 started at Sun Aug  6 23:52:42 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2503: SSL3 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 13404 at Sun Aug  6 23:53:05 UTC 2017
kill -USR1 13404
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 13404 killed at Sun Aug  6 23:53:05 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:53:05 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:53:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13461 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13461 found at Sun Aug  6 23:53:05 UTC 2017
selfserv_9009 with PID 13461 started at Sun Aug  6 23:53:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2504: SSL3 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 13461 at Sun Aug  6 23:53:05 UTC 2017
kill -USR1 13461
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 13461 killed at Sun Aug  6 23:53:05 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (EC) (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:53:05 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:53:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13540 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13540 found at Sun Aug  6 23:53:05 UTC 2017
selfserv_9009 with PID 13540 started at Sun Aug  6 23:53:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2505: TLS Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 13540 at Sun Aug  6 23:53:33 UTC 2017
kill -USR1 13540
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 13540 killed at Sun Aug  6 23:53:33 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:53:33 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:53:33 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13605 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13605 found at Sun Aug  6 23:53:33 UTC 2017
selfserv_9009 with PID 13605 started at Sun Aug  6 23:53:33 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2506: TLS Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 13605 at Sun Aug  6 23:53:33 UTC 2017
kill -USR1 13605
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 13605 killed at Sun Aug  6 23:53:33 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (EC) (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:53:33 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:53:33 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13666 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13666 found at Sun Aug  6 23:53:33 UTC 2017
selfserv_9009 with PID 13666 started at Sun Aug  6 23:53:33 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2507: SSL3 Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 13666 at Sun Aug  6 23:53:56 UTC 2017
kill -USR1 13666
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 13666 killed at Sun Aug  6 23:53:56 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:53:56 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:53:56 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13723 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13723 found at Sun Aug  6 23:53:56 UTC 2017
selfserv_9009 with PID 13723 started at Sun Aug  6 23:53:56 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2508: SSL3 Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 13723 at Sun Aug  6 23:53:56 UTC 2017
kill -USR1 13723
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 13723 killed at Sun Aug  6 23:53:56 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:53:56 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:53:56 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13784 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13784 found at Sun Aug  6 23:53:56 UTC 2017
selfserv_9009 with PID 13784 started at Sun Aug  6 23:53:56 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2509: TLS Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 13784 at Sun Aug  6 23:54:23 UTC 2017
kill -USR1 13784
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 13784 killed at Sun Aug  6 23:54:23 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:54:23 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:54:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13841 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13841 found at Sun Aug  6 23:54:23 UTC 2017
selfserv_9009 with PID 13841 started at Sun Aug  6 23:54:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2510: TLS Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 13841 at Sun Aug  6 23:54:23 UTC 2017
kill -USR1 13841
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 13841 killed at Sun Aug  6 23:54:23 UTC 2017
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:54:23 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:54:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13903 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13903 found at Sun Aug  6 23:54:23 UTC 2017
selfserv_9009 with PID 13903 started at Sun Aug  6 23:54:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2511: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 13903 at Sun Aug  6 23:54:50 UTC 2017
kill -USR1 13903
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 13903 killed at Sun Aug  6 23:54:50 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:54:50 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:54:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13968 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13968 found at Sun Aug  6 23:54:50 UTC 2017
selfserv_9009 with PID 13968 started at Sun Aug  6 23:54:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2512: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 13968 at Sun Aug  6 23:54:50 UTC 2017
kill -USR1 13968
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 13968 killed at Sun Aug  6 23:54:50 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:54:50 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:54:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14029 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14029 found at Sun Aug  6 23:54:50 UTC 2017
selfserv_9009 with PID 14029 started at Sun Aug  6 23:54:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2513: SSL3 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 14029 at Sun Aug  6 23:55:14 UTC 2017
kill -USR1 14029
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 14029 killed at Sun Aug  6 23:55:14 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:55:14 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:55:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14086 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14086 found at Sun Aug  6 23:55:14 UTC 2017
selfserv_9009 with PID 14086 started at Sun Aug  6 23:55:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2514: SSL3 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 14086 at Sun Aug  6 23:55:14 UTC 2017
kill -USR1 14086
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 14086 killed at Sun Aug  6 23:55:14 UTC 2017
ssl.sh: skipping  TLS Server hello response without SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI for Extended Test
ssl.sh: skipping  TLS Server response with alert for Extended Test
ssl.sh: skipping  SSL3 Server hello response without SNI for Extended Test
ssl.sh: skipping  SSL3 Server hello response with SNI: SSL don't have SH extensions for Extended Test
ssl.sh: skipping  TLS Server hello response without SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI: Change name on 2d HS for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI: Change name to invalid 2d HS for Extended Test
ssl.sh: skipping  TLS Server response with alert for Extended Test
ssl.sh: SSL Cert Status (OCSP Stapling) Extended Test - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  OCSP stapling, signed response, good status for Extended Test
ssl.sh: skipping  OCSP stapling, signed response, revoked status for Extended Test
ssl.sh: skipping  OCSP stapling, signed response, unknown status for Extended Test
ssl.sh: skipping  OCSP stapling, unsigned failure response for Extended Test
ssl.sh: skipping  OCSP stapling, good status, bad signature for Extended Test
ssl.sh: skipping  OCSP stapling, invalid cert status data for Extended Test
ssl.sh: skipping  Valid cert, Server doesn't staple for Extended Test
ssl.sh: skipping  Stress OCSP stapling, server uses random status for Extended Test
ssl.sh: SSL Stress Test Extended Test - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  Form is subject to the terms of the Mozilla Public (non-FIPS only)
ssl.sh: skipping  If a copy of the MPL was not distributed with this (non-FIPS only)
ssl.sh: skipping  obtain one at http://mozilla.org/MPL/2.0/. (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  the stress tests for SSL/TLS. (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  client                         Test Case name (non-FIPS only)
ssl.sh: skipping  params (non-FIPS only)
ssl.sh: skipping  ------                         --------------- (non-FIPS only)
ssl.sh: skipping  Stress SSL3 RC4 128 with MD5 (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (false start) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (compression) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket, compression) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) (non-FIPS only)
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI) for Extended Test
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:55:14 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:55:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14220 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14220 found at Sun Aug  6 23:55:14 UTC 2017
selfserv_9009 with PID 14220 started at Sun Aug  6 23:55:14 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -c 100 -C c -V ssl3:ssl3 -N -n ExtendedSSLUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:55:14 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:55:14 UTC 2017
ssl.sh: #2515: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 14220 at Sun Aug  6 23:55:14 UTC 2017
kill -USR1 14220
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 14220 killed at Sun Aug  6 23:55:14 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:55:14 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:55:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14291 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14291 found at Sun Aug  6 23:55:14 UTC 2017
selfserv_9009 with PID 14291 started at Sun Aug  6 23:55:14 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -c 100 -C c -N -n ExtendedSSLUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:55:14 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:55:14 UTC 2017
ssl.sh: #2516: Stress TLS RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 14291 at Sun Aug  6 23:55:14 UTC 2017
kill -USR1 14291
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 14291 killed at Sun Aug  6 23:55:14 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:55:14 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:55:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14361 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14361 found at Sun Aug  6 23:55:14 UTC 2017
selfserv_9009 with PID 14361 started at Sun Aug  6 23:55:14 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:55:14 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sun Aug  6 23:55:14 UTC 2017
ssl.sh: #2517: Stress TLS RC4 128 with MD5 (session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 14361 at Sun Aug  6 23:55:14 UTC 2017
kill -USR1 14361
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 14361 killed at Sun Aug  6 23:55:14 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:55:14 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:55:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14433 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14433 found at Sun Aug  6 23:55:15 UTC 2017
selfserv_9009 with PID 14433 started at Sun Aug  6 23:55:15 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:55:15 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:55:15 UTC 2017
ssl.sh: #2518: Stress TLS RC4 128 with MD5 (compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 14433 at Sun Aug  6 23:55:15 UTC 2017
kill -USR1 14433
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 14433 killed at Sun Aug  6 23:55:15 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth, false start) ----
selfserv_9009 starting at Sun Aug  6 23:55:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:55:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14504 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14504 found at Sun Aug  6 23:55:15 UTC 2017
selfserv_9009 with PID 14504 started at Sun Aug  6 23:55:15 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:55:15 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:55:15 UTC 2017
ssl.sh: #2519: Stress TLS RC4 128 with MD5 (compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 14504 at Sun Aug  6 23:55:15 UTC 2017
kill -USR1 14504
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 14504 killed at Sun Aug  6 23:55:15 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:55:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:55:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14575 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14575 found at Sun Aug  6 23:55:15 UTC 2017
selfserv_9009 with PID 14575 started at Sun Aug  6 23:55:15 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:55:15 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sun Aug  6 23:55:15 UTC 2017
ssl.sh: #2520: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 14575 at Sun Aug  6 23:55:15 UTC 2017
kill -USR1 14575
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 14575 killed at Sun Aug  6 23:55:15 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) ----
selfserv_9009 starting at Sun Aug  6 23:55:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:55:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14646 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14646 found at Sun Aug  6 23:55:15 UTC 2017
selfserv_9009 with PID 14646 started at Sun Aug  6 23:55:15 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:55:15 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sun Aug  6 23:55:15 UTC 2017
ssl.sh: #2521: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 14646 at Sun Aug  6 23:55:15 UTC 2017
kill -USR1 14646
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 14646 killed at Sun Aug  6 23:55:15 UTC 2017
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) for Extended Test
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) for Extended Test
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  ############################ (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 CBC with SHA (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 GCM (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:55:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C009 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:55:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14753 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14753 found at Sun Aug  6 23:55:15 UTC 2017
selfserv_9009 with PID 14753 started at Sun Aug  6 23:55:15 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C009 -N -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:55:15 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Sun Aug  6 23:55:15 UTC 2017
ssl.sh: #2522: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 14753 at Sun Aug  6 23:55:15 UTC 2017
kill -USR1 14753
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 14753 killed at Sun Aug  6 23:55:15 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:55:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:55:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14823 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14823 found at Sun Aug  6 23:55:15 UTC 2017
selfserv_9009 with PID 14823 started at Sun Aug  6 23:55:15 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:55:15 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:55:15 UTC 2017
ssl.sh: #2523: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 14823 at Sun Aug  6 23:55:15 UTC 2017
kill -USR1 14823
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 14823 killed at Sun Aug  6 23:55:15 UTC 2017
ssl.sh: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:55:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C004 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:55:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14894 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14894 found at Sun Aug  6 23:55:15 UTC 2017
selfserv_9009 with PID 14894 started at Sun Aug  6 23:55:15 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C004 -N -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:55:15 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Sun Aug  6 23:55:16 UTC 2017
ssl.sh: #2524: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 14894 at Sun Aug  6 23:55:16 UTC 2017
kill -USR1 14894
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 14894 killed at Sun Aug  6 23:55:16 UTC 2017
ssl.sh: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:55:16 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C00E -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:55:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14965 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14965 found at Sun Aug  6 23:55:16 UTC 2017
selfserv_9009 with PID 14965 started at Sun Aug  6 23:55:16 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C00E -N -n ExtendedSSLUser-ecmixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:55:16 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Sun Aug  6 23:55:16 UTC 2017
ssl.sh: #2525: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 14965 at Sun Aug  6 23:55:16 UTC 2017
kill -USR1 14965
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 14965 killed at Sun Aug  6 23:55:16 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) ----
selfserv_9009 starting at Sun Aug  6 23:55:16 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:55:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15035 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 15035 found at Sun Aug  6 23:55:16 UTC 2017
selfserv_9009 with PID 15035 started at Sun Aug  6 23:55:16 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:55:16 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:55:16 UTC 2017
ssl.sh: #2526: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 15035 at Sun Aug  6 23:55:16 UTC 2017
kill -USR1 15035
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 15035 killed at Sun Aug  6 23:55:16 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:55:16 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -u -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:55:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15107 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 15107 found at Sun Aug  6 23:55:16 UTC 2017
selfserv_9009 with PID 15107 started at Sun Aug  6 23:55:16 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:55:16 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sun Aug  6 23:55:16 UTC 2017
ssl.sh: #2527: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 15107 at Sun Aug  6 23:55:16 UTC 2017
kill -USR1 15107
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 15107 killed at Sun Aug  6 23:55:16 UTC 2017
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  ############################ (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  -V_ssl3:tls1.2_-c_1000_-C_:0038_-u Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (session ticket) (non-FIPS only)
ssl.sh: skipping  session ticket test, once session tickets with DHE_DSS are working (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  -V_ssl3:tls1.2_-c_1000_-C_:006A    Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (non-FIPS only)
ssl.sh: skipping  reuse test, once the session cache with DHE_DSS is working (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:55:16 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0032 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:55:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15216 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 15216 found at Sun Aug  6 23:55:16 UTC 2017
selfserv_9009 with PID 15216 started at Sun Aug  6 23:55:16 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0032 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:55:16 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sun Aug  6 23:55:17 UTC 2017
ssl.sh: #2528: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 15216 at Sun Aug  6 23:55:17 UTC 2017
kill -USR1 15216
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 15216 killed at Sun Aug  6 23:55:17 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:55:17 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0067 -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:55:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15286 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 15286 found at Sun Aug  6 23:55:17 UTC 2017
selfserv_9009 with PID 15286 started at Sun Aug  6 23:55:17 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :0067 -n ExtendedSSLUser-dsamixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:55:17 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sun Aug  6 23:55:17 UTC 2017
ssl.sh: #2529: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 15286 at Sun Aug  6 23:55:17 UTC 2017
kill -USR1 15286
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 15286 killed at Sun Aug  6 23:55:17 UTC 2017
ssl.sh: skipping  session ticket test, once session tickets with DHE_DSS are working (non-FIPS only)
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:55:17 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A2 -u -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:55:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15369 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 15369 found at Sun Aug  6 23:55:17 UTC 2017
selfserv_9009 with PID 15369 started at Sun Aug  6 23:55:17 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A2 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:55:17 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Sun Aug  6 23:55:21 UTC 2017
ssl.sh: #2530: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 15369 at Sun Aug  6 23:55:21 UTC 2017
kill -USR1 15369
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 15369 killed at Sun Aug  6 23:55:21 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) ----
selfserv_9009 starting at Sun Aug  6 23:55:21 UTC 2017
selfserv_9009 -D -p 9009 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A3 -u -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:55:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15441 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 15441 found at Sun Aug  6 23:55:21 UTC 2017
selfserv_9009 with PID 15441 started at Sun Aug  6 23:55:21 UTC 2017
strsclnt -q -p 9009 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A3 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sun Aug  6 23:55:21 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Sun Aug  6 23:55:25 UTC 2017
ssl.sh: #2531: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9009 with PID 15441 at Sun Aug  6 23:55:25 UTC 2017
kill -USR1 15441
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 15441 killed at Sun Aug  6 23:55:25 UTC 2017
ssl.sh: SSL - FIPS mode off for client ===============================
ssl.sh: Turning FIPS off for the  client
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -fips false -force
FIPS mode disabled.
ssl.sh: #2532:  (modutil -fips false) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -list
ssl.sh: #2533:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
ssl.sh: #2534:  (grep "FIPS PKCS #11") produced a returncode of 1, expected is 1 - PASSED
ssl.sh: Turning FIPS off for the extended  client
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -fips false -force
FIPS mode disabled.
ssl.sh: #2535:  (modutil -fips false) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -list
ssl.sh: #2536:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
ssl.sh: #2537:  (grep "FIPS PKCS #11") produced a returncode of 1, expected is 1 - PASSED
TIMESTAMP ssl END: Sun Aug  6 23:55:26 UTC 2017
Running tests for ocsp
TIMESTAMP ocsp BEGIN: Sun Aug  6 23:55:26 UTC 2017
ocsp.sh: OCSP tests ===============================
TIMESTAMP ocsp END: Sun Aug  6 23:55:26 UTC 2017
Running tests for merge
TIMESTAMP merge BEGIN: Sun Aug  6 23:55:26 UTC 2017
merge.sh: Merge Tests ===============================
merge.sh: Creating an SDR key & Encrypt
sdrtest -d . -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests.v3.8843 -t Test2 -f ../tests.pw
merge.sh: #2538: Creating SDR Key  - PASSED
merge.sh: Merging in Key for Existing user
certutil --merge --source-dir ../dave -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2539: Merging Dave  - PASSED
merge.sh: Merging in new user 
certutil --merge --source-dir ../server -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2540: Merging server  - PASSED
merge.sh: Merging in new chain 
certutil --merge --source-dir ../ext_client -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2541: Merging ext_client  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --merge --source-dir conflict1 -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2542: Merging conflicting nicknames 1  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --merge --source-dir conflict2 -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2543: Merging conflicting nicknames 2  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #4)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 45 (0x2d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:39 2017
            Not After : Sat Aug 06 23:43:39 2022
        Subject: "CN=TestUser45,E=TestUser45@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:ce:48:63:73:8d:86:ef:81:4d:81:42:e8:58:26:78:
                    92:4a:ee:12:01:d0:e5:72:47:00:dd:e0:34:c3:e7:4e:
                    f5:af:4f:ec:1e:d8:3b:d7:4b:1d:50:21:ec:e8:e9:97:
                    ae:c6:5a:e3:c8:33:be:ef:54:40:1d:48:3f:e9:be:67:
                    e2:9c:08:3f:fd:0c:49:14:29:eb:b2:fa:67:26:98:e8:
                    19:a8:d7:2a:3f:ae:a0:b3:19:81:21:57:8a:c5:9d:c8:
                    48:dc:85:fa:6a:bc:80:16:e2:03:67:4c:0a:91:5f:ba:
                    a5:a6:da:d7:04:7a:e4:39:8e:43:0f:27:0e:93:61:0a:
                    05:ab:23:50:77:95:51:9b:60:e9:c8:7f:4a:22:f6:7d:
                    ed:ea:95:95:f6:87:4d:f5:24:e0:8d:fd:7e:e4:4b:d6:
                    43:1b:4b:e1:e3:ae:76:f0:fd:59:05:4d:54:84:b0:4c:
                    03:a6:7b:73:f6:25:77:4e:80:cc:48:4e:29:8f:a0:da:
                    d1:6b:3c:8d:8c:fa:63:5e:c8:03:75:34:76:33:a5:02:
                    53:7a:b4:e9:f0:67:94:1b:9b:cc:5b:3a:8f:e8:4b:4e:
                    5c:1d:41:00:66:84:77:4d:7e:34:9a:bc:15:56:41:9f:
                    1a:9d:df:18:d9:90:b1:1c:41:7e:05:a9:a2:5e:ac:0b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        20:b0:14:c3:d2:ff:9c:cc:cd:8c:49:e9:14:c3:b6:0b:
        b4:52:d1:8e:97:39:09:ad:73:fb:c6:6c:36:32:d5:86:
        bc:53:dc:aa:8b:e2:bd:0a:8d:f4:d5:0a:16:97:52:d3:
        f7:72:16:79:5a:c8:9d:e3:c5:45:8d:91:00:68:5e:c6:
        b6:c7:8d:e5:2c:3b:b6:61:81:5a:3d:cf:69:78:a2:6f:
        59:5d:81:7f:68:11:b4:ee:5a:4f:16:00:ec:4f:b6:5c:
        3d:7b:9a:62:81:e7:80:11:19:14:91:fd:2e:36:46:36:
        b4:c6:6b:f5:f1:46:88:90:c8:be:89:8a:33:d2:ee:4a:
        33:d6:d7:0d:dd:b7:69:33:a1:58:d4:c8:bb:02:4e:a8:
        b9:2d:15:dd:96:74:1b:af:b1:50:3d:a3:52:85:9a:8f:
        78:aa:ed:60:a1:2d:d6:0b:9f:88:bc:e1:56:eb:00:e7:
        1c:74:7b:9e:5b:c3:bc:9f:77:9f:ca:56:19:b0:2a:d0:
        2c:c3:ac:bc:16:f2:78:15:f7:f9:1a:75:d3:26:d7:bf:
        9d:66:b9:77:8e:1c:c6:8c:42:b6:a9:fe:82:54:5a:d4:
        67:ff:5b:bd:09:04:8a:f2:af:04:cf:ae:4a:20:27:90:
        60:00:48:bf:4b:c3:8a:59:e8:60:56:51:0d:6b:4e:ba
    Fingerprint (SHA-256):
        14:CD:28:0E:90:6E:21:F1:D1:D0:8F:4C:3F:35:4D:A3:E8:35:11:46:85:B0:21:54:F7:84:DD:77:5A:8E:59:6D
    Fingerprint (SHA1):
        32:B5:71:BD:3A:1B:84:57:E8:69:FF:05:8A:1E:60:3A:4E:98:AF:FA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #2544: Verify nicknames were deconflicted (Alice #4)  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #100)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 46 (0x2e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:39 2017
            Not After : Sat Aug 06 23:43:39 2022
        Subject: "CN=TestUser46,E=TestUser46@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:e4:da:42:2f:85:45:db:9f:27:eb:1b:0a:42:ba:72:
                    1a:0d:72:69:8d:36:e1:c8:82:da:46:dd:e9:6a:24:41:
                    1e:0b:10:e7:7a:29:57:4c:86:b4:24:8d:b0:f2:68:fa:
                    90:9e:ec:a3:4c:07:4f:3d:8c:4c:8d:90:6d:8b:86:c9:
                    31:c3:b4:45:8b:e5:f9:f7:9b:c9:06:ef:b3:de:40:29:
                    0e:96:be:f5:10:3e:d2:e3:e3:18:a3:9b:1f:dc:b4:9c:
                    b3:6f:96:49:81:11:11:e4:66:5c:4e:e8:ad:26:90:56:
                    d3:e4:c6:52:d9:9d:e4:b5:ef:24:76:54:41:95:72:de:
                    bd:69:cb:5c:fb:b4:15:33:07:05:0d:44:da:e5:e8:09:
                    a0:ac:76:0b:b6:09:20:77:8b:8c:48:db:5b:49:fa:d0:
                    82:5c:8b:64:c5:be:ad:86:8e:85:70:2b:05:1e:7e:3e:
                    d6:03:a3:b3:d8:b4:9c:c8:9d:bb:1b:28:22:c6:4b:0e:
                    01:0e:ea:d0:10:92:36:d1:21:61:96:6e:5a:28:b1:b4:
                    23:7d:47:17:67:a3:fe:24:57:66:f8:f1:00:93:49:34:
                    62:80:b2:10:25:5f:6d:b4:53:6a:6c:44:dd:09:63:f1:
                    85:29:35:4b:c5:2d:70:59:c1:62:6a:7c:32:e1:c5:93
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6f:b1:be:50:0c:dc:57:21:20:be:3d:af:cb:68:d3:38:
        88:7e:a6:3f:9a:8c:24:dd:84:88:4d:84:a1:32:b1:82:
        65:dd:3e:27:38:1b:47:96:a9:7b:e5:e4:b7:b7:45:b6:
        28:d5:93:1f:22:91:ce:92:9e:a2:fd:f6:9a:85:14:35:
        44:5d:01:82:0b:d9:06:f9:f7:15:6a:96:94:15:da:e9:
        ca:cf:02:f1:01:71:bc:11:5d:15:de:97:ea:00:1b:16:
        05:13:03:4f:b6:94:12:41:4c:ce:ca:81:ef:82:ad:3f:
        9f:ee:01:c9:b9:9e:0f:4e:7a:e8:45:f5:6d:3e:91:2e:
        00:1f:b4:fb:8c:de:50:19:e3:8a:fe:df:46:66:31:89:
        83:1d:8b:eb:c0:f5:2b:06:a3:ee:4b:57:a8:b0:14:09:
        50:e4:eb:e0:19:31:b4:c2:c1:dd:3a:4c:fd:d4:bb:bd:
        1f:05:fa:7f:1c:2b:db:f9:3e:20:ae:f4:60:7c:cb:6f:
        d4:f6:33:46:ce:d6:d6:0a:69:b1:8a:00:5d:09:95:65:
        2a:36:00:ab:5c:41:16:fa:64:6b:23:18:c5:53:19:45:
        55:4d:e7:3c:47:7e:89:70:f2:ee:da:f5:3a:c4:c9:14:
        68:89:03:38:bc:62:b8:70:0e:b8:32:87:99:43:dd:96
    Fingerprint (SHA-256):
        C9:F9:13:D2:74:D7:90:72:2C:E8:8E:1D:70:78:83:46:10:45:73:25:4B:8B:B6:5B:3C:0D:D7:E9:EF:CB:2D:F3
    Fingerprint (SHA1):
        D6:84:3D:2D:3B:1C:35:B1:12:C2:02:AE:57:D1:AD:E3:6B:37:E4:00
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #2545: Verify nicknames were deconflicted (Alice #100)  - PASSED
merge.sh: Merging in SDR 
certutil --merge --source-dir ../SDR -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2546: Merging SDR  - PASSED
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
TestCA-dsa                                                   CT,C,C
Alice-ec                                                     u,u,u
Dave                                                         u,u,u
localhost.localdomain-dsamixed                               ,,   
serverCA-dsa                                                 C,C,C
chain-2-clientCA-ec                                          ,,   
Alice #1                                                     ,,   
Dave-dsa                                                     ,,   
localhost.localdomain-ecmixed                                ,,   
localhost-sni.localdomain-dsamixed                           ,,   
Alice #99                                                    ,,   
Alice-dsamixed                                               u,u,u
eve@bogus.com                                                ,,   
bob-ec@bogus.com                                             ,,   
localhost.localdomain                                        u,u,u
localhost-sni.localdomain-ecmixed                            ,,   
clientCA                                                     T,C,C
Alice #3                                                     ,,   
TestCA                                                       CT,C,C
TestCA-ec                                                    CT,C,C
Alice-ecmixed                                                u,u,u
Dave-ecmixed                                                 ,,   
localhost.localdomain-dsa                                    ,,   
localhost-sni.localdomain                                    u,u,u
localhost-sni.localdomain-ec                                 ,,   
ExtendedSSLUser                                              u,u,u
serverCA                                                     C,C,C
ExtendedSSLUser-ec                                           ,,   
serverCA-ec                                                  C,C,C
chain-1-clientCA                                             ,,   
clientCA-dsa                                                 T,C,C
chain-1-clientCA-ec                                          ,,   
Alice #2                                                     ,,   
Alice #4                                                     ,,   
Alice                                                        u,u,u
Dave-ec                                                      ,,   
localhost-sni.localdomain-dsa                                ,,   
ExtendedSSLUser-dsa                                          ,,   
ExtendedSSLUser-ecmixed                                      ,,   
chain-2-clientCA                                             ,,   
chain-1-clientCA-dsa                                         ,,   
Alice #100                                                   ,,   
Alice-dsa                                                    u,u,u
ExtendedSSLUser-dsamixed                                     ,,   
chain-2-clientCA-dsa                                         ,,   
bob@bogus.com                                                ,,   
Dave-dsamixed                                                ,,   
localhost.localdomain-ec                                     ,,   
clientCA-ec                                                  T,C,C
CRL names                                CRL Type
TestCA                                   CRL  
TestCA-ec                                CRL  
merge.sh: Decrypt - With Original SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests.v3.8843 -t Test2 -f ../tests.pw
merge.sh: #2547: Decrypt - Value 3  - PASSED
merge.sh: Decrypt - With Merged SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests.v1.8843 -t Test1 -f ../tests.pw
merge.sh: #2548: Decrypt - Value 1  - PASSED
merge.sh: Signing with merged key  ------------------
cmsutil -S -T -N Dave -H SHA1 -i alice.txt -d . -p nss -o dave.dsig
merge.sh: #2549: Create Detached Signature Dave . - PASSED
cmsutil -D -i dave.dsig -c alice.txt -d . 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
merge.sh: #2550: Verifying Dave's Detached Signature  - PASSED
merge.sh: verifying  merged cert  ------------------
certutil -V -n ExtendedSSLUser -u C -d .
certutil: certificate is valid
merge.sh: #2551: Verifying ExtendedSSL User Cert  - PASSED
merge.sh: verifying  merged crl  ------------------
crlutil -L -n TestCA -d .
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US"
    This Update: Sun Aug 06 23:43:48 2017
    Entry 1 (0x1):
        Serial Number: 40 (0x28)
        Revocation Date: Sun Aug 06 23:43:24 2017
        Entry Extensions:
            Name: CRL reason code
    Entry 2 (0x2):
        Serial Number: 42 (0x2a)
        Revocation Date: Sun Aug 06 23:43:44 2017
    CRL Extensions:
        Name: Certificate Issuer Alt Name
        RFC822 Name: "caemail@ca.com"
        DNS name: "ca.com"
        Directory Name: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=Califo
            rnia,C=US"
        URI: "http://ca.com"
        IP Address:
            87:0b:31:39:32:2e:31:36:38:2e:30:2e:31
merge.sh: #2552: Verifying TestCA CRL  - PASSED
TEST_MODE=STANDARD
NSS_DEFAULT_DB_TYPE=dbm
TIMESTAMP merge END: Sun Aug  6 23:55:26 UTC 2017
Running tests for pkits
TIMESTAMP pkits BEGIN: Sun Aug  6 23:55:26 UTC 2017
pkits.sh: PKITS data directory not defined, skipping.
TIMESTAMP pkits END: Sun Aug  6 23:55:26 UTC 2017
Running tests for chains
TIMESTAMP chains BEGIN: Sun Aug  6 23:55:26 UTC 2017
chains.sh: Certificate Chains Tests ===============================
chains.sh: Creating DB OCSPRootDB
certutil -N -d OCSPRootDB -f OCSPRootDB/dbpasswd
chains.sh: #2553: OCSPD: Creating DB OCSPRootDB  - PASSED
chains.sh: Creating Root CA OCSPRoot
certutil -s "CN=OCSPRoot ROOT CA, O=OCSPRoot, C=US" -S -n OCSPRoot  -t CTu,CTu,CTu -v 600 -x -d OCSPRootDB -1 -2 -5 -f OCSPRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235527 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2554: OCSPD: Creating Root CA OCSPRoot  - PASSED
chains.sh: Exporting Root CA OCSPRoot.der
certutil -L -d OCSPRootDB -r -n OCSPRoot -o OCSPRoot.der
chains.sh: #2555: OCSPD: Exporting Root CA OCSPRoot.der  - PASSED
chains.sh: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPRootDB -o OCSPRoot.p12 -n OCSPRoot -k OCSPRootDB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #2556: OCSPD: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database  - PASSED
chains.sh: Creating DB OCSPCA1DB
certutil -N -d OCSPCA1DB -f OCSPCA1DB/dbpasswd
chains.sh: #2557: OCSPD: Creating DB OCSPCA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA1Req.der
certutil -s "CN=OCSPCA1 Intermediate, O=OCSPCA1, C=US"  -R -2 -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPCA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2558: OCSPD: Creating Intermediate certifiate request OCSPCA1Req.der  - PASSED
chains.sh: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA1Req.der -o OCSPCA1OCSPRoot.der -f OCSPRootDB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9019/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2559: OCSPD: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database
certutil -A -n OCSPCA1 -t u,u,u -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -i OCSPCA1OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2560: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database  - PASSED
chains.sh: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA1DB -o OCSPCA1.p12 -n OCSPCA1 -k OCSPCA1DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #2561: OCSPD: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database  - PASSED
chains.sh: Creating DB OCSPCA2DB
certutil -N -d OCSPCA2DB -f OCSPCA2DB/dbpasswd
chains.sh: #2562: OCSPD: Creating DB OCSPCA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA2Req.der
certutil -s "CN=OCSPCA2 Intermediate, O=OCSPCA2, C=US"  -R -2 -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPCA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2563: OCSPD: Creating Intermediate certifiate request OCSPCA2Req.der  - PASSED
chains.sh: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA2Req.der -o OCSPCA2OCSPRoot.der -f OCSPRootDB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9019/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2564: OCSPD: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database
certutil -A -n OCSPCA2 -t u,u,u -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -i OCSPCA2OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2565: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database  - PASSED
chains.sh: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA2DB -o OCSPCA2.p12 -n OCSPCA2 -k OCSPCA2DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #2566: OCSPD: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database  - PASSED
chains.sh: Creating DB OCSPCA3DB
certutil -N -d OCSPCA3DB -f OCSPCA3DB/dbpasswd
chains.sh: #2567: OCSPD: Creating DB OCSPCA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA3Req.der
certutil -s "CN=OCSPCA3 Intermediate, O=OCSPCA3, C=US"  -R -2 -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPCA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2568: OCSPD: Creating Intermediate certifiate request OCSPCA3Req.der  - PASSED
chains.sh: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA3Req.der -o OCSPCA3OCSPRoot.der -f OCSPRootDB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9020
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2569: OCSPD: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database
certutil -A -n OCSPCA3 -t u,u,u -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -i OCSPCA3OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2570: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database  - PASSED
chains.sh: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA3DB -o OCSPCA3.p12 -n OCSPCA3 -k OCSPCA3DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #2571: OCSPD: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database  - PASSED
chains.sh: Creating DB OCSPEE11DB
certutil -N -d OCSPEE11DB -f OCSPEE11DB/dbpasswd
chains.sh: #2572: OCSPD: Creating DB OCSPEE11DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE11Req.der
certutil -s "CN=OCSPEE11 EE, O=OCSPEE11, C=US"  -R  -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPEE11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2573: OCSPD: Creating EE certifiate request OCSPEE11Req.der  - PASSED
chains.sh: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE11Req.der -o OCSPEE11OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9019/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2574: OCSPD: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database
certutil -A -n OCSPEE11 -t u,u,u -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -i OCSPEE11OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2575: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database  - PASSED
chains.sh: Creating DB OCSPEE12DB
certutil -N -d OCSPEE12DB -f OCSPEE12DB/dbpasswd
chains.sh: #2576: OCSPD: Creating DB OCSPEE12DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE12Req.der
certutil -s "CN=OCSPEE12 EE, O=OCSPEE12, C=US"  -R  -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPEE12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2577: OCSPD: Creating EE certifiate request OCSPEE12Req.der  - PASSED
chains.sh: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE12Req.der -o OCSPEE12OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9019/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2578: OCSPD: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database
certutil -A -n OCSPEE12 -t u,u,u -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -i OCSPEE12OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2579: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database  - PASSED
chains.sh: Creating DB OCSPEE13DB
certutil -N -d OCSPEE13DB -f OCSPEE13DB/dbpasswd
chains.sh: #2580: OCSPD: Creating DB OCSPEE13DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE13Req.der
certutil -s "CN=OCSPEE13 EE, O=OCSPEE13, C=US"  -R  -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPEE13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2581: OCSPD: Creating EE certifiate request OCSPEE13Req.der  - PASSED
chains.sh: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE13Req.der -o OCSPEE13OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9019/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2582: OCSPD: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database
certutil -A -n OCSPEE13 -t u,u,u -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -i OCSPEE13OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2583: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database  - PASSED
chains.sh: Creating DB OCSPEE14DB
certutil -N -d OCSPEE14DB -f OCSPEE14DB/dbpasswd
chains.sh: #2584: OCSPD: Creating DB OCSPEE14DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE14Req.der
certutil -s "CN=OCSPEE14 EE, O=OCSPEE14, C=US"  -R  -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPEE14Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2585: OCSPD: Creating EE certifiate request OCSPEE14Req.der  - PASSED
chains.sh: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE14Req.der -o OCSPEE14OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 4   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9019/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2586: OCSPD: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database
certutil -A -n OCSPEE14 -t u,u,u -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -i OCSPEE14OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2587: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database  - PASSED
chains.sh: Creating DB OCSPEE15DB
certutil -N -d OCSPEE15DB -f OCSPEE15DB/dbpasswd
chains.sh: #2588: OCSPD: Creating DB OCSPEE15DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE15Req.der
certutil -s "CN=OCSPEE15 EE, O=OCSPEE15, C=US"  -R  -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPEE15Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2589: OCSPD: Creating EE certifiate request OCSPEE15Req.der  - PASSED
chains.sh: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE15Req.der -o OCSPEE15OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 5   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9020
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2590: OCSPD: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database
certutil -A -n OCSPEE15 -t u,u,u -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -i OCSPEE15OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2591: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database  - PASSED
chains.sh: Creating DB OCSPEE21DB
certutil -N -d OCSPEE21DB -f OCSPEE21DB/dbpasswd
chains.sh: #2592: OCSPD: Creating DB OCSPEE21DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE21Req.der
certutil -s "CN=OCSPEE21 EE, O=OCSPEE21, C=US"  -R  -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPEE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2593: OCSPD: Creating EE certifiate request OCSPEE21Req.der  - PASSED
chains.sh: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE21Req.der -o OCSPEE21OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9019/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2594: OCSPD: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database
certutil -A -n OCSPEE21 -t u,u,u -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -i OCSPEE21OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2595: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database  - PASSED
chains.sh: Creating DB OCSPEE22DB
certutil -N -d OCSPEE22DB -f OCSPEE22DB/dbpasswd
chains.sh: #2596: OCSPD: Creating DB OCSPEE22DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE22Req.der
certutil -s "CN=OCSPEE22 EE, O=OCSPEE22, C=US"  -R  -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPEE22Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2597: OCSPD: Creating EE certifiate request OCSPEE22Req.der  - PASSED
chains.sh: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE22Req.der -o OCSPEE22OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9019/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2598: OCSPD: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database
certutil -A -n OCSPEE22 -t u,u,u -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -i OCSPEE22OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2599: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database  - PASSED
chains.sh: Creating DB OCSPEE23DB
certutil -N -d OCSPEE23DB -f OCSPEE23DB/dbpasswd
chains.sh: #2600: OCSPD: Creating DB OCSPEE23DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE23Req.der
certutil -s "CN=OCSPEE23 EE, O=OCSPEE23, C=US"  -R  -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPEE23Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2601: OCSPD: Creating EE certifiate request OCSPEE23Req.der  - PASSED
chains.sh: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE23Req.der -o OCSPEE23OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9020
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2602: OCSPD: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database
certutil -A -n OCSPEE23 -t u,u,u -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -i OCSPEE23OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2603: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database  - PASSED
chains.sh: Creating DB OCSPEE31DB
certutil -N -d OCSPEE31DB -f OCSPEE31DB/dbpasswd
chains.sh: #2604: OCSPD: Creating DB OCSPEE31DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE31Req.der
certutil -s "CN=OCSPEE31 EE, O=OCSPEE31, C=US"  -R  -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPEE31Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2605: OCSPD: Creating EE certifiate request OCSPEE31Req.der  - PASSED
chains.sh: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE31Req.der -o OCSPEE31OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9019/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2606: OCSPD: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database
certutil -A -n OCSPEE31 -t u,u,u -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -i OCSPEE31OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2607: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database  - PASSED
chains.sh: Creating DB OCSPEE32DB
certutil -N -d OCSPEE32DB -f OCSPEE32DB/dbpasswd
chains.sh: #2608: OCSPD: Creating DB OCSPEE32DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE32Req.der
certutil -s "CN=OCSPEE32 EE, O=OCSPEE32, C=US"  -R  -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPEE32Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2609: OCSPD: Creating EE certifiate request OCSPEE32Req.der  - PASSED
chains.sh: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE32Req.der -o OCSPEE32OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9019/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2610: OCSPD: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database
certutil -A -n OCSPEE32 -t u,u,u -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -i OCSPEE32OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2611: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database  - PASSED
chains.sh: Creating DB OCSPEE33DB
certutil -N -d OCSPEE33DB -f OCSPEE33DB/dbpasswd
chains.sh: #2612: OCSPD: Creating DB OCSPEE33DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE33Req.der
certutil -s "CN=OCSPEE33 EE, O=OCSPEE33, C=US"  -R  -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPEE33Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2613: OCSPD: Creating EE certifiate request OCSPEE33Req.der  - PASSED
chains.sh: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE33Req.der -o OCSPEE33OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9020
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2614: OCSPD: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database
certutil -A -n OCSPEE33 -t u,u,u -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -i OCSPEE33OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2615: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database  - PASSED
chains.sh: Create CRL for OCSPRootDB
crlutil -G -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170806235529Z
nextupdate=20180806235529Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Sun Aug 06 23:55:29 2017
    Next Update: Mon Aug 06 23:55:29 2018
    CRL Extensions:
chains.sh: #2616: OCSPD: Create CRL for OCSPRootDB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPRoot
crlutil -M -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170806235530Z
addcert 2 20170806235530Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Sun Aug 06 23:55:30 2017
    Next Update: Mon Aug 06 23:55:29 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sun Aug 06 23:55:30 2017
    CRL Extensions:
chains.sh: #2617: OCSPD: Revoking certificate with SN 2 issued by OCSPRoot  - PASSED
chains.sh: Create CRL for OCSPCA1DB
crlutil -G -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170806235530Z
nextupdate=20180806235530Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Sun Aug 06 23:55:30 2017
    Next Update: Mon Aug 06 23:55:30 2018
    CRL Extensions:
chains.sh: #2618: OCSPD: Create CRL for OCSPCA1DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170806235531Z
addcert 2 20170806235531Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Sun Aug 06 23:55:31 2017
    Next Update: Mon Aug 06 23:55:30 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sun Aug 06 23:55:31 2017
    CRL Extensions:
chains.sh: #2619: OCSPD: Revoking certificate with SN 2 issued by OCSPCA1  - PASSED
chains.sh: Revoking certificate with SN 4 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170806235532Z
addcert 4 20170806235532Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Sun Aug 06 23:55:32 2017
    Next Update: Mon Aug 06 23:55:30 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sun Aug 06 23:55:31 2017
    Entry 2 (0x2):
        Serial Number: 4 (0x4)
        Revocation Date: Sun Aug 06 23:55:32 2017
    CRL Extensions:
chains.sh: #2620: OCSPD: Revoking certificate with SN 4 issued by OCSPCA1  - PASSED
chains.sh: Create CRL for OCSPCA2DB
crlutil -G -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170806235532Z
nextupdate=20180806235532Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Sun Aug 06 23:55:32 2017
    Next Update: Mon Aug 06 23:55:32 2018
    CRL Extensions:
chains.sh: #2621: OCSPD: Create CRL for OCSPCA2DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170806235533Z
addcert 2 20170806235533Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Sun Aug 06 23:55:33 2017
    Next Update: Mon Aug 06 23:55:32 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sun Aug 06 23:55:33 2017
    CRL Extensions:
chains.sh: #2622: OCSPD: Revoking certificate with SN 2 issued by OCSPCA2  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170806235534Z
addcert 3 20170806235534Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Sun Aug 06 23:55:34 2017
    Next Update: Mon Aug 06 23:55:32 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sun Aug 06 23:55:33 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Sun Aug 06 23:55:34 2017
    CRL Extensions:
chains.sh: #2623: OCSPD: Revoking certificate with SN 3 issued by OCSPCA2  - PASSED
chains.sh: Create CRL for OCSPCA3DB
crlutil -G -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170806235534Z
nextupdate=20180806235534Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Sun Aug 06 23:55:34 2017
    Next Update: Mon Aug 06 23:55:34 2018
    CRL Extensions:
chains.sh: #2624: OCSPD: Create CRL for OCSPCA3DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170806235535Z
addcert 2 20170806235535Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Sun Aug 06 23:55:35 2017
    Next Update: Mon Aug 06 23:55:34 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sun Aug 06 23:55:35 2017
    CRL Extensions:
chains.sh: #2625: OCSPD: Revoking certificate with SN 2 issued by OCSPCA3  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170806235536Z
addcert 3 20170806235536Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Sun Aug 06 23:55:36 2017
    Next Update: Mon Aug 06 23:55:34 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sun Aug 06 23:55:35 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Sun Aug 06 23:55:36 2017
    CRL Extensions:
chains.sh: #2626: OCSPD: Revoking certificate with SN 3 issued by OCSPCA3  - PASSED
chains.sh: Creating DB ServerDB
certutil -N -d ServerDB -f ServerDB/dbpasswd
chains.sh: #2627: OCSPD: Creating DB ServerDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ServerDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.der
chains.sh: #2628: OCSPD: Importing certificate OCSPRoot.der to ServerDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ServerDB database
crlutil -I -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.crl
chains.sh: #2629: OCSPD: Importing CRL OCSPRoot.crl to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPRoot.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPRoot.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #2630: OCSPD: Importing p12 key OCSPRoot.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA1.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA1.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #2631: OCSPD: Importing p12 key OCSPCA1.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA2.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA2.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #2632: OCSPD: Importing p12 key OCSPCA2.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA3.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA3.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #2633: OCSPD: Importing p12 key OCSPCA3.p12 to ServerDB database  - PASSED
chains.sh: Creating DB ClientDB
certutil -N -d ClientDB -f ClientDB/dbpasswd
chains.sh: #2634: OCSPD: Creating DB ClientDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ClientDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.der
chains.sh: #2635: OCSPD: Importing certificate OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ClientDB database
crlutil -I -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.crl
chains.sh: #2636: OCSPD: Importing CRL OCSPRoot.crl to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA1OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA1OCSPRoot.der
chains.sh: #2637: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA2OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA2OCSPRoot.der
chains.sh: #2638: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA3OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA3OCSPRoot.der
chains.sh: #2639: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE11OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE11OCSPCA1.der
chains.sh: #2640: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE12OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE12OCSPCA1.der
chains.sh: #2641: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE13OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE13OCSPCA1.der
chains.sh: #2642: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE14OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE14OCSPCA1.der
chains.sh: #2643: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE15OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE15OCSPCA1.der
chains.sh: #2644: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE21OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE21OCSPCA2.der
chains.sh: #2645: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE22OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE22OCSPCA2.der
chains.sh: #2646: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE23OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE23OCSPCA2.der
chains.sh: #2647: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE31OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE31OCSPCA3.der
chains.sh: #2648: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE32OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE32OCSPCA3.der
chains.sh: #2649: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE33OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE33OCSPCA3.der
chains.sh: #2650: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database  - PASSED
httpserv starting at Sun Aug  6 23:55:36 UTC 2017
httpserv -D -p 9019  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA3.crl \
         -O get -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/aiahttp/http_pid.8843  &
trying to connect to httpserv at Sun Aug  6 23:55:36 UTC 2017
tstclnt -p 9019 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9019 (address=::1)
tstclnt: exiting with return code 0
kill -0 17142 >/dev/null 2>/dev/null
httpserv with PID 17142 found at Sun Aug  6 23:55:36 UTC 2017
httpserv with PID 17142 started at Sun Aug  6 23:55:36 UTC 2017
tstclnt -h localhost.localdomain -p 9019 -q -t 20
chains.sh: #2651: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235527 (0x300e2d87)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:26 2017
            Not After : Sat Aug 06 23:55:26 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:0c:0e:e0:b3:ee:22:a7:46:d6:39:d2:d6:1e:bc:67:
                    32:f5:a0:76:ce:45:1b:c0:43:65:ca:50:59:c6:44:fb:
                    56:70:d4:87:aa:9b:a1:b3:55:aa:3f:b7:cf:14:a2:5a:
                    5c:b7:de:da:a8:42:95:1a:56:4b:4a:0e:6b:8b:c6:77:
                    a2:96:5b:66:86:3c:72:3b:bf:b5:f3:a6:fe:da:3e:58:
                    af:5c:ad:38:82:54:1d:20:23:e1:45:b2:10:dd:b4:22:
                    f0:51:58:63:4c:11:7a:af:12:39:e6:4d:d9:59:04:99:
                    20:81:c4:93:3c:ad:f7:cb:ff:10:23:d4:7a:5d:95:59:
                    be:ba:40:86:45:1b:af:86:45:3c:14:17:6f:97:4c:85:
                    e5:cd:15:42:4b:4b:b2:dc:3a:16:e7:f4:7a:02:de:55:
                    cc:af:c1:80:46:38:3f:b5:03:d4:f1:78:8b:a0:80:b0:
                    58:30:74:5e:e1:7c:32:11:ed:8d:7d:54:45:43:cb:9d:
                    57:62:3c:75:e1:0c:8e:82:21:1a:6f:14:2b:4a:1f:da:
                    04:87:7b:98:7d:6c:4d:db:4d:97:43:ae:b4:49:45:b1:
                    3c:0e:2b:68:d9:7d:de:c8:ed:c1:e0:98:1d:de:d6:66:
                    a3:30:7f:2f:be:59:1b:f7:49:0a:4e:de:ae:04:3f:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        34:c8:3a:2e:c4:46:76:5d:1b:e4:53:20:7a:15:3c:7a:
        b8:b3:21:2b:06:c9:b4:1a:6e:8f:1a:20:a2:d0:74:c9:
        09:8d:b6:33:aa:2d:fb:25:1c:ca:ca:41:d9:de:f8:01:
        9f:ee:5b:dc:d2:19:c1:d6:bc:9a:b0:1e:93:8e:df:c7:
        bd:ff:bb:9b:11:e5:59:66:31:44:14:6f:2b:61:66:de:
        b2:c7:ac:4d:9d:ed:bc:e2:df:32:6a:ea:50:59:14:6d:
        ba:a1:ab:fd:50:fd:e5:ad:85:53:4d:ba:9d:6a:79:6d:
        b4:30:bf:df:8a:a5:a5:d2:1e:44:cc:88:73:40:0e:ad:
        2e:b9:08:11:78:de:d0:4e:cb:ae:1d:fa:71:52:0f:b3:
        80:f2:5d:5d:b3:04:36:59:c4:7a:92:8d:27:df:42:b4:
        a7:71:f4:77:0b:22:0f:d5:6f:7b:93:09:c6:0f:a8:5f:
        a7:c6:31:5e:27:24:bd:18:ce:5b:35:8d:79:d5:66:d0:
        da:80:3a:53:53:87:01:d8:94:08:b0:7d:0d:f9:f3:c4:
        3c:5b:12:05:0e:82:d9:26:e9:7b:a5:1c:9e:68:f5:3f:
        e5:47:eb:67:ee:1b:e8:ac:32:f6:c0:67:26:c6:aa:04:
        41:ca:88:8c:d8:30:52:62:39:cb:21:2b:86:bf:e3:ee
    Fingerprint (SHA-256):
        71:20:8B:D4:CD:EA:8D:E5:C7:D1:0A:04:02:2E:84:99:24:05:54:D8:7D:C9:0D:EB:C8:C5:02:EF:33:4D:33:47
    Fingerprint (SHA1):
        E3:C2:B1:E1:03:1E:2D:8B:3E:B1:70:FB:BC:01:98:59:5B:E1:C1:C1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2652: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #2653: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #2654: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 17142 at Sun Aug  6 23:55:36 UTC 2017
kill -USR1 17142
httpserv: normal termination
httpserv -b -p 9019 2>/dev/null;
httpserv with PID 17142 killed at Sun Aug  6 23:55:36 UTC 2017
httpserv starting at Sun Aug  6 23:55:36 UTC 2017
httpserv -D -p 9019  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA3.crl \
         -O post -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/aiahttp/http_pid.8843  &
trying to connect to httpserv at Sun Aug  6 23:55:36 UTC 2017
tstclnt -p 9019 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9019 (address=::1)
tstclnt: exiting with return code 0
kill -0 17311 >/dev/null 2>/dev/null
httpserv with PID 17311 found at Sun Aug  6 23:55:36 UTC 2017
httpserv with PID 17311 started at Sun Aug  6 23:55:36 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #2655: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. OCSPEE12OCSPCA1 :
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #2656: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #2657: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
tstclnt -h localhost.localdomain -p 9019 -q -t 20
chains.sh: #2658: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235527 (0x300e2d87)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:26 2017
            Not After : Sat Aug 06 23:55:26 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:0c:0e:e0:b3:ee:22:a7:46:d6:39:d2:d6:1e:bc:67:
                    32:f5:a0:76:ce:45:1b:c0:43:65:ca:50:59:c6:44:fb:
                    56:70:d4:87:aa:9b:a1:b3:55:aa:3f:b7:cf:14:a2:5a:
                    5c:b7:de:da:a8:42:95:1a:56:4b:4a:0e:6b:8b:c6:77:
                    a2:96:5b:66:86:3c:72:3b:bf:b5:f3:a6:fe:da:3e:58:
                    af:5c:ad:38:82:54:1d:20:23:e1:45:b2:10:dd:b4:22:
                    f0:51:58:63:4c:11:7a:af:12:39:e6:4d:d9:59:04:99:
                    20:81:c4:93:3c:ad:f7:cb:ff:10:23:d4:7a:5d:95:59:
                    be:ba:40:86:45:1b:af:86:45:3c:14:17:6f:97:4c:85:
                    e5:cd:15:42:4b:4b:b2:dc:3a:16:e7:f4:7a:02:de:55:
                    cc:af:c1:80:46:38:3f:b5:03:d4:f1:78:8b:a0:80:b0:
                    58:30:74:5e:e1:7c:32:11:ed:8d:7d:54:45:43:cb:9d:
                    57:62:3c:75:e1:0c:8e:82:21:1a:6f:14:2b:4a:1f:da:
                    04:87:7b:98:7d:6c:4d:db:4d:97:43:ae:b4:49:45:b1:
                    3c:0e:2b:68:d9:7d:de:c8:ed:c1:e0:98:1d:de:d6:66:
                    a3:30:7f:2f:be:59:1b:f7:49:0a:4e:de:ae:04:3f:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        34:c8:3a:2e:c4:46:76:5d:1b:e4:53:20:7a:15:3c:7a:
        b8:b3:21:2b:06:c9:b4:1a:6e:8f:1a:20:a2:d0:74:c9:
        09:8d:b6:33:aa:2d:fb:25:1c:ca:ca:41:d9:de:f8:01:
        9f:ee:5b:dc:d2:19:c1:d6:bc:9a:b0:1e:93:8e:df:c7:
        bd:ff:bb:9b:11:e5:59:66:31:44:14:6f:2b:61:66:de:
        b2:c7:ac:4d:9d:ed:bc:e2:df:32:6a:ea:50:59:14:6d:
        ba:a1:ab:fd:50:fd:e5:ad:85:53:4d:ba:9d:6a:79:6d:
        b4:30:bf:df:8a:a5:a5:d2:1e:44:cc:88:73:40:0e:ad:
        2e:b9:08:11:78:de:d0:4e:cb:ae:1d:fa:71:52:0f:b3:
        80:f2:5d:5d:b3:04:36:59:c4:7a:92:8d:27:df:42:b4:
        a7:71:f4:77:0b:22:0f:d5:6f:7b:93:09:c6:0f:a8:5f:
        a7:c6:31:5e:27:24:bd:18:ce:5b:35:8d:79:d5:66:d0:
        da:80:3a:53:53:87:01:d8:94:08:b0:7d:0d:f9:f3:c4:
        3c:5b:12:05:0e:82:d9:26:e9:7b:a5:1c:9e:68:f5:3f:
        e5:47:eb:67:ee:1b:e8:ac:32:f6:c0:67:26:c6:aa:04:
        41:ca:88:8c:d8:30:52:62:39:cb:21:2b:86:bf:e3:ee
    Fingerprint (SHA-256):
        71:20:8B:D4:CD:EA:8D:E5:C7:D1:0A:04:02:2E:84:99:24:05:54:D8:7D:C9:0D:EB:C8:C5:02:EF:33:4D:33:47
    Fingerprint (SHA1):
        E3:C2:B1:E1:03:1E:2D:8B:3E:B1:70:FB:BC:01:98:59:5B:E1:C1:C1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2659: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #2660: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #2661: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 17311 at Sun Aug  6 23:55:37 UTC 2017
kill -USR1 17311
httpserv: normal termination
httpserv -b -p 9019 2>/dev/null;
httpserv with PID 17311 killed at Sun Aug  6 23:55:37 UTC 2017
httpserv starting at Sun Aug  6 23:55:37 UTC 2017
httpserv -D -p 9019  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA3.crl \
         -O random -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/aiahttp/http_pid.8843  &
trying to connect to httpserv at Sun Aug  6 23:55:37 UTC 2017
tstclnt -p 9019 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9019 (address=::1)
tstclnt: exiting with return code 0
kill -0 17559 >/dev/null 2>/dev/null
httpserv with PID 17559 found at Sun Aug  6 23:55:37 UTC 2017
httpserv with PID 17559 started at Sun Aug  6 23:55:37 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #2662: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #2663: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235528 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2664: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #2665: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #2666: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235529 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2667: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #2668: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #2669: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2670: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 806235530 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2671: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2672: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 806235531 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2673: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2674: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #2675: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #2676: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2677: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 806235532   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2678: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2679: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2680: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #2681: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #2682: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235529 (0x300e2d89)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:37 2017
            Not After : Sat Aug 06 23:55:37 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:c1:33:05:67:5c:79:9f:7f:db:4e:58:74:26:62:2e:
                    e5:cc:b8:b9:79:22:18:c8:5b:db:ed:77:1c:70:84:cc:
                    d4:84:2f:42:42:8a:b7:55:5a:dc:64:91:a0:aa:77:dd:
                    7b:96:28:d7:91:21:40:3a:cc:f1:0e:bb:c9:17:9b:17:
                    1e:cf:8e:72:ce:9e:ce:ab:d4:72:89:38:15:2b:27:11:
                    c4:f5:6e:d2:75:07:5b:13:5f:40:f4:d5:64:d9:f8:c0:
                    26:af:1c:49:42:48:9f:ab:39:a5:1a:f5:b7:8c:a6:f4:
                    b8:fb:cd:de:12:cd:4c:5e:ba:9b:19:55:44:9f:01:9f:
                    69:0a:d1:79:09:b8:c2:5f:50:d3:d0:f7:d0:79:3e:1e:
                    37:2d:5a:c4:90:6d:33:3a:01:7b:9e:d9:62:d1:51:ae:
                    96:33:f5:40:3a:16:59:8a:0b:90:98:af:24:b5:98:53:
                    0d:ba:4d:41:c5:dc:03:e5:82:60:e6:9f:9c:9e:fa:ab:
                    f3:13:58:c0:4f:50:35:ca:83:e9:7f:70:44:df:8f:9b:
                    80:a3:70:26:e3:82:8d:0d:a5:56:12:a3:1c:1a:9a:fb:
                    a7:8c:d5:8e:48:44:1b:b3:db:a8:4e:8d:44:41:42:23:
                    24:51:a5:f3:f2:8d:d2:c6:b7:c9:8f:74:9d:19:a6:f3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        65:fd:d7:dd:6f:6d:a8:f3:8c:e8:82:5a:f2:0f:9d:27:
        df:1d:b3:1d:c6:e8:5c:48:c4:9a:00:27:bf:58:80:df:
        e1:43:09:3d:93:af:b0:d9:85:52:b4:82:aa:eb:d2:d5:
        1d:39:e4:4d:a1:f8:88:a2:b0:59:2c:0d:41:8c:ef:ae:
        31:24:4d:8b:e2:e3:bb:41:1d:47:33:36:fc:77:cc:64:
        9c:0f:01:5f:b0:8f:28:73:ba:86:1c:cc:e6:78:b2:a2:
        0a:6f:84:1c:23:f7:91:c0:08:01:f1:7b:39:77:7a:38:
        ee:0f:88:28:27:18:6b:fd:7f:36:cf:af:98:70:32:d4:
        8c:f8:83:e4:f2:7a:e3:f4:04:37:a3:2d:a3:59:b9:3b:
        ef:6a:a5:55:72:e7:f5:fe:cd:14:92:f5:c7:3f:d1:31:
        fa:6a:1b:02:14:d3:94:d9:77:5e:35:9e:0a:67:d2:7e:
        e7:cf:10:6b:00:f1:10:44:9b:12:10:a3:52:25:fe:26:
        7f:4b:ce:54:a2:b0:d5:21:97:e9:0b:24:34:0e:3d:e0:
        73:e2:6c:cc:0a:50:37:e9:51:b8:04:e2:71:37:c0:f7:
        00:e5:9b:db:48:de:98:a6:5d:cf:4d:41:2e:bf:49:3b:
        3c:37:e8:df:fd:03:d3:12:3e:e7:e7:18:51:6b:04:cb
    Fingerprint (SHA-256):
        20:C9:7F:D4:DD:84:9D:6C:AC:63:C0:A3:BD:C0:F5:7E:25:5A:32:25:2E:DD:64:C9:B4:60:EF:3F:8B:6C:76:44
    Fingerprint (SHA1):
        C5:7B:07:E7:38:8D:5C:89:C8:31:12:EB:29:C0:B7:96:21:3C:0E:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2683: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235528 (0x300e2d88)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:37 2017
            Not After : Sat Aug 06 23:55:37 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:95:bf:62:98:10:cf:a2:f1:60:9c:a3:8b:56:b0:12:
                    0f:6f:53:09:a2:8c:7a:a4:68:9a:af:6e:ac:ac:52:b6:
                    86:f0:aa:25:fe:e7:5c:87:ca:4e:d9:58:e0:c2:3c:00:
                    43:60:01:fd:fe:70:de:a2:a2:b0:e7:39:5d:9b:bb:84:
                    f1:f4:14:9d:fb:92:cb:27:5c:40:68:d9:c4:91:02:58:
                    1b:d3:6c:2f:8c:6f:7e:07:8a:a1:a1:15:9f:29:c5:d9:
                    e3:e0:60:d1:db:08:2c:36:53:fd:39:5b:a0:31:16:7c:
                    37:2f:09:c8:ef:0f:44:d2:b6:a6:0a:af:b1:48:cd:f9:
                    c6:5d:aa:0a:4f:5a:74:cc:50:be:50:b8:06:40:37:0c:
                    1e:b1:42:82:79:58:93:90:bb:92:40:68:78:9f:db:2d:
                    3a:5e:fc:b0:71:62:21:96:72:67:66:21:5e:3e:96:d0:
                    c2:1c:6f:97:c2:69:6f:9d:fa:51:97:8b:84:f4:37:ae:
                    fb:6a:0b:ae:1b:ae:77:d1:38:13:b8:08:98:09:0d:7d:
                    20:03:19:58:b6:92:f5:ed:69:39:6c:ef:23:d4:79:1e:
                    9c:42:5c:5e:a1:e7:39:19:26:80:a1:67:c5:dd:f7:78:
                    2d:9a:70:8c:1f:51:10:a7:42:0f:7d:43:74:1f:40:a5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:91:3c:e6:5e:00:c3:31:2f:4a:0e:7a:5c:b6:f6:f8:
        f0:53:84:ac:5a:4b:f3:e7:5a:a8:8c:4f:98:d9:ec:24:
        47:96:ae:57:40:6f:d3:37:e1:3e:3a:4f:a9:aa:1f:0a:
        64:0f:e0:0d:df:f5:c2:ce:23:b9:c1:a6:77:12:9c:38:
        fe:c1:69:15:70:5b:2f:b0:05:c8:1c:c9:3e:93:cb:3c:
        a0:65:e6:b8:6f:2a:ca:70:81:8c:1d:ec:59:af:ab:ff:
        87:0f:32:9e:8e:f6:2d:a4:9b:89:68:5e:a3:d6:92:58:
        4c:19:3e:6c:cf:e4:9f:47:fb:64:8c:02:da:0e:d3:f1:
        dc:3b:07:72:e3:f6:c9:51:08:ba:ab:1a:39:ea:4a:a0:
        3b:21:8f:fd:82:c7:5f:2d:38:74:d2:2c:72:5d:67:48:
        ee:d6:9c:0a:cd:29:05:8c:49:8b:17:78:20:7f:a5:5c:
        26:b0:6f:d1:fc:26:71:c4:50:b7:7a:35:28:21:7a:3b:
        1f:96:45:ec:da:4f:2a:ca:99:1f:11:e0:c7:1d:20:b5:
        29:e6:c9:40:84:c4:96:a2:f8:14:2d:b4:40:f0:f3:54:
        c5:72:66:e4:72:e8:a2:eb:a0:68:59:02:f8:d6:34:de:
        6d:1a:a9:32:0a:e8:fa:7f:78:7f:3a:5e:5a:b4:97:d6
    Fingerprint (SHA-256):
        E9:BA:D5:F8:03:60:7D:61:89:BF:94:9C:FA:B6:24:C8:3D:97:52:13:B7:ED:CE:DA:9B:9C:65:E2:D7:73:CA:C4
    Fingerprint (SHA1):
        AA:5B:39:E6:8F:60:E6:21:DE:B7:CF:7C:7F:70:7B:36:78:AC:32:17
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2684: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #2685: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #2686: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #2687: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235528 (0x300e2d88)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:37 2017
            Not After : Sat Aug 06 23:55:37 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:95:bf:62:98:10:cf:a2:f1:60:9c:a3:8b:56:b0:12:
                    0f:6f:53:09:a2:8c:7a:a4:68:9a:af:6e:ac:ac:52:b6:
                    86:f0:aa:25:fe:e7:5c:87:ca:4e:d9:58:e0:c2:3c:00:
                    43:60:01:fd:fe:70:de:a2:a2:b0:e7:39:5d:9b:bb:84:
                    f1:f4:14:9d:fb:92:cb:27:5c:40:68:d9:c4:91:02:58:
                    1b:d3:6c:2f:8c:6f:7e:07:8a:a1:a1:15:9f:29:c5:d9:
                    e3:e0:60:d1:db:08:2c:36:53:fd:39:5b:a0:31:16:7c:
                    37:2f:09:c8:ef:0f:44:d2:b6:a6:0a:af:b1:48:cd:f9:
                    c6:5d:aa:0a:4f:5a:74:cc:50:be:50:b8:06:40:37:0c:
                    1e:b1:42:82:79:58:93:90:bb:92:40:68:78:9f:db:2d:
                    3a:5e:fc:b0:71:62:21:96:72:67:66:21:5e:3e:96:d0:
                    c2:1c:6f:97:c2:69:6f:9d:fa:51:97:8b:84:f4:37:ae:
                    fb:6a:0b:ae:1b:ae:77:d1:38:13:b8:08:98:09:0d:7d:
                    20:03:19:58:b6:92:f5:ed:69:39:6c:ef:23:d4:79:1e:
                    9c:42:5c:5e:a1:e7:39:19:26:80:a1:67:c5:dd:f7:78:
                    2d:9a:70:8c:1f:51:10:a7:42:0f:7d:43:74:1f:40:a5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:91:3c:e6:5e:00:c3:31:2f:4a:0e:7a:5c:b6:f6:f8:
        f0:53:84:ac:5a:4b:f3:e7:5a:a8:8c:4f:98:d9:ec:24:
        47:96:ae:57:40:6f:d3:37:e1:3e:3a:4f:a9:aa:1f:0a:
        64:0f:e0:0d:df:f5:c2:ce:23:b9:c1:a6:77:12:9c:38:
        fe:c1:69:15:70:5b:2f:b0:05:c8:1c:c9:3e:93:cb:3c:
        a0:65:e6:b8:6f:2a:ca:70:81:8c:1d:ec:59:af:ab:ff:
        87:0f:32:9e:8e:f6:2d:a4:9b:89:68:5e:a3:d6:92:58:
        4c:19:3e:6c:cf:e4:9f:47:fb:64:8c:02:da:0e:d3:f1:
        dc:3b:07:72:e3:f6:c9:51:08:ba:ab:1a:39:ea:4a:a0:
        3b:21:8f:fd:82:c7:5f:2d:38:74:d2:2c:72:5d:67:48:
        ee:d6:9c:0a:cd:29:05:8c:49:8b:17:78:20:7f:a5:5c:
        26:b0:6f:d1:fc:26:71:c4:50:b7:7a:35:28:21:7a:3b:
        1f:96:45:ec:da:4f:2a:ca:99:1f:11:e0:c7:1d:20:b5:
        29:e6:c9:40:84:c4:96:a2:f8:14:2d:b4:40:f0:f3:54:
        c5:72:66:e4:72:e8:a2:eb:a0:68:59:02:f8:d6:34:de:
        6d:1a:a9:32:0a:e8:fa:7f:78:7f:3a:5e:5a:b4:97:d6
    Fingerprint (SHA-256):
        E9:BA:D5:F8:03:60:7D:61:89:BF:94:9C:FA:B6:24:C8:3D:97:52:13:B7:ED:CE:DA:9B:9C:65:E2:D7:73:CA:C4
    Fingerprint (SHA1):
        AA:5B:39:E6:8F:60:E6:21:DE:B7:CF:7C:7F:70:7B:36:78:AC:32:17
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2688: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235529 (0x300e2d89)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:37 2017
            Not After : Sat Aug 06 23:55:37 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:c1:33:05:67:5c:79:9f:7f:db:4e:58:74:26:62:2e:
                    e5:cc:b8:b9:79:22:18:c8:5b:db:ed:77:1c:70:84:cc:
                    d4:84:2f:42:42:8a:b7:55:5a:dc:64:91:a0:aa:77:dd:
                    7b:96:28:d7:91:21:40:3a:cc:f1:0e:bb:c9:17:9b:17:
                    1e:cf:8e:72:ce:9e:ce:ab:d4:72:89:38:15:2b:27:11:
                    c4:f5:6e:d2:75:07:5b:13:5f:40:f4:d5:64:d9:f8:c0:
                    26:af:1c:49:42:48:9f:ab:39:a5:1a:f5:b7:8c:a6:f4:
                    b8:fb:cd:de:12:cd:4c:5e:ba:9b:19:55:44:9f:01:9f:
                    69:0a:d1:79:09:b8:c2:5f:50:d3:d0:f7:d0:79:3e:1e:
                    37:2d:5a:c4:90:6d:33:3a:01:7b:9e:d9:62:d1:51:ae:
                    96:33:f5:40:3a:16:59:8a:0b:90:98:af:24:b5:98:53:
                    0d:ba:4d:41:c5:dc:03:e5:82:60:e6:9f:9c:9e:fa:ab:
                    f3:13:58:c0:4f:50:35:ca:83:e9:7f:70:44:df:8f:9b:
                    80:a3:70:26:e3:82:8d:0d:a5:56:12:a3:1c:1a:9a:fb:
                    a7:8c:d5:8e:48:44:1b:b3:db:a8:4e:8d:44:41:42:23:
                    24:51:a5:f3:f2:8d:d2:c6:b7:c9:8f:74:9d:19:a6:f3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        65:fd:d7:dd:6f:6d:a8:f3:8c:e8:82:5a:f2:0f:9d:27:
        df:1d:b3:1d:c6:e8:5c:48:c4:9a:00:27:bf:58:80:df:
        e1:43:09:3d:93:af:b0:d9:85:52:b4:82:aa:eb:d2:d5:
        1d:39:e4:4d:a1:f8:88:a2:b0:59:2c:0d:41:8c:ef:ae:
        31:24:4d:8b:e2:e3:bb:41:1d:47:33:36:fc:77:cc:64:
        9c:0f:01:5f:b0:8f:28:73:ba:86:1c:cc:e6:78:b2:a2:
        0a:6f:84:1c:23:f7:91:c0:08:01:f1:7b:39:77:7a:38:
        ee:0f:88:28:27:18:6b:fd:7f:36:cf:af:98:70:32:d4:
        8c:f8:83:e4:f2:7a:e3:f4:04:37:a3:2d:a3:59:b9:3b:
        ef:6a:a5:55:72:e7:f5:fe:cd:14:92:f5:c7:3f:d1:31:
        fa:6a:1b:02:14:d3:94:d9:77:5e:35:9e:0a:67:d2:7e:
        e7:cf:10:6b:00:f1:10:44:9b:12:10:a3:52:25:fe:26:
        7f:4b:ce:54:a2:b0:d5:21:97:e9:0b:24:34:0e:3d:e0:
        73:e2:6c:cc:0a:50:37:e9:51:b8:04:e2:71:37:c0:f7:
        00:e5:9b:db:48:de:98:a6:5d:cf:4d:41:2e:bf:49:3b:
        3c:37:e8:df:fd:03:d3:12:3e:e7:e7:18:51:6b:04:cb
    Fingerprint (SHA-256):
        20:C9:7F:D4:DD:84:9D:6C:AC:63:C0:A3:BD:C0:F5:7E:25:5A:32:25:2E:DD:64:C9:B4:60:EF:3F:8B:6C:76:44
    Fingerprint (SHA1):
        C5:7B:07:E7:38:8D:5C:89:C8:31:12:EB:29:C0:B7:96:21:3C:0E:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2689: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #2690: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #2691: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #2692: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #2693: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #2694: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235529 (0x300e2d89)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:37 2017
            Not After : Sat Aug 06 23:55:37 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:c1:33:05:67:5c:79:9f:7f:db:4e:58:74:26:62:2e:
                    e5:cc:b8:b9:79:22:18:c8:5b:db:ed:77:1c:70:84:cc:
                    d4:84:2f:42:42:8a:b7:55:5a:dc:64:91:a0:aa:77:dd:
                    7b:96:28:d7:91:21:40:3a:cc:f1:0e:bb:c9:17:9b:17:
                    1e:cf:8e:72:ce:9e:ce:ab:d4:72:89:38:15:2b:27:11:
                    c4:f5:6e:d2:75:07:5b:13:5f:40:f4:d5:64:d9:f8:c0:
                    26:af:1c:49:42:48:9f:ab:39:a5:1a:f5:b7:8c:a6:f4:
                    b8:fb:cd:de:12:cd:4c:5e:ba:9b:19:55:44:9f:01:9f:
                    69:0a:d1:79:09:b8:c2:5f:50:d3:d0:f7:d0:79:3e:1e:
                    37:2d:5a:c4:90:6d:33:3a:01:7b:9e:d9:62:d1:51:ae:
                    96:33:f5:40:3a:16:59:8a:0b:90:98:af:24:b5:98:53:
                    0d:ba:4d:41:c5:dc:03:e5:82:60:e6:9f:9c:9e:fa:ab:
                    f3:13:58:c0:4f:50:35:ca:83:e9:7f:70:44:df:8f:9b:
                    80:a3:70:26:e3:82:8d:0d:a5:56:12:a3:1c:1a:9a:fb:
                    a7:8c:d5:8e:48:44:1b:b3:db:a8:4e:8d:44:41:42:23:
                    24:51:a5:f3:f2:8d:d2:c6:b7:c9:8f:74:9d:19:a6:f3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        65:fd:d7:dd:6f:6d:a8:f3:8c:e8:82:5a:f2:0f:9d:27:
        df:1d:b3:1d:c6:e8:5c:48:c4:9a:00:27:bf:58:80:df:
        e1:43:09:3d:93:af:b0:d9:85:52:b4:82:aa:eb:d2:d5:
        1d:39:e4:4d:a1:f8:88:a2:b0:59:2c:0d:41:8c:ef:ae:
        31:24:4d:8b:e2:e3:bb:41:1d:47:33:36:fc:77:cc:64:
        9c:0f:01:5f:b0:8f:28:73:ba:86:1c:cc:e6:78:b2:a2:
        0a:6f:84:1c:23:f7:91:c0:08:01:f1:7b:39:77:7a:38:
        ee:0f:88:28:27:18:6b:fd:7f:36:cf:af:98:70:32:d4:
        8c:f8:83:e4:f2:7a:e3:f4:04:37:a3:2d:a3:59:b9:3b:
        ef:6a:a5:55:72:e7:f5:fe:cd:14:92:f5:c7:3f:d1:31:
        fa:6a:1b:02:14:d3:94:d9:77:5e:35:9e:0a:67:d2:7e:
        e7:cf:10:6b:00:f1:10:44:9b:12:10:a3:52:25:fe:26:
        7f:4b:ce:54:a2:b0:d5:21:97:e9:0b:24:34:0e:3d:e0:
        73:e2:6c:cc:0a:50:37:e9:51:b8:04:e2:71:37:c0:f7:
        00:e5:9b:db:48:de:98:a6:5d:cf:4d:41:2e:bf:49:3b:
        3c:37:e8:df:fd:03:d3:12:3e:e7:e7:18:51:6b:04:cb
    Fingerprint (SHA-256):
        20:C9:7F:D4:DD:84:9D:6C:AC:63:C0:A3:BD:C0:F5:7E:25:5A:32:25:2E:DD:64:C9:B4:60:EF:3F:8B:6C:76:44
    Fingerprint (SHA1):
        C5:7B:07:E7:38:8D:5C:89:C8:31:12:EB:29:C0:B7:96:21:3C:0E:25
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2695: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235529 (0x300e2d89)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:37 2017
            Not After : Sat Aug 06 23:55:37 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:c1:33:05:67:5c:79:9f:7f:db:4e:58:74:26:62:2e:
                    e5:cc:b8:b9:79:22:18:c8:5b:db:ed:77:1c:70:84:cc:
                    d4:84:2f:42:42:8a:b7:55:5a:dc:64:91:a0:aa:77:dd:
                    7b:96:28:d7:91:21:40:3a:cc:f1:0e:bb:c9:17:9b:17:
                    1e:cf:8e:72:ce:9e:ce:ab:d4:72:89:38:15:2b:27:11:
                    c4:f5:6e:d2:75:07:5b:13:5f:40:f4:d5:64:d9:f8:c0:
                    26:af:1c:49:42:48:9f:ab:39:a5:1a:f5:b7:8c:a6:f4:
                    b8:fb:cd:de:12:cd:4c:5e:ba:9b:19:55:44:9f:01:9f:
                    69:0a:d1:79:09:b8:c2:5f:50:d3:d0:f7:d0:79:3e:1e:
                    37:2d:5a:c4:90:6d:33:3a:01:7b:9e:d9:62:d1:51:ae:
                    96:33:f5:40:3a:16:59:8a:0b:90:98:af:24:b5:98:53:
                    0d:ba:4d:41:c5:dc:03:e5:82:60:e6:9f:9c:9e:fa:ab:
                    f3:13:58:c0:4f:50:35:ca:83:e9:7f:70:44:df:8f:9b:
                    80:a3:70:26:e3:82:8d:0d:a5:56:12:a3:1c:1a:9a:fb:
                    a7:8c:d5:8e:48:44:1b:b3:db:a8:4e:8d:44:41:42:23:
                    24:51:a5:f3:f2:8d:d2:c6:b7:c9:8f:74:9d:19:a6:f3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        65:fd:d7:dd:6f:6d:a8:f3:8c:e8:82:5a:f2:0f:9d:27:
        df:1d:b3:1d:c6:e8:5c:48:c4:9a:00:27:bf:58:80:df:
        e1:43:09:3d:93:af:b0:d9:85:52:b4:82:aa:eb:d2:d5:
        1d:39:e4:4d:a1:f8:88:a2:b0:59:2c:0d:41:8c:ef:ae:
        31:24:4d:8b:e2:e3:bb:41:1d:47:33:36:fc:77:cc:64:
        9c:0f:01:5f:b0:8f:28:73:ba:86:1c:cc:e6:78:b2:a2:
        0a:6f:84:1c:23:f7:91:c0:08:01:f1:7b:39:77:7a:38:
        ee:0f:88:28:27:18:6b:fd:7f:36:cf:af:98:70:32:d4:
        8c:f8:83:e4:f2:7a:e3:f4:04:37:a3:2d:a3:59:b9:3b:
        ef:6a:a5:55:72:e7:f5:fe:cd:14:92:f5:c7:3f:d1:31:
        fa:6a:1b:02:14:d3:94:d9:77:5e:35:9e:0a:67:d2:7e:
        e7:cf:10:6b:00:f1:10:44:9b:12:10:a3:52:25:fe:26:
        7f:4b:ce:54:a2:b0:d5:21:97:e9:0b:24:34:0e:3d:e0:
        73:e2:6c:cc:0a:50:37:e9:51:b8:04:e2:71:37:c0:f7:
        00:e5:9b:db:48:de:98:a6:5d:cf:4d:41:2e:bf:49:3b:
        3c:37:e8:df:fd:03:d3:12:3e:e7:e7:18:51:6b:04:cb
    Fingerprint (SHA-256):
        20:C9:7F:D4:DD:84:9D:6C:AC:63:C0:A3:BD:C0:F5:7E:25:5A:32:25:2E:DD:64:C9:B4:60:EF:3F:8B:6C:76:44
    Fingerprint (SHA1):
        C5:7B:07:E7:38:8D:5C:89:C8:31:12:EB:29:C0:B7:96:21:3C:0E:25
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2696: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #2697: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #2698: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #2699: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #2700: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #2701: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235528 (0x300e2d88)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:37 2017
            Not After : Sat Aug 06 23:55:37 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:95:bf:62:98:10:cf:a2:f1:60:9c:a3:8b:56:b0:12:
                    0f:6f:53:09:a2:8c:7a:a4:68:9a:af:6e:ac:ac:52:b6:
                    86:f0:aa:25:fe:e7:5c:87:ca:4e:d9:58:e0:c2:3c:00:
                    43:60:01:fd:fe:70:de:a2:a2:b0:e7:39:5d:9b:bb:84:
                    f1:f4:14:9d:fb:92:cb:27:5c:40:68:d9:c4:91:02:58:
                    1b:d3:6c:2f:8c:6f:7e:07:8a:a1:a1:15:9f:29:c5:d9:
                    e3:e0:60:d1:db:08:2c:36:53:fd:39:5b:a0:31:16:7c:
                    37:2f:09:c8:ef:0f:44:d2:b6:a6:0a:af:b1:48:cd:f9:
                    c6:5d:aa:0a:4f:5a:74:cc:50:be:50:b8:06:40:37:0c:
                    1e:b1:42:82:79:58:93:90:bb:92:40:68:78:9f:db:2d:
                    3a:5e:fc:b0:71:62:21:96:72:67:66:21:5e:3e:96:d0:
                    c2:1c:6f:97:c2:69:6f:9d:fa:51:97:8b:84:f4:37:ae:
                    fb:6a:0b:ae:1b:ae:77:d1:38:13:b8:08:98:09:0d:7d:
                    20:03:19:58:b6:92:f5:ed:69:39:6c:ef:23:d4:79:1e:
                    9c:42:5c:5e:a1:e7:39:19:26:80:a1:67:c5:dd:f7:78:
                    2d:9a:70:8c:1f:51:10:a7:42:0f:7d:43:74:1f:40:a5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:91:3c:e6:5e:00:c3:31:2f:4a:0e:7a:5c:b6:f6:f8:
        f0:53:84:ac:5a:4b:f3:e7:5a:a8:8c:4f:98:d9:ec:24:
        47:96:ae:57:40:6f:d3:37:e1:3e:3a:4f:a9:aa:1f:0a:
        64:0f:e0:0d:df:f5:c2:ce:23:b9:c1:a6:77:12:9c:38:
        fe:c1:69:15:70:5b:2f:b0:05:c8:1c:c9:3e:93:cb:3c:
        a0:65:e6:b8:6f:2a:ca:70:81:8c:1d:ec:59:af:ab:ff:
        87:0f:32:9e:8e:f6:2d:a4:9b:89:68:5e:a3:d6:92:58:
        4c:19:3e:6c:cf:e4:9f:47:fb:64:8c:02:da:0e:d3:f1:
        dc:3b:07:72:e3:f6:c9:51:08:ba:ab:1a:39:ea:4a:a0:
        3b:21:8f:fd:82:c7:5f:2d:38:74:d2:2c:72:5d:67:48:
        ee:d6:9c:0a:cd:29:05:8c:49:8b:17:78:20:7f:a5:5c:
        26:b0:6f:d1:fc:26:71:c4:50:b7:7a:35:28:21:7a:3b:
        1f:96:45:ec:da:4f:2a:ca:99:1f:11:e0:c7:1d:20:b5:
        29:e6:c9:40:84:c4:96:a2:f8:14:2d:b4:40:f0:f3:54:
        c5:72:66:e4:72:e8:a2:eb:a0:68:59:02:f8:d6:34:de:
        6d:1a:a9:32:0a:e8:fa:7f:78:7f:3a:5e:5a:b4:97:d6
    Fingerprint (SHA-256):
        E9:BA:D5:F8:03:60:7D:61:89:BF:94:9C:FA:B6:24:C8:3D:97:52:13:B7:ED:CE:DA:9B:9C:65:E2:D7:73:CA:C4
    Fingerprint (SHA1):
        AA:5B:39:E6:8F:60:E6:21:DE:B7:CF:7C:7F:70:7B:36:78:AC:32:17
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2702: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235528 (0x300e2d88)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:37 2017
            Not After : Sat Aug 06 23:55:37 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:95:bf:62:98:10:cf:a2:f1:60:9c:a3:8b:56:b0:12:
                    0f:6f:53:09:a2:8c:7a:a4:68:9a:af:6e:ac:ac:52:b6:
                    86:f0:aa:25:fe:e7:5c:87:ca:4e:d9:58:e0:c2:3c:00:
                    43:60:01:fd:fe:70:de:a2:a2:b0:e7:39:5d:9b:bb:84:
                    f1:f4:14:9d:fb:92:cb:27:5c:40:68:d9:c4:91:02:58:
                    1b:d3:6c:2f:8c:6f:7e:07:8a:a1:a1:15:9f:29:c5:d9:
                    e3:e0:60:d1:db:08:2c:36:53:fd:39:5b:a0:31:16:7c:
                    37:2f:09:c8:ef:0f:44:d2:b6:a6:0a:af:b1:48:cd:f9:
                    c6:5d:aa:0a:4f:5a:74:cc:50:be:50:b8:06:40:37:0c:
                    1e:b1:42:82:79:58:93:90:bb:92:40:68:78:9f:db:2d:
                    3a:5e:fc:b0:71:62:21:96:72:67:66:21:5e:3e:96:d0:
                    c2:1c:6f:97:c2:69:6f:9d:fa:51:97:8b:84:f4:37:ae:
                    fb:6a:0b:ae:1b:ae:77:d1:38:13:b8:08:98:09:0d:7d:
                    20:03:19:58:b6:92:f5:ed:69:39:6c:ef:23:d4:79:1e:
                    9c:42:5c:5e:a1:e7:39:19:26:80:a1:67:c5:dd:f7:78:
                    2d:9a:70:8c:1f:51:10:a7:42:0f:7d:43:74:1f:40:a5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:91:3c:e6:5e:00:c3:31:2f:4a:0e:7a:5c:b6:f6:f8:
        f0:53:84:ac:5a:4b:f3:e7:5a:a8:8c:4f:98:d9:ec:24:
        47:96:ae:57:40:6f:d3:37:e1:3e:3a:4f:a9:aa:1f:0a:
        64:0f:e0:0d:df:f5:c2:ce:23:b9:c1:a6:77:12:9c:38:
        fe:c1:69:15:70:5b:2f:b0:05:c8:1c:c9:3e:93:cb:3c:
        a0:65:e6:b8:6f:2a:ca:70:81:8c:1d:ec:59:af:ab:ff:
        87:0f:32:9e:8e:f6:2d:a4:9b:89:68:5e:a3:d6:92:58:
        4c:19:3e:6c:cf:e4:9f:47:fb:64:8c:02:da:0e:d3:f1:
        dc:3b:07:72:e3:f6:c9:51:08:ba:ab:1a:39:ea:4a:a0:
        3b:21:8f:fd:82:c7:5f:2d:38:74:d2:2c:72:5d:67:48:
        ee:d6:9c:0a:cd:29:05:8c:49:8b:17:78:20:7f:a5:5c:
        26:b0:6f:d1:fc:26:71:c4:50:b7:7a:35:28:21:7a:3b:
        1f:96:45:ec:da:4f:2a:ca:99:1f:11:e0:c7:1d:20:b5:
        29:e6:c9:40:84:c4:96:a2:f8:14:2d:b4:40:f0:f3:54:
        c5:72:66:e4:72:e8:a2:eb:a0:68:59:02:f8:d6:34:de:
        6d:1a:a9:32:0a:e8:fa:7f:78:7f:3a:5e:5a:b4:97:d6
    Fingerprint (SHA-256):
        E9:BA:D5:F8:03:60:7D:61:89:BF:94:9C:FA:B6:24:C8:3D:97:52:13:B7:ED:CE:DA:9B:9C:65:E2:D7:73:CA:C4
    Fingerprint (SHA1):
        AA:5B:39:E6:8F:60:E6:21:DE:B7:CF:7C:7F:70:7B:36:78:AC:32:17
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2703: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #2704: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235533 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2705: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #2706: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #2707: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235534 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2708: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #2709: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #2710: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235535 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2711: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #2712: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #2713: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235536 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2714: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #2715: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #2716: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235537 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2717: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #2718: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #2719: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235538 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2720: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #2721: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #2722: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235539 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2723: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #2724: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #2725: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235540 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2726: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #2727: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #2728: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235541 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2729: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #2730: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #2731: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2732: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 806235542 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2733: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2734: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 806235543 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2735: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2736: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 806235544 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2737: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2738: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #2739: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #2740: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2741: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 806235545 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2742: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2743: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 806235546 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2744: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2745: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 806235547 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2746: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2747: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #2748: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #2749: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2750: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 806235548 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2751: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2752: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 806235549 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2753: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2754: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 806235550 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2755: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2756: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #2757: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #2758: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2759: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 806235551 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2760: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2761: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 806235552 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2762: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2763: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 806235553 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2764: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2765: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #2766: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2767: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2768: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 806235554   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2769: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2770: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #2771: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2772: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 806235555   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2773: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2774: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235533 (0x300e2d8d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:38 2017
            Not After : Sat Aug 06 23:55:38 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:56:29:89:98:41:b5:4c:78:42:c7:d9:8f:e0:09:51:
                    b2:23:e9:37:c1:c3:72:25:56:4e:09:bd:6d:47:2a:66:
                    fa:a5:75:0e:81:3f:79:82:11:8b:ed:c9:4b:d9:b4:fd:
                    7e:75:ca:53:11:54:30:27:ad:40:0e:ee:57:35:52:b0:
                    e6:90:5c:12:bd:7b:c3:ea:bd:d7:e4:ab:00:68:b4:45:
                    c3:ec:6f:77:26:c0:68:1c:73:cb:1e:1f:4b:5d:ee:28:
                    fe:e7:86:7f:93:84:b8:38:87:da:6e:61:b3:fd:ba:aa:
                    54:38:4e:60:aa:6d:e5:9e:95:97:1a:b6:79:3c:3d:49:
                    56:ea:1f:63:8a:13:65:d8:a3:3d:59:5c:99:0c:83:bc:
                    b5:61:85:30:21:be:e0:6f:e0:62:9a:b9:cf:bc:59:ff:
                    d2:dd:66:98:7e:d8:f1:19:31:db:02:41:a5:ca:0e:7c:
                    1e:a1:41:b1:c3:65:b0:86:21:e3:79:b3:44:2d:18:cb:
                    0a:f7:a1:79:ef:52:1a:01:00:2e:15:10:17:51:0e:f0:
                    80:5e:6a:d6:e6:a7:82:ad:64:01:18:8c:0f:f5:39:cb:
                    4b:20:fd:ec:da:4c:2f:a8:3b:5d:b2:dc:52:a3:98:58:
                    3a:4a:93:0d:05:b7:8d:df:18:03:58:1f:0a:30:1f:75
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9d:98:46:03:6c:a5:03:c8:b5:a0:11:96:9a:fb:52:59:
        f6:cf:0b:ad:f1:44:b9:ad:55:e1:8e:5c:68:e2:81:ba:
        07:99:e3:00:18:96:f4:5a:65:8d:32:ae:f3:c3:68:d7:
        bd:1a:85:4c:d8:07:01:c4:4c:3b:12:a9:3c:5f:12:16:
        66:d8:4b:e8:60:76:c8:a4:cc:d1:5c:61:c3:0a:f7:3f:
        a5:09:b7:4c:fa:1e:6e:56:31:b0:ed:25:e6:f7:32:eb:
        ea:b3:a7:15:b6:85:6d:ce:c1:fb:3d:f7:6c:96:82:56:
        ee:d0:a2:d6:40:77:51:25:7b:0d:20:f1:f1:87:f0:1c:
        40:c8:a0:83:9c:f8:1c:a8:48:e3:0a:4e:55:b0:a5:22:
        d9:ec:90:b5:cd:32:bb:60:c2:ba:d3:88:85:73:67:44:
        ad:d8:12:35:7c:f1:57:65:3e:5e:59:04:7f:56:9c:d6:
        ae:c5:26:95:2e:4b:92:d3:1a:87:7c:4a:b7:de:1e:6a:
        a4:69:ed:c8:d0:45:e9:cc:64:68:71:a7:a4:99:df:2f:
        50:39:38:26:a2:01:55:22:da:34:7a:93:45:72:bb:d0:
        8c:a7:dc:d9:27:b8:07:9f:75:81:4b:76:6a:38:df:1d:
        f5:7c:15:94:b5:c6:8b:8b:ce:ef:8d:20:14:af:ef:2a
    Fingerprint (SHA-256):
        F5:74:65:D0:E0:E4:FA:32:5F:6E:8B:16:49:5A:09:6D:F4:8B:52:42:68:AF:D5:EE:4A:2E:5E:64:13:1A:63:52
    Fingerprint (SHA1):
        C2:55:C9:2B:CA:79:F3:6E:C5:CD:AB:21:2F:6F:BF:37:25:99:D0:70
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #2775: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235534 (0x300e2d8e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:38 2017
            Not After : Sat Aug 06 23:55:38 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:3d:4e:75:12:52:ba:5f:08:17:09:72:ed:0a:be:4f:
                    55:0b:d7:3a:e7:be:1f:46:4e:5c:f7:61:38:85:54:ca:
                    28:05:42:6e:df:4c:c5:65:95:6a:34:e3:5d:5f:b9:71:
                    4b:79:bf:58:80:f3:86:dc:f7:88:d6:86:90:e8:00:7b:
                    e8:7d:1e:67:22:a6:29:fa:a6:d8:a0:22:8b:29:fa:50:
                    61:76:7f:4a:e1:2c:74:3f:51:1d:ab:44:21:a5:9e:69:
                    19:76:fd:87:19:ba:52:6c:2d:cc:0c:aa:10:93:c5:dd:
                    fb:0a:7a:a1:12:96:4f:21:38:66:ae:ef:98:0d:f7:18:
                    12:99:6d:9d:85:ee:46:0c:9f:af:68:8d:b0:bf:34:82:
                    76:e6:11:e1:36:d8:b5:38:97:0b:20:92:16:40:2d:de:
                    08:67:e1:68:8f:63:92:bf:33:88:2e:0e:a0:2c:53:c7:
                    6b:07:a5:ff:98:45:9d:26:71:36:bc:c9:f6:4e:52:21:
                    e0:ea:d6:a2:af:56:ac:b1:fb:b1:b8:aa:7c:f5:27:f9:
                    81:71:3d:db:1d:bf:4b:2e:3f:77:68:c0:6a:fb:fd:0b:
                    fe:bc:1a:fe:ad:1c:3b:a0:ff:0e:0e:fb:a6:0d:ab:46:
                    52:75:d4:fc:29:17:5b:e0:44:c0:9e:d8:18:32:70:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        05:34:4d:f4:67:3a:67:7d:78:a1:fc:75:fe:13:8e:63:
        dc:23:51:ae:9f:96:57:50:f9:7b:a9:84:db:2d:29:cf:
        40:fd:e6:ca:7e:89:9b:94:a0:90:87:c6:43:e1:d6:6f:
        7a:31:87:ab:35:86:e6:ce:56:91:d0:6a:89:ea:31:e4:
        35:40:b5:2e:92:68:a2:54:f1:a1:fd:b0:10:3f:44:be:
        9d:52:45:f9:3e:23:eb:b3:6f:a5:1f:40:bb:8a:7d:6f:
        34:15:bf:c6:2f:80:54:48:d8:3d:3b:0e:ae:ac:0a:0a:
        cf:8f:c4:77:af:fd:44:47:98:86:2c:a2:19:ce:2a:23:
        34:5e:4b:81:c9:96:99:39:94:c8:de:a4:00:92:ed:e3:
        ee:91:28:94:2d:36:8b:63:19:4a:0d:89:5b:c9:1b:2c:
        45:39:99:07:72:2d:ba:e4:bb:65:18:24:5a:07:a6:8a:
        eb:68:93:0c:e8:b5:ad:6d:95:0b:04:a3:2c:29:7a:eb:
        e2:34:47:c1:cd:8e:06:49:3f:31:cb:2d:28:7b:3c:92:
        26:71:47:c4:dc:0c:90:03:5d:61:b2:68:92:4f:4e:9b:
        27:4d:2e:be:23:d7:ae:ce:34:80:14:69:56:cf:a8:49:
        0c:cb:6b:b1:04:5e:8d:e3:05:3f:8e:1c:3f:5e:65:8e
    Fingerprint (SHA-256):
        0B:CF:70:FC:F4:13:8F:F4:A8:A6:6D:B9:65:2F:08:D5:99:2F:32:41:8E:54:C8:61:8B:1B:D3:2F:F8:C1:F2:E6
    Fingerprint (SHA1):
        AD:17:C4:01:E1:39:54:E1:C4:F3:17:50:69:F9:37:42:80:2F:A0:E4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #2776: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235535 (0x300e2d8f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:39 2017
            Not After : Sat Aug 06 23:55:39 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:c6:b4:dc:e5:ed:fc:6a:f4:1f:8c:fe:34:ba:66:74:
                    21:49:c6:f7:64:c4:22:5a:ca:6a:db:f9:7b:43:7e:a0:
                    75:bf:3c:bb:77:79:4b:79:86:23:46:50:84:d1:c0:e9:
                    d3:04:a9:f2:58:04:d2:94:52:8e:46:6a:a0:3e:ab:13:
                    fa:76:40:de:e7:a5:d6:32:ea:fb:d4:36:53:29:f0:cc:
                    b4:38:f1:a2:31:e7:72:c2:0b:b0:04:99:5e:5c:ee:fb:
                    e6:52:e0:b6:3f:46:30:30:16:28:16:d6:b4:d2:51:79:
                    94:9b:06:28:ff:ad:5c:5b:30:be:cb:17:cd:84:7e:8d:
                    6d:b5:85:89:6e:81:9e:e7:af:1d:e4:2c:2b:8d:9c:88:
                    44:ea:96:c9:86:a4:48:a2:95:25:ef:1c:4e:ae:7b:d7:
                    2d:7c:b9:36:5a:0b:b7:07:13:c1:d7:24:e7:9f:2d:95:
                    dc:19:00:f2:28:2e:86:c3:3a:fb:eb:16:b2:da:14:d4:
                    46:d5:45:6d:ea:15:47:b8:e5:ec:6a:7a:2c:fc:1e:5d:
                    56:0f:f7:75:39:75:f3:e4:c5:43:e7:22:43:10:cf:10:
                    a2:f8:8b:f0:b1:d7:4b:63:08:bb:6f:95:59:65:d1:b6:
                    96:77:0c:f2:4e:51:d1:5f:08:32:47:92:fc:25:1e:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        09:04:63:05:13:2e:ae:81:22:11:f4:7e:03:df:73:5e:
        af:25:74:b1:87:10:5d:cf:0c:28:e3:ba:d2:7d:74:4d:
        ad:47:ba:a5:2d:05:6e:62:1d:c1:0e:ad:02:ff:17:eb:
        07:4c:07:44:d6:1d:61:04:ed:3e:21:7f:41:23:ab:52:
        0e:00:45:be:1f:06:2d:1a:da:d1:1f:13:34:b2:1a:91:
        64:56:cf:ef:ff:b9:cc:51:c4:f0:6d:82:b6:16:df:9d:
        a7:aa:fb:c0:4f:ff:a7:69:a1:7d:bd:98:05:69:2c:12:
        c2:1a:e9:77:0d:f4:28:3f:1a:90:c7:74:c1:70:2d:cf:
        14:fc:24:f2:db:1d:29:26:11:d2:74:bf:73:e1:49:35:
        9f:35:57:8d:16:c1:e0:f4:da:99:51:c8:db:ab:20:29:
        d2:cb:43:64:68:31:40:06:a8:d0:2c:57:bc:fa:69:2a:
        7a:eb:c5:d1:77:72:05:3e:32:21:02:71:b4:64:10:40:
        c5:5c:a3:0a:3e:79:86:bd:83:0b:d5:8d:7e:a5:bc:fa:
        b6:75:41:e6:53:75:4e:8e:fa:71:22:1d:67:f5:98:39:
        c3:a4:25:4f:46:1d:f9:8f:3e:e0:7f:2c:3e:56:f5:f7:
        3e:a3:c7:82:40:a4:37:b3:11:ae:a4:53:56:48:09:4d
    Fingerprint (SHA-256):
        F5:FC:26:42:41:3F:2E:F0:27:E4:20:2E:52:CE:F5:BD:20:A6:EB:6E:58:7B:1B:87:50:7E:1B:E6:8E:33:CD:25
    Fingerprint (SHA1):
        63:C9:45:3B:E2:83:74:A8:2C:F8:79:91:0B:C1:40:D6:24:3D:01:EF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #2777: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235536 (0x300e2d90)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:39 2017
            Not After : Sat Aug 06 23:55:39 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:d9:0c:3f:21:eb:9c:40:fb:64:61:6a:22:95:04:b8:
                    41:03:ff:41:6d:49:72:66:2f:87:24:c4:ff:66:62:57:
                    bb:43:0a:34:46:00:60:04:b6:8d:9d:1e:f1:6d:43:04:
                    fa:24:f4:d8:3c:f2:20:8e:ad:1f:d2:3d:b3:b9:a5:c0:
                    ca:a2:65:35:c4:c1:3b:00:e7:bc:96:6d:49:22:bb:d6:
                    9c:bd:48:ce:7f:9a:80:97:1f:3a:ca:28:34:b3:0c:7c:
                    c2:8a:ee:57:d2:d0:82:de:55:d4:16:0c:50:1a:9c:f5:
                    85:5d:a4:39:f2:c7:58:ca:ac:73:3e:fb:1b:c9:a8:5e:
                    97:5d:8d:32:dd:ea:e3:55:f4:d1:cd:ec:63:06:cd:d5:
                    98:ec:9d:2d:6f:9e:5c:7a:3b:0e:34:7b:33:44:26:dd:
                    a0:3f:b5:c2:90:30:4d:30:60:8d:12:09:9f:c5:0d:c0:
                    4f:a9:a0:f6:ec:c8:c6:df:eb:9f:93:f2:34:7e:2f:8b:
                    1e:72:54:2a:31:bc:95:c5:b2:7a:06:be:a7:2d:d7:4c:
                    2d:b6:40:84:7f:81:c8:91:d3:4c:39:a7:a9:64:7f:b0:
                    3c:95:75:7d:35:27:d0:9f:79:8c:9f:b7:b1:c5:65:5e:
                    6f:31:8c:3e:08:da:b0:41:fd:c9:7e:b2:49:a7:ad:67
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3d:09:d0:df:e9:8d:f2:23:be:22:17:19:07:32:5a:ee:
        ec:b3:31:5c:1d:a4:3d:3a:f3:de:ee:df:e6:19:a2:fd:
        62:46:3c:84:8d:bc:96:53:d2:65:6b:e0:c9:0a:9c:d4:
        b5:79:6e:c8:a0:7f:19:0f:84:c6:92:02:76:d0:f8:85:
        8c:e1:27:66:ef:0a:d9:1a:82:08:af:34:c8:7f:e7:66:
        77:aa:7b:9a:63:38:47:3a:07:32:2a:ac:19:44:23:69:
        ad:99:86:00:c1:33:ed:9b:2d:6a:6c:3a:67:11:c9:12:
        93:2b:fc:c8:34:1f:f5:15:02:6f:d1:8d:7f:dd:1c:79:
        a4:2b:b3:e4:54:07:eb:38:98:ff:d7:95:9d:50:cb:f0:
        dc:68:e7:f4:4a:3a:59:1d:8a:7c:d2:9d:d0:bc:6f:e6:
        4a:ab:c0:aa:81:9f:b6:94:47:51:a4:b5:e9:63:60:a9:
        8d:9a:fb:8f:97:bf:87:93:cc:f7:20:ac:59:5a:e0:8d:
        36:a5:7d:f3:19:08:f0:f6:7e:90:20:44:c9:9c:51:33:
        b9:6d:80:58:02:8b:b1:af:42:35:47:ae:23:77:ac:af:
        38:d7:e6:b1:a1:2d:20:2f:67:bb:5e:51:c0:41:43:eb:
        24:d2:65:10:2f:5b:94:fd:24:32:a2:e3:84:29:7a:b1
    Fingerprint (SHA-256):
        A5:88:02:A2:54:49:48:DA:61:D1:2D:1C:25:47:16:6D:DB:67:38:3F:AB:66:F6:E5:AA:7F:50:5D:1F:9F:B4:02
    Fingerprint (SHA1):
        EC:63:7A:73:14:9C:35:B4:22:0C:E4:81:DE:67:78:6A:D2:5D:14:6B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #2778: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235537 (0x300e2d91)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:39 2017
            Not After : Sat Aug 06 23:55:39 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:4d:f5:3c:91:8d:6d:61:5e:43:00:41:bf:12:ea:48:
                    8d:7a:c1:94:ce:0f:dc:6e:1b:a0:07:c4:47:4c:9c:47:
                    23:a9:1a:c0:44:f4:7a:be:e5:b8:58:da:6f:e8:31:57:
                    0a:6f:a8:07:de:8e:36:5d:35:8e:83:1d:99:7b:b5:8e:
                    cc:2b:25:6c:a0:36:11:8c:91:bf:0e:18:33:38:5e:49:
                    1c:1d:52:92:25:5f:83:c1:10:a1:5f:f9:3a:68:11:b2:
                    7f:f2:5a:6e:51:1c:a6:66:2d:92:e3:0a:d7:54:ad:6c:
                    3f:e9:69:6a:ae:00:82:3e:fd:47:d6:15:51:c5:fb:b7:
                    84:19:b3:24:23:5f:00:bd:72:70:75:cf:a5:ed:8e:59:
                    3f:c8:bf:6d:93:ca:cf:56:db:3e:64:a7:23:84:ca:6e:
                    b3:a7:d5:95:c1:23:c6:6c:9d:d7:94:a8:4a:ba:54:02:
                    37:2d:82:0a:d8:c1:21:6f:58:7a:fb:51:d8:12:e7:79:
                    bc:23:2f:f5:ba:ab:53:35:ac:6e:c2:17:b5:9e:07:a5:
                    0a:87:74:85:6a:dc:de:bb:4e:01:8c:a6:0d:bc:a9:6d:
                    df:02:f5:e2:2d:6d:9b:ac:b0:6d:18:96:19:1d:02:de:
                    d7:a1:2d:16:d3:16:cc:56:39:b2:ba:fb:e2:6b:7c:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:6e:6c:a5:af:86:ff:00:e0:ea:b7:3c:60:f1:e1:41:
        e0:23:16:bc:ef:f2:66:0f:40:05:c8:7b:0a:a8:94:5d:
        7c:a3:2e:51:80:e4:b1:c5:49:78:64:7b:06:f5:6b:93:
        fd:a2:c0:2e:9a:03:b0:4e:61:b4:c1:17:a7:09:43:dc:
        42:c0:13:a1:58:9f:b9:7b:7a:33:11:23:44:08:e0:03:
        4d:0f:ec:60:1c:70:28:9e:4a:e8:0f:26:82:02:e8:6a:
        7c:b4:c3:16:b6:ad:16:85:4d:58:b2:a3:c3:d7:b5:82:
        54:a2:b7:27:08:5d:d0:14:9d:1a:54:ce:d6:f5:95:25:
        31:f5:b1:11:11:52:f5:c5:2f:a7:3f:f6:08:46:99:70:
        49:c6:dc:85:4b:a3:0f:6d:8b:40:a0:c0:d8:81:54:fe:
        1d:82:47:40:6d:7e:be:0c:1c:22:ad:6b:c0:aa:42:8d:
        73:4e:14:13:5e:c7:6a:a6:e8:8a:f8:da:1d:84:14:58:
        5f:03:72:7a:33:06:5f:ea:7e:c5:e1:93:13:24:8f:b0:
        dd:8f:89:5c:7b:ef:8c:68:79:04:5e:6b:8e:61:f9:27:
        00:48:29:be:e2:87:dd:21:07:2e:0b:e9:b8:82:3e:cf:
        13:ec:6b:99:1f:07:50:dc:be:8b:7f:e8:8b:34:7d:34
    Fingerprint (SHA-256):
        3E:45:68:58:2A:ED:19:94:B0:11:75:0C:C2:F6:76:56:7F:9B:40:C0:45:8B:E3:92:40:7A:32:1C:AA:74:87:26
    Fingerprint (SHA1):
        2F:FB:40:61:D6:CA:A7:FC:7F:05:76:01:38:FC:EF:5E:4D:BC:37:F8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #2779: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235538 (0x300e2d92)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:39 2017
            Not After : Sat Aug 06 23:55:39 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:8e:94:d4:49:51:cf:b6:64:6c:f2:e5:be:7e:48:22:
                    b5:06:91:ec:ec:e0:4c:d4:1f:e2:78:b9:b8:13:83:68:
                    bd:33:e0:13:4b:45:0f:db:cb:97:c3:8f:57:01:8c:b3:
                    4b:1b:06:59:9b:56:2d:c5:f8:60:86:32:cf:c2:98:f7:
                    8c:13:57:77:e0:dc:ef:52:83:de:41:31:1b:3a:4c:4a:
                    f9:73:d9:37:f2:32:3d:67:23:7c:a8:b0:ad:91:2d:c4:
                    43:b0:94:af:27:95:31:af:1a:04:fb:83:8b:53:06:49:
                    e5:8c:fc:0b:79:71:e3:66:ae:fb:f0:86:cb:f3:72:83:
                    d8:ee:08:6d:85:6f:ee:4d:2c:46:8a:f3:85:83:a0:1a:
                    33:9b:85:4b:ae:73:91:34:c3:17:dc:0c:98:52:54:a3:
                    9b:c4:ad:b9:43:aa:5d:0b:89:30:aa:7f:87:a1:b9:89:
                    92:4f:ec:19:a9:94:58:2f:7f:67:27:22:0e:17:38:dc:
                    84:c9:22:97:d6:35:24:49:7d:e6:1a:5d:a6:83:ed:13:
                    02:18:19:0f:18:20:70:72:7d:ed:3c:e4:d6:ca:d0:25:
                    94:1a:e4:a5:54:24:d1:43:f0:0b:fd:fe:7c:67:70:07:
                    4c:01:da:31:5b:30:fe:d1:04:f3:d9:e1:2d:e4:ed:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6f:0f:99:a2:4e:9c:22:32:58:13:b0:c2:37:85:2b:3a:
        5b:2f:68:d2:71:14:90:35:eb:64:7a:06:a9:fd:c0:e0:
        a9:11:97:c5:b9:7f:42:ba:74:8c:a9:92:74:92:47:e5:
        ea:47:d0:d7:32:89:5f:04:dd:a9:e0:b6:48:02:97:62:
        5d:cd:06:ff:32:25:03:3a:39:d0:63:cb:7d:02:f2:e4:
        0d:aa:4b:55:d8:1e:80:c6:bb:dc:05:be:0f:25:30:79:
        c7:2d:0e:6a:b0:16:21:39:48:f3:b9:c3:58:2b:94:91:
        d3:fa:98:c3:eb:39:3d:62:04:0d:c5:54:30:f6:b6:10:
        1b:e9:63:c6:4a:c7:ad:12:4a:55:d2:f1:57:f6:45:ed:
        a5:f1:4b:8f:ad:42:dc:3a:46:98:d6:1e:65:1c:c1:79:
        b1:9f:e4:20:03:c1:e6:b3:c7:ea:2b:97:b3:7c:61:a8:
        80:a2:c3:2c:ed:a4:0b:f1:5a:3a:8d:70:57:15:0e:fd:
        df:1c:85:70:da:ea:76:72:43:5c:95:db:50:74:9f:7d:
        89:55:ca:85:98:13:9c:37:10:d4:94:01:91:ab:cf:34:
        0c:4a:1d:d9:4e:0f:92:6f:8b:d4:f3:9f:b8:59:8e:b1:
        33:e5:29:e6:30:0b:7d:57:02:41:0e:29:57:09:7d:70
    Fingerprint (SHA-256):
        69:DB:38:4E:B9:27:C1:88:0E:89:13:7C:08:CD:7A:2B:D3:25:71:0E:83:EB:73:8A:27:3D:8F:75:52:10:C3:B2
    Fingerprint (SHA1):
        B1:DC:D3:2F:A3:61:39:B8:E4:16:83:DD:7D:E6:30:53:CA:60:30:E9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #2780: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235539 (0x300e2d93)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:39 2017
            Not After : Sat Aug 06 23:55:39 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:78:61:67:ac:2e:aa:cb:dc:a2:a6:15:72:99:5c:27:
                    0c:c9:0d:f1:2f:1d:cb:65:8c:da:ad:c4:d2:01:fe:1a:
                    6f:56:f3:4e:73:c1:aa:1c:d3:98:69:6f:22:35:9b:69:
                    ac:71:db:b1:d5:84:78:13:26:f9:c9:5a:59:20:64:67:
                    a8:51:5b:d7:d4:e0:bd:c0:88:6a:81:b2:98:56:5c:2b:
                    ec:74:9f:d6:24:24:e4:33:d2:33:47:9a:37:f1:a9:29:
                    0a:10:77:cc:8c:ae:b4:81:25:00:26:6e:64:7f:9c:8e:
                    0c:5a:32:38:62:eb:8d:a1:17:55:29:e8:09:57:f1:12:
                    bb:45:83:fa:62:00:74:63:92:6a:03:94:72:23:bc:96:
                    76:e6:b8:31:e0:ab:fc:d9:6a:00:9d:82:87:38:60:75:
                    9d:c6:39:b6:6f:f6:5a:b9:bb:aa:22:4e:6b:47:8d:45:
                    e3:35:6a:e6:a9:76:52:2a:48:cf:59:cd:80:73:9e:e5:
                    44:11:da:1f:1d:b3:0c:52:66:6a:1c:2b:81:15:61:8c:
                    95:e3:05:85:7f:5e:38:e4:5f:8a:95:de:b5:70:cd:5d:
                    fd:40:8d:49:6b:de:11:af:84:86:92:01:83:f4:e0:6f:
                    05:d8:02:34:60:ae:09:26:d0:38:61:e3:ca:8c:44:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:7b:19:b9:6a:65:98:f7:b9:59:86:ab:3d:f5:07:19:
        b0:8b:9b:c2:fe:2b:e4:21:bb:e7:46:7d:29:c7:a4:60:
        fd:f5:e3:2a:ce:31:e5:24:32:96:5d:b6:fa:82:31:bc:
        61:76:1a:d1:61:35:26:a1:b6:cc:2d:b2:7a:9f:65:82:
        a5:b4:8a:63:c8:59:2a:59:85:cb:fb:31:2d:30:07:fe:
        69:3d:6c:dd:7d:7d:fd:09:27:bf:7c:64:6f:e3:4f:6d:
        da:ca:31:73:a0:39:c4:0b:90:00:a8:49:64:27:b3:15:
        18:47:d0:75:60:aa:43:9d:2a:9f:05:aa:53:02:0b:2e:
        39:f6:c9:92:9d:36:0e:5f:f3:a2:ab:32:39:d2:40:00:
        ce:02:81:b8:9e:31:72:c0:74:36:d6:dc:81:32:69:50:
        ca:bb:00:52:d9:d6:cf:29:7e:2a:55:79:77:19:09:bf:
        7d:a4:ee:a4:9a:9c:4c:56:23:e8:59:55:ef:fa:6a:1a:
        67:d2:58:f9:da:29:8c:7f:fd:57:d7:18:61:85:71:5e:
        c9:a6:1c:f5:76:df:40:9f:1e:bf:df:d9:d4:18:e3:28:
        26:3c:da:01:e3:f7:0e:9e:4d:ba:d6:df:fc:77:59:e0:
        7b:9a:bd:36:cd:3e:f1:29:f6:7f:c0:f3:36:f8:31:e2
    Fingerprint (SHA-256):
        0D:8A:23:00:AD:41:E8:E9:42:67:B3:04:A7:6D:BB:A7:67:83:57:52:AD:29:CE:BC:CA:AD:71:AA:1D:9B:D5:36
    Fingerprint (SHA1):
        F5:15:72:09:97:30:CB:B0:F5:6A:31:5C:5D:4C:B4:73:C9:E9:84:79
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #2781: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235540 (0x300e2d94)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:39 2017
            Not After : Sat Aug 06 23:55:39 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:b5:ff:7f:02:f2:db:33:95:21:8d:d4:76:87:fd:62:
                    ef:c0:15:d2:67:09:d2:79:3f:c8:b9:0b:f7:6d:49:4b:
                    17:81:95:c7:0a:d9:81:0d:61:fa:11:a1:bd:a0:e8:c2:
                    3b:1f:0c:1e:a8:d6:c8:ae:db:a5:fc:e3:53:30:ba:5a:
                    2a:89:8e:fc:cc:c6:a2:30:6e:25:b5:5c:25:21:b3:b9:
                    b8:29:0b:7d:0a:09:bb:b8:db:eb:57:97:05:7a:74:89:
                    49:41:6b:25:91:b9:aa:6a:9a:7b:40:68:78:66:c6:2c:
                    5c:74:be:09:e7:14:10:f8:61:ec:8a:84:a6:31:a3:8f:
                    cb:5b:0b:df:70:91:15:be:b3:8e:3e:fa:97:ac:8f:42:
                    09:59:b8:ea:a4:c9:34:51:ad:a2:46:aa:a0:3f:1c:eb:
                    61:e8:9c:3c:4b:e5:b9:83:e6:a7:60:a0:b8:16:81:85:
                    a2:5c:5a:fe:58:db:89:59:2d:cd:33:1c:64:ce:86:a2:
                    14:6d:73:e8:ea:a2:7d:7f:41:13:20:36:30:a8:e5:3c:
                    14:e9:11:29:26:2b:8d:22:d8:27:cd:34:8a:7b:dc:8c:
                    1d:f9:79:ca:9e:56:60:f6:d3:f1:63:ed:54:93:ac:29:
                    a5:c3:82:d2:89:83:3c:28:cf:51:6e:3e:36:6f:41:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        55:ab:1f:1d:03:5d:9b:1e:a1:07:b8:90:14:9f:fd:8c:
        5a:19:22:f6:c9:f1:14:12:7c:1f:36:a4:24:fb:8f:20:
        9e:48:c3:af:91:6b:25:71:0a:fb:42:93:b4:a4:c0:40:
        67:e2:d3:90:c3:da:31:a1:83:85:c3:b9:7a:4c:77:6d:
        79:05:69:c9:75:da:26:af:3f:a5:c1:69:e8:25:b9:2c:
        dc:2c:cb:eb:84:e5:37:b5:34:83:55:0a:cc:a9:d5:ed:
        8a:d3:76:1f:56:f5:74:9a:f8:69:33:2a:a0:f1:e3:ef:
        07:16:56:76:a3:56:0d:fb:f1:15:ad:b1:0e:7a:fd:79:
        ee:f3:5a:74:f3:36:7b:ad:2b:06:e0:bd:5e:70:77:35:
        9c:b3:61:fa:7b:9d:d9:e0:40:29:bb:cf:cc:ef:a9:20:
        b1:d8:2e:c8:6b:ff:20:84:c3:9d:2a:1c:a7:f2:ac:58:
        60:68:24:60:79:2a:c2:72:d4:71:20:5e:44:72:7b:5b:
        75:3a:a1:0f:1a:8f:2a:a5:48:11:89:fd:29:48:cd:cd:
        96:a3:de:f2:bf:23:a1:0d:25:e2:ae:45:67:8d:11:85:
        8b:a4:b9:3a:9a:a2:2e:86:7b:59:c3:01:38:2d:69:95:
        ac:74:e9:e6:fb:3f:ae:c9:1e:8a:89:6c:81:23:72:0c
    Fingerprint (SHA-256):
        20:53:C4:A9:A6:FD:67:57:99:A3:52:B6:A5:1E:F1:34:8C:F2:AD:B6:C6:1C:2B:2A:56:4D:AA:31:49:87:FC:54
    Fingerprint (SHA1):
        C5:B7:20:4B:92:3F:78:28:62:0E:70:AB:86:10:11:90:6C:37:31:22
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #2782: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235541 (0x300e2d95)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:40 2017
            Not After : Sat Aug 06 23:55:40 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:b4:81:bf:1c:6b:ab:fd:1a:4b:3f:26:30:8e:9c:7b:
                    75:12:c8:b4:f2:81:3c:3c:24:54:9d:2d:f7:f0:d9:51:
                    d1:5c:aa:31:38:04:96:08:f5:e2:fe:0d:19:75:33:e6:
                    2e:ea:08:6e:6f:72:c9:1c:2a:86:41:71:18:30:99:23:
                    ef:fd:ce:2f:8c:89:2a:e9:29:6d:12:f2:ca:a9:65:30:
                    14:ae:8b:8a:a4:79:22:77:aa:a9:65:f5:53:a1:cb:6f:
                    01:09:8a:ba:27:40:28:df:ad:f4:c5:f0:da:99:96:57:
                    5a:2a:6e:07:6b:ea:ce:f1:c7:31:b5:af:55:4f:20:9e:
                    29:6f:85:91:5d:88:6d:24:b6:ec:c7:d4:27:33:0b:63:
                    03:33:7b:62:10:fd:7c:5b:f4:25:9b:5a:34:34:07:b7:
                    50:1e:4c:50:1d:b7:89:2a:c6:f3:f7:32:9f:4f:69:f8:
                    c8:48:8a:e3:5e:c2:11:96:4a:58:3b:6b:d9:84:ef:f3:
                    37:19:d1:86:4c:bf:ef:9a:00:6b:c3:3b:d0:81:4a:82:
                    fe:cf:70:2b:5e:51:f4:14:0e:6d:8a:cf:84:12:03:69:
                    a4:4e:ba:32:31:da:c2:3f:f9:08:3a:f8:94:e2:b7:f5:
                    ba:2f:66:24:cc:9f:21:4e:0c:42:58:be:a8:9c:dc:95
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        34:02:8b:24:0b:fb:69:b7:78:aa:aa:cd:c4:b4:ac:b2:
        42:c6:f6:1e:50:2c:05:b3:9b:32:23:68:6b:20:2a:2f:
        fe:c0:81:b4:46:14:9f:35:92:c0:c6:f0:32:2a:a3:6e:
        5c:a7:35:4d:70:7d:04:f1:e0:3a:42:8d:0c:c9:f7:aa:
        ff:ab:c1:7d:f7:9c:4c:87:76:51:96:39:2a:4e:a2:2d:
        9a:08:8d:21:9b:ac:d1:db:e5:c2:9e:45:df:d9:09:3c:
        93:5c:37:df:d6:fe:a3:55:9b:28:09:ac:d3:da:65:12:
        51:ab:0d:0d:c8:d0:44:11:77:c2:d0:a1:0e:49:c3:cd:
        ba:61:6a:c8:5e:09:74:a6:37:ed:9f:21:47:be:24:f1:
        0f:ac:7c:67:b6:3c:96:3a:51:86:87:34:f2:df:86:0a:
        7c:44:d1:38:af:63:de:6b:aa:09:25:e4:5f:7e:0e:33:
        25:b5:8b:5f:92:bb:8e:71:7c:69:f9:ab:eb:ae:59:e2:
        c5:d7:83:cd:b1:01:2b:98:b7:83:62:87:b3:9b:f4:33:
        56:7e:7c:cf:60:10:d0:e0:0e:8a:48:39:d1:a8:46:b0:
        aa:28:6d:c4:be:d1:b9:f5:92:de:c8:86:4a:fd:38:a1:
        02:42:cd:c6:d7:d3:8c:c4:e7:f0:b6:7d:cb:25:3f:75
    Fingerprint (SHA-256):
        12:EE:8B:02:28:EE:A5:5A:17:BD:69:BA:39:86:56:9D:28:DE:24:2F:C6:18:8F:29:69:76:95:4F:D8:BD:75:38
    Fingerprint (SHA1):
        71:1F:A5:D9:3F:50:2B:9F:1B:A8:B7:6E:E5:22:50:37:1F:EB:AB:09
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #2783: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #2784: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235556 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2785: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #2786: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2787: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2788: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 806235557   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2789: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2790: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #2791: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2792: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 806235558   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2793: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2794: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #2795: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2796: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 806235559   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2797: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2798: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2799: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235556 (0x300e2da4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:41 2017
            Not After : Sat Aug 06 23:55:41 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:9c:7b:f8:5f:f2:7d:2b:97:ad:3f:67:35:34:76:99:
                    27:9c:6f:79:f8:1b:2e:1b:c6:45:e5:84:83:f5:02:6d:
                    11:77:3f:10:69:73:8a:24:81:3a:f6:a4:18:ca:f3:c5:
                    ab:bc:2d:cd:a1:3c:d9:ef:15:98:86:02:1f:7b:cf:10:
                    88:31:99:19:45:1b:09:49:f0:c9:fc:c5:bb:ae:53:ed:
                    2b:be:9a:73:9b:ec:e5:72:9b:bb:74:88:fe:46:1c:4f:
                    f6:b2:1b:fe:56:5a:d7:19:35:55:cc:49:56:99:47:b5:
                    53:24:46:58:a4:84:2a:7e:88:37:93:58:63:cf:d2:ad:
                    1b:93:84:67:3e:c8:9f:66:04:54:f0:e8:51:6a:13:5c:
                    70:52:c3:3b:0f:cc:11:6e:b1:0d:5d:81:ef:86:43:17:
                    b8:8f:d4:f0:32:42:ff:07:dc:a6:56:53:6f:9b:06:7e:
                    f0:90:30:8f:1c:ee:f8:02:9f:17:68:29:04:d6:3c:60:
                    93:f5:a4:e1:24:78:c7:d2:cb:e9:aa:b2:15:15:ac:45:
                    7b:d8:47:75:d3:18:dc:b0:44:61:32:36:8b:15:dc:ef:
                    5f:cf:d2:e7:3a:a0:9f:a5:f9:09:ab:9e:d5:36:43:40:
                    b7:b4:8c:91:f1:85:ca:2e:a9:d8:a4:f3:ad:57:4d:27
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:11:b3:07:58:6c:da:69:f9:db:14:fb:46:e5:78:38:
        03:5c:45:11:07:84:26:95:5e:9c:fb:1e:8c:a5:66:0d:
        d3:c2:dd:2a:a6:7a:57:d2:94:a1:74:d7:68:17:0a:0c:
        a4:b2:36:bd:e9:b9:fa:51:e3:d9:65:6c:cd:74:01:96:
        a3:21:66:3d:ec:51:9e:ad:3c:02:cb:76:9a:c1:31:13:
        b7:67:7d:05:51:89:ce:00:4e:51:6f:29:12:8d:bc:4c:
        8b:43:7f:90:ce:33:5f:4d:49:78:d7:b8:8a:77:da:04:
        4e:cd:b7:46:b9:5b:41:5b:2c:e9:a7:6e:c4:f8:37:e0:
        c5:65:ee:e3:f5:dc:5e:9a:27:2a:45:13:56:68:35:2b:
        9f:70:63:f4:1c:a4:9a:ee:39:18:12:54:90:79:e0:0d:
        78:fa:f0:ba:34:e4:eb:07:23:0d:41:5c:56:68:00:4c:
        5f:7b:2f:a6:d9:b8:bd:83:d8:87:61:fa:42:66:02:03:
        c2:66:93:7d:92:f8:b3:71:aa:50:27:7f:30:a1:c0:49:
        03:5a:c9:5d:cd:3a:3e:91:cf:d0:a9:ac:fb:3e:51:2a:
        c6:1d:44:a6:8c:2b:6b:d3:79:a2:70:33:00:c6:53:29:
        a3:ad:7f:5f:1a:9a:36:d9:ad:2c:2c:77:40:84:ec:90
    Fingerprint (SHA-256):
        26:D7:9F:04:1B:83:79:A3:8D:A9:87:69:53:5A:CD:FC:88:7F:9E:F0:86:0C:44:DB:0E:67:67:82:92:84:22:DC
    Fingerprint (SHA1):
        5D:66:2A:A5:C2:D4:16:23:CD:D7:F6:BE:BE:03:E1:0B:08:1B:0A:C8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2800: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2801: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235557 (0x300e2da5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:42 2017
            Not After : Sat Aug 06 23:55:42 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:4f:4f:69:99:dc:31:d3:1a:40:8d:16:6d:27:d3:65:
                    a5:91:8c:6c:1b:6c:21:c3:2b:c9:9b:e2:dd:d0:da:96:
                    b5:62:f2:66:18:38:f5:87:c4:76:92:f1:29:b0:5d:ff:
                    c7:78:d5:bb:5f:2f:c8:03:44:01:3d:6e:b3:74:88:10:
                    c8:e1:21:bb:fe:fd:c6:64:ee:0a:fd:c4:ff:7c:7d:33:
                    f0:d8:8a:48:c4:6b:fc:4b:c1:8c:2e:f9:35:2d:34:7d:
                    18:96:2d:12:3d:1d:07:bd:8b:4f:17:a2:eb:23:63:27:
                    62:54:48:85:be:c0:6e:44:ce:19:dd:3a:60:c9:d8:fa:
                    44:26:95:15:46:01:a7:d9:84:b9:bb:3f:f9:8a:12:ce:
                    af:1f:2c:e2:b3:c1:90:37:43:b0:4f:3b:50:be:54:08:
                    7a:3b:a0:6a:9e:23:20:18:b7:72:63:82:72:6d:92:ed:
                    bf:64:0e:a4:e0:84:16:37:b9:c0:43:cb:52:c4:b2:97:
                    22:d2:f9:4e:54:56:47:1e:af:cc:a2:ba:98:70:a1:55:
                    af:38:cd:94:9f:42:d6:82:36:50:e1:6d:fc:4a:f7:aa:
                    9f:ff:b4:7e:9f:ed:d2:aa:4b:cb:fe:b6:6f:2d:0c:76:
                    65:43:91:93:62:c3:3e:83:c8:9c:7b:22:26:ff:0d:07
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        44:40:42:84:9b:4a:a6:0c:90:5b:ec:04:07:de:45:4a:
        e4:32:38:da:86:ee:54:fe:b0:73:af:cb:1c:a7:8b:80:
        31:4d:fa:2b:ca:4a:2e:26:34:16:36:c9:b9:a5:00:0b:
        27:66:17:c2:9a:98:c1:bc:76:3a:04:e4:63:ad:5a:a5:
        d1:a0:ae:9d:23:15:3d:ed:66:d1:28:d9:b9:ba:89:72:
        b3:c1:43:5b:d0:6d:8f:e3:b0:77:58:36:32:4b:37:26:
        4f:f2:78:dc:c4:81:50:bb:78:0d:5e:e4:64:45:b7:f8:
        ee:3d:ff:2a:df:54:de:6f:63:c1:ca:1b:03:b4:7a:c9:
        a0:9f:75:c1:da:21:e1:67:f3:36:c8:78:76:15:42:c0:
        fc:ea:29:58:21:41:e0:17:79:04:8c:31:b4:f3:32:fb:
        bf:4b:b7:61:0d:a5:39:5e:b7:03:2d:69:df:10:2e:01:
        8f:ac:9c:b5:10:ab:a0:f1:d3:5e:50:27:23:46:5b:33:
        51:25:21:47:72:3c:c2:c7:ac:6e:19:d7:31:79:37:41:
        29:da:37:82:15:36:f6:4a:ee:b0:83:48:ba:2a:c0:5c:
        47:6e:c6:13:41:e0:1c:01:78:b8:35:69:33:68:e8:84:
        19:d5:6d:8b:fd:01:59:fa:8a:e3:9f:51:25:89:1a:c8
    Fingerprint (SHA-256):
        8B:D6:65:15:C8:B4:57:0A:CF:30:6F:6E:7A:2D:BE:3B:C5:96:48:1E:3E:53:75:58:A0:27:65:50:E9:78:FB:B3
    Fingerprint (SHA1):
        68:6E:F4:94:64:82:9D:67:86:4B:F0:FA:E0:1A:AC:9F:71:15:E6:AE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2802: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2803: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235558 (0x300e2da6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:42 2017
            Not After : Sat Aug 06 23:55:42 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    98:a5:ab:d8:0a:d4:40:54:74:80:21:01:08:25:9e:59:
                    78:25:41:82:4f:e6:f3:55:56:3f:cb:83:51:b3:20:a6:
                    96:71:75:37:a9:b5:b9:7e:23:33:30:3c:d4:d0:06:f6:
                    ae:b9:94:a0:1a:49:57:15:4e:46:1c:45:91:d5:d1:61:
                    ed:71:93:7a:66:f5:11:4b:5b:2f:61:db:9d:3e:19:17:
                    08:65:25:53:37:e0:63:a3:4b:50:76:ac:52:b0:79:ad:
                    7e:89:1a:68:ba:a6:df:7a:7c:66:cd:86:01:c2:e8:0b:
                    99:a7:47:a2:b8:b2:c1:94:99:6a:5a:c1:9a:ff:85:ac:
                    31:38:af:a7:a2:e3:3a:7f:66:30:a9:6f:ab:19:e9:cf:
                    d2:8c:70:9b:06:1b:41:b3:e8:8a:2f:a1:5d:14:a9:7d:
                    2f:0f:44:60:df:50:d7:5c:e5:aa:99:20:4f:83:de:8c:
                    c1:12:16:15:3f:5c:ff:0e:dd:af:b1:ad:71:2a:b2:7d:
                    d9:92:87:db:9b:5a:db:78:58:83:10:35:6b:7a:03:1b:
                    78:01:a9:7e:6c:d2:56:c5:e6:41:c2:79:cd:26:35:47:
                    bb:a5:69:22:31:56:92:e9:aa:5a:a2:36:23:e7:06:07:
                    eb:32:80:f9:7e:4a:75:4f:a4:e9:17:fd:b4:72:e7:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3c:9e:47:39:5f:20:33:92:ed:d6:0e:a6:e7:93:9f:0d:
        c8:f0:d1:0e:6e:5f:75:28:ef:e0:f9:fc:17:d0:84:bb:
        df:bc:d0:72:36:73:82:a8:5b:da:39:bb:63:22:d7:c3:
        49:5a:f3:76:79:9e:29:e1:a3:ea:01:cf:94:d2:98:ed:
        fd:61:47:e6:74:f1:00:a6:2c:e1:f6:15:72:65:de:22:
        20:7e:99:b0:64:52:cd:ba:da:3c:d3:bd:01:71:94:35:
        e1:af:fa:ae:68:c4:29:28:f7:8d:57:23:cb:ce:5e:5f:
        d5:40:29:9b:c3:52:e9:1d:72:a5:6b:f2:6e:01:46:c7:
        4d:56:85:43:56:90:b2:2b:2b:55:90:18:97:e3:c9:27:
        c6:d4:c9:98:28:fa:bd:82:e7:3c:5f:64:80:53:d1:51:
        3d:20:c6:51:99:5a:c8:55:e8:fc:2e:c8:a9:f2:23:3b:
        4a:e3:1b:a4:26:d8:77:4d:89:3e:db:11:19:4d:31:a2:
        d0:e0:7c:ca:9a:67:0a:bb:42:a7:c7:e1:23:22:0f:ab:
        3a:22:db:e6:d0:c8:df:48:4a:14:dc:29:48:80:ad:26:
        50:a9:ce:7c:22:29:90:d7:4b:ae:b2:eb:c2:7b:75:d6:
        19:6e:64:2d:d0:88:cd:0a:84:c3:c0:ad:89:85:d1:99
    Fingerprint (SHA-256):
        49:42:11:25:47:40:0E:06:45:CE:A7:60:E5:F5:73:B9:A3:BF:A9:3A:43:EA:36:05:85:38:22:C4:63:0C:6F:27
    Fingerprint (SHA1):
        47:7A:34:87:3C:5B:B8:13:28:C5:10:7C:5E:52:30:63:E5:A5:54:A6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #2804: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2805: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #2806: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #2807: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #2808: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235556 (0x300e2da4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:41 2017
            Not After : Sat Aug 06 23:55:41 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:9c:7b:f8:5f:f2:7d:2b:97:ad:3f:67:35:34:76:99:
                    27:9c:6f:79:f8:1b:2e:1b:c6:45:e5:84:83:f5:02:6d:
                    11:77:3f:10:69:73:8a:24:81:3a:f6:a4:18:ca:f3:c5:
                    ab:bc:2d:cd:a1:3c:d9:ef:15:98:86:02:1f:7b:cf:10:
                    88:31:99:19:45:1b:09:49:f0:c9:fc:c5:bb:ae:53:ed:
                    2b:be:9a:73:9b:ec:e5:72:9b:bb:74:88:fe:46:1c:4f:
                    f6:b2:1b:fe:56:5a:d7:19:35:55:cc:49:56:99:47:b5:
                    53:24:46:58:a4:84:2a:7e:88:37:93:58:63:cf:d2:ad:
                    1b:93:84:67:3e:c8:9f:66:04:54:f0:e8:51:6a:13:5c:
                    70:52:c3:3b:0f:cc:11:6e:b1:0d:5d:81:ef:86:43:17:
                    b8:8f:d4:f0:32:42:ff:07:dc:a6:56:53:6f:9b:06:7e:
                    f0:90:30:8f:1c:ee:f8:02:9f:17:68:29:04:d6:3c:60:
                    93:f5:a4:e1:24:78:c7:d2:cb:e9:aa:b2:15:15:ac:45:
                    7b:d8:47:75:d3:18:dc:b0:44:61:32:36:8b:15:dc:ef:
                    5f:cf:d2:e7:3a:a0:9f:a5:f9:09:ab:9e:d5:36:43:40:
                    b7:b4:8c:91:f1:85:ca:2e:a9:d8:a4:f3:ad:57:4d:27
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:11:b3:07:58:6c:da:69:f9:db:14:fb:46:e5:78:38:
        03:5c:45:11:07:84:26:95:5e:9c:fb:1e:8c:a5:66:0d:
        d3:c2:dd:2a:a6:7a:57:d2:94:a1:74:d7:68:17:0a:0c:
        a4:b2:36:bd:e9:b9:fa:51:e3:d9:65:6c:cd:74:01:96:
        a3:21:66:3d:ec:51:9e:ad:3c:02:cb:76:9a:c1:31:13:
        b7:67:7d:05:51:89:ce:00:4e:51:6f:29:12:8d:bc:4c:
        8b:43:7f:90:ce:33:5f:4d:49:78:d7:b8:8a:77:da:04:
        4e:cd:b7:46:b9:5b:41:5b:2c:e9:a7:6e:c4:f8:37:e0:
        c5:65:ee:e3:f5:dc:5e:9a:27:2a:45:13:56:68:35:2b:
        9f:70:63:f4:1c:a4:9a:ee:39:18:12:54:90:79:e0:0d:
        78:fa:f0:ba:34:e4:eb:07:23:0d:41:5c:56:68:00:4c:
        5f:7b:2f:a6:d9:b8:bd:83:d8:87:61:fa:42:66:02:03:
        c2:66:93:7d:92:f8:b3:71:aa:50:27:7f:30:a1:c0:49:
        03:5a:c9:5d:cd:3a:3e:91:cf:d0:a9:ac:fb:3e:51:2a:
        c6:1d:44:a6:8c:2b:6b:d3:79:a2:70:33:00:c6:53:29:
        a3:ad:7f:5f:1a:9a:36:d9:ad:2c:2c:77:40:84:ec:90
    Fingerprint (SHA-256):
        26:D7:9F:04:1B:83:79:A3:8D:A9:87:69:53:5A:CD:FC:88:7F:9E:F0:86:0C:44:DB:0E:67:67:82:92:84:22:DC
    Fingerprint (SHA1):
        5D:66:2A:A5:C2:D4:16:23:CD:D7:F6:BE:BE:03:E1:0B:08:1B:0A:C8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2809: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2810: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235557 (0x300e2da5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:42 2017
            Not After : Sat Aug 06 23:55:42 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:4f:4f:69:99:dc:31:d3:1a:40:8d:16:6d:27:d3:65:
                    a5:91:8c:6c:1b:6c:21:c3:2b:c9:9b:e2:dd:d0:da:96:
                    b5:62:f2:66:18:38:f5:87:c4:76:92:f1:29:b0:5d:ff:
                    c7:78:d5:bb:5f:2f:c8:03:44:01:3d:6e:b3:74:88:10:
                    c8:e1:21:bb:fe:fd:c6:64:ee:0a:fd:c4:ff:7c:7d:33:
                    f0:d8:8a:48:c4:6b:fc:4b:c1:8c:2e:f9:35:2d:34:7d:
                    18:96:2d:12:3d:1d:07:bd:8b:4f:17:a2:eb:23:63:27:
                    62:54:48:85:be:c0:6e:44:ce:19:dd:3a:60:c9:d8:fa:
                    44:26:95:15:46:01:a7:d9:84:b9:bb:3f:f9:8a:12:ce:
                    af:1f:2c:e2:b3:c1:90:37:43:b0:4f:3b:50:be:54:08:
                    7a:3b:a0:6a:9e:23:20:18:b7:72:63:82:72:6d:92:ed:
                    bf:64:0e:a4:e0:84:16:37:b9:c0:43:cb:52:c4:b2:97:
                    22:d2:f9:4e:54:56:47:1e:af:cc:a2:ba:98:70:a1:55:
                    af:38:cd:94:9f:42:d6:82:36:50:e1:6d:fc:4a:f7:aa:
                    9f:ff:b4:7e:9f:ed:d2:aa:4b:cb:fe:b6:6f:2d:0c:76:
                    65:43:91:93:62:c3:3e:83:c8:9c:7b:22:26:ff:0d:07
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        44:40:42:84:9b:4a:a6:0c:90:5b:ec:04:07:de:45:4a:
        e4:32:38:da:86:ee:54:fe:b0:73:af:cb:1c:a7:8b:80:
        31:4d:fa:2b:ca:4a:2e:26:34:16:36:c9:b9:a5:00:0b:
        27:66:17:c2:9a:98:c1:bc:76:3a:04:e4:63:ad:5a:a5:
        d1:a0:ae:9d:23:15:3d:ed:66:d1:28:d9:b9:ba:89:72:
        b3:c1:43:5b:d0:6d:8f:e3:b0:77:58:36:32:4b:37:26:
        4f:f2:78:dc:c4:81:50:bb:78:0d:5e:e4:64:45:b7:f8:
        ee:3d:ff:2a:df:54:de:6f:63:c1:ca:1b:03:b4:7a:c9:
        a0:9f:75:c1:da:21:e1:67:f3:36:c8:78:76:15:42:c0:
        fc:ea:29:58:21:41:e0:17:79:04:8c:31:b4:f3:32:fb:
        bf:4b:b7:61:0d:a5:39:5e:b7:03:2d:69:df:10:2e:01:
        8f:ac:9c:b5:10:ab:a0:f1:d3:5e:50:27:23:46:5b:33:
        51:25:21:47:72:3c:c2:c7:ac:6e:19:d7:31:79:37:41:
        29:da:37:82:15:36:f6:4a:ee:b0:83:48:ba:2a:c0:5c:
        47:6e:c6:13:41:e0:1c:01:78:b8:35:69:33:68:e8:84:
        19:d5:6d:8b:fd:01:59:fa:8a:e3:9f:51:25:89:1a:c8
    Fingerprint (SHA-256):
        8B:D6:65:15:C8:B4:57:0A:CF:30:6F:6E:7A:2D:BE:3B:C5:96:48:1E:3E:53:75:58:A0:27:65:50:E9:78:FB:B3
    Fingerprint (SHA1):
        68:6E:F4:94:64:82:9D:67:86:4B:F0:FA:E0:1A:AC:9F:71:15:E6:AE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2811: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2812: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235558 (0x300e2da6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:42 2017
            Not After : Sat Aug 06 23:55:42 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    98:a5:ab:d8:0a:d4:40:54:74:80:21:01:08:25:9e:59:
                    78:25:41:82:4f:e6:f3:55:56:3f:cb:83:51:b3:20:a6:
                    96:71:75:37:a9:b5:b9:7e:23:33:30:3c:d4:d0:06:f6:
                    ae:b9:94:a0:1a:49:57:15:4e:46:1c:45:91:d5:d1:61:
                    ed:71:93:7a:66:f5:11:4b:5b:2f:61:db:9d:3e:19:17:
                    08:65:25:53:37:e0:63:a3:4b:50:76:ac:52:b0:79:ad:
                    7e:89:1a:68:ba:a6:df:7a:7c:66:cd:86:01:c2:e8:0b:
                    99:a7:47:a2:b8:b2:c1:94:99:6a:5a:c1:9a:ff:85:ac:
                    31:38:af:a7:a2:e3:3a:7f:66:30:a9:6f:ab:19:e9:cf:
                    d2:8c:70:9b:06:1b:41:b3:e8:8a:2f:a1:5d:14:a9:7d:
                    2f:0f:44:60:df:50:d7:5c:e5:aa:99:20:4f:83:de:8c:
                    c1:12:16:15:3f:5c:ff:0e:dd:af:b1:ad:71:2a:b2:7d:
                    d9:92:87:db:9b:5a:db:78:58:83:10:35:6b:7a:03:1b:
                    78:01:a9:7e:6c:d2:56:c5:e6:41:c2:79:cd:26:35:47:
                    bb:a5:69:22:31:56:92:e9:aa:5a:a2:36:23:e7:06:07:
                    eb:32:80:f9:7e:4a:75:4f:a4:e9:17:fd:b4:72:e7:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3c:9e:47:39:5f:20:33:92:ed:d6:0e:a6:e7:93:9f:0d:
        c8:f0:d1:0e:6e:5f:75:28:ef:e0:f9:fc:17:d0:84:bb:
        df:bc:d0:72:36:73:82:a8:5b:da:39:bb:63:22:d7:c3:
        49:5a:f3:76:79:9e:29:e1:a3:ea:01:cf:94:d2:98:ed:
        fd:61:47:e6:74:f1:00:a6:2c:e1:f6:15:72:65:de:22:
        20:7e:99:b0:64:52:cd:ba:da:3c:d3:bd:01:71:94:35:
        e1:af:fa:ae:68:c4:29:28:f7:8d:57:23:cb:ce:5e:5f:
        d5:40:29:9b:c3:52:e9:1d:72:a5:6b:f2:6e:01:46:c7:
        4d:56:85:43:56:90:b2:2b:2b:55:90:18:97:e3:c9:27:
        c6:d4:c9:98:28:fa:bd:82:e7:3c:5f:64:80:53:d1:51:
        3d:20:c6:51:99:5a:c8:55:e8:fc:2e:c8:a9:f2:23:3b:
        4a:e3:1b:a4:26:d8:77:4d:89:3e:db:11:19:4d:31:a2:
        d0:e0:7c:ca:9a:67:0a:bb:42:a7:c7:e1:23:22:0f:ab:
        3a:22:db:e6:d0:c8:df:48:4a:14:dc:29:48:80:ad:26:
        50:a9:ce:7c:22:29:90:d7:4b:ae:b2:eb:c2:7b:75:d6:
        19:6e:64:2d:d0:88:cd:0a:84:c3:c0:ad:89:85:d1:99
    Fingerprint (SHA-256):
        49:42:11:25:47:40:0E:06:45:CE:A7:60:E5:F5:73:B9:A3:BF:A9:3A:43:EA:36:05:85:38:22:C4:63:0C:6F:27
    Fingerprint (SHA1):
        47:7A:34:87:3C:5B:B8:13:28:C5:10:7C:5E:52:30:63:E5:A5:54:A6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #2813: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2814: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #2815: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235560 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2816: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #2817: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2818: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2819: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 806235561   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2820: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2821: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #2822: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2823: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 806235562   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2824: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2825: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #2826: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2827: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 806235563   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2828: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2829: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #2830: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2831: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 806235564   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2832: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2833: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2834: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235560 (0x300e2da8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:42 2017
            Not After : Sat Aug 06 23:55:42 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:9d:47:c7:e0:00:28:ac:9d:6b:a4:27:84:56:1c:9c:
                    d5:f6:5d:81:3e:0a:f8:68:ce:08:91:e1:36:8c:c0:43:
                    58:bf:d3:ca:3b:20:20:7d:de:1d:f9:28:f7:80:ca:32:
                    05:92:b8:34:42:2f:ea:76:08:0a:ab:cb:7d:39:b0:46:
                    39:07:ef:1c:51:b5:e7:01:7b:e6:8a:35:ed:75:59:f4:
                    e7:c4:3b:ce:cb:5e:19:e9:c4:76:b6:7b:03:ce:d4:63:
                    34:ee:69:df:f9:68:03:e1:e5:92:a3:0b:ce:f3:49:53:
                    02:a5:92:e0:11:0f:ed:56:7d:5a:04:ef:4d:b7:e7:32:
                    40:38:e1:60:36:96:ef:47:62:21:56:c0:d6:03:be:c0:
                    00:d2:bc:ec:7c:6e:3c:ee:08:58:5c:b0:8f:66:aa:ab:
                    bc:15:5f:d0:2e:68:0e:26:b2:f2:43:be:58:2b:bc:c1:
                    4f:82:56:57:8e:e0:63:20:33:cc:9d:0c:6e:2e:52:a6:
                    35:78:8d:fa:0d:2d:29:13:e1:c1:da:88:f4:e3:8a:48:
                    02:fd:43:b2:77:67:02:68:50:d1:7a:bd:14:43:03:d3:
                    16:df:09:44:b9:d8:8f:90:fd:76:a6:f8:b7:80:a6:e9:
                    41:1b:1d:58:73:b6:c8:11:f2:e2:c4:80:99:50:06:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b8:20:cb:61:a6:67:bb:3b:e2:ed:4a:84:46:37:ca:95:
        94:bf:f2:54:32:01:70:99:3b:29:a1:21:e8:f0:7f:72:
        2a:6e:6b:73:de:27:33:66:85:f7:14:de:19:1b:66:df:
        c5:ac:07:1b:b1:7b:5e:0a:c2:d9:d0:1a:5d:5a:00:b5:
        9e:86:af:93:50:db:51:c0:be:b4:97:0e:fb:90:da:9a:
        da:d3:8b:94:20:51:8a:8c:77:4a:a5:b6:ab:27:ee:40:
        75:ec:fb:5f:a6:c7:e5:1d:3e:d7:8e:b9:02:aa:51:33:
        b1:79:f7:e5:fa:a0:1d:41:4f:a9:c2:b3:55:ef:24:4b:
        9e:5a:90:d9:7a:3b:15:53:50:1e:ad:d2:ef:18:5f:91:
        0a:62:6a:4e:24:cf:8b:66:a7:b8:65:7d:ba:44:7e:e6:
        39:cb:8f:aa:d8:ea:88:7a:8f:37:7b:88:9d:d2:d0:13:
        82:a2:ed:4b:49:87:42:8d:30:9c:e2:c8:9d:58:82:79:
        c9:02:32:80:8b:54:98:70:f2:2f:9d:24:e4:4c:d0:88:
        62:40:2c:d5:de:49:f4:6c:3b:30:73:46:23:e0:26:06:
        7c:7d:db:bd:91:70:85:d3:75:1f:14:72:75:3d:25:92:
        7a:f0:47:ca:0c:62:28:38:56:36:e8:50:96:79:bf:99
    Fingerprint (SHA-256):
        40:25:B8:53:6E:C8:C1:1A:76:EC:06:C4:19:91:E3:F2:9E:6C:44:75:90:14:A9:D5:EB:29:2C:A1:05:7B:EB:50
    Fingerprint (SHA1):
        9D:8F:10:7A:22:B4:85:A4:2F:53:8E:F0:14:26:CD:BC:ED:5A:9C:06
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2835: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2836: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235561 (0x300e2da9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:43 2017
            Not After : Sat Aug 06 23:55:43 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:b5:c8:85:23:1d:a5:cc:d4:e9:f3:63:a3:02:9c:38:
                    5f:8e:3f:0f:9c:9e:9e:ef:3f:b9:c8:4f:6a:d4:f4:6c:
                    f5:7a:b8:45:45:13:14:74:03:76:0a:5f:3d:4d:f2:cd:
                    63:5a:05:68:70:ae:40:c2:c9:5f:b0:cf:29:1d:8e:b3:
                    10:8c:59:e3:b5:38:4d:df:c5:e8:3f:dc:09:39:bc:c9:
                    90:9b:1e:2c:7b:c7:42:a3:21:e2:a9:5b:78:7c:6e:d0:
                    8d:30:c4:e1:a6:d4:9e:81:0c:f8:31:3a:ac:45:e5:8c:
                    5f:b3:2f:65:da:f6:40:39:7c:0c:23:2a:ac:38:b3:d7:
                    6f:e9:6d:e6:a2:b8:ee:05:79:60:d3:18:47:40:1b:2c:
                    49:02:22:7f:22:15:d3:29:d1:1b:59:c1:09:95:21:70:
                    c8:03:f6:e6:14:39:22:6b:9f:6d:5a:40:3d:86:50:20:
                    03:86:45:63:2e:01:4c:15:c8:7f:c1:f3:de:1c:a4:b8:
                    32:85:15:79:01:a0:d1:14:06:7e:e7:02:99:e9:c8:ca:
                    6b:20:a7:9d:a1:4e:b1:99:1b:b6:cd:b9:27:d1:ce:f4:
                    76:cb:a9:0a:68:6e:38:62:fe:f9:a1:a4:dd:cc:99:65:
                    7a:03:13:de:7b:dc:a2:3a:75:1e:b3:39:ec:a9:94:79
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3d:c8:94:37:98:e3:5e:94:b9:a6:cc:c8:4c:ee:c4:b4:
        26:5e:eb:7b:e2:a3:8b:ad:84:25:24:0c:c3:dc:bc:70:
        c1:ea:e7:14:04:af:1c:08:b8:af:78:5a:08:20:c8:4a:
        6c:09:3e:86:bc:e0:ff:07:65:3a:4e:0d:99:0c:e2:70:
        28:89:1f:79:f9:0d:86:2a:cc:9e:66:c1:50:f9:b7:de:
        cd:9a:bb:63:c3:81:8a:c2:81:21:2e:77:6d:9c:23:f5:
        3c:da:00:df:67:44:f3:d3:c9:f0:4a:a3:6e:e3:75:3e:
        e9:6c:3a:7e:f4:42:b5:a0:73:ab:18:54:ea:66:0d:35:
        ef:fa:4c:9a:9e:55:e9:68:98:0c:f4:bc:85:67:d6:dd:
        10:d8:5b:bf:48:77:2f:e3:be:42:bb:31:87:ee:49:86:
        80:cd:24:b2:fb:95:07:5f:dc:f9:c0:f4:35:62:6a:d4:
        68:a6:44:94:20:7e:76:49:cc:af:03:ef:1f:f3:18:ea:
        b2:04:28:d7:1e:fe:3e:a2:b4:f4:47:1d:c4:56:ee:49:
        7c:66:36:17:b0:be:89:ce:89:63:ef:f9:df:a0:fc:97:
        a2:44:7e:3c:fc:69:4a:aa:b7:55:10:42:97:fa:79:9a:
        05:a1:1f:78:36:4a:95:92:1e:88:1c:35:b4:a3:77:36
    Fingerprint (SHA-256):
        9A:A7:D9:54:5D:6E:9D:A5:88:67:FE:D4:E6:64:E2:89:C6:65:15:58:E3:AE:B3:D7:63:52:27:E6:0A:DD:1A:EF
    Fingerprint (SHA1):
        58:A4:4E:63:EE:5C:58:05:17:44:1F:EC:F0:1E:54:6C:34:E7:46:A9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2837: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2838: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235562 (0x300e2daa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:43 2017
            Not After : Sat Aug 06 23:55:43 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:dc:21:2c:d7:ac:92:df:c3:f7:86:22:56:7c:09:e5:
                    2d:93:85:43:44:02:c4:54:f0:2f:46:ea:5b:9e:4a:50:
                    d3:43:20:c9:29:40:7a:f9:b1:ce:d3:e6:c3:60:e9:51:
                    b7:dc:27:ce:07:7c:2e:c9:d6:33:4f:c6:dc:83:86:18:
                    5a:77:dc:a3:7e:c1:e3:7d:6e:6a:c5:b3:6c:c0:bc:7f:
                    b1:d2:91:bd:1c:2a:0a:72:0b:4b:86:cc:f8:9a:c6:9e:
                    40:78:b3:64:c5:ac:19:a6:c6:d3:76:b4:84:08:a3:59:
                    81:7f:d6:45:9f:a8:dc:78:b0:19:53:83:52:cd:2c:c3:
                    3e:d1:2f:dd:a8:84:ca:1f:8c:94:10:a9:ae:74:fa:ac:
                    8c:81:01:a4:68:40:88:f5:f5:a5:07:c8:a6:10:d0:8c:
                    e4:26:dd:4e:28:d6:64:57:ae:dc:f7:3c:35:f5:f4:f1:
                    ac:bd:bd:23:de:28:45:e9:6f:1a:55:16:81:28:e1:5c:
                    dd:5e:2a:c6:9b:f9:9f:4c:74:50:b0:b9:67:e1:fb:1e:
                    b5:5e:7e:a3:ec:c7:bd:8f:dc:28:76:db:5e:33:48:22:
                    aa:47:69:07:d3:bd:e9:39:44:66:d1:4a:15:76:44:ff:
                    86:17:82:98:f5:94:cd:1b:f3:e1:40:cc:cd:dc:a6:4b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        99:27:96:4d:47:21:e4:fd:03:f6:05:01:83:6b:f2:df:
        e1:71:fc:13:87:37:0a:bd:08:a1:be:23:6b:2b:c9:14:
        a5:c5:49:e1:94:32:34:40:2e:63:28:1e:06:59:0a:04:
        1e:39:10:04:96:5f:c3:74:ac:1f:2c:ea:80:98:af:56:
        79:cc:19:4f:7c:cc:10:39:b9:da:b1:24:09:d2:42:01:
        25:df:fa:27:b4:c9:83:c9:7d:37:fe:58:05:c2:84:34:
        6e:4f:a9:f2:d1:eb:14:16:e4:78:28:8f:cd:c4:f2:99:
        d6:d2:48:e3:f6:5f:5e:53:07:c1:34:d4:de:74:c8:f6:
        c6:41:9f:f6:ac:1d:5d:09:57:88:ea:f7:d1:ff:d6:9e:
        22:d8:eb:7b:44:25:b2:2b:42:4a:90:25:e0:d4:cd:d8:
        a6:61:c2:cd:9a:3d:0b:93:7a:71:82:e6:c9:ec:47:d7:
        ed:f5:4d:be:1b:0b:3c:c4:2f:3a:0c:8c:bf:19:53:6a:
        f7:e5:ee:20:a0:23:c1:99:d2:9e:29:39:31:b0:05:d2:
        75:c4:4d:1c:0a:64:bd:4b:a2:ca:be:43:2f:07:70:af:
        64:f3:95:78:ab:ae:cd:fc:87:09:3f:b8:bc:56:bb:1a:
        26:5e:66:c0:0b:12:1b:26:b0:15:fd:dd:d9:44:00:8e
    Fingerprint (SHA-256):
        FF:3A:F1:5E:09:5F:9E:AF:43:C5:EB:C7:BB:E2:1C:4D:AD:1E:5A:7B:2C:41:DC:AE:59:76:C5:68:89:8D:E5:EB
    Fingerprint (SHA1):
        FD:6E:8B:C5:59:69:61:17:F8:E5:53:24:D0:EF:1B:79:43:13:3C:24
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2839: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2840: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #2841: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #2842: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #2843: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235560 (0x300e2da8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:42 2017
            Not After : Sat Aug 06 23:55:42 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:9d:47:c7:e0:00:28:ac:9d:6b:a4:27:84:56:1c:9c:
                    d5:f6:5d:81:3e:0a:f8:68:ce:08:91:e1:36:8c:c0:43:
                    58:bf:d3:ca:3b:20:20:7d:de:1d:f9:28:f7:80:ca:32:
                    05:92:b8:34:42:2f:ea:76:08:0a:ab:cb:7d:39:b0:46:
                    39:07:ef:1c:51:b5:e7:01:7b:e6:8a:35:ed:75:59:f4:
                    e7:c4:3b:ce:cb:5e:19:e9:c4:76:b6:7b:03:ce:d4:63:
                    34:ee:69:df:f9:68:03:e1:e5:92:a3:0b:ce:f3:49:53:
                    02:a5:92:e0:11:0f:ed:56:7d:5a:04:ef:4d:b7:e7:32:
                    40:38:e1:60:36:96:ef:47:62:21:56:c0:d6:03:be:c0:
                    00:d2:bc:ec:7c:6e:3c:ee:08:58:5c:b0:8f:66:aa:ab:
                    bc:15:5f:d0:2e:68:0e:26:b2:f2:43:be:58:2b:bc:c1:
                    4f:82:56:57:8e:e0:63:20:33:cc:9d:0c:6e:2e:52:a6:
                    35:78:8d:fa:0d:2d:29:13:e1:c1:da:88:f4:e3:8a:48:
                    02:fd:43:b2:77:67:02:68:50:d1:7a:bd:14:43:03:d3:
                    16:df:09:44:b9:d8:8f:90:fd:76:a6:f8:b7:80:a6:e9:
                    41:1b:1d:58:73:b6:c8:11:f2:e2:c4:80:99:50:06:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b8:20:cb:61:a6:67:bb:3b:e2:ed:4a:84:46:37:ca:95:
        94:bf:f2:54:32:01:70:99:3b:29:a1:21:e8:f0:7f:72:
        2a:6e:6b:73:de:27:33:66:85:f7:14:de:19:1b:66:df:
        c5:ac:07:1b:b1:7b:5e:0a:c2:d9:d0:1a:5d:5a:00:b5:
        9e:86:af:93:50:db:51:c0:be:b4:97:0e:fb:90:da:9a:
        da:d3:8b:94:20:51:8a:8c:77:4a:a5:b6:ab:27:ee:40:
        75:ec:fb:5f:a6:c7:e5:1d:3e:d7:8e:b9:02:aa:51:33:
        b1:79:f7:e5:fa:a0:1d:41:4f:a9:c2:b3:55:ef:24:4b:
        9e:5a:90:d9:7a:3b:15:53:50:1e:ad:d2:ef:18:5f:91:
        0a:62:6a:4e:24:cf:8b:66:a7:b8:65:7d:ba:44:7e:e6:
        39:cb:8f:aa:d8:ea:88:7a:8f:37:7b:88:9d:d2:d0:13:
        82:a2:ed:4b:49:87:42:8d:30:9c:e2:c8:9d:58:82:79:
        c9:02:32:80:8b:54:98:70:f2:2f:9d:24:e4:4c:d0:88:
        62:40:2c:d5:de:49:f4:6c:3b:30:73:46:23:e0:26:06:
        7c:7d:db:bd:91:70:85:d3:75:1f:14:72:75:3d:25:92:
        7a:f0:47:ca:0c:62:28:38:56:36:e8:50:96:79:bf:99
    Fingerprint (SHA-256):
        40:25:B8:53:6E:C8:C1:1A:76:EC:06:C4:19:91:E3:F2:9E:6C:44:75:90:14:A9:D5:EB:29:2C:A1:05:7B:EB:50
    Fingerprint (SHA1):
        9D:8F:10:7A:22:B4:85:A4:2F:53:8E:F0:14:26:CD:BC:ED:5A:9C:06
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2844: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2845: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235561 (0x300e2da9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:43 2017
            Not After : Sat Aug 06 23:55:43 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:b5:c8:85:23:1d:a5:cc:d4:e9:f3:63:a3:02:9c:38:
                    5f:8e:3f:0f:9c:9e:9e:ef:3f:b9:c8:4f:6a:d4:f4:6c:
                    f5:7a:b8:45:45:13:14:74:03:76:0a:5f:3d:4d:f2:cd:
                    63:5a:05:68:70:ae:40:c2:c9:5f:b0:cf:29:1d:8e:b3:
                    10:8c:59:e3:b5:38:4d:df:c5:e8:3f:dc:09:39:bc:c9:
                    90:9b:1e:2c:7b:c7:42:a3:21:e2:a9:5b:78:7c:6e:d0:
                    8d:30:c4:e1:a6:d4:9e:81:0c:f8:31:3a:ac:45:e5:8c:
                    5f:b3:2f:65:da:f6:40:39:7c:0c:23:2a:ac:38:b3:d7:
                    6f:e9:6d:e6:a2:b8:ee:05:79:60:d3:18:47:40:1b:2c:
                    49:02:22:7f:22:15:d3:29:d1:1b:59:c1:09:95:21:70:
                    c8:03:f6:e6:14:39:22:6b:9f:6d:5a:40:3d:86:50:20:
                    03:86:45:63:2e:01:4c:15:c8:7f:c1:f3:de:1c:a4:b8:
                    32:85:15:79:01:a0:d1:14:06:7e:e7:02:99:e9:c8:ca:
                    6b:20:a7:9d:a1:4e:b1:99:1b:b6:cd:b9:27:d1:ce:f4:
                    76:cb:a9:0a:68:6e:38:62:fe:f9:a1:a4:dd:cc:99:65:
                    7a:03:13:de:7b:dc:a2:3a:75:1e:b3:39:ec:a9:94:79
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3d:c8:94:37:98:e3:5e:94:b9:a6:cc:c8:4c:ee:c4:b4:
        26:5e:eb:7b:e2:a3:8b:ad:84:25:24:0c:c3:dc:bc:70:
        c1:ea:e7:14:04:af:1c:08:b8:af:78:5a:08:20:c8:4a:
        6c:09:3e:86:bc:e0:ff:07:65:3a:4e:0d:99:0c:e2:70:
        28:89:1f:79:f9:0d:86:2a:cc:9e:66:c1:50:f9:b7:de:
        cd:9a:bb:63:c3:81:8a:c2:81:21:2e:77:6d:9c:23:f5:
        3c:da:00:df:67:44:f3:d3:c9:f0:4a:a3:6e:e3:75:3e:
        e9:6c:3a:7e:f4:42:b5:a0:73:ab:18:54:ea:66:0d:35:
        ef:fa:4c:9a:9e:55:e9:68:98:0c:f4:bc:85:67:d6:dd:
        10:d8:5b:bf:48:77:2f:e3:be:42:bb:31:87:ee:49:86:
        80:cd:24:b2:fb:95:07:5f:dc:f9:c0:f4:35:62:6a:d4:
        68:a6:44:94:20:7e:76:49:cc:af:03:ef:1f:f3:18:ea:
        b2:04:28:d7:1e:fe:3e:a2:b4:f4:47:1d:c4:56:ee:49:
        7c:66:36:17:b0:be:89:ce:89:63:ef:f9:df:a0:fc:97:
        a2:44:7e:3c:fc:69:4a:aa:b7:55:10:42:97:fa:79:9a:
        05:a1:1f:78:36:4a:95:92:1e:88:1c:35:b4:a3:77:36
    Fingerprint (SHA-256):
        9A:A7:D9:54:5D:6E:9D:A5:88:67:FE:D4:E6:64:E2:89:C6:65:15:58:E3:AE:B3:D7:63:52:27:E6:0A:DD:1A:EF
    Fingerprint (SHA1):
        58:A4:4E:63:EE:5C:58:05:17:44:1F:EC:F0:1E:54:6C:34:E7:46:A9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2846: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2847: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235562 (0x300e2daa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:43 2017
            Not After : Sat Aug 06 23:55:43 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:dc:21:2c:d7:ac:92:df:c3:f7:86:22:56:7c:09:e5:
                    2d:93:85:43:44:02:c4:54:f0:2f:46:ea:5b:9e:4a:50:
                    d3:43:20:c9:29:40:7a:f9:b1:ce:d3:e6:c3:60:e9:51:
                    b7:dc:27:ce:07:7c:2e:c9:d6:33:4f:c6:dc:83:86:18:
                    5a:77:dc:a3:7e:c1:e3:7d:6e:6a:c5:b3:6c:c0:bc:7f:
                    b1:d2:91:bd:1c:2a:0a:72:0b:4b:86:cc:f8:9a:c6:9e:
                    40:78:b3:64:c5:ac:19:a6:c6:d3:76:b4:84:08:a3:59:
                    81:7f:d6:45:9f:a8:dc:78:b0:19:53:83:52:cd:2c:c3:
                    3e:d1:2f:dd:a8:84:ca:1f:8c:94:10:a9:ae:74:fa:ac:
                    8c:81:01:a4:68:40:88:f5:f5:a5:07:c8:a6:10:d0:8c:
                    e4:26:dd:4e:28:d6:64:57:ae:dc:f7:3c:35:f5:f4:f1:
                    ac:bd:bd:23:de:28:45:e9:6f:1a:55:16:81:28:e1:5c:
                    dd:5e:2a:c6:9b:f9:9f:4c:74:50:b0:b9:67:e1:fb:1e:
                    b5:5e:7e:a3:ec:c7:bd:8f:dc:28:76:db:5e:33:48:22:
                    aa:47:69:07:d3:bd:e9:39:44:66:d1:4a:15:76:44:ff:
                    86:17:82:98:f5:94:cd:1b:f3:e1:40:cc:cd:dc:a6:4b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        99:27:96:4d:47:21:e4:fd:03:f6:05:01:83:6b:f2:df:
        e1:71:fc:13:87:37:0a:bd:08:a1:be:23:6b:2b:c9:14:
        a5:c5:49:e1:94:32:34:40:2e:63:28:1e:06:59:0a:04:
        1e:39:10:04:96:5f:c3:74:ac:1f:2c:ea:80:98:af:56:
        79:cc:19:4f:7c:cc:10:39:b9:da:b1:24:09:d2:42:01:
        25:df:fa:27:b4:c9:83:c9:7d:37:fe:58:05:c2:84:34:
        6e:4f:a9:f2:d1:eb:14:16:e4:78:28:8f:cd:c4:f2:99:
        d6:d2:48:e3:f6:5f:5e:53:07:c1:34:d4:de:74:c8:f6:
        c6:41:9f:f6:ac:1d:5d:09:57:88:ea:f7:d1:ff:d6:9e:
        22:d8:eb:7b:44:25:b2:2b:42:4a:90:25:e0:d4:cd:d8:
        a6:61:c2:cd:9a:3d:0b:93:7a:71:82:e6:c9:ec:47:d7:
        ed:f5:4d:be:1b:0b:3c:c4:2f:3a:0c:8c:bf:19:53:6a:
        f7:e5:ee:20:a0:23:c1:99:d2:9e:29:39:31:b0:05:d2:
        75:c4:4d:1c:0a:64:bd:4b:a2:ca:be:43:2f:07:70:af:
        64:f3:95:78:ab:ae:cd:fc:87:09:3f:b8:bc:56:bb:1a:
        26:5e:66:c0:0b:12:1b:26:b0:15:fd:dd:d9:44:00:8e
    Fingerprint (SHA-256):
        FF:3A:F1:5E:09:5F:9E:AF:43:C5:EB:C7:BB:E2:1C:4D:AD:1E:5A:7B:2C:41:DC:AE:59:76:C5:68:89:8D:E5:EB
    Fingerprint (SHA1):
        FD:6E:8B:C5:59:69:61:17:F8:E5:53:24:D0:EF:1B:79:43:13:3C:24
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2848: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2849: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235560 (0x300e2da8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:42 2017
            Not After : Sat Aug 06 23:55:42 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:9d:47:c7:e0:00:28:ac:9d:6b:a4:27:84:56:1c:9c:
                    d5:f6:5d:81:3e:0a:f8:68:ce:08:91:e1:36:8c:c0:43:
                    58:bf:d3:ca:3b:20:20:7d:de:1d:f9:28:f7:80:ca:32:
                    05:92:b8:34:42:2f:ea:76:08:0a:ab:cb:7d:39:b0:46:
                    39:07:ef:1c:51:b5:e7:01:7b:e6:8a:35:ed:75:59:f4:
                    e7:c4:3b:ce:cb:5e:19:e9:c4:76:b6:7b:03:ce:d4:63:
                    34:ee:69:df:f9:68:03:e1:e5:92:a3:0b:ce:f3:49:53:
                    02:a5:92:e0:11:0f:ed:56:7d:5a:04:ef:4d:b7:e7:32:
                    40:38:e1:60:36:96:ef:47:62:21:56:c0:d6:03:be:c0:
                    00:d2:bc:ec:7c:6e:3c:ee:08:58:5c:b0:8f:66:aa:ab:
                    bc:15:5f:d0:2e:68:0e:26:b2:f2:43:be:58:2b:bc:c1:
                    4f:82:56:57:8e:e0:63:20:33:cc:9d:0c:6e:2e:52:a6:
                    35:78:8d:fa:0d:2d:29:13:e1:c1:da:88:f4:e3:8a:48:
                    02:fd:43:b2:77:67:02:68:50:d1:7a:bd:14:43:03:d3:
                    16:df:09:44:b9:d8:8f:90:fd:76:a6:f8:b7:80:a6:e9:
                    41:1b:1d:58:73:b6:c8:11:f2:e2:c4:80:99:50:06:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b8:20:cb:61:a6:67:bb:3b:e2:ed:4a:84:46:37:ca:95:
        94:bf:f2:54:32:01:70:99:3b:29:a1:21:e8:f0:7f:72:
        2a:6e:6b:73:de:27:33:66:85:f7:14:de:19:1b:66:df:
        c5:ac:07:1b:b1:7b:5e:0a:c2:d9:d0:1a:5d:5a:00:b5:
        9e:86:af:93:50:db:51:c0:be:b4:97:0e:fb:90:da:9a:
        da:d3:8b:94:20:51:8a:8c:77:4a:a5:b6:ab:27:ee:40:
        75:ec:fb:5f:a6:c7:e5:1d:3e:d7:8e:b9:02:aa:51:33:
        b1:79:f7:e5:fa:a0:1d:41:4f:a9:c2:b3:55:ef:24:4b:
        9e:5a:90:d9:7a:3b:15:53:50:1e:ad:d2:ef:18:5f:91:
        0a:62:6a:4e:24:cf:8b:66:a7:b8:65:7d:ba:44:7e:e6:
        39:cb:8f:aa:d8:ea:88:7a:8f:37:7b:88:9d:d2:d0:13:
        82:a2:ed:4b:49:87:42:8d:30:9c:e2:c8:9d:58:82:79:
        c9:02:32:80:8b:54:98:70:f2:2f:9d:24:e4:4c:d0:88:
        62:40:2c:d5:de:49:f4:6c:3b:30:73:46:23:e0:26:06:
        7c:7d:db:bd:91:70:85:d3:75:1f:14:72:75:3d:25:92:
        7a:f0:47:ca:0c:62:28:38:56:36:e8:50:96:79:bf:99
    Fingerprint (SHA-256):
        40:25:B8:53:6E:C8:C1:1A:76:EC:06:C4:19:91:E3:F2:9E:6C:44:75:90:14:A9:D5:EB:29:2C:A1:05:7B:EB:50
    Fingerprint (SHA1):
        9D:8F:10:7A:22:B4:85:A4:2F:53:8E:F0:14:26:CD:BC:ED:5A:9C:06
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2850: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235560 (0x300e2da8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:42 2017
            Not After : Sat Aug 06 23:55:42 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:9d:47:c7:e0:00:28:ac:9d:6b:a4:27:84:56:1c:9c:
                    d5:f6:5d:81:3e:0a:f8:68:ce:08:91:e1:36:8c:c0:43:
                    58:bf:d3:ca:3b:20:20:7d:de:1d:f9:28:f7:80:ca:32:
                    05:92:b8:34:42:2f:ea:76:08:0a:ab:cb:7d:39:b0:46:
                    39:07:ef:1c:51:b5:e7:01:7b:e6:8a:35:ed:75:59:f4:
                    e7:c4:3b:ce:cb:5e:19:e9:c4:76:b6:7b:03:ce:d4:63:
                    34:ee:69:df:f9:68:03:e1:e5:92:a3:0b:ce:f3:49:53:
                    02:a5:92:e0:11:0f:ed:56:7d:5a:04:ef:4d:b7:e7:32:
                    40:38:e1:60:36:96:ef:47:62:21:56:c0:d6:03:be:c0:
                    00:d2:bc:ec:7c:6e:3c:ee:08:58:5c:b0:8f:66:aa:ab:
                    bc:15:5f:d0:2e:68:0e:26:b2:f2:43:be:58:2b:bc:c1:
                    4f:82:56:57:8e:e0:63:20:33:cc:9d:0c:6e:2e:52:a6:
                    35:78:8d:fa:0d:2d:29:13:e1:c1:da:88:f4:e3:8a:48:
                    02:fd:43:b2:77:67:02:68:50:d1:7a:bd:14:43:03:d3:
                    16:df:09:44:b9:d8:8f:90:fd:76:a6:f8:b7:80:a6:e9:
                    41:1b:1d:58:73:b6:c8:11:f2:e2:c4:80:99:50:06:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b8:20:cb:61:a6:67:bb:3b:e2:ed:4a:84:46:37:ca:95:
        94:bf:f2:54:32:01:70:99:3b:29:a1:21:e8:f0:7f:72:
        2a:6e:6b:73:de:27:33:66:85:f7:14:de:19:1b:66:df:
        c5:ac:07:1b:b1:7b:5e:0a:c2:d9:d0:1a:5d:5a:00:b5:
        9e:86:af:93:50:db:51:c0:be:b4:97:0e:fb:90:da:9a:
        da:d3:8b:94:20:51:8a:8c:77:4a:a5:b6:ab:27:ee:40:
        75:ec:fb:5f:a6:c7:e5:1d:3e:d7:8e:b9:02:aa:51:33:
        b1:79:f7:e5:fa:a0:1d:41:4f:a9:c2:b3:55:ef:24:4b:
        9e:5a:90:d9:7a:3b:15:53:50:1e:ad:d2:ef:18:5f:91:
        0a:62:6a:4e:24:cf:8b:66:a7:b8:65:7d:ba:44:7e:e6:
        39:cb:8f:aa:d8:ea:88:7a:8f:37:7b:88:9d:d2:d0:13:
        82:a2:ed:4b:49:87:42:8d:30:9c:e2:c8:9d:58:82:79:
        c9:02:32:80:8b:54:98:70:f2:2f:9d:24:e4:4c:d0:88:
        62:40:2c:d5:de:49:f4:6c:3b:30:73:46:23:e0:26:06:
        7c:7d:db:bd:91:70:85:d3:75:1f:14:72:75:3d:25:92:
        7a:f0:47:ca:0c:62:28:38:56:36:e8:50:96:79:bf:99
    Fingerprint (SHA-256):
        40:25:B8:53:6E:C8:C1:1A:76:EC:06:C4:19:91:E3:F2:9E:6C:44:75:90:14:A9:D5:EB:29:2C:A1:05:7B:EB:50
    Fingerprint (SHA1):
        9D:8F:10:7A:22:B4:85:A4:2F:53:8E:F0:14:26:CD:BC:ED:5A:9C:06
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2851: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235561 (0x300e2da9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:43 2017
            Not After : Sat Aug 06 23:55:43 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:b5:c8:85:23:1d:a5:cc:d4:e9:f3:63:a3:02:9c:38:
                    5f:8e:3f:0f:9c:9e:9e:ef:3f:b9:c8:4f:6a:d4:f4:6c:
                    f5:7a:b8:45:45:13:14:74:03:76:0a:5f:3d:4d:f2:cd:
                    63:5a:05:68:70:ae:40:c2:c9:5f:b0:cf:29:1d:8e:b3:
                    10:8c:59:e3:b5:38:4d:df:c5:e8:3f:dc:09:39:bc:c9:
                    90:9b:1e:2c:7b:c7:42:a3:21:e2:a9:5b:78:7c:6e:d0:
                    8d:30:c4:e1:a6:d4:9e:81:0c:f8:31:3a:ac:45:e5:8c:
                    5f:b3:2f:65:da:f6:40:39:7c:0c:23:2a:ac:38:b3:d7:
                    6f:e9:6d:e6:a2:b8:ee:05:79:60:d3:18:47:40:1b:2c:
                    49:02:22:7f:22:15:d3:29:d1:1b:59:c1:09:95:21:70:
                    c8:03:f6:e6:14:39:22:6b:9f:6d:5a:40:3d:86:50:20:
                    03:86:45:63:2e:01:4c:15:c8:7f:c1:f3:de:1c:a4:b8:
                    32:85:15:79:01:a0:d1:14:06:7e:e7:02:99:e9:c8:ca:
                    6b:20:a7:9d:a1:4e:b1:99:1b:b6:cd:b9:27:d1:ce:f4:
                    76:cb:a9:0a:68:6e:38:62:fe:f9:a1:a4:dd:cc:99:65:
                    7a:03:13:de:7b:dc:a2:3a:75:1e:b3:39:ec:a9:94:79
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3d:c8:94:37:98:e3:5e:94:b9:a6:cc:c8:4c:ee:c4:b4:
        26:5e:eb:7b:e2:a3:8b:ad:84:25:24:0c:c3:dc:bc:70:
        c1:ea:e7:14:04:af:1c:08:b8:af:78:5a:08:20:c8:4a:
        6c:09:3e:86:bc:e0:ff:07:65:3a:4e:0d:99:0c:e2:70:
        28:89:1f:79:f9:0d:86:2a:cc:9e:66:c1:50:f9:b7:de:
        cd:9a:bb:63:c3:81:8a:c2:81:21:2e:77:6d:9c:23:f5:
        3c:da:00:df:67:44:f3:d3:c9:f0:4a:a3:6e:e3:75:3e:
        e9:6c:3a:7e:f4:42:b5:a0:73:ab:18:54:ea:66:0d:35:
        ef:fa:4c:9a:9e:55:e9:68:98:0c:f4:bc:85:67:d6:dd:
        10:d8:5b:bf:48:77:2f:e3:be:42:bb:31:87:ee:49:86:
        80:cd:24:b2:fb:95:07:5f:dc:f9:c0:f4:35:62:6a:d4:
        68:a6:44:94:20:7e:76:49:cc:af:03:ef:1f:f3:18:ea:
        b2:04:28:d7:1e:fe:3e:a2:b4:f4:47:1d:c4:56:ee:49:
        7c:66:36:17:b0:be:89:ce:89:63:ef:f9:df:a0:fc:97:
        a2:44:7e:3c:fc:69:4a:aa:b7:55:10:42:97:fa:79:9a:
        05:a1:1f:78:36:4a:95:92:1e:88:1c:35:b4:a3:77:36
    Fingerprint (SHA-256):
        9A:A7:D9:54:5D:6E:9D:A5:88:67:FE:D4:E6:64:E2:89:C6:65:15:58:E3:AE:B3:D7:63:52:27:E6:0A:DD:1A:EF
    Fingerprint (SHA1):
        58:A4:4E:63:EE:5C:58:05:17:44:1F:EC:F0:1E:54:6C:34:E7:46:A9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2852: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235561 (0x300e2da9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:43 2017
            Not After : Sat Aug 06 23:55:43 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:b5:c8:85:23:1d:a5:cc:d4:e9:f3:63:a3:02:9c:38:
                    5f:8e:3f:0f:9c:9e:9e:ef:3f:b9:c8:4f:6a:d4:f4:6c:
                    f5:7a:b8:45:45:13:14:74:03:76:0a:5f:3d:4d:f2:cd:
                    63:5a:05:68:70:ae:40:c2:c9:5f:b0:cf:29:1d:8e:b3:
                    10:8c:59:e3:b5:38:4d:df:c5:e8:3f:dc:09:39:bc:c9:
                    90:9b:1e:2c:7b:c7:42:a3:21:e2:a9:5b:78:7c:6e:d0:
                    8d:30:c4:e1:a6:d4:9e:81:0c:f8:31:3a:ac:45:e5:8c:
                    5f:b3:2f:65:da:f6:40:39:7c:0c:23:2a:ac:38:b3:d7:
                    6f:e9:6d:e6:a2:b8:ee:05:79:60:d3:18:47:40:1b:2c:
                    49:02:22:7f:22:15:d3:29:d1:1b:59:c1:09:95:21:70:
                    c8:03:f6:e6:14:39:22:6b:9f:6d:5a:40:3d:86:50:20:
                    03:86:45:63:2e:01:4c:15:c8:7f:c1:f3:de:1c:a4:b8:
                    32:85:15:79:01:a0:d1:14:06:7e:e7:02:99:e9:c8:ca:
                    6b:20:a7:9d:a1:4e:b1:99:1b:b6:cd:b9:27:d1:ce:f4:
                    76:cb:a9:0a:68:6e:38:62:fe:f9:a1:a4:dd:cc:99:65:
                    7a:03:13:de:7b:dc:a2:3a:75:1e:b3:39:ec:a9:94:79
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3d:c8:94:37:98:e3:5e:94:b9:a6:cc:c8:4c:ee:c4:b4:
        26:5e:eb:7b:e2:a3:8b:ad:84:25:24:0c:c3:dc:bc:70:
        c1:ea:e7:14:04:af:1c:08:b8:af:78:5a:08:20:c8:4a:
        6c:09:3e:86:bc:e0:ff:07:65:3a:4e:0d:99:0c:e2:70:
        28:89:1f:79:f9:0d:86:2a:cc:9e:66:c1:50:f9:b7:de:
        cd:9a:bb:63:c3:81:8a:c2:81:21:2e:77:6d:9c:23:f5:
        3c:da:00:df:67:44:f3:d3:c9:f0:4a:a3:6e:e3:75:3e:
        e9:6c:3a:7e:f4:42:b5:a0:73:ab:18:54:ea:66:0d:35:
        ef:fa:4c:9a:9e:55:e9:68:98:0c:f4:bc:85:67:d6:dd:
        10:d8:5b:bf:48:77:2f:e3:be:42:bb:31:87:ee:49:86:
        80:cd:24:b2:fb:95:07:5f:dc:f9:c0:f4:35:62:6a:d4:
        68:a6:44:94:20:7e:76:49:cc:af:03:ef:1f:f3:18:ea:
        b2:04:28:d7:1e:fe:3e:a2:b4:f4:47:1d:c4:56:ee:49:
        7c:66:36:17:b0:be:89:ce:89:63:ef:f9:df:a0:fc:97:
        a2:44:7e:3c:fc:69:4a:aa:b7:55:10:42:97:fa:79:9a:
        05:a1:1f:78:36:4a:95:92:1e:88:1c:35:b4:a3:77:36
    Fingerprint (SHA-256):
        9A:A7:D9:54:5D:6E:9D:A5:88:67:FE:D4:E6:64:E2:89:C6:65:15:58:E3:AE:B3:D7:63:52:27:E6:0A:DD:1A:EF
    Fingerprint (SHA1):
        58:A4:4E:63:EE:5C:58:05:17:44:1F:EC:F0:1E:54:6C:34:E7:46:A9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2853: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235562 (0x300e2daa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:43 2017
            Not After : Sat Aug 06 23:55:43 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:dc:21:2c:d7:ac:92:df:c3:f7:86:22:56:7c:09:e5:
                    2d:93:85:43:44:02:c4:54:f0:2f:46:ea:5b:9e:4a:50:
                    d3:43:20:c9:29:40:7a:f9:b1:ce:d3:e6:c3:60:e9:51:
                    b7:dc:27:ce:07:7c:2e:c9:d6:33:4f:c6:dc:83:86:18:
                    5a:77:dc:a3:7e:c1:e3:7d:6e:6a:c5:b3:6c:c0:bc:7f:
                    b1:d2:91:bd:1c:2a:0a:72:0b:4b:86:cc:f8:9a:c6:9e:
                    40:78:b3:64:c5:ac:19:a6:c6:d3:76:b4:84:08:a3:59:
                    81:7f:d6:45:9f:a8:dc:78:b0:19:53:83:52:cd:2c:c3:
                    3e:d1:2f:dd:a8:84:ca:1f:8c:94:10:a9:ae:74:fa:ac:
                    8c:81:01:a4:68:40:88:f5:f5:a5:07:c8:a6:10:d0:8c:
                    e4:26:dd:4e:28:d6:64:57:ae:dc:f7:3c:35:f5:f4:f1:
                    ac:bd:bd:23:de:28:45:e9:6f:1a:55:16:81:28:e1:5c:
                    dd:5e:2a:c6:9b:f9:9f:4c:74:50:b0:b9:67:e1:fb:1e:
                    b5:5e:7e:a3:ec:c7:bd:8f:dc:28:76:db:5e:33:48:22:
                    aa:47:69:07:d3:bd:e9:39:44:66:d1:4a:15:76:44:ff:
                    86:17:82:98:f5:94:cd:1b:f3:e1:40:cc:cd:dc:a6:4b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        99:27:96:4d:47:21:e4:fd:03:f6:05:01:83:6b:f2:df:
        e1:71:fc:13:87:37:0a:bd:08:a1:be:23:6b:2b:c9:14:
        a5:c5:49:e1:94:32:34:40:2e:63:28:1e:06:59:0a:04:
        1e:39:10:04:96:5f:c3:74:ac:1f:2c:ea:80:98:af:56:
        79:cc:19:4f:7c:cc:10:39:b9:da:b1:24:09:d2:42:01:
        25:df:fa:27:b4:c9:83:c9:7d:37:fe:58:05:c2:84:34:
        6e:4f:a9:f2:d1:eb:14:16:e4:78:28:8f:cd:c4:f2:99:
        d6:d2:48:e3:f6:5f:5e:53:07:c1:34:d4:de:74:c8:f6:
        c6:41:9f:f6:ac:1d:5d:09:57:88:ea:f7:d1:ff:d6:9e:
        22:d8:eb:7b:44:25:b2:2b:42:4a:90:25:e0:d4:cd:d8:
        a6:61:c2:cd:9a:3d:0b:93:7a:71:82:e6:c9:ec:47:d7:
        ed:f5:4d:be:1b:0b:3c:c4:2f:3a:0c:8c:bf:19:53:6a:
        f7:e5:ee:20:a0:23:c1:99:d2:9e:29:39:31:b0:05:d2:
        75:c4:4d:1c:0a:64:bd:4b:a2:ca:be:43:2f:07:70:af:
        64:f3:95:78:ab:ae:cd:fc:87:09:3f:b8:bc:56:bb:1a:
        26:5e:66:c0:0b:12:1b:26:b0:15:fd:dd:d9:44:00:8e
    Fingerprint (SHA-256):
        FF:3A:F1:5E:09:5F:9E:AF:43:C5:EB:C7:BB:E2:1C:4D:AD:1E:5A:7B:2C:41:DC:AE:59:76:C5:68:89:8D:E5:EB
    Fingerprint (SHA1):
        FD:6E:8B:C5:59:69:61:17:F8:E5:53:24:D0:EF:1B:79:43:13:3C:24
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2854: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235562 (0x300e2daa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:43 2017
            Not After : Sat Aug 06 23:55:43 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:dc:21:2c:d7:ac:92:df:c3:f7:86:22:56:7c:09:e5:
                    2d:93:85:43:44:02:c4:54:f0:2f:46:ea:5b:9e:4a:50:
                    d3:43:20:c9:29:40:7a:f9:b1:ce:d3:e6:c3:60:e9:51:
                    b7:dc:27:ce:07:7c:2e:c9:d6:33:4f:c6:dc:83:86:18:
                    5a:77:dc:a3:7e:c1:e3:7d:6e:6a:c5:b3:6c:c0:bc:7f:
                    b1:d2:91:bd:1c:2a:0a:72:0b:4b:86:cc:f8:9a:c6:9e:
                    40:78:b3:64:c5:ac:19:a6:c6:d3:76:b4:84:08:a3:59:
                    81:7f:d6:45:9f:a8:dc:78:b0:19:53:83:52:cd:2c:c3:
                    3e:d1:2f:dd:a8:84:ca:1f:8c:94:10:a9:ae:74:fa:ac:
                    8c:81:01:a4:68:40:88:f5:f5:a5:07:c8:a6:10:d0:8c:
                    e4:26:dd:4e:28:d6:64:57:ae:dc:f7:3c:35:f5:f4:f1:
                    ac:bd:bd:23:de:28:45:e9:6f:1a:55:16:81:28:e1:5c:
                    dd:5e:2a:c6:9b:f9:9f:4c:74:50:b0:b9:67:e1:fb:1e:
                    b5:5e:7e:a3:ec:c7:bd:8f:dc:28:76:db:5e:33:48:22:
                    aa:47:69:07:d3:bd:e9:39:44:66:d1:4a:15:76:44:ff:
                    86:17:82:98:f5:94:cd:1b:f3:e1:40:cc:cd:dc:a6:4b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        99:27:96:4d:47:21:e4:fd:03:f6:05:01:83:6b:f2:df:
        e1:71:fc:13:87:37:0a:bd:08:a1:be:23:6b:2b:c9:14:
        a5:c5:49:e1:94:32:34:40:2e:63:28:1e:06:59:0a:04:
        1e:39:10:04:96:5f:c3:74:ac:1f:2c:ea:80:98:af:56:
        79:cc:19:4f:7c:cc:10:39:b9:da:b1:24:09:d2:42:01:
        25:df:fa:27:b4:c9:83:c9:7d:37:fe:58:05:c2:84:34:
        6e:4f:a9:f2:d1:eb:14:16:e4:78:28:8f:cd:c4:f2:99:
        d6:d2:48:e3:f6:5f:5e:53:07:c1:34:d4:de:74:c8:f6:
        c6:41:9f:f6:ac:1d:5d:09:57:88:ea:f7:d1:ff:d6:9e:
        22:d8:eb:7b:44:25:b2:2b:42:4a:90:25:e0:d4:cd:d8:
        a6:61:c2:cd:9a:3d:0b:93:7a:71:82:e6:c9:ec:47:d7:
        ed:f5:4d:be:1b:0b:3c:c4:2f:3a:0c:8c:bf:19:53:6a:
        f7:e5:ee:20:a0:23:c1:99:d2:9e:29:39:31:b0:05:d2:
        75:c4:4d:1c:0a:64:bd:4b:a2:ca:be:43:2f:07:70:af:
        64:f3:95:78:ab:ae:cd:fc:87:09:3f:b8:bc:56:bb:1a:
        26:5e:66:c0:0b:12:1b:26:b0:15:fd:dd:d9:44:00:8e
    Fingerprint (SHA-256):
        FF:3A:F1:5E:09:5F:9E:AF:43:C5:EB:C7:BB:E2:1C:4D:AD:1E:5A:7B:2C:41:DC:AE:59:76:C5:68:89:8D:E5:EB
    Fingerprint (SHA1):
        FD:6E:8B:C5:59:69:61:17:F8:E5:53:24:D0:EF:1B:79:43:13:3C:24
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2855: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #2856: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235565 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2857: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #2858: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2859: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2860: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 806235566   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2861: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2862: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #2863: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2864: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 806235567   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #2865: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2866: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #2867: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2868: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 806235568   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2869: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2870: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #2871: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2872: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 806235569   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2873: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2874: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #2875: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2876: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 806235570   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2877: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2878: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #2879: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2880: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 806235571   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2881: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2882: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2883: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #2884: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #2885: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #2886: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #2887: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235565 (0x300e2dad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:44 2017
            Not After : Sat Aug 06 23:55:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:e9:76:8f:c0:07:ef:36:23:ad:8e:6c:82:a0:57:f8:
                    ab:e4:66:49:12:1a:d0:ec:82:be:7d:32:81:63:be:95:
                    eb:c4:aa:c7:13:46:3d:f5:5f:1b:77:ab:e1:f1:4f:7e:
                    e1:99:40:fa:d4:ab:aa:56:66:f3:d1:19:32:c1:a7:00:
                    c7:b4:27:f4:f7:8f:ca:a0:93:d2:92:c1:21:be:33:a8:
                    8c:56:03:7c:98:35:8e:2b:b2:fb:15:95:8c:43:a8:c4:
                    fe:60:68:08:19:b5:17:fb:7d:ab:a9:e4:5e:01:71:57:
                    81:1a:93:4a:17:68:56:03:18:24:a2:ae:4e:4d:9e:d6:
                    8d:b2:9a:7c:0d:a6:7e:dd:0e:09:fa:01:19:24:9f:77:
                    24:26:9d:a5:12:09:82:bf:c9:59:ba:65:f2:82:1f:a8:
                    4d:9e:85:51:67:d8:c9:fc:d8:f3:31:77:e4:a6:29:00:
                    65:fc:fd:7f:37:db:94:09:86:55:29:51:50:73:83:9c:
                    4d:9c:a4:31:21:05:9f:e7:63:ae:02:00:ad:7a:f5:17:
                    55:a6:fa:d3:90:9c:ba:1b:8a:b8:99:f4:ac:42:f8:50:
                    6f:24:af:7c:46:8b:02:41:e0:b8:1f:1c:3d:ac:6f:8b:
                    76:db:57:24:f2:03:d6:85:f0:27:61:bf:89:5e:35:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        96:c9:41:ea:42:84:6b:70:7c:ef:5f:31:83:c9:e0:0c:
        8c:54:3a:7c:1b:47:03:cc:af:54:48:2f:73:c4:90:23:
        9f:7b:4f:38:f8:07:d5:07:7b:bb:51:52:e1:1c:68:7f:
        ad:7d:b8:1e:a4:b8:c6:ff:28:cd:df:20:06:50:a7:ec:
        71:e5:81:41:ca:a3:59:fd:e3:4d:bf:a7:81:70:fa:cc:
        85:e8:b7:c3:af:f9:7d:7f:aa:f4:d4:81:5b:e5:80:53:
        ba:8c:b5:d0:94:83:2e:a7:3a:72:7b:d5:7c:e8:37:80:
        03:82:d4:b3:ec:0c:b1:03:7d:5e:9b:99:25:3f:91:62:
        9c:cd:95:84:9e:43:79:1d:4e:fd:0c:d1:3f:92:1d:90:
        0b:2c:cb:88:31:58:27:35:25:ec:51:89:5b:ab:8c:11:
        19:76:6c:c0:7c:77:92:f0:10:16:53:5b:97:63:32:4a:
        5b:35:aa:bd:84:b7:bb:53:85:7d:83:e1:d8:32:f2:dc:
        3d:ac:3f:e6:77:22:4b:f8:04:c9:77:ad:06:26:23:2c:
        bd:86:48:6f:e0:04:aa:ce:8f:c7:d5:80:e9:8d:f2:3c:
        c0:0e:0a:6f:1b:b4:38:a0:52:ff:7f:7e:ef:df:45:53:
        27:2d:5e:56:fe:05:f8:94:4c:bb:eb:f5:84:43:f8:aa
    Fingerprint (SHA-256):
        FC:17:B6:D9:D5:37:E8:49:8E:3C:50:2F:3A:FC:80:04:7C:6B:D4:9C:64:84:2A:67:C7:CF:F3:0C:16:2C:E4:5A
    Fingerprint (SHA1):
        93:13:B7:54:0A:41:69:07:73:B8:A4:4F:CE:10:8F:E5:D1:0B:CF:A9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2888: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2889: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2890: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2891: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235565 (0x300e2dad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:44 2017
            Not After : Sat Aug 06 23:55:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:e9:76:8f:c0:07:ef:36:23:ad:8e:6c:82:a0:57:f8:
                    ab:e4:66:49:12:1a:d0:ec:82:be:7d:32:81:63:be:95:
                    eb:c4:aa:c7:13:46:3d:f5:5f:1b:77:ab:e1:f1:4f:7e:
                    e1:99:40:fa:d4:ab:aa:56:66:f3:d1:19:32:c1:a7:00:
                    c7:b4:27:f4:f7:8f:ca:a0:93:d2:92:c1:21:be:33:a8:
                    8c:56:03:7c:98:35:8e:2b:b2:fb:15:95:8c:43:a8:c4:
                    fe:60:68:08:19:b5:17:fb:7d:ab:a9:e4:5e:01:71:57:
                    81:1a:93:4a:17:68:56:03:18:24:a2:ae:4e:4d:9e:d6:
                    8d:b2:9a:7c:0d:a6:7e:dd:0e:09:fa:01:19:24:9f:77:
                    24:26:9d:a5:12:09:82:bf:c9:59:ba:65:f2:82:1f:a8:
                    4d:9e:85:51:67:d8:c9:fc:d8:f3:31:77:e4:a6:29:00:
                    65:fc:fd:7f:37:db:94:09:86:55:29:51:50:73:83:9c:
                    4d:9c:a4:31:21:05:9f:e7:63:ae:02:00:ad:7a:f5:17:
                    55:a6:fa:d3:90:9c:ba:1b:8a:b8:99:f4:ac:42:f8:50:
                    6f:24:af:7c:46:8b:02:41:e0:b8:1f:1c:3d:ac:6f:8b:
                    76:db:57:24:f2:03:d6:85:f0:27:61:bf:89:5e:35:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        96:c9:41:ea:42:84:6b:70:7c:ef:5f:31:83:c9:e0:0c:
        8c:54:3a:7c:1b:47:03:cc:af:54:48:2f:73:c4:90:23:
        9f:7b:4f:38:f8:07:d5:07:7b:bb:51:52:e1:1c:68:7f:
        ad:7d:b8:1e:a4:b8:c6:ff:28:cd:df:20:06:50:a7:ec:
        71:e5:81:41:ca:a3:59:fd:e3:4d:bf:a7:81:70:fa:cc:
        85:e8:b7:c3:af:f9:7d:7f:aa:f4:d4:81:5b:e5:80:53:
        ba:8c:b5:d0:94:83:2e:a7:3a:72:7b:d5:7c:e8:37:80:
        03:82:d4:b3:ec:0c:b1:03:7d:5e:9b:99:25:3f:91:62:
        9c:cd:95:84:9e:43:79:1d:4e:fd:0c:d1:3f:92:1d:90:
        0b:2c:cb:88:31:58:27:35:25:ec:51:89:5b:ab:8c:11:
        19:76:6c:c0:7c:77:92:f0:10:16:53:5b:97:63:32:4a:
        5b:35:aa:bd:84:b7:bb:53:85:7d:83:e1:d8:32:f2:dc:
        3d:ac:3f:e6:77:22:4b:f8:04:c9:77:ad:06:26:23:2c:
        bd:86:48:6f:e0:04:aa:ce:8f:c7:d5:80:e9:8d:f2:3c:
        c0:0e:0a:6f:1b:b4:38:a0:52:ff:7f:7e:ef:df:45:53:
        27:2d:5e:56:fe:05:f8:94:4c:bb:eb:f5:84:43:f8:aa
    Fingerprint (SHA-256):
        FC:17:B6:D9:D5:37:E8:49:8E:3C:50:2F:3A:FC:80:04:7C:6B:D4:9C:64:84:2A:67:C7:CF:F3:0C:16:2C:E4:5A
    Fingerprint (SHA1):
        93:13:B7:54:0A:41:69:07:73:B8:A4:4F:CE:10:8F:E5:D1:0B:CF:A9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2892: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2893: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #2894: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235572 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2895: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #2896: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2897: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2898: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 806235573   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #2899: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2900: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #2901: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2902: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 806235574   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2903: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2904: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #2905: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2906: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 806235575   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2907: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2908: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #2909: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2910: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 806235576   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2911: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2912: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #2913: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2914: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 806235577   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2915: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2916: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #2917: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2918: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 806235578   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2919: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2920: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #2921: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2922: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 806235579   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2923: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2924: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #2925: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2926: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 806235580   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #2927: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2928: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #2929: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2930: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 806235581   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2931: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2932: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #2933: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2934: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 806235582   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2935: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2936: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #2937: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2938: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 806235583   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2939: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2940: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #2941: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2942: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 806235584   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2943: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2944: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #2945: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2946: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 806235585   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2947: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2948: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #2949: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2950: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 806235586   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2951: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2952: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #2953: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2954: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 806235587   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2955: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2956: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #2957: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2958: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 806235588   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2959: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2960: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #2961: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2962: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 806235589   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #2963: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2964: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #2965: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2966: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 806235590   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2967: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2968: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #2969: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2970: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 806235591   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2971: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2972: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #2973: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2974: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 806235592   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2975: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2976: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #2977: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2978: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 806235593   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2979: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2980: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #2981: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2982: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 806235594   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2983: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2984: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #2985: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2986: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 806235595   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2987: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2988: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #2989: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2990: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 806235596   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2991: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2992: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #2993: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2994: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 806235597   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2995: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2996: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #2997: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2998: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 806235598   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2999: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3000: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #3001: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3002: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 806235599   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3003: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3004: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #3005: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3006: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 806235600   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3007: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3008: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #3009: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3010: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 806235601   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3011: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3012: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3013: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235572 (0x300e2db4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:46 2017
            Not After : Sat Aug 06 23:55:46 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:1c:40:37:96:05:b8:db:94:77:86:d7:b4:2f:5a:7b:
                    c6:0f:af:2e:f1:5b:78:19:9d:58:60:34:32:b8:30:27:
                    33:cd:93:4e:e0:03:e3:62:d2:79:28:4e:e4:b6:29:dd:
                    52:67:38:f4:64:7a:4d:21:92:43:be:bd:4a:f9:b2:3c:
                    6c:12:3a:5d:2b:09:42:0f:27:7a:d5:72:6d:14:01:e2:
                    fe:72:3b:80:42:14:7e:65:a4:b4:67:20:75:8b:e1:26:
                    a8:41:73:9d:7f:bd:bd:2b:d3:d8:c3:6e:c7:42:9a:e2:
                    8f:63:08:26:f0:5e:3f:62:d1:93:19:a7:ca:84:4b:f5:
                    50:1c:75:f8:99:2c:ab:7e:04:00:37:3e:7a:ba:41:7d:
                    9f:17:bc:41:cb:0d:eb:cd:38:82:8a:90:b6:33:de:e0:
                    b5:cf:11:9f:f2:6f:47:c0:55:35:0a:b3:94:b0:cf:17:
                    1a:b1:a5:0c:bf:8b:27:2d:c3:aa:5d:cf:47:74:11:1c:
                    ec:be:e9:b3:17:d9:6d:c7:22:08:0d:eb:e5:af:fd:d7:
                    11:d3:f6:4a:2a:c0:00:62:68:84:62:26:99:07:2e:93:
                    f5:78:cd:f5:d9:e4:58:7e:c9:a9:d9:23:c2:c6:93:5c:
                    54:36:90:d0:f1:30:97:89:be:8d:1a:b8:a4:69:8e:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:6d:9d:1d:1d:93:c6:2e:57:19:44:57:a4:54:50:d6:
        6f:44:32:16:ca:85:08:d8:a7:3e:d0:97:3c:d8:46:0c:
        bd:63:15:09:90:e6:84:68:80:90:1e:06:7a:08:11:ac:
        f8:3d:47:ac:fa:dd:2a:34:42:50:2a:3e:49:e5:92:58:
        9c:db:15:66:0c:85:11:69:7c:97:1b:79:4e:b8:e6:15:
        ca:9a:0d:d7:24:45:b3:65:09:db:a5:4c:2e:22:7e:08:
        f2:0e:b1:84:5e:60:d8:cb:82:28:b7:f9:37:f4:89:9e:
        4c:49:2a:f1:3d:16:c6:56:fa:ca:e8:64:f9:84:33:0e:
        e0:7d:a5:9f:28:1f:e3:ed:cb:72:84:3b:28:65:51:37:
        ba:cc:1a:a4:4b:ec:b4:b2:ac:7c:e2:a4:63:9c:43:71:
        b1:4f:c0:f8:59:a4:12:30:b7:17:71:63:f8:35:bd:9c:
        59:4d:48:9b:2b:f6:52:f5:ba:33:e2:4f:e0:7f:c7:5a:
        d9:09:07:23:5e:b9:6e:0a:67:10:1e:cb:04:44:66:2c:
        03:9d:ec:eb:a8:3f:42:f5:f8:bc:0c:95:f2:3d:e1:b9:
        90:00:d1:11:8a:58:b9:7b:cd:ad:9c:d2:7a:fb:39:06:
        a9:1a:fe:f6:2f:5a:24:83:f5:21:c5:43:27:55:88:00
    Fingerprint (SHA-256):
        48:A4:A6:A6:41:A7:A2:95:57:5B:98:4E:33:60:C6:B4:23:6F:0B:E4:E2:F9:C8:9B:4B:BD:4F:B7:2B:DF:68:AF
    Fingerprint (SHA1):
        F7:C2:81:DF:B2:0D:E2:4C:23:DE:DB:E8:54:0A:E9:16:FD:11:AB:DF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3014: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3015: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235572 (0x300e2db4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:46 2017
            Not After : Sat Aug 06 23:55:46 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:1c:40:37:96:05:b8:db:94:77:86:d7:b4:2f:5a:7b:
                    c6:0f:af:2e:f1:5b:78:19:9d:58:60:34:32:b8:30:27:
                    33:cd:93:4e:e0:03:e3:62:d2:79:28:4e:e4:b6:29:dd:
                    52:67:38:f4:64:7a:4d:21:92:43:be:bd:4a:f9:b2:3c:
                    6c:12:3a:5d:2b:09:42:0f:27:7a:d5:72:6d:14:01:e2:
                    fe:72:3b:80:42:14:7e:65:a4:b4:67:20:75:8b:e1:26:
                    a8:41:73:9d:7f:bd:bd:2b:d3:d8:c3:6e:c7:42:9a:e2:
                    8f:63:08:26:f0:5e:3f:62:d1:93:19:a7:ca:84:4b:f5:
                    50:1c:75:f8:99:2c:ab:7e:04:00:37:3e:7a:ba:41:7d:
                    9f:17:bc:41:cb:0d:eb:cd:38:82:8a:90:b6:33:de:e0:
                    b5:cf:11:9f:f2:6f:47:c0:55:35:0a:b3:94:b0:cf:17:
                    1a:b1:a5:0c:bf:8b:27:2d:c3:aa:5d:cf:47:74:11:1c:
                    ec:be:e9:b3:17:d9:6d:c7:22:08:0d:eb:e5:af:fd:d7:
                    11:d3:f6:4a:2a:c0:00:62:68:84:62:26:99:07:2e:93:
                    f5:78:cd:f5:d9:e4:58:7e:c9:a9:d9:23:c2:c6:93:5c:
                    54:36:90:d0:f1:30:97:89:be:8d:1a:b8:a4:69:8e:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:6d:9d:1d:1d:93:c6:2e:57:19:44:57:a4:54:50:d6:
        6f:44:32:16:ca:85:08:d8:a7:3e:d0:97:3c:d8:46:0c:
        bd:63:15:09:90:e6:84:68:80:90:1e:06:7a:08:11:ac:
        f8:3d:47:ac:fa:dd:2a:34:42:50:2a:3e:49:e5:92:58:
        9c:db:15:66:0c:85:11:69:7c:97:1b:79:4e:b8:e6:15:
        ca:9a:0d:d7:24:45:b3:65:09:db:a5:4c:2e:22:7e:08:
        f2:0e:b1:84:5e:60:d8:cb:82:28:b7:f9:37:f4:89:9e:
        4c:49:2a:f1:3d:16:c6:56:fa:ca:e8:64:f9:84:33:0e:
        e0:7d:a5:9f:28:1f:e3:ed:cb:72:84:3b:28:65:51:37:
        ba:cc:1a:a4:4b:ec:b4:b2:ac:7c:e2:a4:63:9c:43:71:
        b1:4f:c0:f8:59:a4:12:30:b7:17:71:63:f8:35:bd:9c:
        59:4d:48:9b:2b:f6:52:f5:ba:33:e2:4f:e0:7f:c7:5a:
        d9:09:07:23:5e:b9:6e:0a:67:10:1e:cb:04:44:66:2c:
        03:9d:ec:eb:a8:3f:42:f5:f8:bc:0c:95:f2:3d:e1:b9:
        90:00:d1:11:8a:58:b9:7b:cd:ad:9c:d2:7a:fb:39:06:
        a9:1a:fe:f6:2f:5a:24:83:f5:21:c5:43:27:55:88:00
    Fingerprint (SHA-256):
        48:A4:A6:A6:41:A7:A2:95:57:5B:98:4E:33:60:C6:B4:23:6F:0B:E4:E2:F9:C8:9B:4B:BD:4F:B7:2B:DF:68:AF
    Fingerprint (SHA1):
        F7:C2:81:DF:B2:0D:E2:4C:23:DE:DB:E8:54:0A:E9:16:FD:11:AB:DF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3016: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3017: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3018: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3019: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235572 (0x300e2db4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:46 2017
            Not After : Sat Aug 06 23:55:46 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:1c:40:37:96:05:b8:db:94:77:86:d7:b4:2f:5a:7b:
                    c6:0f:af:2e:f1:5b:78:19:9d:58:60:34:32:b8:30:27:
                    33:cd:93:4e:e0:03:e3:62:d2:79:28:4e:e4:b6:29:dd:
                    52:67:38:f4:64:7a:4d:21:92:43:be:bd:4a:f9:b2:3c:
                    6c:12:3a:5d:2b:09:42:0f:27:7a:d5:72:6d:14:01:e2:
                    fe:72:3b:80:42:14:7e:65:a4:b4:67:20:75:8b:e1:26:
                    a8:41:73:9d:7f:bd:bd:2b:d3:d8:c3:6e:c7:42:9a:e2:
                    8f:63:08:26:f0:5e:3f:62:d1:93:19:a7:ca:84:4b:f5:
                    50:1c:75:f8:99:2c:ab:7e:04:00:37:3e:7a:ba:41:7d:
                    9f:17:bc:41:cb:0d:eb:cd:38:82:8a:90:b6:33:de:e0:
                    b5:cf:11:9f:f2:6f:47:c0:55:35:0a:b3:94:b0:cf:17:
                    1a:b1:a5:0c:bf:8b:27:2d:c3:aa:5d:cf:47:74:11:1c:
                    ec:be:e9:b3:17:d9:6d:c7:22:08:0d:eb:e5:af:fd:d7:
                    11:d3:f6:4a:2a:c0:00:62:68:84:62:26:99:07:2e:93:
                    f5:78:cd:f5:d9:e4:58:7e:c9:a9:d9:23:c2:c6:93:5c:
                    54:36:90:d0:f1:30:97:89:be:8d:1a:b8:a4:69:8e:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:6d:9d:1d:1d:93:c6:2e:57:19:44:57:a4:54:50:d6:
        6f:44:32:16:ca:85:08:d8:a7:3e:d0:97:3c:d8:46:0c:
        bd:63:15:09:90:e6:84:68:80:90:1e:06:7a:08:11:ac:
        f8:3d:47:ac:fa:dd:2a:34:42:50:2a:3e:49:e5:92:58:
        9c:db:15:66:0c:85:11:69:7c:97:1b:79:4e:b8:e6:15:
        ca:9a:0d:d7:24:45:b3:65:09:db:a5:4c:2e:22:7e:08:
        f2:0e:b1:84:5e:60:d8:cb:82:28:b7:f9:37:f4:89:9e:
        4c:49:2a:f1:3d:16:c6:56:fa:ca:e8:64:f9:84:33:0e:
        e0:7d:a5:9f:28:1f:e3:ed:cb:72:84:3b:28:65:51:37:
        ba:cc:1a:a4:4b:ec:b4:b2:ac:7c:e2:a4:63:9c:43:71:
        b1:4f:c0:f8:59:a4:12:30:b7:17:71:63:f8:35:bd:9c:
        59:4d:48:9b:2b:f6:52:f5:ba:33:e2:4f:e0:7f:c7:5a:
        d9:09:07:23:5e:b9:6e:0a:67:10:1e:cb:04:44:66:2c:
        03:9d:ec:eb:a8:3f:42:f5:f8:bc:0c:95:f2:3d:e1:b9:
        90:00:d1:11:8a:58:b9:7b:cd:ad:9c:d2:7a:fb:39:06:
        a9:1a:fe:f6:2f:5a:24:83:f5:21:c5:43:27:55:88:00
    Fingerprint (SHA-256):
        48:A4:A6:A6:41:A7:A2:95:57:5B:98:4E:33:60:C6:B4:23:6F:0B:E4:E2:F9:C8:9B:4B:BD:4F:B7:2B:DF:68:AF
    Fingerprint (SHA1):
        F7:C2:81:DF:B2:0D:E2:4C:23:DE:DB:E8:54:0A:E9:16:FD:11:AB:DF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3020: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3021: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3022: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3023: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235572 (0x300e2db4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:46 2017
            Not After : Sat Aug 06 23:55:46 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:1c:40:37:96:05:b8:db:94:77:86:d7:b4:2f:5a:7b:
                    c6:0f:af:2e:f1:5b:78:19:9d:58:60:34:32:b8:30:27:
                    33:cd:93:4e:e0:03:e3:62:d2:79:28:4e:e4:b6:29:dd:
                    52:67:38:f4:64:7a:4d:21:92:43:be:bd:4a:f9:b2:3c:
                    6c:12:3a:5d:2b:09:42:0f:27:7a:d5:72:6d:14:01:e2:
                    fe:72:3b:80:42:14:7e:65:a4:b4:67:20:75:8b:e1:26:
                    a8:41:73:9d:7f:bd:bd:2b:d3:d8:c3:6e:c7:42:9a:e2:
                    8f:63:08:26:f0:5e:3f:62:d1:93:19:a7:ca:84:4b:f5:
                    50:1c:75:f8:99:2c:ab:7e:04:00:37:3e:7a:ba:41:7d:
                    9f:17:bc:41:cb:0d:eb:cd:38:82:8a:90:b6:33:de:e0:
                    b5:cf:11:9f:f2:6f:47:c0:55:35:0a:b3:94:b0:cf:17:
                    1a:b1:a5:0c:bf:8b:27:2d:c3:aa:5d:cf:47:74:11:1c:
                    ec:be:e9:b3:17:d9:6d:c7:22:08:0d:eb:e5:af:fd:d7:
                    11:d3:f6:4a:2a:c0:00:62:68:84:62:26:99:07:2e:93:
                    f5:78:cd:f5:d9:e4:58:7e:c9:a9:d9:23:c2:c6:93:5c:
                    54:36:90:d0:f1:30:97:89:be:8d:1a:b8:a4:69:8e:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:6d:9d:1d:1d:93:c6:2e:57:19:44:57:a4:54:50:d6:
        6f:44:32:16:ca:85:08:d8:a7:3e:d0:97:3c:d8:46:0c:
        bd:63:15:09:90:e6:84:68:80:90:1e:06:7a:08:11:ac:
        f8:3d:47:ac:fa:dd:2a:34:42:50:2a:3e:49:e5:92:58:
        9c:db:15:66:0c:85:11:69:7c:97:1b:79:4e:b8:e6:15:
        ca:9a:0d:d7:24:45:b3:65:09:db:a5:4c:2e:22:7e:08:
        f2:0e:b1:84:5e:60:d8:cb:82:28:b7:f9:37:f4:89:9e:
        4c:49:2a:f1:3d:16:c6:56:fa:ca:e8:64:f9:84:33:0e:
        e0:7d:a5:9f:28:1f:e3:ed:cb:72:84:3b:28:65:51:37:
        ba:cc:1a:a4:4b:ec:b4:b2:ac:7c:e2:a4:63:9c:43:71:
        b1:4f:c0:f8:59:a4:12:30:b7:17:71:63:f8:35:bd:9c:
        59:4d:48:9b:2b:f6:52:f5:ba:33:e2:4f:e0:7f:c7:5a:
        d9:09:07:23:5e:b9:6e:0a:67:10:1e:cb:04:44:66:2c:
        03:9d:ec:eb:a8:3f:42:f5:f8:bc:0c:95:f2:3d:e1:b9:
        90:00:d1:11:8a:58:b9:7b:cd:ad:9c:d2:7a:fb:39:06:
        a9:1a:fe:f6:2f:5a:24:83:f5:21:c5:43:27:55:88:00
    Fingerprint (SHA-256):
        48:A4:A6:A6:41:A7:A2:95:57:5B:98:4E:33:60:C6:B4:23:6F:0B:E4:E2:F9:C8:9B:4B:BD:4F:B7:2B:DF:68:AF
    Fingerprint (SHA1):
        F7:C2:81:DF:B2:0D:E2:4C:23:DE:DB:E8:54:0A:E9:16:FD:11:AB:DF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3024: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235572 (0x300e2db4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:46 2017
            Not After : Sat Aug 06 23:55:46 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:1c:40:37:96:05:b8:db:94:77:86:d7:b4:2f:5a:7b:
                    c6:0f:af:2e:f1:5b:78:19:9d:58:60:34:32:b8:30:27:
                    33:cd:93:4e:e0:03:e3:62:d2:79:28:4e:e4:b6:29:dd:
                    52:67:38:f4:64:7a:4d:21:92:43:be:bd:4a:f9:b2:3c:
                    6c:12:3a:5d:2b:09:42:0f:27:7a:d5:72:6d:14:01:e2:
                    fe:72:3b:80:42:14:7e:65:a4:b4:67:20:75:8b:e1:26:
                    a8:41:73:9d:7f:bd:bd:2b:d3:d8:c3:6e:c7:42:9a:e2:
                    8f:63:08:26:f0:5e:3f:62:d1:93:19:a7:ca:84:4b:f5:
                    50:1c:75:f8:99:2c:ab:7e:04:00:37:3e:7a:ba:41:7d:
                    9f:17:bc:41:cb:0d:eb:cd:38:82:8a:90:b6:33:de:e0:
                    b5:cf:11:9f:f2:6f:47:c0:55:35:0a:b3:94:b0:cf:17:
                    1a:b1:a5:0c:bf:8b:27:2d:c3:aa:5d:cf:47:74:11:1c:
                    ec:be:e9:b3:17:d9:6d:c7:22:08:0d:eb:e5:af:fd:d7:
                    11:d3:f6:4a:2a:c0:00:62:68:84:62:26:99:07:2e:93:
                    f5:78:cd:f5:d9:e4:58:7e:c9:a9:d9:23:c2:c6:93:5c:
                    54:36:90:d0:f1:30:97:89:be:8d:1a:b8:a4:69:8e:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:6d:9d:1d:1d:93:c6:2e:57:19:44:57:a4:54:50:d6:
        6f:44:32:16:ca:85:08:d8:a7:3e:d0:97:3c:d8:46:0c:
        bd:63:15:09:90:e6:84:68:80:90:1e:06:7a:08:11:ac:
        f8:3d:47:ac:fa:dd:2a:34:42:50:2a:3e:49:e5:92:58:
        9c:db:15:66:0c:85:11:69:7c:97:1b:79:4e:b8:e6:15:
        ca:9a:0d:d7:24:45:b3:65:09:db:a5:4c:2e:22:7e:08:
        f2:0e:b1:84:5e:60:d8:cb:82:28:b7:f9:37:f4:89:9e:
        4c:49:2a:f1:3d:16:c6:56:fa:ca:e8:64:f9:84:33:0e:
        e0:7d:a5:9f:28:1f:e3:ed:cb:72:84:3b:28:65:51:37:
        ba:cc:1a:a4:4b:ec:b4:b2:ac:7c:e2:a4:63:9c:43:71:
        b1:4f:c0:f8:59:a4:12:30:b7:17:71:63:f8:35:bd:9c:
        59:4d:48:9b:2b:f6:52:f5:ba:33:e2:4f:e0:7f:c7:5a:
        d9:09:07:23:5e:b9:6e:0a:67:10:1e:cb:04:44:66:2c:
        03:9d:ec:eb:a8:3f:42:f5:f8:bc:0c:95:f2:3d:e1:b9:
        90:00:d1:11:8a:58:b9:7b:cd:ad:9c:d2:7a:fb:39:06:
        a9:1a:fe:f6:2f:5a:24:83:f5:21:c5:43:27:55:88:00
    Fingerprint (SHA-256):
        48:A4:A6:A6:41:A7:A2:95:57:5B:98:4E:33:60:C6:B4:23:6F:0B:E4:E2:F9:C8:9B:4B:BD:4F:B7:2B:DF:68:AF
    Fingerprint (SHA1):
        F7:C2:81:DF:B2:0D:E2:4C:23:DE:DB:E8:54:0A:E9:16:FD:11:AB:DF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3025: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3026: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235572 (0x300e2db4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:46 2017
            Not After : Sat Aug 06 23:55:46 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:1c:40:37:96:05:b8:db:94:77:86:d7:b4:2f:5a:7b:
                    c6:0f:af:2e:f1:5b:78:19:9d:58:60:34:32:b8:30:27:
                    33:cd:93:4e:e0:03:e3:62:d2:79:28:4e:e4:b6:29:dd:
                    52:67:38:f4:64:7a:4d:21:92:43:be:bd:4a:f9:b2:3c:
                    6c:12:3a:5d:2b:09:42:0f:27:7a:d5:72:6d:14:01:e2:
                    fe:72:3b:80:42:14:7e:65:a4:b4:67:20:75:8b:e1:26:
                    a8:41:73:9d:7f:bd:bd:2b:d3:d8:c3:6e:c7:42:9a:e2:
                    8f:63:08:26:f0:5e:3f:62:d1:93:19:a7:ca:84:4b:f5:
                    50:1c:75:f8:99:2c:ab:7e:04:00:37:3e:7a:ba:41:7d:
                    9f:17:bc:41:cb:0d:eb:cd:38:82:8a:90:b6:33:de:e0:
                    b5:cf:11:9f:f2:6f:47:c0:55:35:0a:b3:94:b0:cf:17:
                    1a:b1:a5:0c:bf:8b:27:2d:c3:aa:5d:cf:47:74:11:1c:
                    ec:be:e9:b3:17:d9:6d:c7:22:08:0d:eb:e5:af:fd:d7:
                    11:d3:f6:4a:2a:c0:00:62:68:84:62:26:99:07:2e:93:
                    f5:78:cd:f5:d9:e4:58:7e:c9:a9:d9:23:c2:c6:93:5c:
                    54:36:90:d0:f1:30:97:89:be:8d:1a:b8:a4:69:8e:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:6d:9d:1d:1d:93:c6:2e:57:19:44:57:a4:54:50:d6:
        6f:44:32:16:ca:85:08:d8:a7:3e:d0:97:3c:d8:46:0c:
        bd:63:15:09:90:e6:84:68:80:90:1e:06:7a:08:11:ac:
        f8:3d:47:ac:fa:dd:2a:34:42:50:2a:3e:49:e5:92:58:
        9c:db:15:66:0c:85:11:69:7c:97:1b:79:4e:b8:e6:15:
        ca:9a:0d:d7:24:45:b3:65:09:db:a5:4c:2e:22:7e:08:
        f2:0e:b1:84:5e:60:d8:cb:82:28:b7:f9:37:f4:89:9e:
        4c:49:2a:f1:3d:16:c6:56:fa:ca:e8:64:f9:84:33:0e:
        e0:7d:a5:9f:28:1f:e3:ed:cb:72:84:3b:28:65:51:37:
        ba:cc:1a:a4:4b:ec:b4:b2:ac:7c:e2:a4:63:9c:43:71:
        b1:4f:c0:f8:59:a4:12:30:b7:17:71:63:f8:35:bd:9c:
        59:4d:48:9b:2b:f6:52:f5:ba:33:e2:4f:e0:7f:c7:5a:
        d9:09:07:23:5e:b9:6e:0a:67:10:1e:cb:04:44:66:2c:
        03:9d:ec:eb:a8:3f:42:f5:f8:bc:0c:95:f2:3d:e1:b9:
        90:00:d1:11:8a:58:b9:7b:cd:ad:9c:d2:7a:fb:39:06:
        a9:1a:fe:f6:2f:5a:24:83:f5:21:c5:43:27:55:88:00
    Fingerprint (SHA-256):
        48:A4:A6:A6:41:A7:A2:95:57:5B:98:4E:33:60:C6:B4:23:6F:0B:E4:E2:F9:C8:9B:4B:BD:4F:B7:2B:DF:68:AF
    Fingerprint (SHA1):
        F7:C2:81:DF:B2:0D:E2:4C:23:DE:DB:E8:54:0A:E9:16:FD:11:AB:DF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3027: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3028: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3029: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3030: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235572 (0x300e2db4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:46 2017
            Not After : Sat Aug 06 23:55:46 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:1c:40:37:96:05:b8:db:94:77:86:d7:b4:2f:5a:7b:
                    c6:0f:af:2e:f1:5b:78:19:9d:58:60:34:32:b8:30:27:
                    33:cd:93:4e:e0:03:e3:62:d2:79:28:4e:e4:b6:29:dd:
                    52:67:38:f4:64:7a:4d:21:92:43:be:bd:4a:f9:b2:3c:
                    6c:12:3a:5d:2b:09:42:0f:27:7a:d5:72:6d:14:01:e2:
                    fe:72:3b:80:42:14:7e:65:a4:b4:67:20:75:8b:e1:26:
                    a8:41:73:9d:7f:bd:bd:2b:d3:d8:c3:6e:c7:42:9a:e2:
                    8f:63:08:26:f0:5e:3f:62:d1:93:19:a7:ca:84:4b:f5:
                    50:1c:75:f8:99:2c:ab:7e:04:00:37:3e:7a:ba:41:7d:
                    9f:17:bc:41:cb:0d:eb:cd:38:82:8a:90:b6:33:de:e0:
                    b5:cf:11:9f:f2:6f:47:c0:55:35:0a:b3:94:b0:cf:17:
                    1a:b1:a5:0c:bf:8b:27:2d:c3:aa:5d:cf:47:74:11:1c:
                    ec:be:e9:b3:17:d9:6d:c7:22:08:0d:eb:e5:af:fd:d7:
                    11:d3:f6:4a:2a:c0:00:62:68:84:62:26:99:07:2e:93:
                    f5:78:cd:f5:d9:e4:58:7e:c9:a9:d9:23:c2:c6:93:5c:
                    54:36:90:d0:f1:30:97:89:be:8d:1a:b8:a4:69:8e:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:6d:9d:1d:1d:93:c6:2e:57:19:44:57:a4:54:50:d6:
        6f:44:32:16:ca:85:08:d8:a7:3e:d0:97:3c:d8:46:0c:
        bd:63:15:09:90:e6:84:68:80:90:1e:06:7a:08:11:ac:
        f8:3d:47:ac:fa:dd:2a:34:42:50:2a:3e:49:e5:92:58:
        9c:db:15:66:0c:85:11:69:7c:97:1b:79:4e:b8:e6:15:
        ca:9a:0d:d7:24:45:b3:65:09:db:a5:4c:2e:22:7e:08:
        f2:0e:b1:84:5e:60:d8:cb:82:28:b7:f9:37:f4:89:9e:
        4c:49:2a:f1:3d:16:c6:56:fa:ca:e8:64:f9:84:33:0e:
        e0:7d:a5:9f:28:1f:e3:ed:cb:72:84:3b:28:65:51:37:
        ba:cc:1a:a4:4b:ec:b4:b2:ac:7c:e2:a4:63:9c:43:71:
        b1:4f:c0:f8:59:a4:12:30:b7:17:71:63:f8:35:bd:9c:
        59:4d:48:9b:2b:f6:52:f5:ba:33:e2:4f:e0:7f:c7:5a:
        d9:09:07:23:5e:b9:6e:0a:67:10:1e:cb:04:44:66:2c:
        03:9d:ec:eb:a8:3f:42:f5:f8:bc:0c:95:f2:3d:e1:b9:
        90:00:d1:11:8a:58:b9:7b:cd:ad:9c:d2:7a:fb:39:06:
        a9:1a:fe:f6:2f:5a:24:83:f5:21:c5:43:27:55:88:00
    Fingerprint (SHA-256):
        48:A4:A6:A6:41:A7:A2:95:57:5B:98:4E:33:60:C6:B4:23:6F:0B:E4:E2:F9:C8:9B:4B:BD:4F:B7:2B:DF:68:AF
    Fingerprint (SHA1):
        F7:C2:81:DF:B2:0D:E2:4C:23:DE:DB:E8:54:0A:E9:16:FD:11:AB:DF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3031: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235572 (0x300e2db4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:46 2017
            Not After : Sat Aug 06 23:55:46 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:1c:40:37:96:05:b8:db:94:77:86:d7:b4:2f:5a:7b:
                    c6:0f:af:2e:f1:5b:78:19:9d:58:60:34:32:b8:30:27:
                    33:cd:93:4e:e0:03:e3:62:d2:79:28:4e:e4:b6:29:dd:
                    52:67:38:f4:64:7a:4d:21:92:43:be:bd:4a:f9:b2:3c:
                    6c:12:3a:5d:2b:09:42:0f:27:7a:d5:72:6d:14:01:e2:
                    fe:72:3b:80:42:14:7e:65:a4:b4:67:20:75:8b:e1:26:
                    a8:41:73:9d:7f:bd:bd:2b:d3:d8:c3:6e:c7:42:9a:e2:
                    8f:63:08:26:f0:5e:3f:62:d1:93:19:a7:ca:84:4b:f5:
                    50:1c:75:f8:99:2c:ab:7e:04:00:37:3e:7a:ba:41:7d:
                    9f:17:bc:41:cb:0d:eb:cd:38:82:8a:90:b6:33:de:e0:
                    b5:cf:11:9f:f2:6f:47:c0:55:35:0a:b3:94:b0:cf:17:
                    1a:b1:a5:0c:bf:8b:27:2d:c3:aa:5d:cf:47:74:11:1c:
                    ec:be:e9:b3:17:d9:6d:c7:22:08:0d:eb:e5:af:fd:d7:
                    11:d3:f6:4a:2a:c0:00:62:68:84:62:26:99:07:2e:93:
                    f5:78:cd:f5:d9:e4:58:7e:c9:a9:d9:23:c2:c6:93:5c:
                    54:36:90:d0:f1:30:97:89:be:8d:1a:b8:a4:69:8e:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:6d:9d:1d:1d:93:c6:2e:57:19:44:57:a4:54:50:d6:
        6f:44:32:16:ca:85:08:d8:a7:3e:d0:97:3c:d8:46:0c:
        bd:63:15:09:90:e6:84:68:80:90:1e:06:7a:08:11:ac:
        f8:3d:47:ac:fa:dd:2a:34:42:50:2a:3e:49:e5:92:58:
        9c:db:15:66:0c:85:11:69:7c:97:1b:79:4e:b8:e6:15:
        ca:9a:0d:d7:24:45:b3:65:09:db:a5:4c:2e:22:7e:08:
        f2:0e:b1:84:5e:60:d8:cb:82:28:b7:f9:37:f4:89:9e:
        4c:49:2a:f1:3d:16:c6:56:fa:ca:e8:64:f9:84:33:0e:
        e0:7d:a5:9f:28:1f:e3:ed:cb:72:84:3b:28:65:51:37:
        ba:cc:1a:a4:4b:ec:b4:b2:ac:7c:e2:a4:63:9c:43:71:
        b1:4f:c0:f8:59:a4:12:30:b7:17:71:63:f8:35:bd:9c:
        59:4d:48:9b:2b:f6:52:f5:ba:33:e2:4f:e0:7f:c7:5a:
        d9:09:07:23:5e:b9:6e:0a:67:10:1e:cb:04:44:66:2c:
        03:9d:ec:eb:a8:3f:42:f5:f8:bc:0c:95:f2:3d:e1:b9:
        90:00:d1:11:8a:58:b9:7b:cd:ad:9c:d2:7a:fb:39:06:
        a9:1a:fe:f6:2f:5a:24:83:f5:21:c5:43:27:55:88:00
    Fingerprint (SHA-256):
        48:A4:A6:A6:41:A7:A2:95:57:5B:98:4E:33:60:C6:B4:23:6F:0B:E4:E2:F9:C8:9B:4B:BD:4F:B7:2B:DF:68:AF
    Fingerprint (SHA1):
        F7:C2:81:DF:B2:0D:E2:4C:23:DE:DB:E8:54:0A:E9:16:FD:11:AB:DF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3032: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235572 (0x300e2db4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:46 2017
            Not After : Sat Aug 06 23:55:46 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:1c:40:37:96:05:b8:db:94:77:86:d7:b4:2f:5a:7b:
                    c6:0f:af:2e:f1:5b:78:19:9d:58:60:34:32:b8:30:27:
                    33:cd:93:4e:e0:03:e3:62:d2:79:28:4e:e4:b6:29:dd:
                    52:67:38:f4:64:7a:4d:21:92:43:be:bd:4a:f9:b2:3c:
                    6c:12:3a:5d:2b:09:42:0f:27:7a:d5:72:6d:14:01:e2:
                    fe:72:3b:80:42:14:7e:65:a4:b4:67:20:75:8b:e1:26:
                    a8:41:73:9d:7f:bd:bd:2b:d3:d8:c3:6e:c7:42:9a:e2:
                    8f:63:08:26:f0:5e:3f:62:d1:93:19:a7:ca:84:4b:f5:
                    50:1c:75:f8:99:2c:ab:7e:04:00:37:3e:7a:ba:41:7d:
                    9f:17:bc:41:cb:0d:eb:cd:38:82:8a:90:b6:33:de:e0:
                    b5:cf:11:9f:f2:6f:47:c0:55:35:0a:b3:94:b0:cf:17:
                    1a:b1:a5:0c:bf:8b:27:2d:c3:aa:5d:cf:47:74:11:1c:
                    ec:be:e9:b3:17:d9:6d:c7:22:08:0d:eb:e5:af:fd:d7:
                    11:d3:f6:4a:2a:c0:00:62:68:84:62:26:99:07:2e:93:
                    f5:78:cd:f5:d9:e4:58:7e:c9:a9:d9:23:c2:c6:93:5c:
                    54:36:90:d0:f1:30:97:89:be:8d:1a:b8:a4:69:8e:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:6d:9d:1d:1d:93:c6:2e:57:19:44:57:a4:54:50:d6:
        6f:44:32:16:ca:85:08:d8:a7:3e:d0:97:3c:d8:46:0c:
        bd:63:15:09:90:e6:84:68:80:90:1e:06:7a:08:11:ac:
        f8:3d:47:ac:fa:dd:2a:34:42:50:2a:3e:49:e5:92:58:
        9c:db:15:66:0c:85:11:69:7c:97:1b:79:4e:b8:e6:15:
        ca:9a:0d:d7:24:45:b3:65:09:db:a5:4c:2e:22:7e:08:
        f2:0e:b1:84:5e:60:d8:cb:82:28:b7:f9:37:f4:89:9e:
        4c:49:2a:f1:3d:16:c6:56:fa:ca:e8:64:f9:84:33:0e:
        e0:7d:a5:9f:28:1f:e3:ed:cb:72:84:3b:28:65:51:37:
        ba:cc:1a:a4:4b:ec:b4:b2:ac:7c:e2:a4:63:9c:43:71:
        b1:4f:c0:f8:59:a4:12:30:b7:17:71:63:f8:35:bd:9c:
        59:4d:48:9b:2b:f6:52:f5:ba:33:e2:4f:e0:7f:c7:5a:
        d9:09:07:23:5e:b9:6e:0a:67:10:1e:cb:04:44:66:2c:
        03:9d:ec:eb:a8:3f:42:f5:f8:bc:0c:95:f2:3d:e1:b9:
        90:00:d1:11:8a:58:b9:7b:cd:ad:9c:d2:7a:fb:39:06:
        a9:1a:fe:f6:2f:5a:24:83:f5:21:c5:43:27:55:88:00
    Fingerprint (SHA-256):
        48:A4:A6:A6:41:A7:A2:95:57:5B:98:4E:33:60:C6:B4:23:6F:0B:E4:E2:F9:C8:9B:4B:BD:4F:B7:2B:DF:68:AF
    Fingerprint (SHA1):
        F7:C2:81:DF:B2:0D:E2:4C:23:DE:DB:E8:54:0A:E9:16:FD:11:AB:DF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3033: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235572 (0x300e2db4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:46 2017
            Not After : Sat Aug 06 23:55:46 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:1c:40:37:96:05:b8:db:94:77:86:d7:b4:2f:5a:7b:
                    c6:0f:af:2e:f1:5b:78:19:9d:58:60:34:32:b8:30:27:
                    33:cd:93:4e:e0:03:e3:62:d2:79:28:4e:e4:b6:29:dd:
                    52:67:38:f4:64:7a:4d:21:92:43:be:bd:4a:f9:b2:3c:
                    6c:12:3a:5d:2b:09:42:0f:27:7a:d5:72:6d:14:01:e2:
                    fe:72:3b:80:42:14:7e:65:a4:b4:67:20:75:8b:e1:26:
                    a8:41:73:9d:7f:bd:bd:2b:d3:d8:c3:6e:c7:42:9a:e2:
                    8f:63:08:26:f0:5e:3f:62:d1:93:19:a7:ca:84:4b:f5:
                    50:1c:75:f8:99:2c:ab:7e:04:00:37:3e:7a:ba:41:7d:
                    9f:17:bc:41:cb:0d:eb:cd:38:82:8a:90:b6:33:de:e0:
                    b5:cf:11:9f:f2:6f:47:c0:55:35:0a:b3:94:b0:cf:17:
                    1a:b1:a5:0c:bf:8b:27:2d:c3:aa:5d:cf:47:74:11:1c:
                    ec:be:e9:b3:17:d9:6d:c7:22:08:0d:eb:e5:af:fd:d7:
                    11:d3:f6:4a:2a:c0:00:62:68:84:62:26:99:07:2e:93:
                    f5:78:cd:f5:d9:e4:58:7e:c9:a9:d9:23:c2:c6:93:5c:
                    54:36:90:d0:f1:30:97:89:be:8d:1a:b8:a4:69:8e:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:6d:9d:1d:1d:93:c6:2e:57:19:44:57:a4:54:50:d6:
        6f:44:32:16:ca:85:08:d8:a7:3e:d0:97:3c:d8:46:0c:
        bd:63:15:09:90:e6:84:68:80:90:1e:06:7a:08:11:ac:
        f8:3d:47:ac:fa:dd:2a:34:42:50:2a:3e:49:e5:92:58:
        9c:db:15:66:0c:85:11:69:7c:97:1b:79:4e:b8:e6:15:
        ca:9a:0d:d7:24:45:b3:65:09:db:a5:4c:2e:22:7e:08:
        f2:0e:b1:84:5e:60:d8:cb:82:28:b7:f9:37:f4:89:9e:
        4c:49:2a:f1:3d:16:c6:56:fa:ca:e8:64:f9:84:33:0e:
        e0:7d:a5:9f:28:1f:e3:ed:cb:72:84:3b:28:65:51:37:
        ba:cc:1a:a4:4b:ec:b4:b2:ac:7c:e2:a4:63:9c:43:71:
        b1:4f:c0:f8:59:a4:12:30:b7:17:71:63:f8:35:bd:9c:
        59:4d:48:9b:2b:f6:52:f5:ba:33:e2:4f:e0:7f:c7:5a:
        d9:09:07:23:5e:b9:6e:0a:67:10:1e:cb:04:44:66:2c:
        03:9d:ec:eb:a8:3f:42:f5:f8:bc:0c:95:f2:3d:e1:b9:
        90:00:d1:11:8a:58:b9:7b:cd:ad:9c:d2:7a:fb:39:06:
        a9:1a:fe:f6:2f:5a:24:83:f5:21:c5:43:27:55:88:00
    Fingerprint (SHA-256):
        48:A4:A6:A6:41:A7:A2:95:57:5B:98:4E:33:60:C6:B4:23:6F:0B:E4:E2:F9:C8:9B:4B:BD:4F:B7:2B:DF:68:AF
    Fingerprint (SHA1):
        F7:C2:81:DF:B2:0D:E2:4C:23:DE:DB:E8:54:0A:E9:16:FD:11:AB:DF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3034: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235572 (0x300e2db4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:46 2017
            Not After : Sat Aug 06 23:55:46 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:1c:40:37:96:05:b8:db:94:77:86:d7:b4:2f:5a:7b:
                    c6:0f:af:2e:f1:5b:78:19:9d:58:60:34:32:b8:30:27:
                    33:cd:93:4e:e0:03:e3:62:d2:79:28:4e:e4:b6:29:dd:
                    52:67:38:f4:64:7a:4d:21:92:43:be:bd:4a:f9:b2:3c:
                    6c:12:3a:5d:2b:09:42:0f:27:7a:d5:72:6d:14:01:e2:
                    fe:72:3b:80:42:14:7e:65:a4:b4:67:20:75:8b:e1:26:
                    a8:41:73:9d:7f:bd:bd:2b:d3:d8:c3:6e:c7:42:9a:e2:
                    8f:63:08:26:f0:5e:3f:62:d1:93:19:a7:ca:84:4b:f5:
                    50:1c:75:f8:99:2c:ab:7e:04:00:37:3e:7a:ba:41:7d:
                    9f:17:bc:41:cb:0d:eb:cd:38:82:8a:90:b6:33:de:e0:
                    b5:cf:11:9f:f2:6f:47:c0:55:35:0a:b3:94:b0:cf:17:
                    1a:b1:a5:0c:bf:8b:27:2d:c3:aa:5d:cf:47:74:11:1c:
                    ec:be:e9:b3:17:d9:6d:c7:22:08:0d:eb:e5:af:fd:d7:
                    11:d3:f6:4a:2a:c0:00:62:68:84:62:26:99:07:2e:93:
                    f5:78:cd:f5:d9:e4:58:7e:c9:a9:d9:23:c2:c6:93:5c:
                    54:36:90:d0:f1:30:97:89:be:8d:1a:b8:a4:69:8e:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:6d:9d:1d:1d:93:c6:2e:57:19:44:57:a4:54:50:d6:
        6f:44:32:16:ca:85:08:d8:a7:3e:d0:97:3c:d8:46:0c:
        bd:63:15:09:90:e6:84:68:80:90:1e:06:7a:08:11:ac:
        f8:3d:47:ac:fa:dd:2a:34:42:50:2a:3e:49:e5:92:58:
        9c:db:15:66:0c:85:11:69:7c:97:1b:79:4e:b8:e6:15:
        ca:9a:0d:d7:24:45:b3:65:09:db:a5:4c:2e:22:7e:08:
        f2:0e:b1:84:5e:60:d8:cb:82:28:b7:f9:37:f4:89:9e:
        4c:49:2a:f1:3d:16:c6:56:fa:ca:e8:64:f9:84:33:0e:
        e0:7d:a5:9f:28:1f:e3:ed:cb:72:84:3b:28:65:51:37:
        ba:cc:1a:a4:4b:ec:b4:b2:ac:7c:e2:a4:63:9c:43:71:
        b1:4f:c0:f8:59:a4:12:30:b7:17:71:63:f8:35:bd:9c:
        59:4d:48:9b:2b:f6:52:f5:ba:33:e2:4f:e0:7f:c7:5a:
        d9:09:07:23:5e:b9:6e:0a:67:10:1e:cb:04:44:66:2c:
        03:9d:ec:eb:a8:3f:42:f5:f8:bc:0c:95:f2:3d:e1:b9:
        90:00:d1:11:8a:58:b9:7b:cd:ad:9c:d2:7a:fb:39:06:
        a9:1a:fe:f6:2f:5a:24:83:f5:21:c5:43:27:55:88:00
    Fingerprint (SHA-256):
        48:A4:A6:A6:41:A7:A2:95:57:5B:98:4E:33:60:C6:B4:23:6F:0B:E4:E2:F9:C8:9B:4B:BD:4F:B7:2B:DF:68:AF
    Fingerprint (SHA1):
        F7:C2:81:DF:B2:0D:E2:4C:23:DE:DB:E8:54:0A:E9:16:FD:11:AB:DF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3035: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235572 (0x300e2db4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:46 2017
            Not After : Sat Aug 06 23:55:46 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:1c:40:37:96:05:b8:db:94:77:86:d7:b4:2f:5a:7b:
                    c6:0f:af:2e:f1:5b:78:19:9d:58:60:34:32:b8:30:27:
                    33:cd:93:4e:e0:03:e3:62:d2:79:28:4e:e4:b6:29:dd:
                    52:67:38:f4:64:7a:4d:21:92:43:be:bd:4a:f9:b2:3c:
                    6c:12:3a:5d:2b:09:42:0f:27:7a:d5:72:6d:14:01:e2:
                    fe:72:3b:80:42:14:7e:65:a4:b4:67:20:75:8b:e1:26:
                    a8:41:73:9d:7f:bd:bd:2b:d3:d8:c3:6e:c7:42:9a:e2:
                    8f:63:08:26:f0:5e:3f:62:d1:93:19:a7:ca:84:4b:f5:
                    50:1c:75:f8:99:2c:ab:7e:04:00:37:3e:7a:ba:41:7d:
                    9f:17:bc:41:cb:0d:eb:cd:38:82:8a:90:b6:33:de:e0:
                    b5:cf:11:9f:f2:6f:47:c0:55:35:0a:b3:94:b0:cf:17:
                    1a:b1:a5:0c:bf:8b:27:2d:c3:aa:5d:cf:47:74:11:1c:
                    ec:be:e9:b3:17:d9:6d:c7:22:08:0d:eb:e5:af:fd:d7:
                    11:d3:f6:4a:2a:c0:00:62:68:84:62:26:99:07:2e:93:
                    f5:78:cd:f5:d9:e4:58:7e:c9:a9:d9:23:c2:c6:93:5c:
                    54:36:90:d0:f1:30:97:89:be:8d:1a:b8:a4:69:8e:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:6d:9d:1d:1d:93:c6:2e:57:19:44:57:a4:54:50:d6:
        6f:44:32:16:ca:85:08:d8:a7:3e:d0:97:3c:d8:46:0c:
        bd:63:15:09:90:e6:84:68:80:90:1e:06:7a:08:11:ac:
        f8:3d:47:ac:fa:dd:2a:34:42:50:2a:3e:49:e5:92:58:
        9c:db:15:66:0c:85:11:69:7c:97:1b:79:4e:b8:e6:15:
        ca:9a:0d:d7:24:45:b3:65:09:db:a5:4c:2e:22:7e:08:
        f2:0e:b1:84:5e:60:d8:cb:82:28:b7:f9:37:f4:89:9e:
        4c:49:2a:f1:3d:16:c6:56:fa:ca:e8:64:f9:84:33:0e:
        e0:7d:a5:9f:28:1f:e3:ed:cb:72:84:3b:28:65:51:37:
        ba:cc:1a:a4:4b:ec:b4:b2:ac:7c:e2:a4:63:9c:43:71:
        b1:4f:c0:f8:59:a4:12:30:b7:17:71:63:f8:35:bd:9c:
        59:4d:48:9b:2b:f6:52:f5:ba:33:e2:4f:e0:7f:c7:5a:
        d9:09:07:23:5e:b9:6e:0a:67:10:1e:cb:04:44:66:2c:
        03:9d:ec:eb:a8:3f:42:f5:f8:bc:0c:95:f2:3d:e1:b9:
        90:00:d1:11:8a:58:b9:7b:cd:ad:9c:d2:7a:fb:39:06:
        a9:1a:fe:f6:2f:5a:24:83:f5:21:c5:43:27:55:88:00
    Fingerprint (SHA-256):
        48:A4:A6:A6:41:A7:A2:95:57:5B:98:4E:33:60:C6:B4:23:6F:0B:E4:E2:F9:C8:9B:4B:BD:4F:B7:2B:DF:68:AF
    Fingerprint (SHA1):
        F7:C2:81:DF:B2:0D:E2:4C:23:DE:DB:E8:54:0A:E9:16:FD:11:AB:DF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3036: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3037: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3038: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235602 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3039: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3040: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #3041: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3042: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 806235603   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3043: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3044: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #3045: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3046: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 806235604   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3047: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3048: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #3049: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3050: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 806235605   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3051: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3052: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #3053: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3054: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 806235606   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3055: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3056: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #3057: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3058: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 806235607   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3059: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3060: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #3061: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3062: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 806235608   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3063: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3064: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3065: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235602 (0x300e2dd2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:53 2017
            Not After : Sat Aug 06 23:55:53 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:87:fd:88:92:3a:2d:56:ae:9f:70:d6:9a:07:9a:e2:
                    ac:2b:66:3e:7b:7b:a7:c1:c9:6a:14:93:6e:54:27:fb:
                    ba:2c:47:58:63:58:f9:f7:85:9c:ea:8f:dc:80:ce:1d:
                    c9:e9:70:b6:b6:22:f0:38:e9:fa:2d:a2:03:86:11:c6:
                    22:a7:37:19:e1:cf:d5:31:ec:47:44:ac:a3:45:9f:a2:
                    e1:6b:7d:1d:ed:51:97:78:ae:b8:d1:7a:43:b5:ba:48:
                    c6:a1:b9:57:72:1f:98:4e:f5:18:45:b7:4b:8e:51:41:
                    98:cc:32:36:35:34:da:8e:09:c0:11:34:4e:78:ae:af:
                    8d:00:57:07:7e:fd:63:8a:86:c4:24:03:cc:94:b8:f9:
                    70:ad:f1:0d:43:dd:b5:57:cf:8d:c0:f7:31:db:b3:fe:
                    bf:c1:6c:23:14:46:83:be:5a:2b:ad:30:fe:3f:77:16:
                    b2:47:e6:66:24:8e:45:b5:66:0a:b9:7a:19:7a:d7:26:
                    0d:f5:af:5c:d4:03:38:a9:f4:f5:62:66:cd:3a:78:de:
                    be:14:df:fb:e3:b7:2d:cc:9b:ac:40:8a:e9:8d:af:e7:
                    2a:3a:ff:07:28:d4:89:73:e3:ae:50:09:32:76:9f:22:
                    41:44:58:a2:58:28:42:9f:51:a8:57:51:de:23:24:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:49:a0:10:a2:8f:fe:ca:71:e6:a5:25:eb:7b:74:38:
        2c:54:71:59:ba:67:73:55:41:80:d9:c9:e0:a2:fb:fa:
        e6:af:e5:23:8e:7c:d1:8e:ee:3b:c2:d8:f5:62:d6:3a:
        bf:55:e7:b2:8d:5f:ca:24:67:d9:11:6f:95:6b:87:e6:
        7c:04:09:84:4a:ca:bb:ce:0f:f0:8a:ce:fc:f9:38:1b:
        14:33:92:39:04:7e:a1:22:eb:63:ea:50:6e:67:a2:4f:
        f2:95:34:da:fc:ed:f4:62:11:5a:36:fd:da:54:f5:4f:
        4d:f1:15:2b:72:f3:b4:f9:8f:4f:e3:e7:69:b0:84:35:
        f5:55:28:f7:9f:b4:30:dd:c3:7c:83:01:74:84:0a:a9:
        31:35:d0:a2:4a:23:e4:b7:21:7f:b7:cb:0b:d1:01:42:
        c3:6e:07:d7:d2:bc:b3:44:77:0e:12:4f:8c:33:86:41:
        2b:1e:3f:e4:97:71:aa:3a:85:21:dd:17:83:d9:5c:40:
        1c:2c:e2:51:20:e4:c2:49:a7:6f:7d:c7:f0:62:d4:52:
        fa:ce:20:e6:35:a2:1a:d2:fd:cd:58:3d:55:70:a5:1e:
        84:52:7f:33:43:39:0e:2d:c7:45:3a:e3:37:25:2d:bd:
        2b:d0:2b:5d:7b:93:c9:5b:04:0c:b3:56:c8:f6:ba:c9
    Fingerprint (SHA-256):
        C0:9F:14:F4:E4:AC:E3:F4:19:51:3E:5E:67:3E:A3:FA:B9:8D:3B:CD:84:FD:7F:FB:0D:B4:D1:1D:5F:76:F4:03
    Fingerprint (SHA1):
        9E:DF:F7:FA:4D:9C:6A:17:F5:B3:E7:0C:2A:9A:53:EE:B0:14:9E:5A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3066: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3067: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3068: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3069: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235602 (0x300e2dd2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:53 2017
            Not After : Sat Aug 06 23:55:53 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:87:fd:88:92:3a:2d:56:ae:9f:70:d6:9a:07:9a:e2:
                    ac:2b:66:3e:7b:7b:a7:c1:c9:6a:14:93:6e:54:27:fb:
                    ba:2c:47:58:63:58:f9:f7:85:9c:ea:8f:dc:80:ce:1d:
                    c9:e9:70:b6:b6:22:f0:38:e9:fa:2d:a2:03:86:11:c6:
                    22:a7:37:19:e1:cf:d5:31:ec:47:44:ac:a3:45:9f:a2:
                    e1:6b:7d:1d:ed:51:97:78:ae:b8:d1:7a:43:b5:ba:48:
                    c6:a1:b9:57:72:1f:98:4e:f5:18:45:b7:4b:8e:51:41:
                    98:cc:32:36:35:34:da:8e:09:c0:11:34:4e:78:ae:af:
                    8d:00:57:07:7e:fd:63:8a:86:c4:24:03:cc:94:b8:f9:
                    70:ad:f1:0d:43:dd:b5:57:cf:8d:c0:f7:31:db:b3:fe:
                    bf:c1:6c:23:14:46:83:be:5a:2b:ad:30:fe:3f:77:16:
                    b2:47:e6:66:24:8e:45:b5:66:0a:b9:7a:19:7a:d7:26:
                    0d:f5:af:5c:d4:03:38:a9:f4:f5:62:66:cd:3a:78:de:
                    be:14:df:fb:e3:b7:2d:cc:9b:ac:40:8a:e9:8d:af:e7:
                    2a:3a:ff:07:28:d4:89:73:e3:ae:50:09:32:76:9f:22:
                    41:44:58:a2:58:28:42:9f:51:a8:57:51:de:23:24:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:49:a0:10:a2:8f:fe:ca:71:e6:a5:25:eb:7b:74:38:
        2c:54:71:59:ba:67:73:55:41:80:d9:c9:e0:a2:fb:fa:
        e6:af:e5:23:8e:7c:d1:8e:ee:3b:c2:d8:f5:62:d6:3a:
        bf:55:e7:b2:8d:5f:ca:24:67:d9:11:6f:95:6b:87:e6:
        7c:04:09:84:4a:ca:bb:ce:0f:f0:8a:ce:fc:f9:38:1b:
        14:33:92:39:04:7e:a1:22:eb:63:ea:50:6e:67:a2:4f:
        f2:95:34:da:fc:ed:f4:62:11:5a:36:fd:da:54:f5:4f:
        4d:f1:15:2b:72:f3:b4:f9:8f:4f:e3:e7:69:b0:84:35:
        f5:55:28:f7:9f:b4:30:dd:c3:7c:83:01:74:84:0a:a9:
        31:35:d0:a2:4a:23:e4:b7:21:7f:b7:cb:0b:d1:01:42:
        c3:6e:07:d7:d2:bc:b3:44:77:0e:12:4f:8c:33:86:41:
        2b:1e:3f:e4:97:71:aa:3a:85:21:dd:17:83:d9:5c:40:
        1c:2c:e2:51:20:e4:c2:49:a7:6f:7d:c7:f0:62:d4:52:
        fa:ce:20:e6:35:a2:1a:d2:fd:cd:58:3d:55:70:a5:1e:
        84:52:7f:33:43:39:0e:2d:c7:45:3a:e3:37:25:2d:bd:
        2b:d0:2b:5d:7b:93:c9:5b:04:0c:b3:56:c8:f6:ba:c9
    Fingerprint (SHA-256):
        C0:9F:14:F4:E4:AC:E3:F4:19:51:3E:5E:67:3E:A3:FA:B9:8D:3B:CD:84:FD:7F:FB:0D:B4:D1:1D:5F:76:F4:03
    Fingerprint (SHA1):
        9E:DF:F7:FA:4D:9C:6A:17:F5:B3:E7:0C:2A:9A:53:EE:B0:14:9E:5A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3070: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3071: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3072: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3073: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235609 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3074: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3075: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3076: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3077: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 806235610   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3078: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3079: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3080: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3081: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 806235611   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3082: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3083: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3084: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3085: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 806235612   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3086: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3087: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3088: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3089: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3090: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3091: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235609 (0x300e2dd9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:54 2017
            Not After : Sat Aug 06 23:55:54 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:18:db:82:aa:0c:7f:ad:97:59:c4:76:2e:c2:d0:78:
                    a8:c8:51:05:35:58:6e:76:dd:6e:4c:78:8a:e3:9a:b7:
                    54:89:b1:7f:dc:1a:67:7c:90:d4:f8:c2:1b:7b:25:dd:
                    59:64:cb:87:d1:1a:f2:fc:31:40:b5:a2:f9:da:9d:07:
                    08:23:5e:bd:4b:d9:24:76:7a:32:d5:57:48:7a:3a:e4:
                    e7:34:37:96:80:85:68:84:b5:1b:c9:f6:16:e1:62:01:
                    9f:fe:cb:9e:3a:f6:f5:f8:ca:bd:52:e6:43:90:05:11:
                    fc:b4:25:3d:b5:88:76:ee:60:2f:13:22:43:c2:64:5e:
                    9c:97:3c:ce:0d:06:84:8f:71:1d:7e:00:ce:e0:56:31:
                    ef:aa:c3:24:21:68:fd:32:f7:12:d5:42:b3:88:b1:bd:
                    35:1a:db:41:9c:b4:2d:3b:d5:4e:7c:3a:5d:23:25:6e:
                    ce:06:3e:0c:0f:c6:63:16:e5:50:d2:42:e7:7f:0d:0f:
                    1a:4d:7e:16:2f:28:8b:02:6f:ff:91:2b:1b:ca:df:35:
                    4c:d5:9a:1c:b0:e7:c3:1b:67:00:00:ba:5d:f3:de:a4:
                    54:d5:a6:c1:5a:1d:92:54:ab:b0:b0:5a:49:c4:6f:8e:
                    82:d0:32:39:6b:67:4d:c9:ff:06:b5:fa:6c:30:42:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        49:71:51:a2:04:06:40:3f:95:cf:0b:38:88:49:ab:19:
        00:97:e6:b0:93:5f:5a:62:75:6f:19:ce:e3:d0:d9:b1:
        4b:8a:01:82:5a:71:68:03:44:32:1b:0c:cb:39:44:84:
        40:7d:7d:ec:6c:62:42:4a:86:8a:73:3d:f1:c8:17:2c:
        15:86:48:cc:80:6c:06:16:48:8c:91:d3:d8:75:46:7b:
        87:a6:89:1b:4b:a4:ae:00:72:28:5d:50:6e:1a:ff:da:
        59:9f:dc:0d:36:02:e4:47:ef:de:0b:97:85:2e:51:50:
        5a:b7:0d:7c:b2:80:73:27:92:6a:30:cd:c2:bf:48:04:
        1b:88:08:5f:de:70:14:3a:d9:9d:a7:4f:de:45:ab:2b:
        47:1b:7e:76:e6:bd:8b:4a:68:3f:83:78:15:c6:83:92:
        3e:db:c0:cc:c4:22:44:9c:3b:b2:b8:9d:b3:ac:56:d4:
        33:e3:df:0f:ec:86:43:f3:da:7d:03:df:50:e6:55:6e:
        a8:59:bc:1a:49:8a:79:51:14:22:24:48:08:72:85:4d:
        3e:9e:54:52:7b:db:82:57:d5:21:d2:00:1f:3b:b0:74:
        11:72:34:a4:f5:8f:96:90:af:1c:6d:ec:11:68:9b:00:
        e2:d6:9f:a3:76:c4:d7:3b:d9:d9:3f:90:03:6c:1c:12
    Fingerprint (SHA-256):
        79:D0:96:BF:E3:DE:13:AD:B5:BD:C5:4F:AB:56:6E:66:B8:C9:C4:52:60:2E:E3:73:2C:28:55:76:94:1C:AC:D1
    Fingerprint (SHA1):
        DE:B8:96:A4:00:D2:94:C0:7C:26:47:BA:38:0D:1B:75:D2:0C:A6:7F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3092: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3093: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3094: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235610 (0x300e2dda)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:55 2017
            Not After : Sat Aug 06 23:55:55 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:76:ab:3c:a2:11:f7:a7:20:d7:ff:c7:1e:6f:ce:53:
                    c9:77:0f:a0:48:fb:57:1e:42:ec:8c:45:8c:00:98:c1:
                    c1:79:1e:0f:ef:41:c2:5f:3a:c5:66:d2:a8:bc:a2:9d:
                    bd:0f:8f:ea:72:9e:aa:20:bd:c4:bf:84:b5:e1:b1:94:
                    82:37:f6:c3:80:e1:5f:9b:13:e6:75:8d:f5:67:03:b2:
                    76:4c:5b:12:fe:ec:86:71:eb:d7:6a:ce:a6:2c:8e:59:
                    60:f4:a3:56:6d:62:8b:38:e1:59:20:54:eb:7d:e4:db:
                    a1:95:2d:f8:01:91:04:81:ab:da:57:05:c1:12:43:43:
                    2b:d3:06:23:9a:c0:f8:e2:86:3d:95:a7:df:48:fb:d0:
                    9d:0e:57:1b:cb:57:a8:26:e2:97:90:5e:f2:fa:ab:80:
                    b4:6d:8a:c8:2b:31:1f:c1:ca:ad:ce:e5:f4:6a:85:0e:
                    9b:f2:2e:a5:92:f1:26:1c:93:68:14:09:c4:4d:6c:1f:
                    a0:0d:ca:0a:3f:a5:58:bc:f5:1b:49:1e:49:42:0f:58:
                    39:c9:4c:f1:9c:b2:2e:6e:00:32:7e:24:ef:23:f3:68:
                    2b:0c:f5:cb:b8:a5:3d:91:44:b1:48:84:0a:c0:01:f6:
                    41:c1:57:42:c6:b1:3f:ae:11:14:38:02:bf:84:01:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bf:f7:83:e4:8e:8a:3c:c3:0c:39:4e:6a:89:6c:d7:f4:
        03:ea:e1:df:7c:54:4d:6d:55:20:dd:6d:61:f0:9c:94:
        5a:d7:db:db:5f:23:4a:82:db:d8:db:4c:9a:e0:46:f3:
        ee:05:c7:bb:68:11:60:96:82:60:c9:b0:d3:0b:a7:33:
        1b:bd:da:e6:8d:f6:20:ec:02:eb:47:71:37:23:ee:3e:
        a3:bf:d7:3c:42:18:6c:f0:bb:93:8c:a9:a9:c1:e8:47:
        96:b9:71:c4:9e:5a:17:3f:12:70:22:ab:b8:50:c4:ee:
        55:22:8f:aa:6f:e3:24:ca:3a:ba:50:41:ec:fa:59:28:
        e6:0e:34:9c:84:1b:92:e4:ef:ba:7f:8c:48:1d:77:6a:
        f8:4b:2d:a0:01:f5:d1:4a:34:7a:08:b9:6f:95:7a:35:
        bd:f1:37:3f:15:f3:5e:45:d8:ea:b6:50:ae:66:fd:c8:
        98:12:86:99:03:e4:04:06:5b:46:00:56:0a:29:82:96:
        ce:e8:20:9e:84:aa:b4:eb:be:76:6d:ec:a8:0d:cc:a7:
        79:76:9b:1b:a0:a4:0f:79:7b:b0:65:be:1e:d0:c8:84:
        ea:6c:2e:59:b3:50:f6:62:70:90:4d:f5:68:18:0b:6d:
        fd:0b:1d:ec:da:53:85:9f:04:3d:10:ed:f6:3f:50:3b
    Fingerprint (SHA-256):
        82:87:BC:55:2A:B2:89:7A:7A:E6:B6:57:A9:52:7F:47:FD:CA:87:99:E4:0D:91:AA:C7:C2:24:0F:91:FB:5C:8E
    Fingerprint (SHA1):
        0C:9F:AF:EE:96:0E:C2:81:9E:1D:4B:92:A0:BB:BE:32:9A:3B:1A:F8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3095: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3096: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235611 (0x300e2ddb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:55 2017
            Not After : Sat Aug 06 23:55:55 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:72:f2:e0:c2:1b:b8:d0:24:b6:e2:50:75:90:16:d0:
                    d3:2d:86:f8:f4:49:af:41:72:b0:f8:dc:3f:a4:7c:ba:
                    94:27:e7:f0:ef:52:a0:f8:fd:86:2f:9e:aa:54:ee:54:
                    b1:d4:94:2a:26:89:f2:4a:38:9f:17:67:ff:95:fb:ea:
                    3e:a6:b1:55:fa:c1:5c:a2:62:d4:1c:cd:c1:06:81:3e:
                    39:50:7d:92:7e:bc:76:7e:4a:b5:4d:cf:4d:c4:bb:07:
                    1d:3f:46:0f:a4:75:1a:a3:c5:a7:1f:43:5c:ef:1b:d2:
                    13:0e:e2:8d:dd:c6:4e:76:da:4b:6b:58:4f:7b:ba:bd:
                    12:77:a5:10:b5:74:dd:34:fd:1f:2b:1e:03:64:d3:d9:
                    c9:73:f3:c3:1e:bb:f3:8a:b5:d9:cb:22:f4:08:c7:1b:
                    c7:ac:50:a6:5b:2f:99:2a:d0:14:88:72:28:e2:79:70:
                    f4:10:1d:f5:63:eb:18:5e:10:cc:87:65:54:83:78:07:
                    57:0f:83:18:47:1a:0d:28:07:cf:f2:14:ea:87:ef:53:
                    f6:41:ec:4a:2e:63:3f:8b:ff:10:ad:2c:27:66:47:12:
                    1a:de:07:25:92:2f:64:d2:21:c4:53:cf:5d:8a:30:6a:
                    37:4e:1c:3a:e5:5a:05:27:ae:47:cb:58:16:c9:40:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:03:b5:be:52:4d:5c:37:3b:89:d2:d9:b5:13:88:a9:
        81:71:fa:91:b8:a3:bb:45:7f:34:75:ff:eb:2b:d0:21:
        ab:b0:8e:81:5d:93:a0:dd:37:78:4c:dc:4c:56:bd:2d:
        82:c1:f5:15:6a:68:bd:12:25:dd:df:f7:e4:39:d2:96:
        35:38:d4:e3:d4:d6:8a:e5:9d:49:f8:91:28:fb:07:b2:
        76:a7:4c:8a:3a:a2:f8:26:6c:ee:a9:86:f1:e4:31:69:
        21:74:3b:39:b8:e3:36:2e:52:4f:66:4f:32:44:e5:37:
        b7:36:c4:fb:87:fd:6a:54:c6:4b:9b:67:b6:53:8d:0f:
        3b:22:6e:94:59:f6:82:c6:bb:cf:c2:c0:5d:de:67:3e:
        fb:6c:ef:4f:a3:7f:40:10:46:ac:47:86:fd:1c:4f:96:
        ab:86:0a:e2:13:c3:d4:a6:a9:c3:73:55:ba:be:55:91:
        ff:f0:04:b0:93:91:bf:5a:88:04:1b:8b:89:3c:9c:74:
        7e:97:f7:06:29:46:ad:18:f9:31:73:71:29:39:e0:38:
        a9:a2:75:a3:92:d7:75:f5:07:ce:c8:7f:e6:a4:34:ce:
        35:e9:25:b5:d7:0f:56:c1:bc:d5:72:99:80:eb:86:5a:
        dd:e6:df:df:b2:4b:bb:59:c5:63:c9:5f:c2:1f:c5:b7
    Fingerprint (SHA-256):
        62:C3:96:5D:1E:77:2B:F3:62:AD:E0:46:78:CB:86:DC:68:AB:90:FA:9C:FF:83:34:E1:C1:2F:2E:35:CF:B5:A0
    Fingerprint (SHA1):
        D8:A1:16:E4:39:76:4F:50:02:4E:BD:FC:18:5B:D5:01:F6:11:CC:6D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #3097: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3098: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235613 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3099: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3100: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3101: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3102: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 806235614   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3103: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3104: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3105: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3106: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 806235615   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3107: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3108: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #3109: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3110: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 806235616   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3111: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3112: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3113: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3114: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 806235617   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3115: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3116: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3117: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3118: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3119: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3120: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #3121: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235613 (0x300e2ddd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:56 2017
            Not After : Sat Aug 06 23:55:56 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:ec:a9:8a:45:32:48:41:d4:10:6a:e3:cc:18:b9:a5:
                    c5:a5:f3:6d:36:5a:80:39:05:db:3e:f0:dd:8e:4e:bb:
                    e7:38:9d:71:78:fc:b6:7f:92:c8:96:23:eb:34:5a:cb:
                    56:5f:70:2b:3a:da:24:28:5c:c6:bc:c1:e2:6e:88:a3:
                    98:6a:7b:90:6e:da:dc:e2:0d:f3:12:9b:5f:81:ae:95:
                    97:1c:00:4b:11:c7:d8:b5:e5:42:e1:cb:15:1c:f8:30:
                    c3:80:55:0c:9c:69:3c:d5:1f:d2:5e:2d:4a:93:a4:df:
                    05:4f:36:7c:c1:ad:90:c3:5a:11:b1:71:b6:64:a2:8f:
                    3d:ad:db:f5:2d:bc:0d:a4:fb:a0:81:47:8a:15:d9:42:
                    eb:e5:55:a3:2f:11:6a:51:d5:e4:e7:37:bd:8a:f5:95:
                    e3:4b:b9:a0:9a:7d:df:a0:29:57:9a:6a:5b:71:3c:23:
                    22:de:47:4e:d4:04:f1:76:1a:a8:85:44:11:cd:e0:ab:
                    f9:09:7c:d5:d3:71:1f:7f:a6:8c:3f:e5:10:09:01:5e:
                    aa:db:fc:05:4b:3a:fd:d6:fa:67:50:bc:b5:41:1d:25:
                    3f:36:d8:17:bd:22:4c:4d:a9:7d:cf:96:7a:31:b0:a6:
                    8e:2a:3d:c0:7f:9e:ca:0d:45:76:8a:22:81:ce:73:d9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0d:b6:06:48:62:4f:df:ee:b4:97:60:da:6a:a3:b3:6e:
        a1:9b:36:74:87:f5:67:14:62:e2:72:a3:62:2d:11:24:
        55:05:0b:90:d4:cb:df:0b:1e:28:ce:9f:71:5d:5a:92:
        a5:f4:ca:ed:37:fd:90:ae:39:d8:b4:d6:e0:5a:d9:77:
        7b:d4:71:43:41:ce:4e:cd:e2:31:f1:7c:40:e5:69:9d:
        50:6f:dc:bd:a1:21:85:9a:52:4b:86:28:74:2a:0d:b1:
        4e:9f:49:a2:96:cd:06:d5:c9:9d:75:24:d1:73:ef:77:
        f6:a2:ce:94:48:4d:22:13:fb:e0:ef:6b:ac:c9:54:31:
        63:f2:13:e6:c7:95:3d:f6:fa:2c:eb:72:5a:60:af:25:
        8a:5f:bc:61:1d:31:b8:91:64:48:30:84:e1:6e:de:76:
        d7:b6:2d:f1:85:17:a0:3a:5c:99:d7:7d:e3:00:27:ed:
        c3:d8:c5:d8:ab:61:27:51:a3:1b:aa:3b:01:32:d4:ff:
        d9:20:9e:1b:85:8f:a2:f2:26:d1:ee:3a:f6:b5:7b:16:
        17:19:ac:e0:ec:c9:a4:8f:f7:2d:65:d6:cb:80:e8:d0:
        fb:f2:84:28:35:51:93:0c:4e:86:dd:60:f7:2c:63:a5:
        35:95:d6:77:a0:b5:7e:86:52:ba:a5:cd:ad:72:b3:ad
    Fingerprint (SHA-256):
        FA:55:E0:01:D6:D4:5F:09:C0:F8:A2:C4:A0:5F:D2:80:59:80:FF:37:16:6F:8C:FF:93:82:8A:2C:C7:F7:65:E7
    Fingerprint (SHA1):
        AD:91:EB:69:0A:B3:19:8F:85:50:EE:C4:D6:40:03:19:CB:2C:6B:98
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3122: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3123: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235614 (0x300e2dde)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:56 2017
            Not After : Sat Aug 06 23:55:56 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:82:cb:36:b3:36:16:bd:f5:ce:8c:83:07:0f:56:5e:
                    c2:71:c8:b7:a6:64:92:e5:b5:ef:3c:8b:26:ba:fe:57:
                    2c:dd:93:be:79:c3:67:ea:02:d7:aa:45:b2:02:44:a9:
                    86:b6:59:14:ef:11:a5:99:6c:ba:f8:a5:a1:c5:dc:cc:
                    11:74:ce:bc:11:cd:92:bf:bb:95:d2:9e:c8:59:af:5d:
                    55:d8:7e:5c:41:78:f8:c8:de:cb:dd:77:74:33:76:54:
                    3e:98:32:fa:a3:a2:bd:51:2e:9b:fc:78:de:42:45:be:
                    b6:de:37:10:bf:e7:5f:8c:bb:a1:ae:0b:08:d1:b6:e7:
                    73:46:4c:c4:de:27:7b:11:ce:91:2e:9c:ce:00:69:e0:
                    62:55:a2:d7:6b:51:58:b5:44:45:3f:3c:db:4f:e7:e2:
                    f9:ed:9a:c2:5a:ad:ac:52:7e:33:d7:73:93:ce:4f:34:
                    6c:d0:7c:5f:66:3a:0d:52:11:c3:6b:9e:bb:26:6f:93:
                    58:38:41:bd:78:7f:15:30:4f:55:45:de:63:e9:f5:6b:
                    7d:2b:49:0c:0c:3f:da:2d:38:ce:e4:bb:84:5c:7a:46:
                    6a:ff:dd:15:c9:14:ad:26:3c:94:58:e1:4c:bf:c3:ad:
                    1b:92:c3:55:8b:00:c2:83:45:63:f6:43:3f:8b:ad:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        91:fa:0c:fd:f1:bf:86:8f:2b:84:e9:2b:fb:d3:2f:98:
        3b:89:18:7b:9f:a1:ca:d0:6c:ec:d5:40:94:5e:2d:83:
        78:d9:80:d9:fa:be:19:31:90:f1:a0:cb:de:49:9c:3c:
        42:1a:eb:a3:de:29:82:a1:86:6b:8f:65:da:50:e0:b9:
        a8:b6:cc:40:6c:7e:1e:8c:8c:73:22:1a:82:0d:51:5a:
        0c:be:94:2a:17:9a:81:92:b4:10:7e:32:e8:28:5c:a3:
        83:14:87:90:55:23:dd:05:8f:c5:3e:2d:94:dd:68:79:
        1a:ee:79:de:f6:12:9b:1b:42:1f:45:0d:6d:ff:a8:bf:
        a6:4b:9f:6b:9f:60:e0:e5:fa:f6:4d:9c:23:ed:59:ec:
        2d:e3:6e:75:b1:66:08:0b:55:be:9c:f6:db:8b:3d:96:
        96:f0:5c:20:7b:e8:61:51:72:37:6f:1d:da:bf:6e:e0:
        33:e5:a4:af:d1:c8:8a:e0:6c:72:f0:f4:c3:16:0c:2a:
        d7:34:34:54:ea:ef:5a:c3:f4:d3:52:9b:c4:4e:2e:7d:
        05:35:d1:7e:fa:ca:a3:dc:5d:55:be:d1:6e:57:58:87:
        eb:4f:c4:fe:53:f1:73:28:b5:13:c6:cf:f6:62:88:fc:
        a2:cf:a0:b1:0a:7b:d1:40:66:80:b4:f1:3c:7e:0e:69
    Fingerprint (SHA-256):
        25:CC:87:C3:15:67:3E:C1:C1:BE:B6:AB:9B:06:69:76:CE:94:74:29:45:4B:16:AB:A0:52:F8:2A:EA:81:2E:D1
    Fingerprint (SHA1):
        80:26:9B:B7:28:92:4B:44:DE:8A:81:F7:E9:9E:DF:22:E5:BA:08:37
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3124: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3125: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3126: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235615 (0x300e2ddf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:56 2017
            Not After : Sat Aug 06 23:55:56 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:79:f9:2f:6e:c6:1c:1f:4c:fb:e3:10:f8:c8:0b:fd:
                    09:40:20:08:2f:7b:f5:67:08:dc:60:12:7d:3d:b3:90:
                    4c:6c:62:0b:c4:da:70:e4:36:95:71:7f:29:e7:ca:c3:
                    f0:1c:88:47:86:5d:39:0f:79:fe:98:80:1a:75:d2:de:
                    50:77:88:31:a0:40:95:06:d6:99:7a:0d:3f:16:8d:c9:
                    09:7b:4a:e7:d9:d2:87:3f:7c:8a:87:32:ae:31:0b:be:
                    49:0b:66:97:ea:6a:bc:64:70:b8:07:21:9f:10:05:76:
                    fc:12:93:4e:38:b9:91:db:39:1b:4a:ca:67:b4:01:73:
                    7d:7c:df:4c:e5:8c:da:6f:c9:e4:77:98:3f:55:df:04:
                    51:12:8b:25:2b:26:2f:0c:77:75:bb:82:c7:37:20:fc:
                    f5:5a:da:ef:d3:77:22:86:fe:b4:06:e6:26:95:8d:20:
                    0f:ec:a1:23:92:d0:8c:29:45:3d:0c:17:8c:6d:58:48:
                    13:23:22:2a:3c:de:f4:b8:37:7f:37:01:a7:70:1b:c0:
                    3d:18:dd:d6:48:06:80:d0:e3:88:00:31:b0:e2:94:15:
                    c5:03:b2:10:60:7a:2f:28:b1:20:16:a4:8b:28:bd:29:
                    79:20:75:07:7b:33:18:39:be:ea:30:91:e6:f6:54:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5f:aa:9b:ac:c7:40:bc:14:74:e9:cd:bc:3e:b9:80:a2:
        90:3e:de:f6:15:c2:19:63:79:4f:43:95:88:3f:4d:8a:
        9a:3e:2e:d8:17:1c:88:18:14:13:6e:d8:95:da:10:2d:
        7b:e3:76:d8:97:41:37:97:77:d8:61:fe:3c:d0:94:3b:
        c0:0c:ee:e7:cd:b6:ac:d8:01:dc:1c:4d:0f:7c:74:37:
        6a:95:21:f6:f0:3b:85:8a:73:bf:ff:b2:bf:65:0a:5b:
        58:09:3b:f2:53:a4:4a:a7:74:56:5b:c9:be:55:02:64:
        48:38:fc:3a:e7:18:16:05:44:9c:ba:97:8b:96:61:a5:
        b1:d4:70:a5:f7:57:83:aa:e8:70:c0:03:56:a1:0f:03:
        91:cf:f4:19:4a:a2:7d:0b:1f:59:58:8a:35:f8:2d:81:
        81:d1:01:5c:67:d3:0e:64:e1:ac:8a:f6:35:52:b0:62:
        1b:7b:75:d9:01:4b:5d:89:0e:26:69:92:10:09:15:6e:
        26:ec:71:57:a7:17:35:2e:25:42:51:e7:ce:cc:74:c5:
        5d:ef:0a:cc:57:71:92:88:90:86:f2:f6:42:e3:b7:74:
        d5:63:8c:42:ae:88:db:3b:2c:83:59:d8:3f:bc:d1:44:
        56:78:7c:57:9e:10:5f:09:05:92:00:d0:fc:13:14:22
    Fingerprint (SHA-256):
        C8:DF:B8:3A:79:A0:D9:27:17:01:E0:EA:70:31:1C:FE:92:9B:ED:13:2F:0D:B9:42:5E:FF:E7:D1:BF:DD:67:34
    Fingerprint (SHA1):
        CD:83:84:96:15:80:90:13:83:BF:43:73:E6:E6:5B:45:16:F5:7D:E0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #3127: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3128: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235618 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3129: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3130: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3131: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3132: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 806235619   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3133: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3134: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3135: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3136: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 806235620   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA1Root-806235527.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3137: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3138: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3139: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3140: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 806235621   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3141: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3142: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #3143: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235618 (0x300e2de2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:57 2017
            Not After : Sat Aug 06 23:55:57 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    df:a5:1b:2a:2c:f5:6d:5a:28:07:e5:97:82:9e:91:4e:
                    88:3c:30:e7:11:09:ec:6f:d5:40:20:22:d4:04:fe:7e:
                    15:67:61:18:2f:4b:1d:ef:bf:9a:ce:98:f3:30:11:7a:
                    a0:70:96:80:db:72:cf:ae:e5:68:b7:6c:3b:a0:fd:21:
                    bb:36:a4:6c:a5:60:7d:83:0a:6f:1f:6f:5a:b1:1d:4e:
                    39:9a:3c:70:1c:75:78:b0:94:25:eb:6a:46:7c:e0:21:
                    e5:5a:6f:df:6c:89:28:d5:c1:7d:15:f8:00:b5:46:d5:
                    5a:a7:73:f9:b7:de:1b:db:a1:35:cc:ea:7a:af:5b:10:
                    c7:4b:e0:60:59:26:29:c3:c4:68:eb:43:0b:46:c7:17:
                    9b:cc:1e:9d:fa:4d:7d:fa:99:03:8f:31:53:60:3b:26:
                    6a:20:c4:25:fe:05:69:7b:6e:00:2f:f8:11:3e:51:1f:
                    82:7f:a1:da:9f:2c:72:5f:fa:63:30:fe:47:a3:36:39:
                    55:ba:b8:25:80:75:2d:4b:71:ab:c0:a7:af:3b:1d:68:
                    53:0c:45:f9:66:99:74:d8:75:d0:23:64:3a:16:02:8a:
                    da:c7:ef:2e:f6:99:d7:b7:fb:b4:21:d7:a4:06:7d:3a:
                    0a:41:0e:f1:b1:cc:7c:7f:f2:a5:c3:e6:7c:35:26:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c8:a2:f1:6c:bc:d3:bf:b4:8b:ff:31:9b:06:e0:c8:89:
        df:4d:cd:06:df:ff:52:b7:42:d5:19:02:fc:3b:f7:9f:
        1e:2e:b4:6b:d6:e7:2a:ed:3d:ad:b5:08:a5:1f:e3:fe:
        91:cf:0a:4b:5f:75:7d:7a:79:b4:3f:66:42:0b:19:8e:
        f0:2f:eb:5f:1a:b1:0b:fd:fb:81:34:05:d1:49:7f:fd:
        bb:14:7f:bb:a6:30:a5:81:7e:b6:2b:55:d5:2a:c2:8e:
        53:be:65:a5:fa:01:29:dd:c8:ca:f2:31:37:19:d1:ce:
        ca:d2:bd:c6:84:12:61:74:aa:3d:2c:f0:72:e0:64:b8:
        00:cb:b6:d6:ae:c3:11:be:00:3b:fb:c5:b3:e8:eb:46:
        45:1a:36:e3:af:8e:0c:a6:d2:a4:03:06:f0:27:94:5b:
        14:69:6d:af:f5:22:1d:72:d7:bd:37:d1:9d:35:97:97:
        94:a0:b9:3e:ea:83:ad:6b:58:a6:c7:92:af:a3:1c:6a:
        a4:b7:c9:f9:c6:c7:dd:b6:42:00:a5:f7:3a:f4:88:9c:
        33:ab:de:36:ce:0c:40:e3:c5:65:39:90:6e:33:15:60:
        c0:3a:ec:8c:13:f9:51:a0:08:a8:ce:46:cf:6f:09:e1:
        23:8c:e1:20:70:bd:ba:cb:27:ce:2c:b0:7f:12:56:23
    Fingerprint (SHA-256):
        79:DD:91:97:69:6F:BB:BA:AA:CC:7A:59:64:65:6A:0E:B0:59:D8:28:32:24:E1:3B:05:BC:FE:5C:9F:73:74:E5
    Fingerprint (SHA1):
        0C:08:BA:C1:A0:4D:63:86:9A:E8:AC:A3:50:25:8D:5A:F6:66:2A:F8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3144: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3145: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235622 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3146: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3147: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3148: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235623 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3149: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3150: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3151: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3152: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 806235624 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3153: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3154: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 806235625 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3155: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3156: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3157: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3158: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3159: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 806235626   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-Bridge-806235528.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3160: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3161: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3162: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3163: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 806235627   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3164: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3165: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3166: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3167: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235623 (0x300e2de7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:58 2017
            Not After : Sat Aug 06 23:55:58 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:64:cf:9b:3f:dd:3b:9a:54:03:f5:21:f4:de:dd:76:
                    eb:89:9e:21:b4:65:e0:38:af:cf:d6:c6:df:d6:92:cf:
                    3d:51:1b:fb:39:c7:e7:83:3d:ac:94:75:f9:45:f4:b4:
                    ec:c2:e9:3b:2d:cf:4b:24:d9:d6:68:76:21:ba:75:6f:
                    81:aa:9e:38:ff:21:3b:6a:74:64:11:2f:b2:98:ae:ba:
                    cf:aa:9b:06:9b:06:b8:60:ed:4d:02:56:e7:aa:88:65:
                    95:6e:26:7e:a9:b8:34:6e:df:2e:3c:ae:33:27:43:b3:
                    1f:4a:d7:26:a3:c1:78:de:ac:80:a9:25:4c:32:44:c2:
                    9e:eb:f7:9d:32:f4:98:dc:c6:ed:6e:fe:15:2d:6c:4f:
                    eb:1b:9f:3a:c4:a7:be:a6:ea:c9:ea:af:df:c6:7b:58:
                    03:39:be:83:54:80:7b:64:4e:7f:0f:67:93:12:5a:ec:
                    ab:00:dd:1c:0b:7d:16:26:7f:e6:b3:23:01:76:18:8d:
                    a2:b4:b1:15:8f:38:b1:4f:b5:cf:70:e9:1b:7f:d3:71:
                    7d:23:97:78:a7:82:24:73:88:9b:f1:73:21:c7:79:af:
                    bc:a3:0d:d3:1d:52:5c:2e:34:9c:ce:57:27:c5:07:03:
                    09:ba:f2:57:a5:7d:98:eb:19:9e:36:a1:e1:70:17:e7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6d:58:6a:24:48:2f:a4:46:c1:26:a2:28:c4:7d:43:a3:
        76:87:c8:10:a8:44:c5:81:66:15:2f:96:07:32:05:96:
        b7:93:41:73:41:0e:66:83:63:fa:2d:c4:f9:e7:66:de:
        dc:a5:96:34:34:9b:c4:43:5d:23:1e:66:83:e9:18:98:
        a0:c5:29:a0:95:36:35:2c:d1:f7:fd:a0:66:67:b8:b5:
        b6:13:5e:5c:ea:54:84:70:78:95:d1:71:c2:31:7f:3f:
        55:75:89:ef:47:a9:d0:a2:f4:a6:e4:87:91:bf:37:fa:
        d4:4a:29:57:9f:91:0b:56:1d:cb:91:b4:23:2b:56:27:
        2f:23:21:6b:79:bc:42:a5:a4:d7:c2:85:f4:b4:fd:a8:
        d1:ee:63:c2:f3:fd:6a:d9:db:7d:e1:0f:ff:fe:77:01:
        b1:06:56:bd:66:b6:4e:2d:f4:30:bd:9d:0c:b5:74:e9:
        ff:27:57:df:de:a8:82:25:fd:cd:05:c6:e7:11:a4:65:
        4b:47:fa:5a:a1:8d:12:8d:95:e6:bd:a5:c1:75:76:b0:
        84:10:f3:d0:07:4d:cd:35:97:69:17:ab:ba:5e:08:8f:
        06:61:7c:f7:ad:51:61:51:74:40:b0:b8:03:5a:54:2e:
        50:9a:86:3c:4d:96:25:10:2c:e8:04:45:57:eb:eb:93
    Fingerprint (SHA-256):
        C9:5F:0A:7D:97:43:3D:EF:50:62:C8:7A:50:B6:DD:0D:E7:FA:FB:BD:55:9F:3F:0B:6B:41:A6:45:96:6C:F6:66
    Fingerprint (SHA1):
        54:74:F5:B6:1C:E5:85:FA:06:85:BB:63:0E:83:CC:2A:8B:CF:04:FC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3168: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235623 (0x300e2de7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:58 2017
            Not After : Sat Aug 06 23:55:58 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:64:cf:9b:3f:dd:3b:9a:54:03:f5:21:f4:de:dd:76:
                    eb:89:9e:21:b4:65:e0:38:af:cf:d6:c6:df:d6:92:cf:
                    3d:51:1b:fb:39:c7:e7:83:3d:ac:94:75:f9:45:f4:b4:
                    ec:c2:e9:3b:2d:cf:4b:24:d9:d6:68:76:21:ba:75:6f:
                    81:aa:9e:38:ff:21:3b:6a:74:64:11:2f:b2:98:ae:ba:
                    cf:aa:9b:06:9b:06:b8:60:ed:4d:02:56:e7:aa:88:65:
                    95:6e:26:7e:a9:b8:34:6e:df:2e:3c:ae:33:27:43:b3:
                    1f:4a:d7:26:a3:c1:78:de:ac:80:a9:25:4c:32:44:c2:
                    9e:eb:f7:9d:32:f4:98:dc:c6:ed:6e:fe:15:2d:6c:4f:
                    eb:1b:9f:3a:c4:a7:be:a6:ea:c9:ea:af:df:c6:7b:58:
                    03:39:be:83:54:80:7b:64:4e:7f:0f:67:93:12:5a:ec:
                    ab:00:dd:1c:0b:7d:16:26:7f:e6:b3:23:01:76:18:8d:
                    a2:b4:b1:15:8f:38:b1:4f:b5:cf:70:e9:1b:7f:d3:71:
                    7d:23:97:78:a7:82:24:73:88:9b:f1:73:21:c7:79:af:
                    bc:a3:0d:d3:1d:52:5c:2e:34:9c:ce:57:27:c5:07:03:
                    09:ba:f2:57:a5:7d:98:eb:19:9e:36:a1:e1:70:17:e7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6d:58:6a:24:48:2f:a4:46:c1:26:a2:28:c4:7d:43:a3:
        76:87:c8:10:a8:44:c5:81:66:15:2f:96:07:32:05:96:
        b7:93:41:73:41:0e:66:83:63:fa:2d:c4:f9:e7:66:de:
        dc:a5:96:34:34:9b:c4:43:5d:23:1e:66:83:e9:18:98:
        a0:c5:29:a0:95:36:35:2c:d1:f7:fd:a0:66:67:b8:b5:
        b6:13:5e:5c:ea:54:84:70:78:95:d1:71:c2:31:7f:3f:
        55:75:89:ef:47:a9:d0:a2:f4:a6:e4:87:91:bf:37:fa:
        d4:4a:29:57:9f:91:0b:56:1d:cb:91:b4:23:2b:56:27:
        2f:23:21:6b:79:bc:42:a5:a4:d7:c2:85:f4:b4:fd:a8:
        d1:ee:63:c2:f3:fd:6a:d9:db:7d:e1:0f:ff:fe:77:01:
        b1:06:56:bd:66:b6:4e:2d:f4:30:bd:9d:0c:b5:74:e9:
        ff:27:57:df:de:a8:82:25:fd:cd:05:c6:e7:11:a4:65:
        4b:47:fa:5a:a1:8d:12:8d:95:e6:bd:a5:c1:75:76:b0:
        84:10:f3:d0:07:4d:cd:35:97:69:17:ab:ba:5e:08:8f:
        06:61:7c:f7:ad:51:61:51:74:40:b0:b8:03:5a:54:2e:
        50:9a:86:3c:4d:96:25:10:2c:e8:04:45:57:eb:eb:93
    Fingerprint (SHA-256):
        C9:5F:0A:7D:97:43:3D:EF:50:62:C8:7A:50:B6:DD:0D:E7:FA:FB:BD:55:9F:3F:0B:6B:41:A6:45:96:6C:F6:66
    Fingerprint (SHA1):
        54:74:F5:B6:1C:E5:85:FA:06:85:BB:63:0E:83:CC:2A:8B:CF:04:FC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3169: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3170: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235628 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3171: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3172: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3173: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235629 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3174: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3175: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3176: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3177: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 806235630 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3178: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3179: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 806235631 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3180: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3181: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3182: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3183: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3184: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 806235632   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-Bridge-806235529.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3185: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3186: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3187: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3188: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 806235633   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3189: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3190: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3191: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3192: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 806235634   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-BridgeNavy-806235530.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3193: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3194: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3195: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3196: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 806235635   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3197: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3198: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3199: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3200: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235629 (0x300e2ded)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:59 2017
            Not After : Sat Aug 06 23:55:59 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:2c:29:ca:9a:4c:1c:1c:35:83:1d:68:24:6e:52:bc:
                    5c:2f:7e:87:18:08:99:40:be:0c:5c:a8:fd:63:af:8a:
                    fb:06:c6:98:d6:26:62:5c:64:9e:b2:df:ef:b7:81:65:
                    b0:c9:5a:13:3c:eb:5e:67:11:02:2a:0f:f4:fc:58:00:
                    ad:43:e1:06:38:0d:e4:2a:5d:be:c6:48:c7:b8:46:7b:
                    f7:d9:4e:c3:e1:b2:5e:01:36:59:53:53:9b:e3:21:c0:
                    94:86:f3:7d:4b:58:41:46:cc:14:8c:f0:fd:68:5d:79:
                    15:e7:68:4e:05:97:e7:11:d8:e0:ce:9e:0d:7d:17:35:
                    5a:e4:3a:0c:24:2d:30:53:01:0f:91:d5:82:25:fb:6b:
                    cd:0b:12:ff:f1:4e:7a:5e:40:97:36:93:66:21:f4:73:
                    97:2f:56:9b:ce:ef:06:1e:13:2d:f2:6f:f4:5f:68:d0:
                    2c:15:ad:07:87:d4:4f:f6:c6:60:d0:89:0f:8d:80:97:
                    55:e8:9e:fe:9c:6c:c5:d8:56:a4:c5:7a:1f:91:5c:94:
                    91:5c:34:16:ed:0f:35:1f:66:13:1d:86:e0:a9:8e:83:
                    84:cc:1d:8f:50:83:17:8c:3c:f3:ca:90:a6:cd:72:92:
                    75:1f:a8:ea:9c:2b:ca:7f:42:1e:75:26:80:f0:7c:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        aa:d8:12:60:b8:94:0f:e6:92:43:87:8b:ef:6a:c2:d7:
        cf:5d:11:45:7a:c6:3f:a1:65:2c:66:63:f3:ff:f8:99:
        23:2d:c4:7d:a3:0e:54:07:56:7b:e9:30:39:55:3b:6c:
        8a:86:f8:b8:da:f5:76:26:6f:a7:5e:2e:32:cb:31:38:
        d8:e3:c2:4e:80:51:23:0a:2f:e5:e0:29:7e:1b:1a:d2:
        84:bd:3e:fe:68:34:b8:1e:d4:6b:1b:3e:d4:f7:d4:d2:
        b6:7c:85:3d:24:79:ed:78:a2:5e:b7:7c:4f:db:aa:81:
        9e:db:b4:ff:91:4b:d5:f0:d9:45:03:65:2e:68:ef:fc:
        cd:09:3b:38:fc:19:20:36:ec:f4:fa:42:a7:e4:57:d7:
        d3:af:50:eb:08:ed:e4:34:15:5b:7d:c0:b1:ba:0e:4b:
        e2:9c:92:08:da:58:d3:3b:58:7a:1f:bc:57:45:d8:dc:
        f0:ce:13:30:a5:9c:b4:aa:5c:31:bc:20:9d:ac:b8:ca:
        41:8f:3f:47:fe:15:ee:54:2c:26:36:ac:c0:f5:83:c8:
        1b:7d:ed:16:75:8c:a8:3a:16:4e:a7:e1:22:db:a8:59:
        81:54:eb:0d:73:06:84:84:e7:5f:4c:6c:52:b1:a7:b7:
        4a:50:95:97:de:8e:fe:5b:6c:21:2c:c2:b2:75:ec:6e
    Fingerprint (SHA-256):
        46:0A:ED:35:D5:7B:55:5D:72:FB:B4:DA:0F:E7:2F:8E:0A:7C:01:91:91:74:EE:A9:BE:8D:AB:16:92:C9:6D:2F
    Fingerprint (SHA1):
        03:F4:97:65:8F:52:0B:6A:BC:B6:E8:F2:08:E5:60:C9:E4:51:64:92
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3201: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235629 (0x300e2ded)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:59 2017
            Not After : Sat Aug 06 23:55:59 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:2c:29:ca:9a:4c:1c:1c:35:83:1d:68:24:6e:52:bc:
                    5c:2f:7e:87:18:08:99:40:be:0c:5c:a8:fd:63:af:8a:
                    fb:06:c6:98:d6:26:62:5c:64:9e:b2:df:ef:b7:81:65:
                    b0:c9:5a:13:3c:eb:5e:67:11:02:2a:0f:f4:fc:58:00:
                    ad:43:e1:06:38:0d:e4:2a:5d:be:c6:48:c7:b8:46:7b:
                    f7:d9:4e:c3:e1:b2:5e:01:36:59:53:53:9b:e3:21:c0:
                    94:86:f3:7d:4b:58:41:46:cc:14:8c:f0:fd:68:5d:79:
                    15:e7:68:4e:05:97:e7:11:d8:e0:ce:9e:0d:7d:17:35:
                    5a:e4:3a:0c:24:2d:30:53:01:0f:91:d5:82:25:fb:6b:
                    cd:0b:12:ff:f1:4e:7a:5e:40:97:36:93:66:21:f4:73:
                    97:2f:56:9b:ce:ef:06:1e:13:2d:f2:6f:f4:5f:68:d0:
                    2c:15:ad:07:87:d4:4f:f6:c6:60:d0:89:0f:8d:80:97:
                    55:e8:9e:fe:9c:6c:c5:d8:56:a4:c5:7a:1f:91:5c:94:
                    91:5c:34:16:ed:0f:35:1f:66:13:1d:86:e0:a9:8e:83:
                    84:cc:1d:8f:50:83:17:8c:3c:f3:ca:90:a6:cd:72:92:
                    75:1f:a8:ea:9c:2b:ca:7f:42:1e:75:26:80:f0:7c:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        aa:d8:12:60:b8:94:0f:e6:92:43:87:8b:ef:6a:c2:d7:
        cf:5d:11:45:7a:c6:3f:a1:65:2c:66:63:f3:ff:f8:99:
        23:2d:c4:7d:a3:0e:54:07:56:7b:e9:30:39:55:3b:6c:
        8a:86:f8:b8:da:f5:76:26:6f:a7:5e:2e:32:cb:31:38:
        d8:e3:c2:4e:80:51:23:0a:2f:e5:e0:29:7e:1b:1a:d2:
        84:bd:3e:fe:68:34:b8:1e:d4:6b:1b:3e:d4:f7:d4:d2:
        b6:7c:85:3d:24:79:ed:78:a2:5e:b7:7c:4f:db:aa:81:
        9e:db:b4:ff:91:4b:d5:f0:d9:45:03:65:2e:68:ef:fc:
        cd:09:3b:38:fc:19:20:36:ec:f4:fa:42:a7:e4:57:d7:
        d3:af:50:eb:08:ed:e4:34:15:5b:7d:c0:b1:ba:0e:4b:
        e2:9c:92:08:da:58:d3:3b:58:7a:1f:bc:57:45:d8:dc:
        f0:ce:13:30:a5:9c:b4:aa:5c:31:bc:20:9d:ac:b8:ca:
        41:8f:3f:47:fe:15:ee:54:2c:26:36:ac:c0:f5:83:c8:
        1b:7d:ed:16:75:8c:a8:3a:16:4e:a7:e1:22:db:a8:59:
        81:54:eb:0d:73:06:84:84:e7:5f:4c:6c:52:b1:a7:b7:
        4a:50:95:97:de:8e:fe:5b:6c:21:2c:c2:b2:75:ec:6e
    Fingerprint (SHA-256):
        46:0A:ED:35:D5:7B:55:5D:72:FB:B4:DA:0F:E7:2F:8E:0A:7C:01:91:91:74:EE:A9:BE:8D:AB:16:92:C9:6D:2F
    Fingerprint (SHA1):
        03:F4:97:65:8F:52:0B:6A:BC:B6:E8:F2:08:E5:60:C9:E4:51:64:92
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3202: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #3203: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235628 (0x300e2dec)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:59 2017
            Not After : Sat Aug 06 23:55:59 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:89:6b:31:46:6d:d7:cb:60:6a:19:aa:b8:00:53:0e:
                    82:41:c7:3c:ba:bb:71:47:3d:dd:03:ce:0a:42:a5:2f:
                    3b:1f:20:a1:8a:b4:1a:36:27:ec:51:b5:57:a8:7c:26:
                    f9:6d:db:0f:5a:e8:03:04:78:5d:45:3c:0a:7e:cb:15:
                    31:71:df:92:41:d4:80:56:33:98:7f:db:4a:f4:89:ef:
                    b0:17:de:d4:a0:aa:ed:53:0a:d4:20:da:8f:69:73:34:
                    d5:52:48:cd:a4:36:ed:b9:08:21:aa:5c:03:cb:86:1e:
                    be:73:89:e6:90:23:27:11:a6:5e:71:1c:bf:7b:33:88:
                    a1:6e:d4:60:d8:6b:a9:a8:32:fc:b1:95:f4:66:80:19:
                    a2:87:53:f5:33:8a:3d:bb:04:c4:91:2a:0b:00:dc:87:
                    54:75:2e:7f:ec:eb:8b:ab:75:2c:fd:66:c1:13:2c:03:
                    2a:66:09:45:cf:fb:b4:73:ac:33:57:9f:52:f5:e4:fe:
                    34:cd:fa:ad:97:5d:f7:81:4d:66:37:a2:c4:2a:f6:e9:
                    51:04:f0:2b:72:48:e8:9d:7e:05:06:c0:fa:e8:3e:88:
                    a5:a4:b7:21:f5:f0:3c:24:1a:56:01:76:b8:86:8b:28:
                    93:8a:35:34:93:8d:34:28:0e:9b:06:b5:b9:ba:55:a1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b8:db:42:af:ab:bb:08:4c:9f:e8:d9:13:a4:d1:84:61:
        51:a8:9c:ea:2d:4f:5f:e7:91:db:ad:6f:e6:1b:8b:1b:
        88:45:4c:a2:5d:dc:cc:86:7d:a1:b2:eb:e0:08:09:c5:
        2f:f2:45:d4:e2:2e:5c:23:5f:77:e6:03:f6:af:0b:86:
        66:29:0d:e1:e1:4b:2c:af:e5:ac:cb:2a:13:50:3b:d4:
        d3:12:1b:51:1e:ac:39:99:fa:e9:9c:f8:05:a3:2d:53:
        6d:30:70:07:6b:55:07:0a:08:f0:0e:4d:06:93:b1:ee:
        74:d5:89:84:8b:7a:d1:a8:2e:fd:c0:7e:ef:6d:56:3d:
        27:10:02:bb:0a:d1:e4:87:9b:18:6b:48:0c:18:03:8d:
        9d:11:49:99:ba:7d:e7:ea:ec:f3:1f:da:0c:d9:6e:94:
        1c:15:1d:4d:54:94:4c:4d:40:ca:47:1d:97:15:b8:53:
        15:8d:41:b6:88:81:2f:29:69:82:2a:56:a0:2a:92:20:
        d3:d5:c7:06:61:d2:30:10:49:fc:8f:a7:18:6a:b4:aa:
        52:01:46:8e:2d:16:7a:8f:4a:a7:63:b1:4d:43:d2:05:
        e6:33:c2:24:44:37:10:ba:d7:c1:48:bf:2d:31:35:81:
        a0:08:3d:32:2f:66:38:eb:97:fa:85:2d:34:66:85:82
    Fingerprint (SHA-256):
        98:B6:AB:50:86:A0:5F:FF:49:CC:0E:C5:9A:70:F8:FB:18:95:DA:11:9A:6B:CA:2C:A4:5C:20:F6:D8:38:A5:98
    Fingerprint (SHA1):
        52:45:92:6F:4D:85:6C:E6:9D:83:E0:0E:17:D6:A3:A1:04:81:E0:48
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3204: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235629 (0x300e2ded)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:59 2017
            Not After : Sat Aug 06 23:55:59 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:2c:29:ca:9a:4c:1c:1c:35:83:1d:68:24:6e:52:bc:
                    5c:2f:7e:87:18:08:99:40:be:0c:5c:a8:fd:63:af:8a:
                    fb:06:c6:98:d6:26:62:5c:64:9e:b2:df:ef:b7:81:65:
                    b0:c9:5a:13:3c:eb:5e:67:11:02:2a:0f:f4:fc:58:00:
                    ad:43:e1:06:38:0d:e4:2a:5d:be:c6:48:c7:b8:46:7b:
                    f7:d9:4e:c3:e1:b2:5e:01:36:59:53:53:9b:e3:21:c0:
                    94:86:f3:7d:4b:58:41:46:cc:14:8c:f0:fd:68:5d:79:
                    15:e7:68:4e:05:97:e7:11:d8:e0:ce:9e:0d:7d:17:35:
                    5a:e4:3a:0c:24:2d:30:53:01:0f:91:d5:82:25:fb:6b:
                    cd:0b:12:ff:f1:4e:7a:5e:40:97:36:93:66:21:f4:73:
                    97:2f:56:9b:ce:ef:06:1e:13:2d:f2:6f:f4:5f:68:d0:
                    2c:15:ad:07:87:d4:4f:f6:c6:60:d0:89:0f:8d:80:97:
                    55:e8:9e:fe:9c:6c:c5:d8:56:a4:c5:7a:1f:91:5c:94:
                    91:5c:34:16:ed:0f:35:1f:66:13:1d:86:e0:a9:8e:83:
                    84:cc:1d:8f:50:83:17:8c:3c:f3:ca:90:a6:cd:72:92:
                    75:1f:a8:ea:9c:2b:ca:7f:42:1e:75:26:80:f0:7c:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        aa:d8:12:60:b8:94:0f:e6:92:43:87:8b:ef:6a:c2:d7:
        cf:5d:11:45:7a:c6:3f:a1:65:2c:66:63:f3:ff:f8:99:
        23:2d:c4:7d:a3:0e:54:07:56:7b:e9:30:39:55:3b:6c:
        8a:86:f8:b8:da:f5:76:26:6f:a7:5e:2e:32:cb:31:38:
        d8:e3:c2:4e:80:51:23:0a:2f:e5:e0:29:7e:1b:1a:d2:
        84:bd:3e:fe:68:34:b8:1e:d4:6b:1b:3e:d4:f7:d4:d2:
        b6:7c:85:3d:24:79:ed:78:a2:5e:b7:7c:4f:db:aa:81:
        9e:db:b4:ff:91:4b:d5:f0:d9:45:03:65:2e:68:ef:fc:
        cd:09:3b:38:fc:19:20:36:ec:f4:fa:42:a7:e4:57:d7:
        d3:af:50:eb:08:ed:e4:34:15:5b:7d:c0:b1:ba:0e:4b:
        e2:9c:92:08:da:58:d3:3b:58:7a:1f:bc:57:45:d8:dc:
        f0:ce:13:30:a5:9c:b4:aa:5c:31:bc:20:9d:ac:b8:ca:
        41:8f:3f:47:fe:15:ee:54:2c:26:36:ac:c0:f5:83:c8:
        1b:7d:ed:16:75:8c:a8:3a:16:4e:a7:e1:22:db:a8:59:
        81:54:eb:0d:73:06:84:84:e7:5f:4c:6c:52:b1:a7:b7:
        4a:50:95:97:de:8e:fe:5b:6c:21:2c:c2:b2:75:ec:6e
    Fingerprint (SHA-256):
        46:0A:ED:35:D5:7B:55:5D:72:FB:B4:DA:0F:E7:2F:8E:0A:7C:01:91:91:74:EE:A9:BE:8D:AB:16:92:C9:6D:2F
    Fingerprint (SHA1):
        03:F4:97:65:8F:52:0B:6A:BC:B6:E8:F2:08:E5:60:C9:E4:51:64:92
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3205: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235629 (0x300e2ded)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:55:59 2017
            Not After : Sat Aug 06 23:55:59 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:2c:29:ca:9a:4c:1c:1c:35:83:1d:68:24:6e:52:bc:
                    5c:2f:7e:87:18:08:99:40:be:0c:5c:a8:fd:63:af:8a:
                    fb:06:c6:98:d6:26:62:5c:64:9e:b2:df:ef:b7:81:65:
                    b0:c9:5a:13:3c:eb:5e:67:11:02:2a:0f:f4:fc:58:00:
                    ad:43:e1:06:38:0d:e4:2a:5d:be:c6:48:c7:b8:46:7b:
                    f7:d9:4e:c3:e1:b2:5e:01:36:59:53:53:9b:e3:21:c0:
                    94:86:f3:7d:4b:58:41:46:cc:14:8c:f0:fd:68:5d:79:
                    15:e7:68:4e:05:97:e7:11:d8:e0:ce:9e:0d:7d:17:35:
                    5a:e4:3a:0c:24:2d:30:53:01:0f:91:d5:82:25:fb:6b:
                    cd:0b:12:ff:f1:4e:7a:5e:40:97:36:93:66:21:f4:73:
                    97:2f:56:9b:ce:ef:06:1e:13:2d:f2:6f:f4:5f:68:d0:
                    2c:15:ad:07:87:d4:4f:f6:c6:60:d0:89:0f:8d:80:97:
                    55:e8:9e:fe:9c:6c:c5:d8:56:a4:c5:7a:1f:91:5c:94:
                    91:5c:34:16:ed:0f:35:1f:66:13:1d:86:e0:a9:8e:83:
                    84:cc:1d:8f:50:83:17:8c:3c:f3:ca:90:a6:cd:72:92:
                    75:1f:a8:ea:9c:2b:ca:7f:42:1e:75:26:80:f0:7c:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        aa:d8:12:60:b8:94:0f:e6:92:43:87:8b:ef:6a:c2:d7:
        cf:5d:11:45:7a:c6:3f:a1:65:2c:66:63:f3:ff:f8:99:
        23:2d:c4:7d:a3:0e:54:07:56:7b:e9:30:39:55:3b:6c:
        8a:86:f8:b8:da:f5:76:26:6f:a7:5e:2e:32:cb:31:38:
        d8:e3:c2:4e:80:51:23:0a:2f:e5:e0:29:7e:1b:1a:d2:
        84:bd:3e:fe:68:34:b8:1e:d4:6b:1b:3e:d4:f7:d4:d2:
        b6:7c:85:3d:24:79:ed:78:a2:5e:b7:7c:4f:db:aa:81:
        9e:db:b4:ff:91:4b:d5:f0:d9:45:03:65:2e:68:ef:fc:
        cd:09:3b:38:fc:19:20:36:ec:f4:fa:42:a7:e4:57:d7:
        d3:af:50:eb:08:ed:e4:34:15:5b:7d:c0:b1:ba:0e:4b:
        e2:9c:92:08:da:58:d3:3b:58:7a:1f:bc:57:45:d8:dc:
        f0:ce:13:30:a5:9c:b4:aa:5c:31:bc:20:9d:ac:b8:ca:
        41:8f:3f:47:fe:15:ee:54:2c:26:36:ac:c0:f5:83:c8:
        1b:7d:ed:16:75:8c:a8:3a:16:4e:a7:e1:22:db:a8:59:
        81:54:eb:0d:73:06:84:84:e7:5f:4c:6c:52:b1:a7:b7:
        4a:50:95:97:de:8e:fe:5b:6c:21:2c:c2:b2:75:ec:6e
    Fingerprint (SHA-256):
        46:0A:ED:35:D5:7B:55:5D:72:FB:B4:DA:0F:E7:2F:8E:0A:7C:01:91:91:74:EE:A9:BE:8D:AB:16:92:C9:6D:2F
    Fingerprint (SHA1):
        03:F4:97:65:8F:52:0B:6A:BC:B6:E8:F2:08:E5:60:C9:E4:51:64:92
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3206: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3207: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235636 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3208: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3209: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3210: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235637 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3211: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3212: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #3213: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3214: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 806235638   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3215: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3216: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #3217: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3218: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 806235639   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3219: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3220: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3221: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3222: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 806235640 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3223: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3224: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 806235641 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3225: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3226: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #3227: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3228: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3229: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 806235642   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3230: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3231: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3232: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3233: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 806235643   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3234: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3235: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3236: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3237: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 806235644   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3238: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3239: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3240: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3241: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 806235645   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3242: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3243: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3244: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235636 (0x300e2df4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:01 2017
            Not After : Sat Aug 06 23:56:01 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    af:85:31:70:2d:53:7d:cf:f8:76:f9:c7:2a:f4:ac:24:
                    f0:68:00:7a:c4:a8:79:65:1b:29:0d:2a:bc:fd:c8:d6:
                    58:68:0f:76:9b:d8:7a:b2:6b:4e:06:72:3f:f6:1f:62:
                    2b:c8:d2:55:fe:b4:99:8c:45:6b:cf:d9:e4:7a:fa:79:
                    a2:d5:fe:56:aa:a5:36:6b:e0:fa:2e:5f:af:0e:f0:91:
                    27:df:72:ce:6a:24:07:64:f9:12:d4:7e:d9:0b:1f:47:
                    8a:2c:2f:50:2c:20:91:9c:e8:dd:94:e0:ed:16:b1:38:
                    3d:a3:b0:2a:5b:db:07:41:b4:0e:1b:9f:9e:6a:74:d7:
                    1e:be:0a:1e:bd:e5:52:3e:e7:fa:37:1b:a2:04:bd:d4:
                    db:2a:87:db:b4:99:a9:5c:96:c9:2e:3c:ff:a8:11:d9:
                    aa:bb:c2:81:32:c1:fe:e2:a2:cd:b1:3d:ee:49:ff:29:
                    fe:27:60:d1:15:1f:56:fb:1f:9b:6a:2f:df:fc:ad:90:
                    07:51:7a:5d:a1:a0:31:a9:a3:81:d7:11:9e:94:3b:ff:
                    ce:c8:ad:a9:6f:94:48:e0:33:a7:a0:8c:c4:61:72:10:
                    66:74:6f:ba:44:dc:9f:7d:9b:8d:3c:33:ca:86:d1:75:
                    95:e4:a8:55:9d:9e:44:6b:01:d7:5a:55:1b:7e:9a:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        09:6b:01:75:2a:a2:c9:bc:ac:c5:67:98:a2:bf:f3:ab:
        90:43:cd:a2:d3:ae:bd:81:26:48:11:2b:c1:d5:f9:e2:
        4b:aa:6b:f4:66:45:91:9c:23:6d:8d:da:98:be:9c:93:
        ae:9f:1b:64:60:6f:cd:a1:b1:f8:8b:0f:49:4c:b1:86:
        0a:fa:0e:50:dc:ca:e6:e7:aa:43:6d:07:90:7d:bc:26:
        9d:4f:99:3b:2d:85:8a:5a:3c:1b:35:4d:10:4c:ba:90:
        b7:31:ab:ec:3b:fe:b9:a1:42:be:1f:49:0a:2c:bd:1d:
        7e:52:94:00:22:41:72:88:0e:75:52:9e:58:ed:8c:96:
        34:70:16:f8:ed:48:00:0c:b0:43:d3:62:99:70:30:b7:
        4f:fc:ad:2c:fe:bd:33:69:06:39:a0:4f:b4:be:33:a6:
        20:29:f8:e0:45:2a:2e:39:76:43:5b:e4:65:36:68:44:
        6b:3d:c2:fe:5c:a4:e1:57:fd:3d:1e:b8:b3:e9:43:7b:
        8f:77:83:01:5e:9e:d9:3d:53:2a:0c:ac:b5:48:bc:7a:
        a5:7d:22:53:07:23:81:72:c1:7f:9a:5a:65:ba:76:d8:
        e6:b8:d5:0e:17:a4:d8:a0:72:3a:44:12:c0:fd:83:5e:
        f7:5f:a7:53:31:3b:f9:ff:70:ae:6c:6a:7c:cc:21:a5
    Fingerprint (SHA-256):
        4F:CD:22:CC:EF:30:EF:19:E6:EB:DE:22:61:A7:EE:C4:8D:D1:8C:78:2A:3E:D9:63:B6:9C:9B:DD:05:99:2E:F3
    Fingerprint (SHA1):
        DF:37:10:62:2A:D2:3F:82:BA:D2:60:AE:8A:02:77:03:B6:04:D4:49
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #3245: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3246: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3247: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3248: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3249: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3250: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3251: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3252: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3253: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235637 (0x300e2df5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:02 2017
            Not After : Sat Aug 06 23:56:02 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:11:7d:4d:ff:e4:60:ed:c1:f8:58:cc:23:ab:e2:ab:
                    22:6e:ea:08:f7:e6:28:c3:62:c4:69:55:13:67:bc:b0:
                    f1:f7:5d:54:11:23:29:1e:7c:98:e4:d4:74:20:e3:ab:
                    43:5e:fd:d3:96:59:eb:93:85:71:80:07:9f:a0:33:86:
                    59:0e:28:16:16:9a:54:1f:a8:36:3f:e7:38:9f:06:ca:
                    d7:e8:cd:9f:24:7e:e3:73:62:d5:0b:70:8b:0e:ef:f9:
                    d9:82:6b:42:1a:8c:b3:0f:68:c6:d1:38:94:1a:83:4d:
                    5a:ed:29:c2:47:79:00:9b:da:5c:b2:4b:ff:be:e4:95:
                    23:3e:f3:93:ec:a2:8c:ec:6c:86:f4:d8:35:26:52:98:
                    52:a1:5b:4a:4c:2e:da:a2:d7:50:ec:ef:3c:39:f6:4c:
                    88:c9:6b:dc:e9:ba:20:90:90:19:ed:a2:59:9e:0a:d8:
                    5b:bc:20:bb:d2:03:43:59:f6:69:2c:62:6c:37:af:f1:
                    99:c7:75:c8:54:52:1e:c7:a4:ee:8c:19:13:37:59:cf:
                    43:c5:3c:b6:b7:ee:7c:23:fa:f4:32:28:9d:42:8c:5d:
                    c2:77:8e:75:16:c9:f2:8c:af:19:f1:ff:79:51:78:44:
                    cd:87:7a:b3:ef:43:37:fd:cc:b0:41:e5:7a:21:35:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:87:1a:67:a7:5e:34:37:05:1e:9d:eb:41:01:4f:35:
        5e:1b:48:07:8f:a1:8c:b0:ee:cd:d8:18:a4:87:4b:3c:
        6f:07:96:40:9a:b8:5a:b2:fb:2a:69:3f:c8:ec:5f:b0:
        4b:70:03:69:4d:2c:30:d2:c1:a8:57:cb:ef:33:b8:ef:
        b4:cc:63:0e:2f:dd:91:00:72:97:49:b5:c0:48:75:2c:
        2d:76:7c:27:93:e1:e2:67:ef:1b:6e:03:d6:7a:16:94:
        21:a0:b7:20:74:06:a4:90:6c:a8:95:d2:c9:71:b4:02:
        16:62:68:00:ce:63:18:14:c3:7f:8c:62:19:3d:c1:58:
        d4:96:9c:83:30:7c:42:bc:2d:1a:a0:22:ae:cb:df:f8:
        79:18:42:b5:0a:c3:fb:a1:0b:f4:ee:f7:41:d9:8c:b8:
        0b:94:7b:fd:ec:78:83:18:6c:a6:66:4f:23:1c:b9:f4:
        b9:d6:53:d3:fa:4a:1b:cc:4f:89:27:8a:4c:fa:db:29:
        b4:4d:0e:24:dc:37:b8:b7:c6:55:2d:25:a0:f8:38:53:
        1b:0f:77:e8:a2:04:34:53:c7:5d:a6:16:ff:4f:3b:7a:
        52:07:e2:72:0f:67:de:8c:20:e3:0d:d4:d7:fb:51:84:
        db:eb:5c:3b:d9:68:99:40:ad:72:9e:2b:38:52:c8:d9
    Fingerprint (SHA-256):
        37:12:0C:B6:69:2C:07:B8:67:F1:9E:B9:61:67:77:B2:E6:A8:6E:EC:EA:6E:0A:8D:07:37:37:8F:B8:C1:EB:C5
    Fingerprint (SHA1):
        2A:65:9B:68:BD:0F:7E:96:ED:E4:5D:8D:D8:B6:CB:35:A2:D2:10:6B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #3254: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3255: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3256: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3257: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3258: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3259: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3260: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #3261: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #3262: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #3263: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #3264: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #3265: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #3266: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #3267: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3268: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3269: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #3270: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #3271: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3272: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235646 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3273: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3274: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3275: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3276: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 806235647   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3277: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3278: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3279: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3280: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 806235648   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3281: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3282: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3283: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3284: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 806235649   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3285: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3286: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3287: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3288: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 806235650   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3289: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3290: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #3291: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3292: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 806235651   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3293: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3294: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #3295: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3296: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 806235652   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3297: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3298: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #3299: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3300: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 806235653   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3301: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3302: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #3303: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3304: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 806235654   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3305: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3306: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3307: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235646 (0x300e2dfe)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:04 2017
            Not After : Sat Aug 06 23:56:04 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    ae:e5:62:14:c6:2b:c2:1a:ee:0a:00:9b:30:d9:62:0a:
                    82:84:4b:a7:71:9e:de:de:4a:47:6c:db:91:86:3c:0f:
                    0d:91:35:5b:57:70:ee:c9:07:27:3b:76:e0:bc:d0:ad:
                    a0:ff:fa:5e:77:4c:c9:f6:38:eb:b4:99:6f:03:ea:3b:
                    ce:5e:c4:12:99:24:06:0e:98:ac:6b:2c:2d:48:68:91:
                    3c:a7:62:0a:fe:1b:80:89:dc:7a:a9:b1:40:74:0d:8a:
                    0c:a9:7c:9d:5d:4c:2d:52:1f:59:51:22:17:5b:6e:3b:
                    0b:3b:9c:eb:73:fc:82:14:c6:27:24:f6:82:3b:16:26:
                    c2:2a:68:e6:ad:3b:20:3f:74:c2:79:fc:67:68:57:16:
                    23:47:63:64:3f:40:65:25:e4:99:d2:8e:84:96:b7:84:
                    9f:86:a9:f5:68:ff:db:03:0a:c8:ec:7e:1d:37:31:91:
                    50:92:15:d3:81:fa:60:aa:30:bf:8b:9a:d9:cc:7b:1b:
                    27:53:8b:7e:d2:e2:4d:e3:36:47:44:15:94:42:88:ab:
                    10:a8:a0:24:64:17:4d:25:fa:f0:ac:75:02:a6:ae:a6:
                    ad:ef:27:09:f5:f6:82:71:d4:65:05:96:40:2d:03:f5:
                    86:83:56:37:16:c9:b2:0d:8e:22:75:bf:8a:25:7d:a4
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1d:00:e5:c0:cf:60:80:a2:76:2e:59:b7:f8:
        c2:36:00:b1:b7:48:3a:bc:cd:01:a5:3b:b1:21:af:ce:
        1f:02:1c:06:a8:a7:9f:54:e1:12:78:99:80:33:d2:a5:
        9b:23:2d:e7:5b:3a:43:21:09:c5:d9:4b:2e:6b:1a
    Fingerprint (SHA-256):
        58:A3:E9:2F:6E:BB:37:1F:E8:88:D3:0A:97:92:0B:74:C9:2E:65:9D:0C:1F:7D:17:7A:68:FC:17:49:FE:DE:35
    Fingerprint (SHA1):
        E0:86:65:FE:24:96:FB:0E:14:0C:32:50:88:15:B7:EC:09:B9:38:81
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3308: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235646 (0x300e2dfe)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:04 2017
            Not After : Sat Aug 06 23:56:04 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    ae:e5:62:14:c6:2b:c2:1a:ee:0a:00:9b:30:d9:62:0a:
                    82:84:4b:a7:71:9e:de:de:4a:47:6c:db:91:86:3c:0f:
                    0d:91:35:5b:57:70:ee:c9:07:27:3b:76:e0:bc:d0:ad:
                    a0:ff:fa:5e:77:4c:c9:f6:38:eb:b4:99:6f:03:ea:3b:
                    ce:5e:c4:12:99:24:06:0e:98:ac:6b:2c:2d:48:68:91:
                    3c:a7:62:0a:fe:1b:80:89:dc:7a:a9:b1:40:74:0d:8a:
                    0c:a9:7c:9d:5d:4c:2d:52:1f:59:51:22:17:5b:6e:3b:
                    0b:3b:9c:eb:73:fc:82:14:c6:27:24:f6:82:3b:16:26:
                    c2:2a:68:e6:ad:3b:20:3f:74:c2:79:fc:67:68:57:16:
                    23:47:63:64:3f:40:65:25:e4:99:d2:8e:84:96:b7:84:
                    9f:86:a9:f5:68:ff:db:03:0a:c8:ec:7e:1d:37:31:91:
                    50:92:15:d3:81:fa:60:aa:30:bf:8b:9a:d9:cc:7b:1b:
                    27:53:8b:7e:d2:e2:4d:e3:36:47:44:15:94:42:88:ab:
                    10:a8:a0:24:64:17:4d:25:fa:f0:ac:75:02:a6:ae:a6:
                    ad:ef:27:09:f5:f6:82:71:d4:65:05:96:40:2d:03:f5:
                    86:83:56:37:16:c9:b2:0d:8e:22:75:bf:8a:25:7d:a4
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1d:00:e5:c0:cf:60:80:a2:76:2e:59:b7:f8:
        c2:36:00:b1:b7:48:3a:bc:cd:01:a5:3b:b1:21:af:ce:
        1f:02:1c:06:a8:a7:9f:54:e1:12:78:99:80:33:d2:a5:
        9b:23:2d:e7:5b:3a:43:21:09:c5:d9:4b:2e:6b:1a
    Fingerprint (SHA-256):
        58:A3:E9:2F:6E:BB:37:1F:E8:88:D3:0A:97:92:0B:74:C9:2E:65:9D:0C:1F:7D:17:7A:68:FC:17:49:FE:DE:35
    Fingerprint (SHA1):
        E0:86:65:FE:24:96:FB:0E:14:0C:32:50:88:15:B7:EC:09:B9:38:81
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3309: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235646 (0x300e2dfe)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:04 2017
            Not After : Sat Aug 06 23:56:04 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    ae:e5:62:14:c6:2b:c2:1a:ee:0a:00:9b:30:d9:62:0a:
                    82:84:4b:a7:71:9e:de:de:4a:47:6c:db:91:86:3c:0f:
                    0d:91:35:5b:57:70:ee:c9:07:27:3b:76:e0:bc:d0:ad:
                    a0:ff:fa:5e:77:4c:c9:f6:38:eb:b4:99:6f:03:ea:3b:
                    ce:5e:c4:12:99:24:06:0e:98:ac:6b:2c:2d:48:68:91:
                    3c:a7:62:0a:fe:1b:80:89:dc:7a:a9:b1:40:74:0d:8a:
                    0c:a9:7c:9d:5d:4c:2d:52:1f:59:51:22:17:5b:6e:3b:
                    0b:3b:9c:eb:73:fc:82:14:c6:27:24:f6:82:3b:16:26:
                    c2:2a:68:e6:ad:3b:20:3f:74:c2:79:fc:67:68:57:16:
                    23:47:63:64:3f:40:65:25:e4:99:d2:8e:84:96:b7:84:
                    9f:86:a9:f5:68:ff:db:03:0a:c8:ec:7e:1d:37:31:91:
                    50:92:15:d3:81:fa:60:aa:30:bf:8b:9a:d9:cc:7b:1b:
                    27:53:8b:7e:d2:e2:4d:e3:36:47:44:15:94:42:88:ab:
                    10:a8:a0:24:64:17:4d:25:fa:f0:ac:75:02:a6:ae:a6:
                    ad:ef:27:09:f5:f6:82:71:d4:65:05:96:40:2d:03:f5:
                    86:83:56:37:16:c9:b2:0d:8e:22:75:bf:8a:25:7d:a4
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1d:00:e5:c0:cf:60:80:a2:76:2e:59:b7:f8:
        c2:36:00:b1:b7:48:3a:bc:cd:01:a5:3b:b1:21:af:ce:
        1f:02:1c:06:a8:a7:9f:54:e1:12:78:99:80:33:d2:a5:
        9b:23:2d:e7:5b:3a:43:21:09:c5:d9:4b:2e:6b:1a
    Fingerprint (SHA-256):
        58:A3:E9:2F:6E:BB:37:1F:E8:88:D3:0A:97:92:0B:74:C9:2E:65:9D:0C:1F:7D:17:7A:68:FC:17:49:FE:DE:35
    Fingerprint (SHA1):
        E0:86:65:FE:24:96:FB:0E:14:0C:32:50:88:15:B7:EC:09:B9:38:81
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #3310: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235646 (0x300e2dfe)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:04 2017
            Not After : Sat Aug 06 23:56:04 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    ae:e5:62:14:c6:2b:c2:1a:ee:0a:00:9b:30:d9:62:0a:
                    82:84:4b:a7:71:9e:de:de:4a:47:6c:db:91:86:3c:0f:
                    0d:91:35:5b:57:70:ee:c9:07:27:3b:76:e0:bc:d0:ad:
                    a0:ff:fa:5e:77:4c:c9:f6:38:eb:b4:99:6f:03:ea:3b:
                    ce:5e:c4:12:99:24:06:0e:98:ac:6b:2c:2d:48:68:91:
                    3c:a7:62:0a:fe:1b:80:89:dc:7a:a9:b1:40:74:0d:8a:
                    0c:a9:7c:9d:5d:4c:2d:52:1f:59:51:22:17:5b:6e:3b:
                    0b:3b:9c:eb:73:fc:82:14:c6:27:24:f6:82:3b:16:26:
                    c2:2a:68:e6:ad:3b:20:3f:74:c2:79:fc:67:68:57:16:
                    23:47:63:64:3f:40:65:25:e4:99:d2:8e:84:96:b7:84:
                    9f:86:a9:f5:68:ff:db:03:0a:c8:ec:7e:1d:37:31:91:
                    50:92:15:d3:81:fa:60:aa:30:bf:8b:9a:d9:cc:7b:1b:
                    27:53:8b:7e:d2:e2:4d:e3:36:47:44:15:94:42:88:ab:
                    10:a8:a0:24:64:17:4d:25:fa:f0:ac:75:02:a6:ae:a6:
                    ad:ef:27:09:f5:f6:82:71:d4:65:05:96:40:2d:03:f5:
                    86:83:56:37:16:c9:b2:0d:8e:22:75:bf:8a:25:7d:a4
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1d:00:e5:c0:cf:60:80:a2:76:2e:59:b7:f8:
        c2:36:00:b1:b7:48:3a:bc:cd:01:a5:3b:b1:21:af:ce:
        1f:02:1c:06:a8:a7:9f:54:e1:12:78:99:80:33:d2:a5:
        9b:23:2d:e7:5b:3a:43:21:09:c5:d9:4b:2e:6b:1a
    Fingerprint (SHA-256):
        58:A3:E9:2F:6E:BB:37:1F:E8:88:D3:0A:97:92:0B:74:C9:2E:65:9D:0C:1F:7D:17:7A:68:FC:17:49:FE:DE:35
    Fingerprint (SHA1):
        E0:86:65:FE:24:96:FB:0E:14:0C:32:50:88:15:B7:EC:09:B9:38:81
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #3311: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3312: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 10 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3313: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3314: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #3315: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3316: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3317: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3318: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3319: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3320: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3321: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3322: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #3323: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3324: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3325: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3326: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #3327: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3328: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3329: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3330: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3331: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3332: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3333: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3334: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #3335: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3336: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3337: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3338: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170806235607Z
nextupdate=20180806235607Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Sun Aug 06 23:56:07 2017
    Next Update: Mon Aug 06 23:56:07 2018
    CRL Extensions:
chains.sh: #3339: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170806235607Z
nextupdate=20180806235607Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sun Aug 06 23:56:07 2017
    Next Update: Mon Aug 06 23:56:07 2018
    CRL Extensions:
chains.sh: #3340: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170806235607Z
nextupdate=20180806235607Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Sun Aug 06 23:56:07 2017
    Next Update: Mon Aug 06 23:56:07 2018
    CRL Extensions:
chains.sh: #3341: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170806235607Z
nextupdate=20180806235607Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Sun Aug 06 23:56:07 2017
    Next Update: Mon Aug 06 23:56:07 2018
    CRL Extensions:
chains.sh: #3342: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170806235608Z
addcert 14 20170806235608Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Sun Aug 06 23:56:08 2017
    Next Update: Mon Aug 06 23:56:07 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Sun Aug 06 23:56:08 2017
    CRL Extensions:
chains.sh: #3343: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170806235609Z
addcert 15 20170806235609Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sun Aug 06 23:56:09 2017
    Next Update: Mon Aug 06 23:56:07 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Sun Aug 06 23:56:09 2017
    CRL Extensions:
chains.sh: #3344: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3345: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3346: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #3347: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #3348: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #3349: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #3350: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #3351: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #3352: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #3353: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:06 2017
            Not After : Sat Aug 06 23:56:06 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:32:ff:32:b8:04:e6:9c:45:a1:0f:72:a9:83:73:4d:
                    44:15:5d:46:df:59:64:b2:65:c9:37:6d:80:c8:d8:4c:
                    bc:1c:14:e9:1d:f7:e0:04:bc:7d:2f:ac:96:8a:e7:e6:
                    25:66:83:9d:60:a4:86:95:86:4b:64:cc:4c:f6:18:ef:
                    63:f8:92:2a:d6:3f:5c:29:af:e4:25:ff:3d:01:6b:0f:
                    57:2e:26:15:3a:97:5d:0b:11:cb:b7:6c:ca:8c:29:94:
                    a2:13:c3:33:59:ec:ee:d5:36:c4:df:e8:23:2a:23:a5:
                    05:03:68:11:d9:38:30:b9:d6:26:b6:3e:e7:e5:d3:23:
                    df:e7:93:2d:bb:e1:b1:a9:83:df:24:1c:83:c2:1d:d9:
                    41:39:44:e2:33:54:7c:e8:d2:51:7d:ae:98:08:7c:30:
                    ee:e9:90:18:b1:65:10:0c:f3:07:ec:27:1d:b6:40:27:
                    72:44:de:b0:cd:d4:77:e8:df:b1:fc:fa:23:d6:aa:bb:
                    3c:23:66:26:b8:70:17:ee:3c:4c:ab:32:f8:df:50:5b:
                    83:2d:ca:a8:94:f0:27:fc:2a:3f:ac:a5:a5:84:f8:c6:
                    21:28:52:cf:a2:99:d9:bb:b5:86:90:d3:da:52:5f:8b:
                    4c:70:7b:51:b0:f6:bb:f8:da:38:15:49:02:79:db:eb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5c:a7:15:f2:28:78:13:57:5e:16:e9:fb:25:93:22:fa:
        98:9b:90:b2:65:81:3c:c4:94:04:8f:b1:21:7b:04:9e:
        55:94:92:ee:a0:c3:64:ee:37:32:b0:ad:f6:7e:a4:0e:
        37:8f:a1:fb:f5:b7:81:7f:64:22:f5:e7:34:cb:2b:37:
        14:eb:45:93:3c:f2:b5:57:0e:0b:3e:f5:0e:ee:01:43:
        dc:62:08:a0:db:2a:b5:84:d6:6e:0c:87:7a:23:7a:0f:
        c5:e3:e2:dc:df:a3:b6:48:f5:26:af:7e:79:89:25:cb:
        02:de:23:88:56:d2:95:41:7a:95:35:d1:67:58:09:eb:
        b4:49:13:dc:4f:3f:e8:5e:f7:99:e6:82:47:d7:aa:b3:
        47:b3:a4:be:3b:6f:ca:4f:bb:7f:f4:14:a7:7b:de:3e:
        d5:da:2a:97:25:63:0c:cc:fe:d3:d7:60:67:d2:fd:cf:
        8b:39:c9:ec:d4:bf:75:6b:c8:73:2f:5a:2f:ab:f5:f2:
        96:d3:9b:af:9b:6c:a7:94:f8:ae:16:11:3e:b6:9f:ae:
        ee:78:27:b5:78:c4:f2:0d:a9:00:73:ab:cb:28:b1:45:
        d1:d6:ba:c3:cb:30:b8:bf:4c:ba:3f:0c:55:80:79:85:
        59:b5:88:f1:fb:dc:9d:6e:47:77:b1:c1:6b:90:02:b1
    Fingerprint (SHA-256):
        7A:8B:BF:AA:28:24:10:50:B9:BF:06:50:D9:60:EA:63:48:AC:C5:9B:B5:14:CE:28:25:68:73:C9:F7:63:26:91
    Fingerprint (SHA1):
        A3:44:AD:12:BF:6E:8A:1E:0C:60:E3:67:68:46:02:50:60:69:C8:09
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #3354: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #3355: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:06 2017
            Not After : Sat Aug 06 23:56:06 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:32:ff:32:b8:04:e6:9c:45:a1:0f:72:a9:83:73:4d:
                    44:15:5d:46:df:59:64:b2:65:c9:37:6d:80:c8:d8:4c:
                    bc:1c:14:e9:1d:f7:e0:04:bc:7d:2f:ac:96:8a:e7:e6:
                    25:66:83:9d:60:a4:86:95:86:4b:64:cc:4c:f6:18:ef:
                    63:f8:92:2a:d6:3f:5c:29:af:e4:25:ff:3d:01:6b:0f:
                    57:2e:26:15:3a:97:5d:0b:11:cb:b7:6c:ca:8c:29:94:
                    a2:13:c3:33:59:ec:ee:d5:36:c4:df:e8:23:2a:23:a5:
                    05:03:68:11:d9:38:30:b9:d6:26:b6:3e:e7:e5:d3:23:
                    df:e7:93:2d:bb:e1:b1:a9:83:df:24:1c:83:c2:1d:d9:
                    41:39:44:e2:33:54:7c:e8:d2:51:7d:ae:98:08:7c:30:
                    ee:e9:90:18:b1:65:10:0c:f3:07:ec:27:1d:b6:40:27:
                    72:44:de:b0:cd:d4:77:e8:df:b1:fc:fa:23:d6:aa:bb:
                    3c:23:66:26:b8:70:17:ee:3c:4c:ab:32:f8:df:50:5b:
                    83:2d:ca:a8:94:f0:27:fc:2a:3f:ac:a5:a5:84:f8:c6:
                    21:28:52:cf:a2:99:d9:bb:b5:86:90:d3:da:52:5f:8b:
                    4c:70:7b:51:b0:f6:bb:f8:da:38:15:49:02:79:db:eb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5c:a7:15:f2:28:78:13:57:5e:16:e9:fb:25:93:22:fa:
        98:9b:90:b2:65:81:3c:c4:94:04:8f:b1:21:7b:04:9e:
        55:94:92:ee:a0:c3:64:ee:37:32:b0:ad:f6:7e:a4:0e:
        37:8f:a1:fb:f5:b7:81:7f:64:22:f5:e7:34:cb:2b:37:
        14:eb:45:93:3c:f2:b5:57:0e:0b:3e:f5:0e:ee:01:43:
        dc:62:08:a0:db:2a:b5:84:d6:6e:0c:87:7a:23:7a:0f:
        c5:e3:e2:dc:df:a3:b6:48:f5:26:af:7e:79:89:25:cb:
        02:de:23:88:56:d2:95:41:7a:95:35:d1:67:58:09:eb:
        b4:49:13:dc:4f:3f:e8:5e:f7:99:e6:82:47:d7:aa:b3:
        47:b3:a4:be:3b:6f:ca:4f:bb:7f:f4:14:a7:7b:de:3e:
        d5:da:2a:97:25:63:0c:cc:fe:d3:d7:60:67:d2:fd:cf:
        8b:39:c9:ec:d4:bf:75:6b:c8:73:2f:5a:2f:ab:f5:f2:
        96:d3:9b:af:9b:6c:a7:94:f8:ae:16:11:3e:b6:9f:ae:
        ee:78:27:b5:78:c4:f2:0d:a9:00:73:ab:cb:28:b1:45:
        d1:d6:ba:c3:cb:30:b8:bf:4c:ba:3f:0c:55:80:79:85:
        59:b5:88:f1:fb:dc:9d:6e:47:77:b1:c1:6b:90:02:b1
    Fingerprint (SHA-256):
        7A:8B:BF:AA:28:24:10:50:B9:BF:06:50:D9:60:EA:63:48:AC:C5:9B:B5:14:CE:28:25:68:73:C9:F7:63:26:91
    Fingerprint (SHA1):
        A3:44:AD:12:BF:6E:8A:1E:0C:60:E3:67:68:46:02:50:60:69:C8:09
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #3356: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #3357: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3358: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235655 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3359: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3360: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #3361: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3362: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 806235656   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3363: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3364: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3365: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9019/localhost-8843-CA0-806235546.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3366: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0Root-806235531.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3367: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3368: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #3369: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0-806235546.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3370: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 806235657   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3371: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3372: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3373: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9019/localhost-8843-CA0-806235546.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3374: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0Root-806235532.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3375: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3376: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #3377: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3378: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 806235658   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3379: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3380: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3381: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0-806235546.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3382: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0Root-806235533.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3383: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3384: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3385: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0-806235546.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3386: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0Root-806235534.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3387: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3388: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170806235612Z
nextupdate=20180806235612Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Sun Aug 06 23:56:12 2017
    Next Update: Mon Aug 06 23:56:12 2018
    CRL Extensions:
chains.sh: #3389: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170806235612Z
nextupdate=20180806235612Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sun Aug 06 23:56:12 2017
    Next Update: Mon Aug 06 23:56:12 2018
    CRL Extensions:
chains.sh: #3390: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170806235612Z
nextupdate=20180806235612Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Sun Aug 06 23:56:12 2017
    Next Update: Mon Aug 06 23:56:12 2018
    CRL Extensions:
chains.sh: #3391: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170806235612Z
nextupdate=20180806235612Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Sun Aug 06 23:56:12 2017
    Next Update: Mon Aug 06 23:56:12 2018
    CRL Extensions:
chains.sh: #3392: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170806235613Z
addcert 20 20170806235613Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sun Aug 06 23:56:13 2017
    Next Update: Mon Aug 06 23:56:12 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Sun Aug 06 23:56:13 2017
    CRL Extensions:
chains.sh: #3393: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170806235614Z
addcert 40 20170806235614Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sun Aug 06 23:56:14 2017
    Next Update: Mon Aug 06 23:56:12 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Sun Aug 06 23:56:13 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Sun Aug 06 23:56:14 2017
    CRL Extensions:
chains.sh: #3394: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3395: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3396: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #3397: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235655 (0x300e2e07)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:10 2017
            Not After : Sat Aug 06 23:56:10 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:d9:31:18:ac:6d:be:48:ab:57:e0:d0:67:b4:ed:9d:
                    e4:ce:3c:02:6c:72:be:95:78:1b:20:35:05:61:1a:f6:
                    a4:18:6a:5a:f6:57:23:2a:d3:2a:b9:0e:e7:b1:a6:9a:
                    43:3b:5f:33:01:fb:ff:fb:5b:ee:b0:0b:0f:63:66:14:
                    df:e7:75:05:46:f7:19:7a:47:fb:77:35:38:b7:5b:64:
                    06:08:19:41:a1:f5:dd:fe:cf:9e:9e:07:08:e4:e1:59:
                    e0:79:83:e6:ed:d2:d0:7a:d4:e8:e5:9a:01:e1:d7:fb:
                    45:42:4b:80:c3:58:3b:33:e9:be:be:ca:c9:b6:7f:fc:
                    9c:85:d2:ad:8e:a8:c7:d5:13:57:34:7b:bc:9b:09:74:
                    ef:e0:8f:33:e9:a2:ce:f5:0e:23:81:15:41:33:1f:b8:
                    38:41:49:62:b2:8f:a4:cc:ec:e3:7b:bc:59:1a:1d:b5:
                    83:29:16:cd:f5:97:8c:1b:34:81:4e:a0:1d:2c:b5:a3:
                    4c:e2:94:b5:dd:97:03:79:1e:82:f5:3d:4b:52:64:b1:
                    ca:ce:e2:29:21:b5:14:d5:33:df:56:63:71:21:48:2f:
                    c4:7d:c4:2a:fd:9a:91:98:3a:fd:0b:36:54:f5:1e:0f:
                    5a:5b:ae:ec:56:ef:4e:3f:7b:2c:7b:22:a7:53:67:b1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b0:bf:1e:94:b4:dd:b5:57:28:1a:48:1e:d4:10:b7:c9:
        25:43:e8:ca:e1:20:62:af:be:33:c0:17:ea:32:a1:a0:
        17:bc:06:01:88:05:eb:1a:c1:77:1b:57:3e:be:43:91:
        d9:4f:69:5a:ad:71:cf:da:d3:14:de:0d:d1:24:df:48:
        6c:13:4c:8e:84:c3:76:eb:09:cd:c7:c6:b5:da:46:10:
        1d:18:5e:77:1f:5c:22:7b:45:64:69:1f:97:e1:69:09:
        ef:8f:1d:9c:ff:66:12:70:62:01:67:f2:90:44:96:06:
        32:96:df:d9:81:a1:c7:ac:87:55:49:92:03:a3:3c:c5:
        1d:2d:23:e3:cb:f3:dd:17:c2:56:4a:db:6a:72:ad:5a:
        11:e2:9a:32:b6:b2:5d:fb:02:c8:a1:db:c5:ae:f4:73:
        76:35:8f:70:96:67:aa:e6:78:69:ac:81:ff:63:5c:73:
        1c:24:ae:27:fd:30:dd:e0:34:f3:92:d0:8a:82:7b:f7:
        41:ae:b2:1c:b2:74:7b:0c:a0:9c:0d:b0:63:4c:58:5b:
        d2:b5:42:78:a4:57:31:d8:93:16:0e:00:52:ad:01:4d:
        df:89:c8:1a:21:e2:55:65:6d:40:ca:b7:20:3d:cd:9a:
        3d:e2:50:0b:46:69:96:ea:0b:b7:09:5e:6c:9d:51:47
    Fingerprint (SHA-256):
        FB:33:3A:3F:7C:DF:EB:72:15:11:9A:78:31:6C:FF:E8:8E:D4:68:DD:63:8E:2A:1B:92:17:C4:D7:B5:36:20:3A
    Fingerprint (SHA1):
        76:78:4D:F0:7F:92:1C:3A:08:91:7D:86:F7:B7:79:07:9F:A4:C6:EE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #3398: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #3399: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235655 (0x300e2e07)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:10 2017
            Not After : Sat Aug 06 23:56:10 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:d9:31:18:ac:6d:be:48:ab:57:e0:d0:67:b4:ed:9d:
                    e4:ce:3c:02:6c:72:be:95:78:1b:20:35:05:61:1a:f6:
                    a4:18:6a:5a:f6:57:23:2a:d3:2a:b9:0e:e7:b1:a6:9a:
                    43:3b:5f:33:01:fb:ff:fb:5b:ee:b0:0b:0f:63:66:14:
                    df:e7:75:05:46:f7:19:7a:47:fb:77:35:38:b7:5b:64:
                    06:08:19:41:a1:f5:dd:fe:cf:9e:9e:07:08:e4:e1:59:
                    e0:79:83:e6:ed:d2:d0:7a:d4:e8:e5:9a:01:e1:d7:fb:
                    45:42:4b:80:c3:58:3b:33:e9:be:be:ca:c9:b6:7f:fc:
                    9c:85:d2:ad:8e:a8:c7:d5:13:57:34:7b:bc:9b:09:74:
                    ef:e0:8f:33:e9:a2:ce:f5:0e:23:81:15:41:33:1f:b8:
                    38:41:49:62:b2:8f:a4:cc:ec:e3:7b:bc:59:1a:1d:b5:
                    83:29:16:cd:f5:97:8c:1b:34:81:4e:a0:1d:2c:b5:a3:
                    4c:e2:94:b5:dd:97:03:79:1e:82:f5:3d:4b:52:64:b1:
                    ca:ce:e2:29:21:b5:14:d5:33:df:56:63:71:21:48:2f:
                    c4:7d:c4:2a:fd:9a:91:98:3a:fd:0b:36:54:f5:1e:0f:
                    5a:5b:ae:ec:56:ef:4e:3f:7b:2c:7b:22:a7:53:67:b1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b0:bf:1e:94:b4:dd:b5:57:28:1a:48:1e:d4:10:b7:c9:
        25:43:e8:ca:e1:20:62:af:be:33:c0:17:ea:32:a1:a0:
        17:bc:06:01:88:05:eb:1a:c1:77:1b:57:3e:be:43:91:
        d9:4f:69:5a:ad:71:cf:da:d3:14:de:0d:d1:24:df:48:
        6c:13:4c:8e:84:c3:76:eb:09:cd:c7:c6:b5:da:46:10:
        1d:18:5e:77:1f:5c:22:7b:45:64:69:1f:97:e1:69:09:
        ef:8f:1d:9c:ff:66:12:70:62:01:67:f2:90:44:96:06:
        32:96:df:d9:81:a1:c7:ac:87:55:49:92:03:a3:3c:c5:
        1d:2d:23:e3:cb:f3:dd:17:c2:56:4a:db:6a:72:ad:5a:
        11:e2:9a:32:b6:b2:5d:fb:02:c8:a1:db:c5:ae:f4:73:
        76:35:8f:70:96:67:aa:e6:78:69:ac:81:ff:63:5c:73:
        1c:24:ae:27:fd:30:dd:e0:34:f3:92:d0:8a:82:7b:f7:
        41:ae:b2:1c:b2:74:7b:0c:a0:9c:0d:b0:63:4c:58:5b:
        d2:b5:42:78:a4:57:31:d8:93:16:0e:00:52:ad:01:4d:
        df:89:c8:1a:21:e2:55:65:6d:40:ca:b7:20:3d:cd:9a:
        3d:e2:50:0b:46:69:96:ea:0b:b7:09:5e:6c:9d:51:47
    Fingerprint (SHA-256):
        FB:33:3A:3F:7C:DF:EB:72:15:11:9A:78:31:6C:FF:E8:8E:D4:68:DD:63:8E:2A:1B:92:17:C4:D7:B5:36:20:3A
    Fingerprint (SHA1):
        76:78:4D:F0:7F:92:1C:3A:08:91:7D:86:F7:B7:79:07:9F:A4:C6:EE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #3400: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #3401: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #3402: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235659 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3403: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #3404: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3405: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3406: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 806235660   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3407: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3408: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3409: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3410: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 806235661   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3411: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3412: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3413: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3414: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 806235662   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3415: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3416: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #3417: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235663 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3418: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #3419: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #3420: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3421: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 806235664   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3422: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3423: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3424: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3425: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 806235665   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3426: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3427: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #3428: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #3429: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #3430: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235659 (0x300e2e0b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:14 2017
            Not After : Sat Aug 06 23:56:14 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    97:dc:2e:a6:c8:74:a1:b0:75:c8:2e:00:48:83:9f:3d:
                    53:82:0f:87:7a:c9:41:b2:b9:b7:d7:43:dd:99:ef:f4:
                    5f:0d:de:6d:39:73:f2:88:58:35:c6:57:61:aa:c8:84:
                    94:42:98:c9:30:32:91:1e:4b:9a:b4:1c:c8:87:01:b3:
                    d3:a2:8b:d8:ab:57:2e:fb:c0:7e:9d:f4:36:99:57:97:
                    2a:0e:74:57:e9:e8:34:09:7d:46:f0:d2:cb:1d:95:1c:
                    a1:48:88:02:63:a8:c4:cf:98:6c:8a:d1:fc:93:b5:f9:
                    1a:93:de:39:69:2c:7f:7d:44:7e:6a:ae:c6:1a:5d:aa:
                    82:fa:15:4e:2b:ed:dd:be:5c:9d:d4:51:89:65:f8:cf:
                    82:d5:47:2c:a7:31:a3:c8:1b:e5:ea:cf:41:32:60:80:
                    c8:9d:5f:e8:6b:3f:67:57:f6:bb:05:1a:5c:85:6d:5f:
                    85:3d:d0:9a:30:85:55:53:d5:d0:4d:aa:64:b8:f8:44:
                    de:c5:58:b8:18:28:33:4e:28:65:8a:85:08:3b:8f:7a:
                    af:67:16:85:a1:5d:4a:00:ad:04:88:6b:ec:c3:c2:1d:
                    65:22:34:0f:15:58:2b:c2:33:3a:fe:39:58:06:33:a5:
                    84:68:87:16:52:c7:51:3e:1b:d3:db:ee:0d:3c:cf:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        96:23:77:68:33:a0:bd:1c:db:8a:31:ba:a5:76:d0:98:
        8f:17:41:2b:65:68:eb:bc:64:ce:68:81:14:b2:62:a6:
        87:b3:43:1b:54:16:9b:77:37:a0:10:cb:6b:60:c3:52:
        74:38:a7:53:f0:0c:05:68:4a:48:16:97:ce:bf:29:a1:
        3d:b1:ac:bc:49:d4:ac:23:db:aa:21:90:8a:41:d6:be:
        11:6e:80:c2:ab:87:90:f8:78:d8:de:4e:c0:23:ac:7e:
        87:4a:8c:d6:a4:3f:98:a5:13:c2:ff:9a:7f:1c:a9:05:
        12:68:83:e8:dc:4c:af:c0:6a:97:2f:92:11:40:da:8a:
        ef:02:09:f1:1f:71:3b:cd:45:6f:5f:f4:76:65:99:56:
        46:f3:33:7b:fe:a7:25:22:14:6b:eb:03:08:d7:6e:8d:
        bc:93:7f:48:43:60:be:b9:a4:db:71:a4:9f:25:64:ff:
        41:04:d5:ad:d7:79:a2:86:de:2b:aa:30:3f:51:99:ae:
        ee:d1:d3:6e:0a:5e:00:60:b0:f0:73:8c:c0:4f:d1:90:
        47:45:dc:de:27:21:71:c8:de:c0:14:82:51:b1:61:ae:
        d4:54:05:c7:eb:f7:0d:51:1e:3e:5e:56:96:67:97:f1:
        9e:81:e3:6f:b6:fb:53:bd:07:e8:6a:2c:a9:f6:8e:a0
    Fingerprint (SHA-256):
        51:F9:E5:06:33:1B:9F:96:2C:28:AF:9E:A5:AF:8A:E8:D0:E8:04:79:AB:34:A6:DF:AC:83:A2:02:14:E4:43:16
    Fingerprint (SHA1):
        DE:74:7C:35:BE:96:A9:78:99:7A:70:63:AA:D4:C6:9E:A1:D9:60:6C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3431: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235661 (0x300e2e0d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:14 2017
            Not After : Sat Aug 06 23:56:14 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:e7:d6:43:32:2e:d8:4c:33:28:c8:ad:5f:5b:ac:af:
                    70:13:cf:76:49:3f:93:07:86:c2:91:c3:07:15:ce:c4:
                    8e:da:61:a3:82:65:d0:4c:04:a8:22:74:10:93:df:46:
                    f6:d6:cb:f1:50:9c:ba:c1:a8:52:4f:7f:bc:70:1b:38:
                    1f:c3:56:87:01:79:d9:cb:e6:13:af:56:c5:52:3e:d1:
                    41:a6:a8:b4:3d:e2:e5:59:f4:bc:f2:7b:30:35:99:bc:
                    f8:13:58:fc:74:fd:8b:1c:21:1b:58:a3:4d:67:a4:5c:
                    9e:77:a7:f6:65:53:89:6a:fb:91:c1:01:89:98:c8:34:
                    dd:f3:60:b7:2e:5b:62:2c:20:df:e7:1f:4f:19:aa:a8:
                    47:69:9c:d1:b7:a0:d7:c8:4c:e2:30:e6:8c:31:e1:0b:
                    57:a8:aa:8b:92:f8:9f:2e:62:e2:f7:5d:86:25:5f:0a:
                    ae:9e:0f:fa:a5:e2:93:f2:4d:68:04:f0:d4:96:f7:22:
                    2a:a8:f4:7c:0c:2c:c1:3e:b6:03:17:0b:f3:a4:b1:80:
                    b9:d1:ea:94:58:5e:e4:ae:f9:ba:fd:a5:64:1b:20:e0:
                    6e:02:6f:71:ab:0b:03:a2:67:19:0d:94:ba:64:7c:49:
                    4b:61:9a:84:61:3f:ab:07:e4:ba:29:e3:3b:27:df:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        05:c0:d3:8e:b6:b0:f0:26:0a:06:c9:1e:95:1c:94:6b:
        33:34:8b:46:bd:cf:bc:84:d3:b7:a6:05:e6:c2:1a:a3:
        9e:21:5a:2d:6d:8c:f9:f9:a9:fd:b3:ec:20:d5:6d:97:
        c0:51:74:14:9e:d8:22:5c:2b:81:09:09:59:16:43:2e:
        e9:83:db:b0:db:fa:4e:b8:03:c0:b4:2e:9f:d7:5a:17:
        d9:33:be:79:1d:3f:45:56:ce:de:53:d7:3a:c3:86:26:
        0f:0b:7f:56:04:87:55:d3:bf:ba:cb:fd:86:56:15:8f:
        29:b6:12:a3:f9:48:e7:b3:25:9e:8f:c4:92:fc:a8:6e:
        2d:d4:41:4f:53:80:e6:f3:cb:83:ea:86:81:7a:03:e1:
        50:39:56:a1:65:0f:f5:7d:24:a6:49:a6:75:c2:f6:2e:
        91:bf:61:e3:dd:ba:d0:a2:03:a1:02:7f:51:ea:20:fe:
        d7:ec:91:9c:9f:71:88:f7:5a:33:b1:80:59:2b:42:b1:
        72:53:d4:d4:88:f2:42:0e:8f:32:55:55:a5:0d:aa:35:
        e1:35:80:86:65:82:96:08:71:4c:d0:9c:41:66:5d:90:
        d1:df:05:eb:a4:ff:42:af:20:18:0b:d8:43:fd:62:74:
        e8:f0:75:a2:1a:43:a3:7a:a3:57:81:d8:b9:c6:73:59
    Fingerprint (SHA-256):
        D8:54:C7:AA:02:66:2F:76:28:22:3D:AA:32:DC:BD:5D:B4:FC:8B:F3:B0:74:88:91:66:C6:EC:2E:66:A3:47:43
    Fingerprint (SHA1):
        5C:5B:46:D4:F8:77:BB:13:AA:9F:04:3D:AE:F1:A2:42:75:AC:33:77
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3432: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235659 (0x300e2e0b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:14 2017
            Not After : Sat Aug 06 23:56:14 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    97:dc:2e:a6:c8:74:a1:b0:75:c8:2e:00:48:83:9f:3d:
                    53:82:0f:87:7a:c9:41:b2:b9:b7:d7:43:dd:99:ef:f4:
                    5f:0d:de:6d:39:73:f2:88:58:35:c6:57:61:aa:c8:84:
                    94:42:98:c9:30:32:91:1e:4b:9a:b4:1c:c8:87:01:b3:
                    d3:a2:8b:d8:ab:57:2e:fb:c0:7e:9d:f4:36:99:57:97:
                    2a:0e:74:57:e9:e8:34:09:7d:46:f0:d2:cb:1d:95:1c:
                    a1:48:88:02:63:a8:c4:cf:98:6c:8a:d1:fc:93:b5:f9:
                    1a:93:de:39:69:2c:7f:7d:44:7e:6a:ae:c6:1a:5d:aa:
                    82:fa:15:4e:2b:ed:dd:be:5c:9d:d4:51:89:65:f8:cf:
                    82:d5:47:2c:a7:31:a3:c8:1b:e5:ea:cf:41:32:60:80:
                    c8:9d:5f:e8:6b:3f:67:57:f6:bb:05:1a:5c:85:6d:5f:
                    85:3d:d0:9a:30:85:55:53:d5:d0:4d:aa:64:b8:f8:44:
                    de:c5:58:b8:18:28:33:4e:28:65:8a:85:08:3b:8f:7a:
                    af:67:16:85:a1:5d:4a:00:ad:04:88:6b:ec:c3:c2:1d:
                    65:22:34:0f:15:58:2b:c2:33:3a:fe:39:58:06:33:a5:
                    84:68:87:16:52:c7:51:3e:1b:d3:db:ee:0d:3c:cf:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        96:23:77:68:33:a0:bd:1c:db:8a:31:ba:a5:76:d0:98:
        8f:17:41:2b:65:68:eb:bc:64:ce:68:81:14:b2:62:a6:
        87:b3:43:1b:54:16:9b:77:37:a0:10:cb:6b:60:c3:52:
        74:38:a7:53:f0:0c:05:68:4a:48:16:97:ce:bf:29:a1:
        3d:b1:ac:bc:49:d4:ac:23:db:aa:21:90:8a:41:d6:be:
        11:6e:80:c2:ab:87:90:f8:78:d8:de:4e:c0:23:ac:7e:
        87:4a:8c:d6:a4:3f:98:a5:13:c2:ff:9a:7f:1c:a9:05:
        12:68:83:e8:dc:4c:af:c0:6a:97:2f:92:11:40:da:8a:
        ef:02:09:f1:1f:71:3b:cd:45:6f:5f:f4:76:65:99:56:
        46:f3:33:7b:fe:a7:25:22:14:6b:eb:03:08:d7:6e:8d:
        bc:93:7f:48:43:60:be:b9:a4:db:71:a4:9f:25:64:ff:
        41:04:d5:ad:d7:79:a2:86:de:2b:aa:30:3f:51:99:ae:
        ee:d1:d3:6e:0a:5e:00:60:b0:f0:73:8c:c0:4f:d1:90:
        47:45:dc:de:27:21:71:c8:de:c0:14:82:51:b1:61:ae:
        d4:54:05:c7:eb:f7:0d:51:1e:3e:5e:56:96:67:97:f1:
        9e:81:e3:6f:b6:fb:53:bd:07:e8:6a:2c:a9:f6:8e:a0
    Fingerprint (SHA-256):
        51:F9:E5:06:33:1B:9F:96:2C:28:AF:9E:A5:AF:8A:E8:D0:E8:04:79:AB:34:A6:DF:AC:83:A2:02:14:E4:43:16
    Fingerprint (SHA1):
        DE:74:7C:35:BE:96:A9:78:99:7A:70:63:AA:D4:C6:9E:A1:D9:60:6C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3433: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #3434: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235659 (0x300e2e0b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:14 2017
            Not After : Sat Aug 06 23:56:14 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    97:dc:2e:a6:c8:74:a1:b0:75:c8:2e:00:48:83:9f:3d:
                    53:82:0f:87:7a:c9:41:b2:b9:b7:d7:43:dd:99:ef:f4:
                    5f:0d:de:6d:39:73:f2:88:58:35:c6:57:61:aa:c8:84:
                    94:42:98:c9:30:32:91:1e:4b:9a:b4:1c:c8:87:01:b3:
                    d3:a2:8b:d8:ab:57:2e:fb:c0:7e:9d:f4:36:99:57:97:
                    2a:0e:74:57:e9:e8:34:09:7d:46:f0:d2:cb:1d:95:1c:
                    a1:48:88:02:63:a8:c4:cf:98:6c:8a:d1:fc:93:b5:f9:
                    1a:93:de:39:69:2c:7f:7d:44:7e:6a:ae:c6:1a:5d:aa:
                    82:fa:15:4e:2b:ed:dd:be:5c:9d:d4:51:89:65:f8:cf:
                    82:d5:47:2c:a7:31:a3:c8:1b:e5:ea:cf:41:32:60:80:
                    c8:9d:5f:e8:6b:3f:67:57:f6:bb:05:1a:5c:85:6d:5f:
                    85:3d:d0:9a:30:85:55:53:d5:d0:4d:aa:64:b8:f8:44:
                    de:c5:58:b8:18:28:33:4e:28:65:8a:85:08:3b:8f:7a:
                    af:67:16:85:a1:5d:4a:00:ad:04:88:6b:ec:c3:c2:1d:
                    65:22:34:0f:15:58:2b:c2:33:3a:fe:39:58:06:33:a5:
                    84:68:87:16:52:c7:51:3e:1b:d3:db:ee:0d:3c:cf:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        96:23:77:68:33:a0:bd:1c:db:8a:31:ba:a5:76:d0:98:
        8f:17:41:2b:65:68:eb:bc:64:ce:68:81:14:b2:62:a6:
        87:b3:43:1b:54:16:9b:77:37:a0:10:cb:6b:60:c3:52:
        74:38:a7:53:f0:0c:05:68:4a:48:16:97:ce:bf:29:a1:
        3d:b1:ac:bc:49:d4:ac:23:db:aa:21:90:8a:41:d6:be:
        11:6e:80:c2:ab:87:90:f8:78:d8:de:4e:c0:23:ac:7e:
        87:4a:8c:d6:a4:3f:98:a5:13:c2:ff:9a:7f:1c:a9:05:
        12:68:83:e8:dc:4c:af:c0:6a:97:2f:92:11:40:da:8a:
        ef:02:09:f1:1f:71:3b:cd:45:6f:5f:f4:76:65:99:56:
        46:f3:33:7b:fe:a7:25:22:14:6b:eb:03:08:d7:6e:8d:
        bc:93:7f:48:43:60:be:b9:a4:db:71:a4:9f:25:64:ff:
        41:04:d5:ad:d7:79:a2:86:de:2b:aa:30:3f:51:99:ae:
        ee:d1:d3:6e:0a:5e:00:60:b0:f0:73:8c:c0:4f:d1:90:
        47:45:dc:de:27:21:71:c8:de:c0:14:82:51:b1:61:ae:
        d4:54:05:c7:eb:f7:0d:51:1e:3e:5e:56:96:67:97:f1:
        9e:81:e3:6f:b6:fb:53:bd:07:e8:6a:2c:a9:f6:8e:a0
    Fingerprint (SHA-256):
        51:F9:E5:06:33:1B:9F:96:2C:28:AF:9E:A5:AF:8A:E8:D0:E8:04:79:AB:34:A6:DF:AC:83:A2:02:14:E4:43:16
    Fingerprint (SHA1):
        DE:74:7C:35:BE:96:A9:78:99:7A:70:63:AA:D4:C6:9E:A1:D9:60:6C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3435: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235661 (0x300e2e0d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:14 2017
            Not After : Sat Aug 06 23:56:14 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:e7:d6:43:32:2e:d8:4c:33:28:c8:ad:5f:5b:ac:af:
                    70:13:cf:76:49:3f:93:07:86:c2:91:c3:07:15:ce:c4:
                    8e:da:61:a3:82:65:d0:4c:04:a8:22:74:10:93:df:46:
                    f6:d6:cb:f1:50:9c:ba:c1:a8:52:4f:7f:bc:70:1b:38:
                    1f:c3:56:87:01:79:d9:cb:e6:13:af:56:c5:52:3e:d1:
                    41:a6:a8:b4:3d:e2:e5:59:f4:bc:f2:7b:30:35:99:bc:
                    f8:13:58:fc:74:fd:8b:1c:21:1b:58:a3:4d:67:a4:5c:
                    9e:77:a7:f6:65:53:89:6a:fb:91:c1:01:89:98:c8:34:
                    dd:f3:60:b7:2e:5b:62:2c:20:df:e7:1f:4f:19:aa:a8:
                    47:69:9c:d1:b7:a0:d7:c8:4c:e2:30:e6:8c:31:e1:0b:
                    57:a8:aa:8b:92:f8:9f:2e:62:e2:f7:5d:86:25:5f:0a:
                    ae:9e:0f:fa:a5:e2:93:f2:4d:68:04:f0:d4:96:f7:22:
                    2a:a8:f4:7c:0c:2c:c1:3e:b6:03:17:0b:f3:a4:b1:80:
                    b9:d1:ea:94:58:5e:e4:ae:f9:ba:fd:a5:64:1b:20:e0:
                    6e:02:6f:71:ab:0b:03:a2:67:19:0d:94:ba:64:7c:49:
                    4b:61:9a:84:61:3f:ab:07:e4:ba:29:e3:3b:27:df:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        05:c0:d3:8e:b6:b0:f0:26:0a:06:c9:1e:95:1c:94:6b:
        33:34:8b:46:bd:cf:bc:84:d3:b7:a6:05:e6:c2:1a:a3:
        9e:21:5a:2d:6d:8c:f9:f9:a9:fd:b3:ec:20:d5:6d:97:
        c0:51:74:14:9e:d8:22:5c:2b:81:09:09:59:16:43:2e:
        e9:83:db:b0:db:fa:4e:b8:03:c0:b4:2e:9f:d7:5a:17:
        d9:33:be:79:1d:3f:45:56:ce:de:53:d7:3a:c3:86:26:
        0f:0b:7f:56:04:87:55:d3:bf:ba:cb:fd:86:56:15:8f:
        29:b6:12:a3:f9:48:e7:b3:25:9e:8f:c4:92:fc:a8:6e:
        2d:d4:41:4f:53:80:e6:f3:cb:83:ea:86:81:7a:03:e1:
        50:39:56:a1:65:0f:f5:7d:24:a6:49:a6:75:c2:f6:2e:
        91:bf:61:e3:dd:ba:d0:a2:03:a1:02:7f:51:ea:20:fe:
        d7:ec:91:9c:9f:71:88:f7:5a:33:b1:80:59:2b:42:b1:
        72:53:d4:d4:88:f2:42:0e:8f:32:55:55:a5:0d:aa:35:
        e1:35:80:86:65:82:96:08:71:4c:d0:9c:41:66:5d:90:
        d1:df:05:eb:a4:ff:42:af:20:18:0b:d8:43:fd:62:74:
        e8:f0:75:a2:1a:43:a3:7a:a3:57:81:d8:b9:c6:73:59
    Fingerprint (SHA-256):
        D8:54:C7:AA:02:66:2F:76:28:22:3D:AA:32:DC:BD:5D:B4:FC:8B:F3:B0:74:88:91:66:C6:EC:2E:66:A3:47:43
    Fingerprint (SHA1):
        5C:5B:46:D4:F8:77:BB:13:AA:9F:04:3D:AE:F1:A2:42:75:AC:33:77
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3436: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #3437: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #3438: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #3439: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235659 (0x300e2e0b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:14 2017
            Not After : Sat Aug 06 23:56:14 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    97:dc:2e:a6:c8:74:a1:b0:75:c8:2e:00:48:83:9f:3d:
                    53:82:0f:87:7a:c9:41:b2:b9:b7:d7:43:dd:99:ef:f4:
                    5f:0d:de:6d:39:73:f2:88:58:35:c6:57:61:aa:c8:84:
                    94:42:98:c9:30:32:91:1e:4b:9a:b4:1c:c8:87:01:b3:
                    d3:a2:8b:d8:ab:57:2e:fb:c0:7e:9d:f4:36:99:57:97:
                    2a:0e:74:57:e9:e8:34:09:7d:46:f0:d2:cb:1d:95:1c:
                    a1:48:88:02:63:a8:c4:cf:98:6c:8a:d1:fc:93:b5:f9:
                    1a:93:de:39:69:2c:7f:7d:44:7e:6a:ae:c6:1a:5d:aa:
                    82:fa:15:4e:2b:ed:dd:be:5c:9d:d4:51:89:65:f8:cf:
                    82:d5:47:2c:a7:31:a3:c8:1b:e5:ea:cf:41:32:60:80:
                    c8:9d:5f:e8:6b:3f:67:57:f6:bb:05:1a:5c:85:6d:5f:
                    85:3d:d0:9a:30:85:55:53:d5:d0:4d:aa:64:b8:f8:44:
                    de:c5:58:b8:18:28:33:4e:28:65:8a:85:08:3b:8f:7a:
                    af:67:16:85:a1:5d:4a:00:ad:04:88:6b:ec:c3:c2:1d:
                    65:22:34:0f:15:58:2b:c2:33:3a:fe:39:58:06:33:a5:
                    84:68:87:16:52:c7:51:3e:1b:d3:db:ee:0d:3c:cf:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        96:23:77:68:33:a0:bd:1c:db:8a:31:ba:a5:76:d0:98:
        8f:17:41:2b:65:68:eb:bc:64:ce:68:81:14:b2:62:a6:
        87:b3:43:1b:54:16:9b:77:37:a0:10:cb:6b:60:c3:52:
        74:38:a7:53:f0:0c:05:68:4a:48:16:97:ce:bf:29:a1:
        3d:b1:ac:bc:49:d4:ac:23:db:aa:21:90:8a:41:d6:be:
        11:6e:80:c2:ab:87:90:f8:78:d8:de:4e:c0:23:ac:7e:
        87:4a:8c:d6:a4:3f:98:a5:13:c2:ff:9a:7f:1c:a9:05:
        12:68:83:e8:dc:4c:af:c0:6a:97:2f:92:11:40:da:8a:
        ef:02:09:f1:1f:71:3b:cd:45:6f:5f:f4:76:65:99:56:
        46:f3:33:7b:fe:a7:25:22:14:6b:eb:03:08:d7:6e:8d:
        bc:93:7f:48:43:60:be:b9:a4:db:71:a4:9f:25:64:ff:
        41:04:d5:ad:d7:79:a2:86:de:2b:aa:30:3f:51:99:ae:
        ee:d1:d3:6e:0a:5e:00:60:b0:f0:73:8c:c0:4f:d1:90:
        47:45:dc:de:27:21:71:c8:de:c0:14:82:51:b1:61:ae:
        d4:54:05:c7:eb:f7:0d:51:1e:3e:5e:56:96:67:97:f1:
        9e:81:e3:6f:b6:fb:53:bd:07:e8:6a:2c:a9:f6:8e:a0
    Fingerprint (SHA-256):
        51:F9:E5:06:33:1B:9F:96:2C:28:AF:9E:A5:AF:8A:E8:D0:E8:04:79:AB:34:A6:DF:AC:83:A2:02:14:E4:43:16
    Fingerprint (SHA1):
        DE:74:7C:35:BE:96:A9:78:99:7A:70:63:AA:D4:C6:9E:A1:D9:60:6C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3440: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235663 (0x300e2e0f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:15 2017
            Not After : Sat Aug 06 23:56:15 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f9:cc:f2:95:ac:3b:c2:92:a0:e6:b5:80:67:eb:a6:0b:
                    a4:2e:c3:3e:fd:7d:ba:04:2a:39:df:7f:2f:d5:50:92:
                    83:6e:9b:64:b0:7b:e8:b7:7a:f3:1d:fd:7c:e7:5d:f7:
                    80:18:36:68:7b:52:d9:03:3d:a4:f9:8e:3a:86:d6:57:
                    07:cc:20:fd:53:53:5e:94:7d:ba:fb:59:db:05:33:0f:
                    53:9a:5f:86:29:0d:58:bb:5a:37:b6:57:31:e9:ae:5b:
                    47:a6:e3:cd:1f:06:b7:ee:34:8e:4d:ff:5c:23:1e:25:
                    ff:de:c9:87:42:28:9a:7a:62:30:7b:08:4d:59:18:5e:
                    3c:48:00:8b:a9:a1:70:09:3f:83:1f:33:48:b1:e4:1b:
                    bc:10:34:d1:fa:2d:e0:32:aa:57:85:35:c5:d6:8f:bb:
                    f2:2d:74:05:48:bd:de:5a:03:10:71:c4:62:24:07:0d:
                    1a:b1:7f:dc:00:7a:2c:14:cd:1f:20:f6:1e:9d:3e:c2:
                    26:66:4d:06:ee:1b:e4:8b:9f:69:b1:f6:ed:7f:f7:e4:
                    df:4b:cd:31:40:c9:de:50:a4:9b:8f:34:65:af:b4:94:
                    2e:83:0e:64:b6:c4:00:a0:0f:bb:ec:94:54:e7:b0:10:
                    ba:91:f8:4b:58:f3:50:61:16:5f:74:3e:15:d2:15:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:29:5a:3c:30:1e:65:89:de:6e:ff:f4:87:d2:f5:e6:
        3f:04:bd:27:04:9f:09:46:04:16:46:cd:49:d9:30:9b:
        25:b4:84:38:65:67:1c:47:4c:48:6d:d8:76:4d:76:e3:
        18:5a:16:0d:73:c5:5d:d3:1c:07:05:4c:06:70:f2:da:
        d4:ca:a8:b0:a0:8e:48:03:1f:3e:24:f7:c2:c4:fb:4c:
        71:b5:11:3a:68:44:65:53:0d:31:77:27:2d:26:de:13:
        92:72:54:74:62:e3:29:9c:fe:50:52:c2:84:1d:5a:d3:
        d3:36:90:7d:cb:35:00:12:9a:59:12:78:1c:49:26:8c:
        45:86:3e:76:ad:a3:0c:4a:75:1b:1a:13:30:55:7b:6b:
        38:26:94:9e:3b:07:4c:89:30:db:3d:30:19:fb:dc:79:
        01:87:be:ba:7a:4b:bc:1e:45:7a:93:8e:18:a8:cd:d8:
        ca:1b:04:d7:fe:78:99:f4:81:18:fb:03:9c:00:f3:b2:
        2c:35:da:1c:b3:e8:2e:36:13:1a:c4:f3:68:03:06:47:
        89:7d:61:a5:5f:54:7f:e7:78:3f:f2:73:98:65:86:cc:
        be:90:32:53:57:ca:f2:0b:ed:cc:ba:86:3a:eb:46:8a:
        10:6f:f2:fb:8b:c6:7e:5a:84:9a:eb:1f:dd:0f:67:bd
    Fingerprint (SHA-256):
        B7:A8:C0:C4:ED:FA:17:99:5E:D0:F4:58:CF:1F:7A:60:B4:77:CF:21:DA:DB:B4:AD:9F:35:AC:66:B2:60:23:2E
    Fingerprint (SHA1):
        B8:65:90:47:60:1F:68:0F:D2:AD:C5:28:E8:46:2C:6C:3A:16:A9:09
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #3441: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235659 (0x300e2e0b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:14 2017
            Not After : Sat Aug 06 23:56:14 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    97:dc:2e:a6:c8:74:a1:b0:75:c8:2e:00:48:83:9f:3d:
                    53:82:0f:87:7a:c9:41:b2:b9:b7:d7:43:dd:99:ef:f4:
                    5f:0d:de:6d:39:73:f2:88:58:35:c6:57:61:aa:c8:84:
                    94:42:98:c9:30:32:91:1e:4b:9a:b4:1c:c8:87:01:b3:
                    d3:a2:8b:d8:ab:57:2e:fb:c0:7e:9d:f4:36:99:57:97:
                    2a:0e:74:57:e9:e8:34:09:7d:46:f0:d2:cb:1d:95:1c:
                    a1:48:88:02:63:a8:c4:cf:98:6c:8a:d1:fc:93:b5:f9:
                    1a:93:de:39:69:2c:7f:7d:44:7e:6a:ae:c6:1a:5d:aa:
                    82:fa:15:4e:2b:ed:dd:be:5c:9d:d4:51:89:65:f8:cf:
                    82:d5:47:2c:a7:31:a3:c8:1b:e5:ea:cf:41:32:60:80:
                    c8:9d:5f:e8:6b:3f:67:57:f6:bb:05:1a:5c:85:6d:5f:
                    85:3d:d0:9a:30:85:55:53:d5:d0:4d:aa:64:b8:f8:44:
                    de:c5:58:b8:18:28:33:4e:28:65:8a:85:08:3b:8f:7a:
                    af:67:16:85:a1:5d:4a:00:ad:04:88:6b:ec:c3:c2:1d:
                    65:22:34:0f:15:58:2b:c2:33:3a:fe:39:58:06:33:a5:
                    84:68:87:16:52:c7:51:3e:1b:d3:db:ee:0d:3c:cf:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        96:23:77:68:33:a0:bd:1c:db:8a:31:ba:a5:76:d0:98:
        8f:17:41:2b:65:68:eb:bc:64:ce:68:81:14:b2:62:a6:
        87:b3:43:1b:54:16:9b:77:37:a0:10:cb:6b:60:c3:52:
        74:38:a7:53:f0:0c:05:68:4a:48:16:97:ce:bf:29:a1:
        3d:b1:ac:bc:49:d4:ac:23:db:aa:21:90:8a:41:d6:be:
        11:6e:80:c2:ab:87:90:f8:78:d8:de:4e:c0:23:ac:7e:
        87:4a:8c:d6:a4:3f:98:a5:13:c2:ff:9a:7f:1c:a9:05:
        12:68:83:e8:dc:4c:af:c0:6a:97:2f:92:11:40:da:8a:
        ef:02:09:f1:1f:71:3b:cd:45:6f:5f:f4:76:65:99:56:
        46:f3:33:7b:fe:a7:25:22:14:6b:eb:03:08:d7:6e:8d:
        bc:93:7f:48:43:60:be:b9:a4:db:71:a4:9f:25:64:ff:
        41:04:d5:ad:d7:79:a2:86:de:2b:aa:30:3f:51:99:ae:
        ee:d1:d3:6e:0a:5e:00:60:b0:f0:73:8c:c0:4f:d1:90:
        47:45:dc:de:27:21:71:c8:de:c0:14:82:51:b1:61:ae:
        d4:54:05:c7:eb:f7:0d:51:1e:3e:5e:56:96:67:97:f1:
        9e:81:e3:6f:b6:fb:53:bd:07:e8:6a:2c:a9:f6:8e:a0
    Fingerprint (SHA-256):
        51:F9:E5:06:33:1B:9F:96:2C:28:AF:9E:A5:AF:8A:E8:D0:E8:04:79:AB:34:A6:DF:AC:83:A2:02:14:E4:43:16
    Fingerprint (SHA1):
        DE:74:7C:35:BE:96:A9:78:99:7A:70:63:AA:D4:C6:9E:A1:D9:60:6C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3442: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #3443: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #3444: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #3445: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #3446: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #3447: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235664 (0x300e2e10)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:15 2017
            Not After : Sat Aug 06 23:56:15 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:ba:67:dc:d5:5b:aa:91:98:30:d0:35:2c:3a:44:9e:
                    7e:30:27:dc:67:65:c9:ca:e1:00:7c:21:f9:57:0d:75:
                    7a:45:b4:fa:84:d6:ce:2b:51:ae:81:d8:72:52:d1:cb:
                    09:67:ac:36:b4:aa:e5:ef:ee:2d:b8:d9:da:07:e6:ab:
                    c3:c6:97:d0:4a:df:3f:b1:2d:72:c0:4d:bd:8a:ef:71:
                    b1:40:08:14:c6:5d:8a:ae:b3:66:26:ed:72:5c:7d:cb:
                    b7:40:e8:e9:79:2b:c6:40:0d:59:2c:b9:e8:7f:e1:a7:
                    c9:d4:05:ef:f5:00:9d:e9:dc:3d:43:12:08:fc:4c:ea:
                    d2:d8:cd:a0:8f:49:88:a8:06:14:ec:a4:7d:cb:20:45:
                    89:20:07:70:ea:16:f1:40:e5:e7:da:cd:b7:ad:1e:71:
                    d2:61:5b:fe:e7:62:c5:50:f1:e2:f5:d6:c4:32:4b:4f:
                    d3:53:4e:a5:19:d0:f1:2a:96:10:37:ae:ad:eb:62:0b:
                    8d:d6:19:33:c9:2a:a6:af:ef:6b:a1:37:aa:c0:b5:2d:
                    c2:fd:f2:d3:b3:c8:59:1b:34:b4:d1:8b:71:70:f4:0e:
                    bb:e7:a5:15:70:38:34:1c:18:03:75:9f:8f:63:97:b8:
                    45:ea:bd:e7:9c:2f:c5:10:a5:61:da:dc:d3:12:17:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9b:a4:66:71:5b:07:64:50:df:54:bd:05:8b:0c:d6:e5:
        a7:bc:47:82:a7:fb:ce:0f:c9:c9:cf:8a:41:42:5f:b4:
        43:30:a0:bb:8f:06:bc:c8:b2:24:6f:ed:20:82:3e:58:
        84:a9:0d:86:78:c4:5b:b7:ff:91:8d:4b:98:33:de:c0:
        6f:69:ca:72:00:59:f3:cd:11:76:83:47:e1:9f:b0:70:
        dd:cf:99:92:bc:3b:27:f8:cd:d1:75:f0:4f:85:2e:ee:
        e8:21:22:7d:32:51:67:c8:3e:6e:5b:e4:4e:91:e4:c9:
        af:c7:28:18:3a:c3:a3:57:44:26:40:a2:35:69:a1:d8:
        d8:15:21:a6:c2:55:09:a2:84:1d:99:9a:38:d2:0b:b2:
        9e:3e:67:1d:92:04:9e:a0:2a:71:cb:2f:f8:0e:f5:f2:
        6b:af:88:5a:b9:b1:1d:ab:f7:b0:d7:c5:ed:c1:27:ea:
        3e:f5:6d:c6:1f:49:3a:51:92:ee:16:72:13:01:12:1b:
        35:93:55:c6:c4:c3:1e:2a:c2:8c:59:df:72:85:36:a5:
        d3:0d:a5:e7:b3:2e:97:02:c8:43:11:57:8a:a7:c0:1b:
        aa:2f:69:e0:6a:25:a4:ab:1c:59:ab:06:2d:51:d2:b4:
        32:8a:a8:89:19:89:72:0d:51:e8:4a:68:d3:40:7f:9f
    Fingerprint (SHA-256):
        C7:C0:B0:7E:02:32:D5:E0:3D:44:B7:C6:A8:0E:DB:E1:61:94:72:E2:18:4F:B1:82:C1:10:02:15:CD:C7:C0:74
    Fingerprint (SHA1):
        75:4C:3C:C9:2C:7B:13:E5:7A:DC:BC:22:F7:38:12:9E:2D:4E:43:A0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3448: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #3449: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #3450: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #3451: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #3452: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #3453: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3454: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3455: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #3456: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3457: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3458: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3459: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3460: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #3461: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3462: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3463: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3464: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #3465: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3466: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #3467: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3468: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3469: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3470: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3471: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 17559 at Sun Aug  6 23:56:17 UTC 2017
kill -USR1 17559
httpserv: normal termination
httpserv -b -p 9019 2>/dev/null;
httpserv with PID 17559 killed at Sun Aug  6 23:56:17 UTC 2017
httpserv starting at Sun Aug  6 23:56:17 UTC 2017
httpserv -D -p 9019  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA3.crl \
         -O get-unknown -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/aiahttp/http_pid.8843  &
trying to connect to httpserv at Sun Aug  6 23:56:17 UTC 2017
tstclnt -p 9019 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9019 (address=::1)
tstclnt: exiting with return code 0
kill -0 532 >/dev/null 2>/dev/null
httpserv with PID 532 found at Sun Aug  6 23:56:17 UTC 2017
httpserv with PID 532 started at Sun Aug  6 23:56:17 UTC 2017
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3472: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235666 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3473: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3474: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3475: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235667 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3476: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3477: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3478: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3479: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 806235668 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3480: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3481: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 806235669 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3482: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3483: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3484: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3485: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3486: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 806235670   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3487: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3488: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3489: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #3490: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #3491: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235667 (0x300e2e13)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:17 2017
            Not After : Sat Aug 06 23:56:17 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:6f:3a:99:98:38:d1:1e:fc:d7:af:eb:7b:d4:61:35:
                    ff:f8:0e:6e:e6:7c:63:a7:fc:cd:ba:f7:b2:4c:1f:65:
                    a5:4e:fc:67:9b:7c:2a:c3:86:89:df:a2:f6:ef:b1:8a:
                    3d:27:6e:c5:91:53:22:76:89:f9:a1:48:ee:79:cd:dc:
                    b7:76:87:b0:ef:de:fa:70:5a:35:77:6b:b1:db:37:ff:
                    7a:ed:9a:6d:57:70:d0:34:3f:95:2d:64:b4:b3:5e:0e:
                    a7:8b:50:4c:12:92:4d:da:3d:84:60:57:ad:2f:01:2d:
                    f7:ed:22:9b:b2:8d:64:50:60:45:75:e5:f3:23:6c:99:
                    5f:6a:67:21:74:89:7a:c6:7f:bb:7d:8f:8d:21:13:23:
                    00:28:97:1a:14:d2:92:05:08:97:56:37:98:9e:24:03:
                    15:73:5c:f0:ea:4a:3d:99:68:46:ba:a9:b9:0f:97:ab:
                    45:5c:b7:a3:1a:91:3a:f4:7f:f5:b3:36:67:58:ed:98:
                    2b:bf:5b:21:e5:bd:9d:cb:8a:5a:79:ea:76:a3:9f:4e:
                    63:b5:ca:a4:af:fd:cf:82:05:51:b2:68:29:ff:01:57:
                    f3:9b:f0:5a:a8:e4:ae:25:23:79:7c:22:c3:4e:eb:bb:
                    1c:b8:d2:42:0b:38:b6:fa:64:81:08:09:46:81:6d:49
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        49:2a:fd:06:a9:d9:3a:5e:51:0f:ad:36:0b:6d:ef:5c:
        f7:12:b3:f9:b7:ee:2b:67:98:d4:e3:c5:1d:3b:c0:20:
        7d:c8:ae:34:66:46:c3:06:60:7b:ad:6d:23:cd:95:78:
        34:56:a6:50:32:3c:c5:af:32:14:21:d1:99:31:f8:75:
        4b:2b:dd:02:05:85:6e:b4:84:f3:96:76:10:47:d9:2f:
        29:65:9d:e4:85:e6:51:fb:57:22:0c:6a:2d:49:d5:70:
        d3:56:ac:5e:5d:84:4c:ca:23:d6:fb:5a:fd:6a:7c:64:
        4f:db:de:9f:c2:20:a3:76:e9:af:e0:30:51:47:93:65:
        67:ad:86:6d:89:14:44:26:36:73:8d:58:8c:00:8e:ff:
        dd:2d:7f:b8:f5:5d:1f:0e:96:b2:6d:c6:c2:05:92:34:
        60:4f:63:f3:ae:c9:10:0a:a4:83:ec:1a:55:88:52:df:
        54:6c:db:92:9c:c1:52:00:9e:d9:c7:c3:6a:88:db:c0:
        1a:ba:ad:d4:20:ad:ee:83:2b:d3:98:d5:b5:75:2e:40:
        db:d8:0d:92:56:1e:f2:a8:06:24:3a:be:60:2f:49:0b:
        fb:bc:a1:02:9f:4a:91:4b:68:0e:a8:ee:53:b0:10:3b:
        12:86:d6:80:00:74:e9:39:48:11:5a:d4:9e:f3:39:7f
    Fingerprint (SHA-256):
        EA:9A:BB:61:30:35:27:AF:8E:61:B7:F3:CB:11:80:42:A2:57:A2:82:C9:F7:B8:01:C1:52:53:35:26:6E:76:14
    Fingerprint (SHA1):
        8C:4E:DC:D5:29:AE:57:BD:95:08:13:28:40:EB:4B:D7:09:D4:2E:8E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3492: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235666 (0x300e2e12)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:17 2017
            Not After : Sat Aug 06 23:56:17 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:45:a1:01:a1:1b:7e:52:da:a2:b2:25:97:73:a1:00:
                    4d:44:79:56:ed:2c:0e:da:0a:68:d5:9d:53:2b:64:2a:
                    8b:07:a8:48:12:cd:8f:04:30:3a:4b:13:a4:1d:49:e6:
                    0b:17:23:97:01:9b:62:d1:1f:aa:31:d9:91:f5:3b:d6:
                    78:ea:38:af:46:04:ac:5c:03:9a:dd:0b:03:b4:39:26:
                    d3:d6:3e:37:87:9a:df:1b:ea:d4:46:af:48:e0:9f:64:
                    ef:a2:46:43:af:61:6d:dc:05:8f:53:fb:8e:48:1f:fb:
                    e8:7d:19:e4:42:e1:90:12:ac:c7:e6:5b:ae:f9:cd:3b:
                    8d:f9:4f:11:4e:33:6b:b3:c4:5c:1f:9d:96:d1:bd:69:
                    5e:43:09:6a:69:3f:57:92:42:0f:5a:44:f5:fd:76:eb:
                    cc:1d:d1:9d:3f:85:e3:af:ab:6c:ab:80:36:9d:e2:f7:
                    20:c5:41:02:a5:d7:99:c6:62:2f:bd:16:8c:84:d0:c6:
                    83:e9:4d:8a:8d:26:89:22:5a:0c:b1:3c:0e:b6:62:9e:
                    ea:16:68:cc:5d:40:3d:08:89:76:4c:4a:01:09:86:99:
                    3e:4a:aa:70:3e:78:b5:e1:5d:61:72:84:d4:6a:09:2f:
                    7a:70:de:a0:0a:2f:3d:03:7f:da:b6:60:52:f4:9f:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        65:ab:6d:5c:f4:d0:69:1b:78:a2:48:9b:22:17:62:1a:
        3f:c1:39:18:9e:8c:a0:f9:c4:c3:e8:01:76:0b:54:c8:
        0d:cf:f0:e2:15:d2:29:09:dd:6e:d2:3a:05:3a:f8:37:
        d1:e5:02:ff:0f:d1:18:3b:c8:f8:a6:ac:8b:c0:86:45:
        9d:a0:d1:c1:58:59:e9:c2:74:eb:fd:b9:e5:eb:de:de:
        72:44:1b:15:cb:a9:7b:ad:ba:04:0d:e4:fc:74:5a:37:
        04:ff:b4:33:89:53:97:7a:57:12:18:e8:ad:d9:bc:b5:
        95:34:01:28:dc:81:09:ce:1c:21:21:3a:2e:a4:2b:f3:
        7f:87:a5:36:f5:12:70:53:2e:c7:f2:2c:1b:be:64:8c:
        40:c6:d5:2c:cf:53:a0:4b:d5:bd:e0:64:63:24:45:ac:
        e0:41:c7:6b:30:07:ac:4b:78:0c:d9:1e:2d:c4:bc:47:
        c6:9e:52:88:96:8e:92:d6:da:ca:7d:5d:30:b5:40:12:
        ad:c0:84:c9:e4:d8:d6:21:1a:97:5b:ee:70:69:9a:7c:
        b6:0c:2f:0f:f9:92:c3:0e:ae:2c:3c:1e:f1:ec:04:68:
        1f:c9:6e:f7:b5:9a:31:bf:94:1e:82:d5:89:e7:27:b6:
        89:24:09:65:df:f3:53:ca:b4:76:f0:4e:70:ee:24:6c
    Fingerprint (SHA-256):
        DB:F7:81:D5:3B:75:BF:4E:DF:77:3A:B2:88:DA:75:02:91:CA:2A:A1:B6:A7:44:39:09:D7:91:64:5F:C8:1D:0B
    Fingerprint (SHA1):
        BA:C6:E4:9E:21:35:2B:2F:6B:56:B7:10:DA:0F:CD:8F:36:C9:7B:75
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3493: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3494: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #3495: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #3496: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235666 (0x300e2e12)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:17 2017
            Not After : Sat Aug 06 23:56:17 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:45:a1:01:a1:1b:7e:52:da:a2:b2:25:97:73:a1:00:
                    4d:44:79:56:ed:2c:0e:da:0a:68:d5:9d:53:2b:64:2a:
                    8b:07:a8:48:12:cd:8f:04:30:3a:4b:13:a4:1d:49:e6:
                    0b:17:23:97:01:9b:62:d1:1f:aa:31:d9:91:f5:3b:d6:
                    78:ea:38:af:46:04:ac:5c:03:9a:dd:0b:03:b4:39:26:
                    d3:d6:3e:37:87:9a:df:1b:ea:d4:46:af:48:e0:9f:64:
                    ef:a2:46:43:af:61:6d:dc:05:8f:53:fb:8e:48:1f:fb:
                    e8:7d:19:e4:42:e1:90:12:ac:c7:e6:5b:ae:f9:cd:3b:
                    8d:f9:4f:11:4e:33:6b:b3:c4:5c:1f:9d:96:d1:bd:69:
                    5e:43:09:6a:69:3f:57:92:42:0f:5a:44:f5:fd:76:eb:
                    cc:1d:d1:9d:3f:85:e3:af:ab:6c:ab:80:36:9d:e2:f7:
                    20:c5:41:02:a5:d7:99:c6:62:2f:bd:16:8c:84:d0:c6:
                    83:e9:4d:8a:8d:26:89:22:5a:0c:b1:3c:0e:b6:62:9e:
                    ea:16:68:cc:5d:40:3d:08:89:76:4c:4a:01:09:86:99:
                    3e:4a:aa:70:3e:78:b5:e1:5d:61:72:84:d4:6a:09:2f:
                    7a:70:de:a0:0a:2f:3d:03:7f:da:b6:60:52:f4:9f:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        65:ab:6d:5c:f4:d0:69:1b:78:a2:48:9b:22:17:62:1a:
        3f:c1:39:18:9e:8c:a0:f9:c4:c3:e8:01:76:0b:54:c8:
        0d:cf:f0:e2:15:d2:29:09:dd:6e:d2:3a:05:3a:f8:37:
        d1:e5:02:ff:0f:d1:18:3b:c8:f8:a6:ac:8b:c0:86:45:
        9d:a0:d1:c1:58:59:e9:c2:74:eb:fd:b9:e5:eb:de:de:
        72:44:1b:15:cb:a9:7b:ad:ba:04:0d:e4:fc:74:5a:37:
        04:ff:b4:33:89:53:97:7a:57:12:18:e8:ad:d9:bc:b5:
        95:34:01:28:dc:81:09:ce:1c:21:21:3a:2e:a4:2b:f3:
        7f:87:a5:36:f5:12:70:53:2e:c7:f2:2c:1b:be:64:8c:
        40:c6:d5:2c:cf:53:a0:4b:d5:bd:e0:64:63:24:45:ac:
        e0:41:c7:6b:30:07:ac:4b:78:0c:d9:1e:2d:c4:bc:47:
        c6:9e:52:88:96:8e:92:d6:da:ca:7d:5d:30:b5:40:12:
        ad:c0:84:c9:e4:d8:d6:21:1a:97:5b:ee:70:69:9a:7c:
        b6:0c:2f:0f:f9:92:c3:0e:ae:2c:3c:1e:f1:ec:04:68:
        1f:c9:6e:f7:b5:9a:31:bf:94:1e:82:d5:89:e7:27:b6:
        89:24:09:65:df:f3:53:ca:b4:76:f0:4e:70:ee:24:6c
    Fingerprint (SHA-256):
        DB:F7:81:D5:3B:75:BF:4E:DF:77:3A:B2:88:DA:75:02:91:CA:2A:A1:B6:A7:44:39:09:D7:91:64:5F:C8:1D:0B
    Fingerprint (SHA1):
        BA:C6:E4:9E:21:35:2B:2F:6B:56:B7:10:DA:0F:CD:8F:36:C9:7B:75
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3497: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235667 (0x300e2e13)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:17 2017
            Not After : Sat Aug 06 23:56:17 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:6f:3a:99:98:38:d1:1e:fc:d7:af:eb:7b:d4:61:35:
                    ff:f8:0e:6e:e6:7c:63:a7:fc:cd:ba:f7:b2:4c:1f:65:
                    a5:4e:fc:67:9b:7c:2a:c3:86:89:df:a2:f6:ef:b1:8a:
                    3d:27:6e:c5:91:53:22:76:89:f9:a1:48:ee:79:cd:dc:
                    b7:76:87:b0:ef:de:fa:70:5a:35:77:6b:b1:db:37:ff:
                    7a:ed:9a:6d:57:70:d0:34:3f:95:2d:64:b4:b3:5e:0e:
                    a7:8b:50:4c:12:92:4d:da:3d:84:60:57:ad:2f:01:2d:
                    f7:ed:22:9b:b2:8d:64:50:60:45:75:e5:f3:23:6c:99:
                    5f:6a:67:21:74:89:7a:c6:7f:bb:7d:8f:8d:21:13:23:
                    00:28:97:1a:14:d2:92:05:08:97:56:37:98:9e:24:03:
                    15:73:5c:f0:ea:4a:3d:99:68:46:ba:a9:b9:0f:97:ab:
                    45:5c:b7:a3:1a:91:3a:f4:7f:f5:b3:36:67:58:ed:98:
                    2b:bf:5b:21:e5:bd:9d:cb:8a:5a:79:ea:76:a3:9f:4e:
                    63:b5:ca:a4:af:fd:cf:82:05:51:b2:68:29:ff:01:57:
                    f3:9b:f0:5a:a8:e4:ae:25:23:79:7c:22:c3:4e:eb:bb:
                    1c:b8:d2:42:0b:38:b6:fa:64:81:08:09:46:81:6d:49
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        49:2a:fd:06:a9:d9:3a:5e:51:0f:ad:36:0b:6d:ef:5c:
        f7:12:b3:f9:b7:ee:2b:67:98:d4:e3:c5:1d:3b:c0:20:
        7d:c8:ae:34:66:46:c3:06:60:7b:ad:6d:23:cd:95:78:
        34:56:a6:50:32:3c:c5:af:32:14:21:d1:99:31:f8:75:
        4b:2b:dd:02:05:85:6e:b4:84:f3:96:76:10:47:d9:2f:
        29:65:9d:e4:85:e6:51:fb:57:22:0c:6a:2d:49:d5:70:
        d3:56:ac:5e:5d:84:4c:ca:23:d6:fb:5a:fd:6a:7c:64:
        4f:db:de:9f:c2:20:a3:76:e9:af:e0:30:51:47:93:65:
        67:ad:86:6d:89:14:44:26:36:73:8d:58:8c:00:8e:ff:
        dd:2d:7f:b8:f5:5d:1f:0e:96:b2:6d:c6:c2:05:92:34:
        60:4f:63:f3:ae:c9:10:0a:a4:83:ec:1a:55:88:52:df:
        54:6c:db:92:9c:c1:52:00:9e:d9:c7:c3:6a:88:db:c0:
        1a:ba:ad:d4:20:ad:ee:83:2b:d3:98:d5:b5:75:2e:40:
        db:d8:0d:92:56:1e:f2:a8:06:24:3a:be:60:2f:49:0b:
        fb:bc:a1:02:9f:4a:91:4b:68:0e:a8:ee:53:b0:10:3b:
        12:86:d6:80:00:74:e9:39:48:11:5a:d4:9e:f3:39:7f
    Fingerprint (SHA-256):
        EA:9A:BB:61:30:35:27:AF:8E:61:B7:F3:CB:11:80:42:A2:57:A2:82:C9:F7:B8:01:C1:52:53:35:26:6E:76:14
    Fingerprint (SHA1):
        8C:4E:DC:D5:29:AE:57:BD:95:08:13:28:40:EB:4B:D7:09:D4:2E:8E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3498: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #3499: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #3500: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3501: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3502: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3503: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235667 (0x300e2e13)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:17 2017
            Not After : Sat Aug 06 23:56:17 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:6f:3a:99:98:38:d1:1e:fc:d7:af:eb:7b:d4:61:35:
                    ff:f8:0e:6e:e6:7c:63:a7:fc:cd:ba:f7:b2:4c:1f:65:
                    a5:4e:fc:67:9b:7c:2a:c3:86:89:df:a2:f6:ef:b1:8a:
                    3d:27:6e:c5:91:53:22:76:89:f9:a1:48:ee:79:cd:dc:
                    b7:76:87:b0:ef:de:fa:70:5a:35:77:6b:b1:db:37:ff:
                    7a:ed:9a:6d:57:70:d0:34:3f:95:2d:64:b4:b3:5e:0e:
                    a7:8b:50:4c:12:92:4d:da:3d:84:60:57:ad:2f:01:2d:
                    f7:ed:22:9b:b2:8d:64:50:60:45:75:e5:f3:23:6c:99:
                    5f:6a:67:21:74:89:7a:c6:7f:bb:7d:8f:8d:21:13:23:
                    00:28:97:1a:14:d2:92:05:08:97:56:37:98:9e:24:03:
                    15:73:5c:f0:ea:4a:3d:99:68:46:ba:a9:b9:0f:97:ab:
                    45:5c:b7:a3:1a:91:3a:f4:7f:f5:b3:36:67:58:ed:98:
                    2b:bf:5b:21:e5:bd:9d:cb:8a:5a:79:ea:76:a3:9f:4e:
                    63:b5:ca:a4:af:fd:cf:82:05:51:b2:68:29:ff:01:57:
                    f3:9b:f0:5a:a8:e4:ae:25:23:79:7c:22:c3:4e:eb:bb:
                    1c:b8:d2:42:0b:38:b6:fa:64:81:08:09:46:81:6d:49
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        49:2a:fd:06:a9:d9:3a:5e:51:0f:ad:36:0b:6d:ef:5c:
        f7:12:b3:f9:b7:ee:2b:67:98:d4:e3:c5:1d:3b:c0:20:
        7d:c8:ae:34:66:46:c3:06:60:7b:ad:6d:23:cd:95:78:
        34:56:a6:50:32:3c:c5:af:32:14:21:d1:99:31:f8:75:
        4b:2b:dd:02:05:85:6e:b4:84:f3:96:76:10:47:d9:2f:
        29:65:9d:e4:85:e6:51:fb:57:22:0c:6a:2d:49:d5:70:
        d3:56:ac:5e:5d:84:4c:ca:23:d6:fb:5a:fd:6a:7c:64:
        4f:db:de:9f:c2:20:a3:76:e9:af:e0:30:51:47:93:65:
        67:ad:86:6d:89:14:44:26:36:73:8d:58:8c:00:8e:ff:
        dd:2d:7f:b8:f5:5d:1f:0e:96:b2:6d:c6:c2:05:92:34:
        60:4f:63:f3:ae:c9:10:0a:a4:83:ec:1a:55:88:52:df:
        54:6c:db:92:9c:c1:52:00:9e:d9:c7:c3:6a:88:db:c0:
        1a:ba:ad:d4:20:ad:ee:83:2b:d3:98:d5:b5:75:2e:40:
        db:d8:0d:92:56:1e:f2:a8:06:24:3a:be:60:2f:49:0b:
        fb:bc:a1:02:9f:4a:91:4b:68:0e:a8:ee:53:b0:10:3b:
        12:86:d6:80:00:74:e9:39:48:11:5a:d4:9e:f3:39:7f
    Fingerprint (SHA-256):
        EA:9A:BB:61:30:35:27:AF:8E:61:B7:F3:CB:11:80:42:A2:57:A2:82:C9:F7:B8:01:C1:52:53:35:26:6E:76:14
    Fingerprint (SHA1):
        8C:4E:DC:D5:29:AE:57:BD:95:08:13:28:40:EB:4B:D7:09:D4:2E:8E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3504: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235667 (0x300e2e13)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:17 2017
            Not After : Sat Aug 06 23:56:17 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:6f:3a:99:98:38:d1:1e:fc:d7:af:eb:7b:d4:61:35:
                    ff:f8:0e:6e:e6:7c:63:a7:fc:cd:ba:f7:b2:4c:1f:65:
                    a5:4e:fc:67:9b:7c:2a:c3:86:89:df:a2:f6:ef:b1:8a:
                    3d:27:6e:c5:91:53:22:76:89:f9:a1:48:ee:79:cd:dc:
                    b7:76:87:b0:ef:de:fa:70:5a:35:77:6b:b1:db:37:ff:
                    7a:ed:9a:6d:57:70:d0:34:3f:95:2d:64:b4:b3:5e:0e:
                    a7:8b:50:4c:12:92:4d:da:3d:84:60:57:ad:2f:01:2d:
                    f7:ed:22:9b:b2:8d:64:50:60:45:75:e5:f3:23:6c:99:
                    5f:6a:67:21:74:89:7a:c6:7f:bb:7d:8f:8d:21:13:23:
                    00:28:97:1a:14:d2:92:05:08:97:56:37:98:9e:24:03:
                    15:73:5c:f0:ea:4a:3d:99:68:46:ba:a9:b9:0f:97:ab:
                    45:5c:b7:a3:1a:91:3a:f4:7f:f5:b3:36:67:58:ed:98:
                    2b:bf:5b:21:e5:bd:9d:cb:8a:5a:79:ea:76:a3:9f:4e:
                    63:b5:ca:a4:af:fd:cf:82:05:51:b2:68:29:ff:01:57:
                    f3:9b:f0:5a:a8:e4:ae:25:23:79:7c:22:c3:4e:eb:bb:
                    1c:b8:d2:42:0b:38:b6:fa:64:81:08:09:46:81:6d:49
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        49:2a:fd:06:a9:d9:3a:5e:51:0f:ad:36:0b:6d:ef:5c:
        f7:12:b3:f9:b7:ee:2b:67:98:d4:e3:c5:1d:3b:c0:20:
        7d:c8:ae:34:66:46:c3:06:60:7b:ad:6d:23:cd:95:78:
        34:56:a6:50:32:3c:c5:af:32:14:21:d1:99:31:f8:75:
        4b:2b:dd:02:05:85:6e:b4:84:f3:96:76:10:47:d9:2f:
        29:65:9d:e4:85:e6:51:fb:57:22:0c:6a:2d:49:d5:70:
        d3:56:ac:5e:5d:84:4c:ca:23:d6:fb:5a:fd:6a:7c:64:
        4f:db:de:9f:c2:20:a3:76:e9:af:e0:30:51:47:93:65:
        67:ad:86:6d:89:14:44:26:36:73:8d:58:8c:00:8e:ff:
        dd:2d:7f:b8:f5:5d:1f:0e:96:b2:6d:c6:c2:05:92:34:
        60:4f:63:f3:ae:c9:10:0a:a4:83:ec:1a:55:88:52:df:
        54:6c:db:92:9c:c1:52:00:9e:d9:c7:c3:6a:88:db:c0:
        1a:ba:ad:d4:20:ad:ee:83:2b:d3:98:d5:b5:75:2e:40:
        db:d8:0d:92:56:1e:f2:a8:06:24:3a:be:60:2f:49:0b:
        fb:bc:a1:02:9f:4a:91:4b:68:0e:a8:ee:53:b0:10:3b:
        12:86:d6:80:00:74:e9:39:48:11:5a:d4:9e:f3:39:7f
    Fingerprint (SHA-256):
        EA:9A:BB:61:30:35:27:AF:8E:61:B7:F3:CB:11:80:42:A2:57:A2:82:C9:F7:B8:01:C1:52:53:35:26:6E:76:14
    Fingerprint (SHA1):
        8C:4E:DC:D5:29:AE:57:BD:95:08:13:28:40:EB:4B:D7:09:D4:2E:8E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3505: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #3506: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #3507: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3508: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #3509: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #3510: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235666 (0x300e2e12)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:17 2017
            Not After : Sat Aug 06 23:56:17 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:45:a1:01:a1:1b:7e:52:da:a2:b2:25:97:73:a1:00:
                    4d:44:79:56:ed:2c:0e:da:0a:68:d5:9d:53:2b:64:2a:
                    8b:07:a8:48:12:cd:8f:04:30:3a:4b:13:a4:1d:49:e6:
                    0b:17:23:97:01:9b:62:d1:1f:aa:31:d9:91:f5:3b:d6:
                    78:ea:38:af:46:04:ac:5c:03:9a:dd:0b:03:b4:39:26:
                    d3:d6:3e:37:87:9a:df:1b:ea:d4:46:af:48:e0:9f:64:
                    ef:a2:46:43:af:61:6d:dc:05:8f:53:fb:8e:48:1f:fb:
                    e8:7d:19:e4:42:e1:90:12:ac:c7:e6:5b:ae:f9:cd:3b:
                    8d:f9:4f:11:4e:33:6b:b3:c4:5c:1f:9d:96:d1:bd:69:
                    5e:43:09:6a:69:3f:57:92:42:0f:5a:44:f5:fd:76:eb:
                    cc:1d:d1:9d:3f:85:e3:af:ab:6c:ab:80:36:9d:e2:f7:
                    20:c5:41:02:a5:d7:99:c6:62:2f:bd:16:8c:84:d0:c6:
                    83:e9:4d:8a:8d:26:89:22:5a:0c:b1:3c:0e:b6:62:9e:
                    ea:16:68:cc:5d:40:3d:08:89:76:4c:4a:01:09:86:99:
                    3e:4a:aa:70:3e:78:b5:e1:5d:61:72:84:d4:6a:09:2f:
                    7a:70:de:a0:0a:2f:3d:03:7f:da:b6:60:52:f4:9f:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        65:ab:6d:5c:f4:d0:69:1b:78:a2:48:9b:22:17:62:1a:
        3f:c1:39:18:9e:8c:a0:f9:c4:c3:e8:01:76:0b:54:c8:
        0d:cf:f0:e2:15:d2:29:09:dd:6e:d2:3a:05:3a:f8:37:
        d1:e5:02:ff:0f:d1:18:3b:c8:f8:a6:ac:8b:c0:86:45:
        9d:a0:d1:c1:58:59:e9:c2:74:eb:fd:b9:e5:eb:de:de:
        72:44:1b:15:cb:a9:7b:ad:ba:04:0d:e4:fc:74:5a:37:
        04:ff:b4:33:89:53:97:7a:57:12:18:e8:ad:d9:bc:b5:
        95:34:01:28:dc:81:09:ce:1c:21:21:3a:2e:a4:2b:f3:
        7f:87:a5:36:f5:12:70:53:2e:c7:f2:2c:1b:be:64:8c:
        40:c6:d5:2c:cf:53:a0:4b:d5:bd:e0:64:63:24:45:ac:
        e0:41:c7:6b:30:07:ac:4b:78:0c:d9:1e:2d:c4:bc:47:
        c6:9e:52:88:96:8e:92:d6:da:ca:7d:5d:30:b5:40:12:
        ad:c0:84:c9:e4:d8:d6:21:1a:97:5b:ee:70:69:9a:7c:
        b6:0c:2f:0f:f9:92:c3:0e:ae:2c:3c:1e:f1:ec:04:68:
        1f:c9:6e:f7:b5:9a:31:bf:94:1e:82:d5:89:e7:27:b6:
        89:24:09:65:df:f3:53:ca:b4:76:f0:4e:70:ee:24:6c
    Fingerprint (SHA-256):
        DB:F7:81:D5:3B:75:BF:4E:DF:77:3A:B2:88:DA:75:02:91:CA:2A:A1:B6:A7:44:39:09:D7:91:64:5F:C8:1D:0B
    Fingerprint (SHA1):
        BA:C6:E4:9E:21:35:2B:2F:6B:56:B7:10:DA:0F:CD:8F:36:C9:7B:75
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3511: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235666 (0x300e2e12)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:17 2017
            Not After : Sat Aug 06 23:56:17 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:45:a1:01:a1:1b:7e:52:da:a2:b2:25:97:73:a1:00:
                    4d:44:79:56:ed:2c:0e:da:0a:68:d5:9d:53:2b:64:2a:
                    8b:07:a8:48:12:cd:8f:04:30:3a:4b:13:a4:1d:49:e6:
                    0b:17:23:97:01:9b:62:d1:1f:aa:31:d9:91:f5:3b:d6:
                    78:ea:38:af:46:04:ac:5c:03:9a:dd:0b:03:b4:39:26:
                    d3:d6:3e:37:87:9a:df:1b:ea:d4:46:af:48:e0:9f:64:
                    ef:a2:46:43:af:61:6d:dc:05:8f:53:fb:8e:48:1f:fb:
                    e8:7d:19:e4:42:e1:90:12:ac:c7:e6:5b:ae:f9:cd:3b:
                    8d:f9:4f:11:4e:33:6b:b3:c4:5c:1f:9d:96:d1:bd:69:
                    5e:43:09:6a:69:3f:57:92:42:0f:5a:44:f5:fd:76:eb:
                    cc:1d:d1:9d:3f:85:e3:af:ab:6c:ab:80:36:9d:e2:f7:
                    20:c5:41:02:a5:d7:99:c6:62:2f:bd:16:8c:84:d0:c6:
                    83:e9:4d:8a:8d:26:89:22:5a:0c:b1:3c:0e:b6:62:9e:
                    ea:16:68:cc:5d:40:3d:08:89:76:4c:4a:01:09:86:99:
                    3e:4a:aa:70:3e:78:b5:e1:5d:61:72:84:d4:6a:09:2f:
                    7a:70:de:a0:0a:2f:3d:03:7f:da:b6:60:52:f4:9f:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        65:ab:6d:5c:f4:d0:69:1b:78:a2:48:9b:22:17:62:1a:
        3f:c1:39:18:9e:8c:a0:f9:c4:c3:e8:01:76:0b:54:c8:
        0d:cf:f0:e2:15:d2:29:09:dd:6e:d2:3a:05:3a:f8:37:
        d1:e5:02:ff:0f:d1:18:3b:c8:f8:a6:ac:8b:c0:86:45:
        9d:a0:d1:c1:58:59:e9:c2:74:eb:fd:b9:e5:eb:de:de:
        72:44:1b:15:cb:a9:7b:ad:ba:04:0d:e4:fc:74:5a:37:
        04:ff:b4:33:89:53:97:7a:57:12:18:e8:ad:d9:bc:b5:
        95:34:01:28:dc:81:09:ce:1c:21:21:3a:2e:a4:2b:f3:
        7f:87:a5:36:f5:12:70:53:2e:c7:f2:2c:1b:be:64:8c:
        40:c6:d5:2c:cf:53:a0:4b:d5:bd:e0:64:63:24:45:ac:
        e0:41:c7:6b:30:07:ac:4b:78:0c:d9:1e:2d:c4:bc:47:
        c6:9e:52:88:96:8e:92:d6:da:ca:7d:5d:30:b5:40:12:
        ad:c0:84:c9:e4:d8:d6:21:1a:97:5b:ee:70:69:9a:7c:
        b6:0c:2f:0f:f9:92:c3:0e:ae:2c:3c:1e:f1:ec:04:68:
        1f:c9:6e:f7:b5:9a:31:bf:94:1e:82:d5:89:e7:27:b6:
        89:24:09:65:df:f3:53:ca:b4:76:f0:4e:70:ee:24:6c
    Fingerprint (SHA-256):
        DB:F7:81:D5:3B:75:BF:4E:DF:77:3A:B2:88:DA:75:02:91:CA:2A:A1:B6:A7:44:39:09:D7:91:64:5F:C8:1D:0B
    Fingerprint (SHA1):
        BA:C6:E4:9E:21:35:2B:2F:6B:56:B7:10:DA:0F:CD:8F:36:C9:7B:75
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3512: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #3513: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235671 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3514: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #3515: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #3516: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235672 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3517: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #3518: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #3519: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235673 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3520: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #3521: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #3522: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235674 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3523: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #3524: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #3525: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235675 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3526: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #3527: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #3528: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235676 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3529: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #3530: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #3531: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235677 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3532: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #3533: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #3534: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235678 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3535: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #3536: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #3537: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235679 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3538: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #3539: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #3540: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3541: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 806235680 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3542: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3543: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 806235681 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3544: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3545: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 806235682 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3546: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3547: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #3548: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #3549: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3550: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 806235683 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3551: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3552: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 806235684 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3553: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3554: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 806235685 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3555: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3556: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #3557: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #3558: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3559: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 806235686 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3560: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3561: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 806235687 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3562: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3563: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 806235688 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3564: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3565: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #3566: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #3567: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3568: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 806235689 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3569: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3570: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 806235690 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3571: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3572: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 806235691 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3573: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3574: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #3575: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3576: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3577: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 806235692   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3578: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3579: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3580: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3581: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 806235693   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3582: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3583: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235671 (0x300e2e17)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:19 2017
            Not After : Sat Aug 06 23:56:19 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:3c:37:42:f6:0a:63:6a:dc:6f:de:75:e2:5a:59:3e:
                    ac:b8:8e:ca:2c:c5:24:2c:5a:3d:ea:ee:34:6c:8d:c2:
                    2d:65:7e:eb:13:11:6c:95:43:6a:6f:53:5c:38:33:20:
                    3b:8d:92:8f:32:24:5c:24:25:e7:87:c5:59:bf:e3:94:
                    99:4e:d6:c1:3c:70:62:87:a0:b0:25:a0:d6:44:f5:b8:
                    c2:f8:60:ba:79:9f:d6:7f:1d:37:ef:b4:4b:13:ed:f4:
                    fb:ea:d6:a0:88:3b:07:cf:5a:d5:fd:bb:b8:49:df:e0:
                    24:04:9c:02:15:a8:82:0a:f4:f4:d3:83:56:76:bd:94:
                    51:db:5a:62:0e:71:ce:3d:44:96:f3:ef:9c:9c:a5:75:
                    b9:36:a9:59:66:8c:59:c7:74:7c:bc:61:f6:06:57:5b:
                    8e:b3:4a:06:6d:39:a5:a2:57:9e:aa:dc:ec:a5:e6:71:
                    46:a8:54:8a:1c:41:4f:54:5b:cb:34:66:05:2e:27:05:
                    7a:04:15:34:6c:99:8a:32:ed:5f:18:78:72:26:4e:1b:
                    25:89:a2:8e:1b:4a:58:fa:46:20:de:10:9f:3f:1f:45:
                    c5:3d:43:e1:a7:fc:f2:be:db:d1:e7:05:f4:38:3b:86:
                    88:6a:52:b0:14:8a:92:1a:a0:64:93:2d:3d:60:45:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9d:9b:84:2d:af:f0:da:8a:fd:8b:ad:89:dd:52:cb:c1:
        1f:69:aa:c7:33:aa:d7:c5:20:d6:0d:98:aa:c8:52:3e:
        4b:ac:99:16:cd:57:81:b9:db:cf:2f:96:16:3c:7d:11:
        3a:07:3a:ec:49:3d:1c:62:21:bf:e0:a0:6b:5e:1a:12:
        e3:44:21:07:15:45:53:e5:08:23:69:97:11:33:af:0b:
        f3:0d:6a:ad:28:13:94:1a:af:f4:64:08:c2:c1:5c:19:
        42:51:7c:17:7b:97:da:bb:4c:14:63:b9:b9:2a:8f:2e:
        fb:71:56:39:d4:db:5c:b2:c5:1d:19:ce:24:53:f7:09:
        a7:85:04:bf:3b:c7:93:26:30:e8:b6:5d:cb:7d:b3:42:
        08:2c:8d:cf:ba:65:18:44:42:12:74:0d:2b:48:56:65:
        56:54:ae:85:34:c3:44:e5:d1:c7:42:34:5e:69:d3:e1:
        9e:07:61:70:8d:f1:39:6d:c8:51:c2:69:4d:2b:fa:6d:
        37:29:7d:50:13:02:25:fa:60:cd:ed:74:c9:33:0a:17:
        01:d8:9e:c5:b3:a3:8c:8b:9d:fe:e8:9b:d2:d9:0e:ba:
        1a:a3:04:64:27:23:9c:ea:dd:57:7a:a2:a3:2d:89:4c:
        96:9e:fa:b2:08:40:47:a0:c9:e2:44:89:66:34:53:11
    Fingerprint (SHA-256):
        83:2F:DC:15:35:3B:7D:61:50:16:4F:50:6A:22:2F:4D:7C:4E:9F:20:EB:A1:DF:2D:96:69:06:72:69:E2:71:62
    Fingerprint (SHA1):
        4B:94:15:12:5B:50:BA:09:21:36:B0:6A:FD:56:AE:75:DE:0F:56:0C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #3584: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235672 (0x300e2e18)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:19 2017
            Not After : Sat Aug 06 23:56:19 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:f6:c5:10:15:15:51:63:44:f7:33:d7:0c:5f:d1:80:
                    ae:2d:2c:4d:31:7f:62:bb:c7:63:50:55:81:2b:11:ca:
                    6e:cc:4a:e3:c9:89:b4:d7:df:4c:fc:98:28:a5:39:bb:
                    9d:d4:6f:f9:c4:6a:89:60:2f:09:4a:a4:e4:61:25:60:
                    a5:5d:36:51:d8:a2:ce:c0:50:cb:cd:11:0b:b3:aa:81:
                    63:63:6e:6f:6e:49:9a:3d:4f:b3:8b:33:6a:1c:2b:dd:
                    d1:bd:c7:f6:f6:01:0b:fc:74:c6:0e:c8:58:9d:1f:d9:
                    06:59:6a:d3:da:38:d2:71:c1:36:16:c4:b9:3c:66:e9:
                    45:cc:2a:68:fb:ea:fb:b0:81:8d:a3:fc:ba:06:8e:fc:
                    7b:e0:5e:1e:08:e3:7a:f2:47:1f:f4:27:ee:b0:62:03:
                    82:61:87:f5:35:24:34:53:a2:b2:f2:d0:04:73:c3:8e:
                    23:64:c8:05:3c:1d:15:26:62:3c:e1:be:cc:32:2c:44:
                    47:9d:8d:b7:f9:a0:66:10:d3:80:3e:c6:d4:4b:e8:89:
                    4d:60:30:e2:26:ce:d5:1d:e3:b8:f4:e2:61:f5:8b:eb:
                    03:6e:24:be:8e:dc:71:0a:d6:b5:bb:20:24:13:41:5a:
                    64:7e:79:ac:7c:1b:b1:c4:74:0f:93:bf:29:e1:69:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:fe:96:f5:ba:0d:ee:36:25:9c:5e:90:37:e5:7d:36:
        b9:42:2f:86:df:57:3e:d5:cb:ce:75:54:97:63:3e:8d:
        bd:8a:3e:fc:06:27:f9:21:f0:7f:62:3b:b6:ac:cd:4b:
        f7:bd:fe:7e:b1:ca:ff:56:e2:65:1b:84:ff:1c:19:8d:
        22:07:12:8e:02:74:91:65:9e:b4:97:90:df:fa:4f:4b:
        38:83:ec:3e:79:97:e0:33:39:87:a7:48:3f:87:fe:f5:
        df:c7:23:a8:77:e4:4c:eb:d9:21:56:2f:d0:98:9b:d1:
        1b:ac:92:1e:50:a1:d0:ef:ee:45:38:62:fe:a8:0f:43:
        50:0a:38:20:9a:26:db:61:33:de:26:b2:9f:9d:66:ea:
        79:23:ff:21:eb:82:cd:18:91:25:9e:35:f0:82:01:a0:
        27:36:6d:7e:a6:be:0c:e8:28:de:8f:2f:32:55:46:93:
        8c:40:c7:62:bc:2a:bd:9b:4b:89:df:4a:1c:54:78:c7:
        4f:7d:95:89:48:d4:d3:69:47:03:6f:f9:06:59:bc:4c:
        14:e2:73:a9:b1:4a:32:b0:fb:4d:3f:3b:05:c0:b8:c3:
        4b:13:6f:38:eb:1d:8e:6b:7d:23:6d:2c:6b:84:bf:02:
        e5:90:72:bc:fe:21:1f:1d:74:e2:a7:f8:62:1c:79:35
    Fingerprint (SHA-256):
        A1:F7:A8:C5:ED:E9:5E:16:BB:91:82:72:8A:52:02:E5:C7:92:3A:D3:98:E5:EE:7B:6B:A2:7E:AA:3C:50:DC:5E
    Fingerprint (SHA1):
        63:30:98:A3:1C:09:38:B0:AA:D3:F6:B8:5E:A7:EC:E1:5E:FE:33:1A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #3585: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235673 (0x300e2e19)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:19 2017
            Not After : Sat Aug 06 23:56:19 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e3:48:c3:87:86:23:4f:6b:25:8f:a3:27:81:68:ba:02:
                    99:c2:96:20:ec:cd:9b:96:47:58:00:f4:cf:16:14:42:
                    6e:0b:ca:d2:53:ad:a9:d4:0d:df:c2:08:ba:72:eb:52:
                    ed:e2:f8:9c:3d:b1:05:22:57:e5:61:21:8e:9e:b2:b3:
                    e9:44:b8:84:61:eb:87:7a:e4:09:89:4b:8f:ae:8d:b7:
                    46:bc:c7:74:26:fc:bc:1c:28:84:58:11:1e:ae:23:81:
                    f9:a0:9b:58:48:87:78:46:a3:72:23:e8:5b:98:86:f1:
                    36:a5:af:0f:b1:c3:0d:02:a9:06:9b:b2:74:b8:e7:cf:
                    ad:ea:cb:c2:28:07:f2:80:8b:26:8e:66:88:00:88:04:
                    1f:e8:0e:db:77:f8:bc:e8:aa:1c:3a:0c:c9:67:56:81:
                    18:1d:f1:b3:dc:ae:60:c0:ea:e2:4d:98:d7:1b:32:21:
                    b7:b6:47:c2:3a:17:8f:9e:bf:92:e0:d9:a6:09:b3:ca:
                    49:de:fd:4f:30:cf:2a:cd:c6:c4:9e:06:cc:29:01:8c:
                    bb:0d:e2:bd:7d:05:ff:93:b7:fb:4f:2d:14:71:6d:0a:
                    11:27:1e:bb:cf:e3:93:97:77:ba:4f:50:70:3a:7c:89:
                    bd:b4:e5:df:b3:44:ad:18:4b:3a:9b:e4:be:19:b9:d5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bc:77:fc:f8:5f:ed:22:39:0c:b5:bb:9d:bd:22:b2:c5:
        97:70:b8:18:1e:2c:d7:d0:a8:6b:b6:1f:84:54:31:d2:
        7b:69:42:14:ce:8d:7b:a5:9d:39:9b:6c:04:44:c3:41:
        aa:78:f1:cb:be:35:8e:6b:f3:57:57:01:44:78:6f:09:
        a8:35:0f:c9:7c:21:14:1a:ac:0b:50:a0:2a:f6:6e:15:
        b5:32:64:60:d5:82:64:37:f3:65:3f:48:fa:d5:f4:61:
        02:17:8d:c4:ed:b9:bf:c2:5f:35:4f:7d:00:91:71:5c:
        d5:09:71:25:72:33:7a:9f:45:bb:4a:a7:37:c7:01:d7:
        33:cc:1e:2e:5b:9a:23:cb:a7:85:cf:8d:a9:d9:76:0c:
        f8:a5:37:f4:52:74:2e:30:c6:ee:96:9a:e2:25:70:c5:
        b0:af:13:ed:07:3a:d1:06:90:23:fd:f1:77:a8:4c:a5:
        ad:a9:70:1d:5f:11:fb:97:20:ba:76:28:6d:b8:a5:50:
        54:a3:88:5b:24:2a:66:dc:ea:72:64:4e:7f:54:e2:b6:
        b9:0c:c0:40:39:2a:64:af:d6:e8:b6:4b:d7:7b:77:85:
        d6:20:b3:87:63:f7:cb:36:f2:d5:24:23:be:6b:d3:dc:
        34:4d:08:0a:b8:0d:ba:fe:80:97:aa:3d:1c:eb:af:fd
    Fingerprint (SHA-256):
        54:36:5B:BE:6B:B6:97:92:B3:AE:CC:DC:A6:BD:30:ED:DE:B8:39:B1:35:AB:CF:50:1B:4D:DC:25:A4:89:2F:C6
    Fingerprint (SHA1):
        98:CF:D0:6A:34:48:B0:DF:14:AC:DB:57:37:92:76:65:FD:3C:6F:55
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #3586: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235674 (0x300e2e1a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:19 2017
            Not After : Sat Aug 06 23:56:19 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:1e:24:8a:95:b8:d5:f3:11:51:5b:8a:b1:c1:ce:18:
                    dd:14:34:e9:59:36:2f:09:3f:56:93:96:ae:fd:8f:1a:
                    b4:57:85:eb:de:c3:32:87:d7:46:45:33:ff:72:a0:94:
                    32:40:5f:7f:d0:0e:b3:47:c0:5a:f7:d3:20:03:e2:1a:
                    05:76:6e:5c:6e:b7:21:4e:2e:34:91:c7:de:9f:9c:ff:
                    83:d9:da:28:98:1b:dd:54:97:07:9e:d8:de:d1:fc:6c:
                    2f:f3:35:83:aa:f1:75:7a:fe:b1:96:29:f5:65:28:81:
                    37:2f:4a:fd:1b:e1:06:db:e3:4a:e4:30:53:56:e2:71:
                    c8:f8:13:82:b0:c3:3b:fc:3c:03:8f:e5:0c:b7:d7:9d:
                    a5:a2:fa:65:5d:75:41:89:cd:2c:03:b7:e7:d1:4d:16:
                    d9:82:41:28:6c:17:df:5b:0c:a4:35:a4:29:41:26:98:
                    d4:88:4b:5f:72:67:39:02:88:32:4e:4c:32:a9:10:ea:
                    f5:8f:73:3f:03:ce:d4:68:63:65:09:e5:a0:61:df:ff:
                    2a:a4:26:a6:b2:86:db:03:20:79:f8:ef:72:ab:92:95:
                    b9:1e:20:bb:3b:54:9f:57:53:4b:9d:2e:24:cd:52:28:
                    0c:2c:fa:87:1f:59:cd:82:6f:e4:af:7f:99:58:aa:35
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:0d:6d:da:77:4a:07:06:af:75:fd:8c:4b:3b:b2:78:
        94:4e:0b:de:52:a7:3f:be:71:1b:11:7f:56:de:e4:38:
        03:82:02:51:46:b8:b7:2b:66:fd:ad:6e:52:66:ec:2b:
        a8:4a:6b:d3:3c:50:02:65:5a:fb:74:79:f0:05:c7:96:
        e4:d0:74:37:07:68:2e:af:67:a2:1b:08:0b:a9:fb:25:
        8e:f1:27:79:62:4c:0e:17:2a:88:e7:99:06:f0:2b:e9:
        50:b3:95:0f:74:81:ce:fa:cc:08:e9:55:db:7c:11:86:
        77:4b:84:10:4a:98:88:cc:e5:a2:71:7c:3d:79:87:1b:
        d3:09:26:13:e3:d8:73:7b:d5:f8:bf:57:6b:69:14:b9:
        c7:30:d1:9c:7b:d6:a0:f2:58:83:a1:9a:72:f1:70:5b:
        bc:c1:25:c4:e4:8f:fc:c7:27:51:9a:08:d8:ce:a5:88:
        f0:06:bb:5b:2b:7a:d4:04:30:a1:20:21:a7:1e:a2:ef:
        af:e0:f2:18:17:86:5c:2a:18:66:2e:e3:fd:50:30:8a:
        d0:a4:27:01:2b:df:aa:65:4f:20:81:42:03:20:9d:3e:
        2e:8d:5b:f8:c8:9a:1a:4d:41:fa:81:f0:0a:57:f7:9f:
        ac:0e:e5:07:a5:a6:58:3c:8c:34:bf:39:30:91:58:b8
    Fingerprint (SHA-256):
        5F:D5:E6:89:85:06:0F:38:5B:42:55:5F:14:26:CE:CC:6C:AB:4B:48:57:B8:92:52:6E:46:A5:BB:4A:9F:59:32
    Fingerprint (SHA1):
        C8:21:85:A4:92:56:E4:49:37:E4:3B:C2:52:D9:42:54:DB:C9:B7:AD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #3587: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235675 (0x300e2e1b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:19 2017
            Not After : Sat Aug 06 23:56:19 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:78:ff:4d:bd:dc:f1:4a:40:71:ce:c1:90:32:19:7e:
                    89:45:31:d6:96:6e:c4:02:1d:97:14:4d:f9:0a:0b:06:
                    ec:ea:1e:99:f3:3c:c1:8e:10:56:74:fe:66:0b:82:83:
                    d4:d4:9e:29:97:f1:5e:32:48:41:5f:03:ac:30:2a:ce:
                    6d:19:e0:0a:cd:86:77:2e:62:7c:6c:f2:87:c1:0e:24:
                    e4:fc:9a:e3:f7:de:c8:bd:6d:10:e6:a3:91:45:6e:72:
                    b7:c8:37:5e:4d:e6:94:39:71:82:35:cc:f6:c4:3a:f3:
                    4c:4d:10:e6:0a:5a:bb:b4:7d:96:19:a8:40:fe:0a:21:
                    cf:b4:b6:b9:0a:01:64:8d:54:92:a0:34:c8:6b:ff:b3:
                    cd:57:23:ab:67:b1:fb:60:7d:bc:33:d7:9d:13:4b:3a:
                    5b:50:25:1a:1e:09:5e:91:5c:5f:dd:e3:2b:c9:b2:32:
                    3b:06:0d:d3:54:99:41:7b:a2:7b:0e:b0:56:c4:51:ca:
                    f1:50:1e:d0:46:3f:17:9a:11:c1:ae:67:a5:ea:c8:50:
                    3b:8d:71:c0:fa:fe:eb:77:12:8e:43:1b:3c:47:b4:e1:
                    71:38:e4:ca:a7:f3:75:91:c0:6e:f5:3c:a1:6c:8e:23:
                    3f:7a:da:8d:cf:6a:74:40:e9:ca:55:e1:ac:c5:d4:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0c:8f:1a:e6:d4:1a:6b:31:cc:b8:e9:31:c5:b7:58:fd:
        b6:cc:80:a4:70:c0:06:23:a2:c6:c0:75:73:53:61:bf:
        52:b4:45:89:ba:a8:8e:c3:88:3f:7a:86:18:30:ba:b0:
        60:e3:8f:27:e4:30:77:15:0f:46:0d:f3:df:54:b5:4e:
        7c:23:15:fd:17:f1:5d:19:99:7d:60:65:eb:9a:5a:04:
        34:62:12:15:07:4d:4b:20:a1:08:f3:79:99:5f:b6:59:
        bf:d2:c5:d2:9f:cd:52:6b:6a:54:be:19:d7:5e:5c:9f:
        d5:eb:24:7f:bd:10:25:74:c6:27:68:dd:3d:73:3e:3b:
        7c:07:30:2e:0d:80:10:c0:f1:a1:fb:5c:25:6e:58:1c:
        e9:8d:26:15:80:f9:62:06:34:f7:7b:6f:1c:23:4b:96:
        e7:43:a9:03:d7:c7:f9:20:64:c6:a4:d5:e2:ba:01:df:
        be:2c:e5:77:64:b2:92:d7:2f:89:ea:dc:90:d2:6d:71:
        39:1e:7d:be:86:57:4b:13:03:15:79:ba:b7:68:22:38:
        06:59:aa:a6:90:cb:83:cf:92:d7:13:5f:fe:71:cd:84:
        f8:41:09:b1:d2:d5:51:a4:24:93:a9:36:87:b3:95:a4:
        ac:94:9b:f9:5f:ae:3f:08:37:a9:2f:c9:b6:f1:e4:40
    Fingerprint (SHA-256):
        BA:29:30:4A:5C:45:4C:09:23:1A:EF:E3:2F:4A:E6:30:AE:F6:74:3D:A0:1C:CF:41:97:56:4A:24:77:70:D4:89
    Fingerprint (SHA1):
        B6:00:7E:6E:84:76:BD:9D:30:BD:03:A6:0F:8D:2C:A0:D8:EC:1F:9B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #3588: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235676 (0x300e2e1c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:20 2017
            Not After : Sat Aug 06 23:56:20 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    af:b8:b8:8f:f0:35:fb:db:f9:82:45:61:b9:31:17:56:
                    d5:25:88:70:c4:2a:f4:97:ed:7e:d2:57:68:ab:f2:25:
                    fc:31:0c:ae:13:b4:29:1f:ee:e3:21:81:31:25:5b:60:
                    c7:fc:01:34:17:a8:c5:97:cb:62:3b:b5:af:65:8c:72:
                    28:5a:0d:e3:8a:e7:2a:41:29:01:13:c1:87:e2:e6:ff:
                    d1:8d:5f:23:d9:cc:1a:87:3c:18:f2:74:93:6f:ec:2e:
                    44:f0:c2:63:4e:9c:0c:43:4b:ec:79:0b:a8:e2:32:81:
                    1d:3c:c9:61:84:ca:c9:06:cc:53:7c:8c:88:9d:78:82:
                    7f:9a:b5:5f:11:3a:4a:4c:20:fe:8f:55:36:7b:3c:4d:
                    e4:b9:ec:ae:2f:38:a1:43:72:75:db:2e:3f:55:b6:88:
                    27:fd:12:6b:63:fa:7f:56:37:bf:40:13:16:c6:cd:19:
                    ee:c5:f9:41:e3:d0:99:5d:ce:12:11:50:4a:4c:96:6b:
                    a4:e2:27:2a:28:43:ef:e8:fb:a0:a4:02:e1:98:6c:35:
                    97:47:b2:0f:52:63:86:05:72:8f:4d:8d:18:87:29:1c:
                    77:d4:73:10:5b:67:eb:78:cb:7d:95:f1:58:fa:80:18:
                    2f:8f:dc:5d:c3:f7:5f:77:0a:47:d0:a5:c0:dd:42:79
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        01:48:e2:57:13:81:8c:b8:d7:ca:91:3e:a2:9c:75:0e:
        02:00:2d:7c:2e:99:cb:e0:61:2a:88:23:34:a8:8e:98:
        cf:ac:20:ce:1d:9b:2b:b5:7a:9f:a8:5f:fc:22:a4:88:
        58:4c:bc:66:ba:d7:f5:36:8b:78:49:c8:a7:5c:99:d4:
        e3:d7:82:78:28:3e:c3:c2:18:19:aa:fd:a2:c1:37:c8:
        f3:2b:12:f2:12:a4:34:40:1c:a0:61:92:a7:d7:fc:1d:
        af:d2:17:67:64:0d:df:38:0e:46:ad:2c:42:6b:75:aa:
        67:0e:6c:6c:6c:d4:21:86:d5:4b:38:61:f4:0e:a7:79:
        07:2f:ad:89:bf:68:3b:16:f5:5c:81:de:f2:80:e9:c2:
        89:b7:01:52:d5:c1:a5:6a:2b:0a:8a:ca:59:b3:97:75:
        95:d6:27:97:0c:3b:34:55:13:d9:75:ca:a5:b2:1b:18:
        9d:96:3d:63:98:0e:6a:ac:e5:af:04:4e:6f:8e:51:bf:
        bb:78:34:6f:e5:a2:72:88:56:8c:b4:02:57:35:1d:f0:
        af:d7:6d:5b:26:62:7e:a3:af:7e:67:60:1c:02:cf:08:
        c2:c7:df:31:7a:d9:d6:01:1a:62:7f:80:63:62:ca:bf:
        14:16:8a:75:25:06:c9:b5:67:1b:8e:f8:c2:ce:97:76
    Fingerprint (SHA-256):
        4C:0D:FE:03:2D:58:8B:56:67:E7:55:19:F3:1A:39:E5:97:92:DA:E3:8B:23:34:A3:82:93:FE:B8:85:08:62:D0
    Fingerprint (SHA1):
        8D:29:79:34:64:3A:43:85:B7:93:71:68:E3:2E:40:E4:7A:6F:06:65
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #3589: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235677 (0x300e2e1d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:20 2017
            Not After : Sat Aug 06 23:56:20 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:78:df:4a:22:6d:0a:d7:f6:9c:54:a5:87:6a:06:a3:
                    fe:72:1b:b0:ed:51:d1:ed:db:52:5d:41:c4:cd:d3:d6:
                    22:b6:0c:46:45:1d:f9:5b:7e:21:1a:9c:3d:f0:0c:44:
                    2f:a0:f1:85:74:d6:d3:64:31:99:2a:65:3f:a4:2c:10:
                    83:8d:0f:9a:6a:b0:1e:fc:9e:10:1e:39:9b:06:42:4c:
                    2a:ff:21:ed:8b:b7:88:56:36:da:0f:75:f8:a8:13:b6:
                    68:83:d5:97:06:86:33:cd:cb:64:1d:c2:db:b8:43:fb:
                    ac:bc:aa:2e:08:b1:ce:d1:72:4e:36:4d:e6:57:d0:1f:
                    3c:be:7f:ff:19:a2:23:4e:38:59:33:01:97:b2:f3:b0:
                    ca:ae:09:80:38:52:32:ba:cb:b6:58:3a:a1:52:04:6c:
                    1c:6d:7d:ba:b0:a4:94:5b:9a:75:77:4f:5f:11:22:3e:
                    6f:bb:d2:17:38:7e:3a:f5:d8:6c:78:3b:16:32:a4:b8:
                    c6:f5:bb:47:7d:21:e3:65:5f:60:13:9e:87:7b:3a:85:
                    5f:4f:be:ea:14:d3:18:73:23:c0:89:fb:e4:fb:4e:cc:
                    c3:3a:71:9a:34:2e:8d:78:db:bc:b7:67:d6:e7:6b:01:
                    c4:6e:5d:85:a6:ce:00:e9:72:10:a5:66:28:f9:7e:8b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0c:c5:1d:e6:6e:d8:dc:6f:fe:00:91:7d:1c:12:1b:78:
        b8:b3:cd:23:4c:93:26:11:09:46:42:7b:8c:16:0c:0c:
        40:38:6c:be:f0:dc:49:95:3f:d9:1c:0f:55:cb:c3:9e:
        b5:5c:d7:7d:bd:de:f7:93:1b:bc:61:6b:c1:14:04:49:
        87:03:37:cb:9c:42:3e:c0:c7:6a:ff:ea:95:e5:b2:47:
        b7:53:31:2a:59:58:a7:9e:1c:c2:a9:3c:fd:be:91:27:
        bf:ef:76:9c:44:d2:46:8a:84:05:4f:4c:57:5e:be:78:
        6d:b7:e3:2f:5e:f9:2b:ba:86:7d:0e:de:e8:0f:16:3c:
        8b:aa:50:c7:7f:7a:f4:e4:32:8f:44:44:18:d7:f5:2e:
        49:05:7f:88:ff:20:84:81:1f:c0:07:d8:e3:04:7a:70:
        36:f0:b3:aa:14:a5:95:8e:f1:53:0d:f6:c5:46:d5:34:
        b0:ef:37:51:f1:45:db:bb:d4:b8:05:34:71:37:b1:d2:
        d0:52:72:84:ae:ae:67:d0:70:8d:31:25:22:c6:90:63:
        e3:af:28:1a:aa:f7:7a:45:01:0b:42:b3:c8:71:cb:55:
        73:13:bc:fe:de:11:a8:6a:e2:57:4a:5c:6e:d6:4d:b7:
        cb:8a:41:9f:39:d1:71:bb:a3:a3:25:0f:c1:96:c3:dd
    Fingerprint (SHA-256):
        09:A4:52:A0:03:D3:48:99:0F:7D:C1:C5:E0:A6:44:4C:3A:06:64:EC:EA:19:7B:34:3D:C9:F0:91:67:F8:00:07
    Fingerprint (SHA1):
        1E:0B:1A:4E:D3:2E:29:B3:09:85:DA:D4:AD:B1:CD:5D:DC:C4:CE:41
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #3590: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235678 (0x300e2e1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:20 2017
            Not After : Sat Aug 06 23:56:20 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:0e:c8:5c:75:7c:d2:f6:1f:04:10:08:51:fe:c3:f2:
                    6a:01:39:ab:e3:ad:88:9f:b8:78:b2:6b:3b:37:af:5b:
                    a2:c8:ee:3d:d6:aa:88:ae:1e:66:75:7d:b3:47:3e:39:
                    d9:af:29:0a:f4:b6:f1:af:df:bc:c8:a7:47:68:30:71:
                    f0:94:09:86:7b:55:b2:c3:df:fc:a6:2e:33:2d:15:df:
                    a9:f5:b7:a0:1b:05:18:bc:80:3f:44:42:7e:39:36:71:
                    62:57:ad:34:6d:c9:9e:b4:cc:e5:a3:33:1b:2e:24:d3:
                    c9:bf:cf:cc:f6:ad:ff:0a:41:6d:b2:15:45:c3:27:3f:
                    de:3a:0d:45:52:6d:32:a0:42:66:94:61:e5:86:94:4e:
                    23:da:cb:a9:0d:9f:c1:de:57:15:dc:bd:26:7c:bb:43:
                    d1:26:5c:2d:fe:f6:a5:a4:18:7e:9b:ef:34:ca:7b:8d:
                    28:7d:11:ba:91:94:9d:37:88:b9:9b:3a:a9:01:11:d0:
                    8f:ba:1d:ce:93:2a:e3:d4:04:56:a1:44:d5:0a:94:38:
                    30:6f:45:e2:34:6d:1b:62:03:b1:34:09:29:22:f8:2f:
                    42:7b:77:54:f1:26:a0:b3:96:ba:66:bc:e0:0b:81:e1:
                    29:53:9d:81:57:41:b1:67:fc:7e:1c:63:19:c9:27:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4f:2f:2c:a8:30:8b:f0:b2:fe:19:55:a5:e5:a1:c4:b3:
        48:18:63:28:0e:95:7e:85:b5:bc:5f:60:06:69:41:c5:
        3f:93:59:be:3c:bc:30:69:25:c0:27:91:68:b2:2f:21:
        87:75:ef:b0:e4:48:cd:9d:1e:69:e1:8c:91:31:40:da:
        27:3e:e5:4e:96:29:89:14:bb:9e:ab:32:a8:31:74:91:
        6b:49:8b:0a:a4:e5:93:37:bc:1f:31:47:39:bd:80:d4:
        ce:d4:a0:c5:b1:10:e7:25:ac:1a:a7:95:32:14:e2:4b:
        d1:04:d8:c6:bb:dc:4c:96:f3:14:e4:20:05:42:4c:98:
        48:ac:37:62:e2:a0:e5:e9:b5:ed:34:34:e5:30:ce:12:
        28:72:96:bb:5c:23:62:91:47:0c:38:41:b3:fc:72:5a:
        dc:f5:1e:46:47:1c:71:42:2f:7f:ed:d5:4f:e9:b7:37:
        8e:64:20:fa:f6:d2:79:e2:d0:0c:06:80:98:d2:ef:8f:
        41:6b:4a:3f:46:7c:09:23:2a:cb:11:5b:f0:22:75:d3:
        23:64:70:ef:ec:b6:b3:56:51:df:b1:58:e0:61:83:44:
        ae:fb:b4:93:79:c5:17:57:53:6e:f9:da:00:fa:c2:7c:
        dd:30:72:d8:1a:e4:1b:0c:76:fb:79:03:4f:0b:45:81
    Fingerprint (SHA-256):
        2E:AD:6F:51:2F:74:7B:BC:6E:F5:36:1D:FD:9C:CA:12:D2:2B:B0:81:6D:44:77:97:93:2D:C0:1B:0C:F7:36:BE
    Fingerprint (SHA1):
        F6:27:F2:4C:41:B6:30:A7:2E:5C:60:C8:AC:98:80:21:30:7C:7E:8B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #3591: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235679 (0x300e2e1f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:20 2017
            Not After : Sat Aug 06 23:56:20 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:b9:30:3a:d6:ba:58:42:a4:a1:e5:52:fa:96:ad:79:
                    a3:38:84:ec:ed:5a:d0:96:2b:56:6f:22:60:41:d4:8f:
                    79:8e:cc:cb:a2:9a:bf:7d:db:21:98:fc:ae:c0:48:93:
                    64:2d:c7:e7:72:e5:c3:fa:6a:2b:01:02:f1:92:78:8a:
                    5f:b9:e7:d9:dd:a0:2c:ee:ac:48:fb:8d:a3:62:de:b4:
                    94:f5:08:c3:f6:bf:b5:e6:01:c1:d9:9f:a9:94:1c:de:
                    62:58:92:75:59:6c:ed:f8:98:c8:e6:41:88:ba:91:05:
                    e2:73:77:cb:56:83:47:5f:54:11:25:4f:c2:1f:d4:3c:
                    15:2d:8e:45:20:cf:0b:37:d7:a8:c9:71:28:7f:2e:08:
                    42:cb:7e:85:e3:f9:18:65:3c:c4:b0:3a:4a:52:aa:05:
                    41:ac:9c:d2:8d:0c:a9:00:a7:e7:34:e7:2b:d0:b5:90:
                    f1:c3:a1:4e:76:05:b1:51:51:ee:a5:9d:90:3a:ea:50:
                    88:c0:45:51:f7:14:9a:31:fb:60:d0:51:56:47:ac:5b:
                    80:d7:00:71:b7:8a:3a:a2:19:fa:79:82:72:64:79:5b:
                    f7:bb:48:94:6b:30:77:b5:39:dd:28:c5:bf:43:4b:0b:
                    de:e6:6e:bb:b4:99:24:ed:d2:59:38:7b:90:4b:bf:77
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9d:57:38:68:7f:42:1b:53:7a:bc:20:02:0d:f9:db:f8:
        44:b5:c7:d5:23:a9:66:49:9e:b9:19:a3:89:6a:1f:94:
        f2:03:2c:0f:30:cd:52:ad:61:a0:52:ba:95:1f:d5:13:
        ea:e5:15:83:e8:0f:8b:9c:67:1c:29:cf:31:7e:ec:01:
        fd:81:03:de:6d:fb:21:84:7d:78:cd:68:a7:09:4c:6d:
        1a:b8:c1:60:b7:75:e3:94:50:5d:ba:77:9e:26:22:71:
        0d:32:4a:d3:2d:f9:a0:d8:9e:4e:ee:36:9f:e1:5f:62:
        37:ad:47:66:9f:4c:a7:55:78:d7:03:a9:82:ec:1e:65:
        67:69:b8:88:0c:f4:70:06:d3:2c:a6:50:d5:70:ab:48:
        f1:f4:e3:69:5c:21:85:84:2d:26:00:53:77:30:04:0c:
        a4:42:d0:7f:9f:3e:9a:7d:53:ff:1d:f8:d2:0c:94:25:
        1a:d2:42:cc:dc:d4:ce:5b:02:1e:0f:42:31:4b:d7:77:
        73:0f:21:6a:fc:d2:6f:b2:76:94:0a:71:af:8d:54:4e:
        7e:23:9f:be:d1:9a:ab:72:30:fe:31:14:56:ce:e3:bd:
        c4:42:56:2e:6b:99:51:12:83:eb:4c:25:c5:ae:2f:c1:
        75:d6:dd:0f:e1:ca:3e:5a:2f:68:fc:e6:0b:79:76:ba
    Fingerprint (SHA-256):
        89:60:00:18:CE:32:00:AA:A6:8F:EB:94:D8:98:38:5E:34:89:85:95:D6:86:C1:93:77:40:54:9E:5D:0E:0B:60
    Fingerprint (SHA1):
        4B:2D:7A:FD:86:E5:CF:8D:B7:C6:2F:CA:59:DD:31:26:D1:02:AC:62
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #3592: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3593: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235694 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3594: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3595: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3596: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3597: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 806235695   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3598: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3599: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3600: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3601: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 806235696   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3602: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3603: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3604: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3605: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 806235697   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3606: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3607: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3608: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235694 (0x300e2e2e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:22 2017
            Not After : Sat Aug 06 23:56:22 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:91:9c:fd:4d:64:fb:22:fd:e0:c9:f2:43:5a:9d:d0:
                    df:19:39:8a:61:53:1b:6c:ca:09:25:14:6e:19:91:9e:
                    ad:b6:f8:fb:9a:ec:47:18:07:17:2e:bc:c1:4f:8c:9b:
                    35:59:6e:8e:d6:f3:16:87:80:80:c8:04:54:4d:98:09:
                    9e:41:89:64:8a:b6:3f:a4:99:58:a8:d3:e5:03:ff:2f:
                    49:d8:c1:bd:da:f2:b1:c1:8b:2a:d9:d4:b6:29:d5:95:
                    b4:dd:21:5e:5b:ba:7d:5b:4f:90:85:94:cb:69:61:20:
                    e1:84:0d:35:c4:e5:7d:06:d3:5c:ad:f4:1a:5a:7e:97:
                    de:a5:c0:5f:1f:58:7d:64:7e:cb:d8:aa:6b:06:06:03:
                    03:25:00:16:e2:4c:df:99:4a:76:f3:e5:1a:59:48:62:
                    6e:44:15:fe:b3:5e:19:13:23:3e:ee:32:cc:5c:6e:46:
                    14:ad:a7:6a:f3:c0:16:98:96:27:8e:66:54:7a:2c:c3:
                    f2:6b:5b:ff:30:d9:33:36:c0:76:27:1e:2a:43:19:99:
                    af:c1:9d:86:fe:34:2a:5b:f6:ff:ad:ec:7a:2e:bf:7f:
                    47:74:c0:ca:d3:b9:d9:0f:e2:3a:fd:d8:d2:b6:b3:dc:
                    9b:0d:54:ac:8f:0d:ec:f5:3e:e0:39:ce:a2:60:89:85
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:d2:bf:db:a5:2d:9b:61:4a:62:db:33:5f:48:a2:af:
        e4:84:9c:fe:60:9a:89:54:07:1f:65:cc:bf:1a:d0:ae:
        2b:d8:8d:93:a9:3a:96:df:49:f8:7c:c0:f8:29:12:7a:
        01:fa:4f:12:19:cf:6e:f5:b5:50:4d:f3:73:52:39:4c:
        e7:3b:65:87:2d:11:dc:52:60:76:49:53:3d:8d:96:44:
        f4:1b:31:38:77:f6:4a:f8:59:bb:20:8a:1f:19:0d:98:
        a8:f7:66:e5:a1:df:b7:7a:bd:a7:97:cf:f6:e6:a5:b3:
        69:9c:e5:73:83:2c:6f:12:59:46:34:7f:02:2d:e6:47:
        17:14:58:b2:a3:88:ac:61:a7:f1:38:46:ea:71:9d:66:
        de:c2:9e:88:64:1e:c4:22:16:89:f6:7a:2a:f4:cd:46:
        93:3d:f4:18:70:a2:0f:b8:c8:ab:df:25:1f:f5:ef:a3:
        39:11:02:20:e5:16:4a:12:cb:3f:98:66:cb:1b:aa:1d:
        be:e9:5c:51:f4:02:5e:cf:32:7f:68:c8:7a:45:c4:0b:
        a4:62:59:39:33:ff:12:64:06:ad:15:be:17:d7:5c:b1:
        73:00:13:94:40:e7:3e:b9:7b:fe:26:50:d4:7c:3c:6c:
        a3:06:3f:7a:7b:38:62:cd:2b:0c:0c:47:95:17:f6:ba
    Fingerprint (SHA-256):
        E9:45:FA:17:7B:08:35:92:8F:9C:08:A0:71:A0:42:18:1A:0B:2B:43:4A:90:CC:6C:31:99:4C:A9:A0:60:CD:5E
    Fingerprint (SHA1):
        78:66:84:FD:DA:84:BE:B3:93:AA:63:79:86:70:E7:72:8F:BF:B4:94
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3609: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3610: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235695 (0x300e2e2f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:23 2017
            Not After : Sat Aug 06 23:56:23 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:96:47:f6:36:45:8b:40:00:cd:a5:79:41:83:a6:52:
                    f5:21:14:44:80:64:f2:da:4f:85:13:5c:62:75:5b:ac:
                    76:63:b7:ce:74:cc:0d:87:74:bb:7c:e4:5e:55:fb:5a:
                    94:2d:f4:47:6b:a5:1b:c2:24:f0:0e:34:8e:2f:b9:fb:
                    34:ce:32:01:3d:da:8c:6d:ac:e8:4e:d6:84:66:5c:a2:
                    ee:fb:5f:a8:78:46:37:ba:2e:e6:59:79:0a:a1:9e:f4:
                    19:25:06:06:6f:32:27:bd:e1:81:7b:a5:f5:74:4f:e6:
                    3a:67:e4:cd:ab:48:73:bf:22:ea:a2:cf:23:eb:74:82:
                    68:34:d8:f1:40:70:e0:d5:22:4e:fe:4a:24:1a:b1:f4:
                    40:c2:ae:89:57:29:c6:12:b6:53:30:e0:15:a4:67:21:
                    29:05:8c:c9:c5:46:96:93:0e:41:09:be:79:09:50:56:
                    69:cc:c0:1f:89:66:7c:0e:7e:dd:ec:f7:13:27:ea:03:
                    39:f4:84:8e:66:fe:82:84:4e:f0:a7:10:45:12:6d:e1:
                    31:08:7f:35:a5:1c:54:33:a8:f5:2d:19:b2:32:d9:cb:
                    e5:e6:aa:74:ce:b3:15:38:c7:57:ff:56:94:6e:9a:11:
                    c0:94:48:ae:22:64:f8:fe:eb:e1:af:52:17:c4:45:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        15:dc:a6:d8:61:a9:42:81:e5:d9:90:92:34:b6:25:19:
        8e:16:65:36:f3:af:65:fa:ef:d4:8e:7c:0c:61:62:76:
        59:52:2e:0f:89:d2:91:ea:21:5e:19:b2:7e:e0:6b:6c:
        99:67:2e:b8:2d:99:a3:37:f1:a9:51:e5:cd:2e:33:b0:
        eb:6f:45:59:e6:7a:71:d7:ae:f2:55:e5:48:b8:46:6f:
        3c:51:4e:99:28:8d:bf:4d:55:89:19:16:ef:79:4a:43:
        64:8a:0c:74:8c:02:bf:c5:31:9b:d8:4e:51:fa:ff:9f:
        c1:31:13:c5:cf:f6:11:53:5e:cf:74:07:0b:02:bd:f4:
        f7:0e:75:3c:06:4d:14:56:70:92:6e:13:60:b2:ad:5f:
        16:06:c0:19:24:55:37:61:04:af:6d:48:80:40:71:95:
        57:f1:ad:4c:46:07:e9:4e:ba:2e:5d:4c:e5:71:34:bc:
        3a:ce:e6:f9:52:d3:1b:3d:10:a7:e2:44:5a:63:8a:58:
        e0:74:d8:9a:1b:47:34:8b:bd:c7:47:28:26:3e:23:1b:
        73:f9:8e:ad:6e:cb:0e:b2:5e:69:e7:e0:14:06:77:a1:
        20:02:84:d7:ed:8b:d2:a7:33:1f:a5:12:6f:5b:89:ce:
        3c:71:bf:68:11:54:22:a4:98:27:92:ce:da:af:82:fc
    Fingerprint (SHA-256):
        90:AC:71:1A:9D:BC:D8:20:6D:EA:40:BD:0C:EC:78:C9:E5:0B:80:F7:1F:65:59:DD:20:0C:C3:9F:E0:8A:13:06
    Fingerprint (SHA1):
        87:C3:A5:FA:09:77:BA:46:56:6A:74:DB:71:D4:1E:41:5D:19:A6:C0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3611: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3612: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235696 (0x300e2e30)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:23 2017
            Not After : Sat Aug 06 23:56:23 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:ec:b7:ed:83:00:4c:83:bf:8b:74:ee:d0:01:84:2c:
                    0e:fe:38:0a:3a:53:55:97:28:82:b3:86:cf:24:ad:d3:
                    9c:dc:79:52:ca:d4:31:ef:f4:f3:8f:47:c8:c2:b3:2d:
                    29:9f:36:3e:c0:07:ee:0b:03:b3:8e:b0:8d:00:f5:15:
                    f8:c5:2d:5b:d3:b8:fb:55:9d:63:75:4b:fe:45:f6:3a:
                    bc:bc:30:d1:ed:c6:e2:40:ed:29:ed:56:cc:ea:4b:30:
                    bb:52:b0:8a:90:08:40:14:ed:ad:16:d4:6e:6a:aa:92:
                    0b:87:80:e3:4e:e4:a9:3b:23:e3:c4:54:2b:ef:f6:8b:
                    89:62:dd:c7:81:d0:bd:27:bf:37:8b:66:e8:07:b4:54:
                    a0:c0:2a:b3:1b:0b:17:4d:26:1a:eb:c4:f7:d4:99:90:
                    d6:6a:ef:55:62:0a:7a:55:c0:63:f6:a9:51:9b:cb:3c:
                    c8:ce:3a:b9:14:0b:3c:63:55:b4:54:08:6b:d0:61:81:
                    0a:ff:de:57:74:dd:29:de:3c:63:b2:17:46:4d:ed:45:
                    cd:00:0a:81:29:d5:91:ba:91:58:e7:92:0f:5f:78:03:
                    e0:3f:4b:6f:fc:78:ab:6c:13:ce:53:fb:98:e2:ae:91:
                    8b:65:c6:d5:8e:23:5e:7f:58:c4:cd:13:f8:2b:17:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6e:76:69:9d:db:37:cd:f7:26:1f:bf:08:82:39:d0:8e:
        62:6b:0c:6b:10:f1:54:3a:71:95:24:3a:a8:4c:6a:5d:
        8f:f9:ce:68:d2:a2:23:aa:1f:74:a9:d4:f8:b0:d4:2f:
        23:3b:35:39:06:d5:bd:7f:c2:b2:b0:aa:24:d5:9a:fb:
        5c:04:31:7b:be:c7:a5:de:8f:5f:c3:4b:49:8b:3c:fc:
        f4:08:c2:17:e5:80:03:83:18:0f:2e:1e:ff:5e:a3:aa:
        c5:aa:59:31:07:2c:af:97:1f:ff:85:36:36:35:5a:79:
        cd:80:19:54:97:0a:e0:6f:07:c3:44:d4:51:49:5a:bd:
        31:bd:56:1d:21:ae:91:02:78:14:9d:cf:f6:c0:ae:55:
        90:40:19:ed:dc:69:a3:65:bb:e4:11:11:ac:30:ea:c0:
        d1:61:f8:14:16:7f:03:20:cc:59:83:0c:ed:46:3f:7e:
        39:00:74:98:62:d5:27:05:4e:c2:7c:bc:28:d4:3e:fd:
        98:15:ba:cf:33:0b:b8:61:25:c3:42:d2:55:40:b0:16:
        71:53:5c:d1:b3:32:8f:c3:10:9e:ae:ac:99:71:1d:28:
        60:cf:3b:3c:f8:ae:6f:6e:5b:e6:7a:84:6f:9e:65:60:
        07:0a:3f:29:0c:df:2a:92:5b:39:68:9b:e9:4a:af:50
    Fingerprint (SHA-256):
        F1:D3:2B:1F:33:9E:24:35:44:61:4C:6A:DA:D2:EC:BD:18:78:1C:98:28:BD:9D:AC:5A:37:A3:1D:2A:43:BD:0B
    Fingerprint (SHA1):
        CA:64:FC:60:57:16:1C:86:7D:D4:62:33:A2:82:CA:82:C2:BF:28:C0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #3613: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3614: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3615: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3616: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3617: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235694 (0x300e2e2e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:22 2017
            Not After : Sat Aug 06 23:56:22 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:91:9c:fd:4d:64:fb:22:fd:e0:c9:f2:43:5a:9d:d0:
                    df:19:39:8a:61:53:1b:6c:ca:09:25:14:6e:19:91:9e:
                    ad:b6:f8:fb:9a:ec:47:18:07:17:2e:bc:c1:4f:8c:9b:
                    35:59:6e:8e:d6:f3:16:87:80:80:c8:04:54:4d:98:09:
                    9e:41:89:64:8a:b6:3f:a4:99:58:a8:d3:e5:03:ff:2f:
                    49:d8:c1:bd:da:f2:b1:c1:8b:2a:d9:d4:b6:29:d5:95:
                    b4:dd:21:5e:5b:ba:7d:5b:4f:90:85:94:cb:69:61:20:
                    e1:84:0d:35:c4:e5:7d:06:d3:5c:ad:f4:1a:5a:7e:97:
                    de:a5:c0:5f:1f:58:7d:64:7e:cb:d8:aa:6b:06:06:03:
                    03:25:00:16:e2:4c:df:99:4a:76:f3:e5:1a:59:48:62:
                    6e:44:15:fe:b3:5e:19:13:23:3e:ee:32:cc:5c:6e:46:
                    14:ad:a7:6a:f3:c0:16:98:96:27:8e:66:54:7a:2c:c3:
                    f2:6b:5b:ff:30:d9:33:36:c0:76:27:1e:2a:43:19:99:
                    af:c1:9d:86:fe:34:2a:5b:f6:ff:ad:ec:7a:2e:bf:7f:
                    47:74:c0:ca:d3:b9:d9:0f:e2:3a:fd:d8:d2:b6:b3:dc:
                    9b:0d:54:ac:8f:0d:ec:f5:3e:e0:39:ce:a2:60:89:85
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:d2:bf:db:a5:2d:9b:61:4a:62:db:33:5f:48:a2:af:
        e4:84:9c:fe:60:9a:89:54:07:1f:65:cc:bf:1a:d0:ae:
        2b:d8:8d:93:a9:3a:96:df:49:f8:7c:c0:f8:29:12:7a:
        01:fa:4f:12:19:cf:6e:f5:b5:50:4d:f3:73:52:39:4c:
        e7:3b:65:87:2d:11:dc:52:60:76:49:53:3d:8d:96:44:
        f4:1b:31:38:77:f6:4a:f8:59:bb:20:8a:1f:19:0d:98:
        a8:f7:66:e5:a1:df:b7:7a:bd:a7:97:cf:f6:e6:a5:b3:
        69:9c:e5:73:83:2c:6f:12:59:46:34:7f:02:2d:e6:47:
        17:14:58:b2:a3:88:ac:61:a7:f1:38:46:ea:71:9d:66:
        de:c2:9e:88:64:1e:c4:22:16:89:f6:7a:2a:f4:cd:46:
        93:3d:f4:18:70:a2:0f:b8:c8:ab:df:25:1f:f5:ef:a3:
        39:11:02:20:e5:16:4a:12:cb:3f:98:66:cb:1b:aa:1d:
        be:e9:5c:51:f4:02:5e:cf:32:7f:68:c8:7a:45:c4:0b:
        a4:62:59:39:33:ff:12:64:06:ad:15:be:17:d7:5c:b1:
        73:00:13:94:40:e7:3e:b9:7b:fe:26:50:d4:7c:3c:6c:
        a3:06:3f:7a:7b:38:62:cd:2b:0c:0c:47:95:17:f6:ba
    Fingerprint (SHA-256):
        E9:45:FA:17:7B:08:35:92:8F:9C:08:A0:71:A0:42:18:1A:0B:2B:43:4A:90:CC:6C:31:99:4C:A9:A0:60:CD:5E
    Fingerprint (SHA1):
        78:66:84:FD:DA:84:BE:B3:93:AA:63:79:86:70:E7:72:8F:BF:B4:94
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3618: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3619: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235695 (0x300e2e2f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:23 2017
            Not After : Sat Aug 06 23:56:23 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:96:47:f6:36:45:8b:40:00:cd:a5:79:41:83:a6:52:
                    f5:21:14:44:80:64:f2:da:4f:85:13:5c:62:75:5b:ac:
                    76:63:b7:ce:74:cc:0d:87:74:bb:7c:e4:5e:55:fb:5a:
                    94:2d:f4:47:6b:a5:1b:c2:24:f0:0e:34:8e:2f:b9:fb:
                    34:ce:32:01:3d:da:8c:6d:ac:e8:4e:d6:84:66:5c:a2:
                    ee:fb:5f:a8:78:46:37:ba:2e:e6:59:79:0a:a1:9e:f4:
                    19:25:06:06:6f:32:27:bd:e1:81:7b:a5:f5:74:4f:e6:
                    3a:67:e4:cd:ab:48:73:bf:22:ea:a2:cf:23:eb:74:82:
                    68:34:d8:f1:40:70:e0:d5:22:4e:fe:4a:24:1a:b1:f4:
                    40:c2:ae:89:57:29:c6:12:b6:53:30:e0:15:a4:67:21:
                    29:05:8c:c9:c5:46:96:93:0e:41:09:be:79:09:50:56:
                    69:cc:c0:1f:89:66:7c:0e:7e:dd:ec:f7:13:27:ea:03:
                    39:f4:84:8e:66:fe:82:84:4e:f0:a7:10:45:12:6d:e1:
                    31:08:7f:35:a5:1c:54:33:a8:f5:2d:19:b2:32:d9:cb:
                    e5:e6:aa:74:ce:b3:15:38:c7:57:ff:56:94:6e:9a:11:
                    c0:94:48:ae:22:64:f8:fe:eb:e1:af:52:17:c4:45:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        15:dc:a6:d8:61:a9:42:81:e5:d9:90:92:34:b6:25:19:
        8e:16:65:36:f3:af:65:fa:ef:d4:8e:7c:0c:61:62:76:
        59:52:2e:0f:89:d2:91:ea:21:5e:19:b2:7e:e0:6b:6c:
        99:67:2e:b8:2d:99:a3:37:f1:a9:51:e5:cd:2e:33:b0:
        eb:6f:45:59:e6:7a:71:d7:ae:f2:55:e5:48:b8:46:6f:
        3c:51:4e:99:28:8d:bf:4d:55:89:19:16:ef:79:4a:43:
        64:8a:0c:74:8c:02:bf:c5:31:9b:d8:4e:51:fa:ff:9f:
        c1:31:13:c5:cf:f6:11:53:5e:cf:74:07:0b:02:bd:f4:
        f7:0e:75:3c:06:4d:14:56:70:92:6e:13:60:b2:ad:5f:
        16:06:c0:19:24:55:37:61:04:af:6d:48:80:40:71:95:
        57:f1:ad:4c:46:07:e9:4e:ba:2e:5d:4c:e5:71:34:bc:
        3a:ce:e6:f9:52:d3:1b:3d:10:a7:e2:44:5a:63:8a:58:
        e0:74:d8:9a:1b:47:34:8b:bd:c7:47:28:26:3e:23:1b:
        73:f9:8e:ad:6e:cb:0e:b2:5e:69:e7:e0:14:06:77:a1:
        20:02:84:d7:ed:8b:d2:a7:33:1f:a5:12:6f:5b:89:ce:
        3c:71:bf:68:11:54:22:a4:98:27:92:ce:da:af:82:fc
    Fingerprint (SHA-256):
        90:AC:71:1A:9D:BC:D8:20:6D:EA:40:BD:0C:EC:78:C9:E5:0B:80:F7:1F:65:59:DD:20:0C:C3:9F:E0:8A:13:06
    Fingerprint (SHA1):
        87:C3:A5:FA:09:77:BA:46:56:6A:74:DB:71:D4:1E:41:5D:19:A6:C0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3620: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3621: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235696 (0x300e2e30)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:23 2017
            Not After : Sat Aug 06 23:56:23 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:ec:b7:ed:83:00:4c:83:bf:8b:74:ee:d0:01:84:2c:
                    0e:fe:38:0a:3a:53:55:97:28:82:b3:86:cf:24:ad:d3:
                    9c:dc:79:52:ca:d4:31:ef:f4:f3:8f:47:c8:c2:b3:2d:
                    29:9f:36:3e:c0:07:ee:0b:03:b3:8e:b0:8d:00:f5:15:
                    f8:c5:2d:5b:d3:b8:fb:55:9d:63:75:4b:fe:45:f6:3a:
                    bc:bc:30:d1:ed:c6:e2:40:ed:29:ed:56:cc:ea:4b:30:
                    bb:52:b0:8a:90:08:40:14:ed:ad:16:d4:6e:6a:aa:92:
                    0b:87:80:e3:4e:e4:a9:3b:23:e3:c4:54:2b:ef:f6:8b:
                    89:62:dd:c7:81:d0:bd:27:bf:37:8b:66:e8:07:b4:54:
                    a0:c0:2a:b3:1b:0b:17:4d:26:1a:eb:c4:f7:d4:99:90:
                    d6:6a:ef:55:62:0a:7a:55:c0:63:f6:a9:51:9b:cb:3c:
                    c8:ce:3a:b9:14:0b:3c:63:55:b4:54:08:6b:d0:61:81:
                    0a:ff:de:57:74:dd:29:de:3c:63:b2:17:46:4d:ed:45:
                    cd:00:0a:81:29:d5:91:ba:91:58:e7:92:0f:5f:78:03:
                    e0:3f:4b:6f:fc:78:ab:6c:13:ce:53:fb:98:e2:ae:91:
                    8b:65:c6:d5:8e:23:5e:7f:58:c4:cd:13:f8:2b:17:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6e:76:69:9d:db:37:cd:f7:26:1f:bf:08:82:39:d0:8e:
        62:6b:0c:6b:10:f1:54:3a:71:95:24:3a:a8:4c:6a:5d:
        8f:f9:ce:68:d2:a2:23:aa:1f:74:a9:d4:f8:b0:d4:2f:
        23:3b:35:39:06:d5:bd:7f:c2:b2:b0:aa:24:d5:9a:fb:
        5c:04:31:7b:be:c7:a5:de:8f:5f:c3:4b:49:8b:3c:fc:
        f4:08:c2:17:e5:80:03:83:18:0f:2e:1e:ff:5e:a3:aa:
        c5:aa:59:31:07:2c:af:97:1f:ff:85:36:36:35:5a:79:
        cd:80:19:54:97:0a:e0:6f:07:c3:44:d4:51:49:5a:bd:
        31:bd:56:1d:21:ae:91:02:78:14:9d:cf:f6:c0:ae:55:
        90:40:19:ed:dc:69:a3:65:bb:e4:11:11:ac:30:ea:c0:
        d1:61:f8:14:16:7f:03:20:cc:59:83:0c:ed:46:3f:7e:
        39:00:74:98:62:d5:27:05:4e:c2:7c:bc:28:d4:3e:fd:
        98:15:ba:cf:33:0b:b8:61:25:c3:42:d2:55:40:b0:16:
        71:53:5c:d1:b3:32:8f:c3:10:9e:ae:ac:99:71:1d:28:
        60:cf:3b:3c:f8:ae:6f:6e:5b:e6:7a:84:6f:9e:65:60:
        07:0a:3f:29:0c:df:2a:92:5b:39:68:9b:e9:4a:af:50
    Fingerprint (SHA-256):
        F1:D3:2B:1F:33:9E:24:35:44:61:4C:6A:DA:D2:EC:BD:18:78:1C:98:28:BD:9D:AC:5A:37:A3:1D:2A:43:BD:0B
    Fingerprint (SHA1):
        CA:64:FC:60:57:16:1C:86:7D:D4:62:33:A2:82:CA:82:C2:BF:28:C0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #3622: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3623: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3624: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235698 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3625: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3626: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3627: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3628: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 806235699   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3629: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3630: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3631: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3632: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 806235700   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3633: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3634: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #3635: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3636: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 806235701   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3637: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3638: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #3639: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3640: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 806235702   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3641: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3642: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3643: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235698 (0x300e2e32)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:24 2017
            Not After : Sat Aug 06 23:56:24 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:33:3b:18:e7:ec:73:ac:6d:a7:ed:06:49:70:fa:11:
                    f5:0d:52:4e:e6:ef:3f:bc:d4:fb:4b:8a:91:cc:21:58:
                    f8:ac:d0:75:43:88:c1:b2:59:22:4d:6b:cd:1e:2c:da:
                    6d:2d:48:37:d3:5d:10:b2:7b:5a:da:be:f8:1d:15:3e:
                    1a:6a:aa:5f:69:23:99:7e:04:f2:00:e7:d1:a6:c5:ec:
                    bf:4d:9f:da:e2:a5:4e:fb:1a:d2:f5:b2:9c:89:1f:ff:
                    2c:9a:73:34:d8:a4:1d:c1:33:2a:cb:be:40:21:d8:48:
                    1e:b4:8b:72:25:af:fd:24:9b:a8:78:37:5f:ee:01:a5:
                    29:84:f6:2d:d1:5b:b2:56:ed:24:02:34:ea:6a:39:df:
                    b0:b1:d9:31:d3:35:89:68:9d:6d:a8:62:4c:ea:bd:a4:
                    9f:44:4e:ca:eb:58:d8:88:85:a5:1b:99:9e:e7:5e:d4:
                    74:2e:56:dc:d5:8c:b4:75:2e:31:d9:05:bf:8a:f4:51:
                    9b:63:12:f5:ac:96:8b:f7:d9:2c:33:09:9e:6a:0b:a3:
                    2c:8a:9a:02:39:ec:61:4a:aa:63:67:ad:09:80:00:a2:
                    08:7f:3a:22:c2:cc:24:9c:62:76:59:4f:5b:11:3d:ab:
                    1c:38:7a:8c:81:a8:2b:96:dc:18:07:0d:85:e8:04:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b9:2b:31:2c:ca:65:ed:4d:1a:4c:fa:40:31:2e:a6:c6:
        96:f9:ba:43:0c:3a:90:38:f6:97:0c:70:96:3c:67:a8:
        a7:3c:ef:e2:30:f6:8f:8e:b5:e6:15:8b:95:05:07:06:
        8f:8c:5e:67:e3:58:2b:be:04:44:2b:13:d2:23:6a:93:
        d9:da:f1:00:70:6a:7d:7f:f0:57:b1:26:53:10:b4:08:
        db:db:9b:1f:64:48:32:58:0a:88:6a:23:03:76:f8:99:
        17:95:ba:09:6e:b4:30:d0:3f:07:09:ac:51:13:f4:de:
        02:09:ad:09:e9:4a:72:97:ca:a8:d0:22:95:d4:c2:a8:
        a5:3e:30:eb:5e:c5:b8:6a:5f:bc:c9:64:f7:ff:17:07:
        40:45:17:46:a4:be:23:54:ce:b1:a5:8a:dc:a1:9e:4e:
        23:65:e8:d5:ac:6f:6c:73:fa:a9:cf:d6:3c:5c:42:cd:
        32:dc:5d:53:69:f9:88:0d:3b:91:72:55:cf:28:31:98:
        85:66:fe:1c:13:51:7b:0c:e8:7d:ff:f1:ec:7d:d0:5e:
        b4:e5:9a:a5:38:c4:b8:d5:98:5e:a9:81:47:f6:08:ab:
        cf:1a:9f:a5:7c:e3:f4:b3:e2:e2:11:f4:f9:d8:77:2e:
        07:ee:bb:c0:54:df:4d:4c:cc:70:9e:6f:d4:1a:c5:38
    Fingerprint (SHA-256):
        94:EE:75:E3:03:A5:81:78:CD:90:84:AF:FB:2B:DE:41:7F:A8:B8:EA:18:04:DC:95:19:C9:79:24:29:01:59:64
    Fingerprint (SHA1):
        EB:B0:14:DB:93:7B:22:6A:76:1E:33:89:E7:85:EF:6B:93:54:6E:C2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3644: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3645: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235699 (0x300e2e33)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:24 2017
            Not After : Sat Aug 06 23:56:24 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e4:86:75:c7:65:36:35:cb:61:fe:b0:ff:00:71:f3:90:
                    7e:4c:f9:36:72:54:3d:9d:a3:e1:35:04:52:1d:98:d5:
                    de:57:65:f6:dd:d8:63:5a:0d:74:af:80:aa:09:78:e1:
                    cd:ab:5a:20:2c:cf:19:e6:62:ed:2e:8a:b9:83:22:82:
                    7b:0a:53:fa:8c:b1:3c:7c:c3:16:d5:94:fb:29:31:56:
                    eb:09:29:8e:70:31:b7:92:6b:cc:70:24:30:ab:62:67:
                    8e:f8:85:48:de:5a:83:56:0b:a9:e4:df:bb:53:8e:fb:
                    b1:5a:6a:08:ba:b2:33:cf:df:9d:29:24:f6:31:b0:bc:
                    6a:5d:37:c6:a3:d0:b5:d1:6d:60:4e:84:24:19:77:15:
                    2e:72:0d:75:d5:14:7f:6d:97:4a:dc:1d:f5:1b:49:0b:
                    87:cf:1f:1d:67:44:fb:2e:e7:e9:ef:35:03:c6:9a:de:
                    ef:b1:dc:5a:66:4c:98:f0:9c:32:24:a7:39:e3:dc:62:
                    b4:99:15:bd:41:52:bc:67:39:21:8d:c7:f2:dd:06:e7:
                    39:7b:11:98:c6:0e:bf:5b:ca:10:93:00:25:a9:82:b2:
                    97:6c:d8:97:a4:87:83:5d:99:3f:20:5a:cf:d0:de:e8:
                    2f:97:4a:bc:07:cc:7f:6c:56:5a:27:02:63:13:f2:07
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b4:8e:00:83:b5:b3:a0:e0:fa:ca:cc:d1:87:80:9a:45:
        46:95:bb:f5:13:17:15:75:05:03:e9:9d:ca:57:4c:9d:
        e9:6a:5a:3b:2e:04:da:82:df:a6:1b:a5:2e:0a:0f:a7:
        75:ff:d6:5d:c2:57:37:8f:c3:12:32:cb:89:50:8e:c5:
        5a:a0:24:4f:fb:54:0c:74:bd:05:39:68:52:40:8b:c2:
        e7:af:ed:50:33:ed:a8:92:ea:d9:ee:87:32:9d:7a:7d:
        c1:fd:35:7f:dd:8e:1d:ac:b2:78:af:e2:d7:8f:14:bd:
        3c:42:54:e9:93:55:1a:9d:0a:f1:c3:63:85:21:f5:7c:
        12:91:e6:f6:09:0d:7a:37:c3:9b:f6:30:06:f8:c0:9c:
        40:50:ab:cd:1a:4d:ca:ba:3f:f7:28:0e:79:b6:3b:8f:
        be:fb:9b:24:47:43:7a:ca:18:b6:50:0a:cf:ec:a1:4b:
        d6:45:79:97:28:0b:43:6e:e5:3a:5a:a7:61:3b:72:23:
        66:8a:b4:1e:42:bf:49:02:32:73:c0:56:21:71:a3:5f:
        11:2e:b0:a1:7d:3e:01:78:77:81:8e:c6:65:b8:f0:12:
        3a:6c:c1:e9:82:2e:67:67:3e:6e:64:99:05:ca:a5:54:
        81:19:d5:8d:4e:ca:44:c9:56:37:71:90:e0:a2:1f:d4
    Fingerprint (SHA-256):
        AA:8A:62:4E:DC:7E:01:EF:3F:18:1C:A6:D5:4C:56:ED:53:91:72:F6:D9:18:45:FD:E7:18:30:5C:1D:1D:D2:F4
    Fingerprint (SHA1):
        7A:6A:89:A4:89:FE:4A:4C:71:D3:11:57:B8:AF:63:20:DA:DF:2E:36
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3646: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3647: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235700 (0x300e2e34)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:24 2017
            Not After : Sat Aug 06 23:56:24 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:8f:78:bc:64:10:90:05:e1:c7:86:99:e7:2c:89:b2:
                    41:9b:79:1c:f1:74:2c:8e:51:df:23:89:f7:93:cb:0f:
                    fa:6b:50:e1:d9:4a:33:ef:25:4f:95:f3:b1:5e:d6:80:
                    e4:39:24:bc:39:7b:53:d2:66:ac:1e:ac:52:eb:f0:f8:
                    b5:00:cd:db:b2:33:e5:21:6c:3d:59:09:cf:45:bb:d7:
                    04:64:99:06:c0:97:fc:a2:ca:b4:34:d9:ed:df:1d:22:
                    a8:af:1b:10:2a:02:48:17:b1:a8:07:05:31:7d:05:36:
                    74:11:86:be:10:2a:b7:8a:58:9a:f6:4b:b3:a9:c3:25:
                    76:2e:7d:29:d3:fa:a7:78:f8:03:98:fb:6c:fb:04:78:
                    92:71:f6:39:ff:e0:c6:66:55:58:e6:20:48:54:2a:c7:
                    83:a0:40:e6:87:dc:62:97:94:e9:25:46:62:54:28:42:
                    3e:20:bf:e2:c3:7e:70:b4:9a:b5:d7:2a:fe:c7:5a:d3:
                    f1:be:52:51:8d:09:cf:0c:91:67:73:37:f3:25:de:d6:
                    e7:46:61:c2:73:5a:37:a3:74:0f:78:eb:59:b7:a6:21:
                    5a:c9:bd:93:d6:db:5e:8d:c3:bf:c5:c1:ff:ca:36:d5:
                    3b:f9:37:da:c7:15:6d:6b:07:a3:14:b1:e3:cb:2f:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4a:cf:b2:f8:60:5c:15:91:98:45:c4:28:16:f0:f8:77:
        ca:c4:43:95:f3:2a:e8:b5:81:c4:e2:f9:c1:ac:8c:d1:
        99:21:29:2a:d7:eb:c0:35:36:34:f2:c3:b8:bb:c2:fa:
        99:7b:f4:88:e9:89:1d:ab:b9:bd:ec:9d:42:1d:75:78:
        69:af:0b:70:eb:60:45:e6:ca:a7:d0:73:97:73:c3:70:
        c6:b8:94:89:53:05:24:eb:33:07:08:91:d8:59:9d:b8:
        89:6d:96:11:27:74:a3:d4:16:63:43:66:17:c9:4e:a2:
        28:36:23:a0:2c:05:f6:58:ef:e5:e5:10:e6:28:4b:61:
        48:72:32:79:5f:bc:f0:93:c9:a7:6e:63:7a:ed:2e:98:
        fc:6e:a4:dc:7b:57:41:62:1b:e6:8e:6d:56:eb:50:0b:
        14:4b:7d:75:2b:da:20:80:7e:11:6a:90:79:34:13:2f:
        4b:72:1f:4a:b6:70:11:1f:45:5e:b9:dc:d6:bc:ee:25:
        87:f3:6e:d4:a6:b0:c3:d3:ad:16:4c:86:29:ad:e1:00:
        ab:d1:09:24:a5:e0:4f:98:c3:ee:b5:fe:90:e4:8f:61:
        4a:4e:b3:db:78:47:bc:61:32:92:78:45:f1:97:60:ea:
        2d:ef:3a:ab:6e:b2:e1:2f:48:bf:d9:0a:b6:c1:3c:a6
    Fingerprint (SHA-256):
        4D:42:F7:18:9F:F5:4D:5E:D2:0B:F7:F7:94:27:6B:8B:F0:8D:B1:D4:F6:66:D0:B5:B0:66:9E:0B:BA:89:FC:80
    Fingerprint (SHA1):
        5F:F7:BA:B3:50:04:B7:8E:9D:FD:6C:56:61:6C:9A:EA:11:20:B0:0B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3648: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3649: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3650: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3651: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3652: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235698 (0x300e2e32)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:24 2017
            Not After : Sat Aug 06 23:56:24 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:33:3b:18:e7:ec:73:ac:6d:a7:ed:06:49:70:fa:11:
                    f5:0d:52:4e:e6:ef:3f:bc:d4:fb:4b:8a:91:cc:21:58:
                    f8:ac:d0:75:43:88:c1:b2:59:22:4d:6b:cd:1e:2c:da:
                    6d:2d:48:37:d3:5d:10:b2:7b:5a:da:be:f8:1d:15:3e:
                    1a:6a:aa:5f:69:23:99:7e:04:f2:00:e7:d1:a6:c5:ec:
                    bf:4d:9f:da:e2:a5:4e:fb:1a:d2:f5:b2:9c:89:1f:ff:
                    2c:9a:73:34:d8:a4:1d:c1:33:2a:cb:be:40:21:d8:48:
                    1e:b4:8b:72:25:af:fd:24:9b:a8:78:37:5f:ee:01:a5:
                    29:84:f6:2d:d1:5b:b2:56:ed:24:02:34:ea:6a:39:df:
                    b0:b1:d9:31:d3:35:89:68:9d:6d:a8:62:4c:ea:bd:a4:
                    9f:44:4e:ca:eb:58:d8:88:85:a5:1b:99:9e:e7:5e:d4:
                    74:2e:56:dc:d5:8c:b4:75:2e:31:d9:05:bf:8a:f4:51:
                    9b:63:12:f5:ac:96:8b:f7:d9:2c:33:09:9e:6a:0b:a3:
                    2c:8a:9a:02:39:ec:61:4a:aa:63:67:ad:09:80:00:a2:
                    08:7f:3a:22:c2:cc:24:9c:62:76:59:4f:5b:11:3d:ab:
                    1c:38:7a:8c:81:a8:2b:96:dc:18:07:0d:85:e8:04:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b9:2b:31:2c:ca:65:ed:4d:1a:4c:fa:40:31:2e:a6:c6:
        96:f9:ba:43:0c:3a:90:38:f6:97:0c:70:96:3c:67:a8:
        a7:3c:ef:e2:30:f6:8f:8e:b5:e6:15:8b:95:05:07:06:
        8f:8c:5e:67:e3:58:2b:be:04:44:2b:13:d2:23:6a:93:
        d9:da:f1:00:70:6a:7d:7f:f0:57:b1:26:53:10:b4:08:
        db:db:9b:1f:64:48:32:58:0a:88:6a:23:03:76:f8:99:
        17:95:ba:09:6e:b4:30:d0:3f:07:09:ac:51:13:f4:de:
        02:09:ad:09:e9:4a:72:97:ca:a8:d0:22:95:d4:c2:a8:
        a5:3e:30:eb:5e:c5:b8:6a:5f:bc:c9:64:f7:ff:17:07:
        40:45:17:46:a4:be:23:54:ce:b1:a5:8a:dc:a1:9e:4e:
        23:65:e8:d5:ac:6f:6c:73:fa:a9:cf:d6:3c:5c:42:cd:
        32:dc:5d:53:69:f9:88:0d:3b:91:72:55:cf:28:31:98:
        85:66:fe:1c:13:51:7b:0c:e8:7d:ff:f1:ec:7d:d0:5e:
        b4:e5:9a:a5:38:c4:b8:d5:98:5e:a9:81:47:f6:08:ab:
        cf:1a:9f:a5:7c:e3:f4:b3:e2:e2:11:f4:f9:d8:77:2e:
        07:ee:bb:c0:54:df:4d:4c:cc:70:9e:6f:d4:1a:c5:38
    Fingerprint (SHA-256):
        94:EE:75:E3:03:A5:81:78:CD:90:84:AF:FB:2B:DE:41:7F:A8:B8:EA:18:04:DC:95:19:C9:79:24:29:01:59:64
    Fingerprint (SHA1):
        EB:B0:14:DB:93:7B:22:6A:76:1E:33:89:E7:85:EF:6B:93:54:6E:C2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3653: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3654: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235699 (0x300e2e33)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:24 2017
            Not After : Sat Aug 06 23:56:24 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e4:86:75:c7:65:36:35:cb:61:fe:b0:ff:00:71:f3:90:
                    7e:4c:f9:36:72:54:3d:9d:a3:e1:35:04:52:1d:98:d5:
                    de:57:65:f6:dd:d8:63:5a:0d:74:af:80:aa:09:78:e1:
                    cd:ab:5a:20:2c:cf:19:e6:62:ed:2e:8a:b9:83:22:82:
                    7b:0a:53:fa:8c:b1:3c:7c:c3:16:d5:94:fb:29:31:56:
                    eb:09:29:8e:70:31:b7:92:6b:cc:70:24:30:ab:62:67:
                    8e:f8:85:48:de:5a:83:56:0b:a9:e4:df:bb:53:8e:fb:
                    b1:5a:6a:08:ba:b2:33:cf:df:9d:29:24:f6:31:b0:bc:
                    6a:5d:37:c6:a3:d0:b5:d1:6d:60:4e:84:24:19:77:15:
                    2e:72:0d:75:d5:14:7f:6d:97:4a:dc:1d:f5:1b:49:0b:
                    87:cf:1f:1d:67:44:fb:2e:e7:e9:ef:35:03:c6:9a:de:
                    ef:b1:dc:5a:66:4c:98:f0:9c:32:24:a7:39:e3:dc:62:
                    b4:99:15:bd:41:52:bc:67:39:21:8d:c7:f2:dd:06:e7:
                    39:7b:11:98:c6:0e:bf:5b:ca:10:93:00:25:a9:82:b2:
                    97:6c:d8:97:a4:87:83:5d:99:3f:20:5a:cf:d0:de:e8:
                    2f:97:4a:bc:07:cc:7f:6c:56:5a:27:02:63:13:f2:07
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b4:8e:00:83:b5:b3:a0:e0:fa:ca:cc:d1:87:80:9a:45:
        46:95:bb:f5:13:17:15:75:05:03:e9:9d:ca:57:4c:9d:
        e9:6a:5a:3b:2e:04:da:82:df:a6:1b:a5:2e:0a:0f:a7:
        75:ff:d6:5d:c2:57:37:8f:c3:12:32:cb:89:50:8e:c5:
        5a:a0:24:4f:fb:54:0c:74:bd:05:39:68:52:40:8b:c2:
        e7:af:ed:50:33:ed:a8:92:ea:d9:ee:87:32:9d:7a:7d:
        c1:fd:35:7f:dd:8e:1d:ac:b2:78:af:e2:d7:8f:14:bd:
        3c:42:54:e9:93:55:1a:9d:0a:f1:c3:63:85:21:f5:7c:
        12:91:e6:f6:09:0d:7a:37:c3:9b:f6:30:06:f8:c0:9c:
        40:50:ab:cd:1a:4d:ca:ba:3f:f7:28:0e:79:b6:3b:8f:
        be:fb:9b:24:47:43:7a:ca:18:b6:50:0a:cf:ec:a1:4b:
        d6:45:79:97:28:0b:43:6e:e5:3a:5a:a7:61:3b:72:23:
        66:8a:b4:1e:42:bf:49:02:32:73:c0:56:21:71:a3:5f:
        11:2e:b0:a1:7d:3e:01:78:77:81:8e:c6:65:b8:f0:12:
        3a:6c:c1:e9:82:2e:67:67:3e:6e:64:99:05:ca:a5:54:
        81:19:d5:8d:4e:ca:44:c9:56:37:71:90:e0:a2:1f:d4
    Fingerprint (SHA-256):
        AA:8A:62:4E:DC:7E:01:EF:3F:18:1C:A6:D5:4C:56:ED:53:91:72:F6:D9:18:45:FD:E7:18:30:5C:1D:1D:D2:F4
    Fingerprint (SHA1):
        7A:6A:89:A4:89:FE:4A:4C:71:D3:11:57:B8:AF:63:20:DA:DF:2E:36
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3655: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3656: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235700 (0x300e2e34)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:24 2017
            Not After : Sat Aug 06 23:56:24 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:8f:78:bc:64:10:90:05:e1:c7:86:99:e7:2c:89:b2:
                    41:9b:79:1c:f1:74:2c:8e:51:df:23:89:f7:93:cb:0f:
                    fa:6b:50:e1:d9:4a:33:ef:25:4f:95:f3:b1:5e:d6:80:
                    e4:39:24:bc:39:7b:53:d2:66:ac:1e:ac:52:eb:f0:f8:
                    b5:00:cd:db:b2:33:e5:21:6c:3d:59:09:cf:45:bb:d7:
                    04:64:99:06:c0:97:fc:a2:ca:b4:34:d9:ed:df:1d:22:
                    a8:af:1b:10:2a:02:48:17:b1:a8:07:05:31:7d:05:36:
                    74:11:86:be:10:2a:b7:8a:58:9a:f6:4b:b3:a9:c3:25:
                    76:2e:7d:29:d3:fa:a7:78:f8:03:98:fb:6c:fb:04:78:
                    92:71:f6:39:ff:e0:c6:66:55:58:e6:20:48:54:2a:c7:
                    83:a0:40:e6:87:dc:62:97:94:e9:25:46:62:54:28:42:
                    3e:20:bf:e2:c3:7e:70:b4:9a:b5:d7:2a:fe:c7:5a:d3:
                    f1:be:52:51:8d:09:cf:0c:91:67:73:37:f3:25:de:d6:
                    e7:46:61:c2:73:5a:37:a3:74:0f:78:eb:59:b7:a6:21:
                    5a:c9:bd:93:d6:db:5e:8d:c3:bf:c5:c1:ff:ca:36:d5:
                    3b:f9:37:da:c7:15:6d:6b:07:a3:14:b1:e3:cb:2f:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4a:cf:b2:f8:60:5c:15:91:98:45:c4:28:16:f0:f8:77:
        ca:c4:43:95:f3:2a:e8:b5:81:c4:e2:f9:c1:ac:8c:d1:
        99:21:29:2a:d7:eb:c0:35:36:34:f2:c3:b8:bb:c2:fa:
        99:7b:f4:88:e9:89:1d:ab:b9:bd:ec:9d:42:1d:75:78:
        69:af:0b:70:eb:60:45:e6:ca:a7:d0:73:97:73:c3:70:
        c6:b8:94:89:53:05:24:eb:33:07:08:91:d8:59:9d:b8:
        89:6d:96:11:27:74:a3:d4:16:63:43:66:17:c9:4e:a2:
        28:36:23:a0:2c:05:f6:58:ef:e5:e5:10:e6:28:4b:61:
        48:72:32:79:5f:bc:f0:93:c9:a7:6e:63:7a:ed:2e:98:
        fc:6e:a4:dc:7b:57:41:62:1b:e6:8e:6d:56:eb:50:0b:
        14:4b:7d:75:2b:da:20:80:7e:11:6a:90:79:34:13:2f:
        4b:72:1f:4a:b6:70:11:1f:45:5e:b9:dc:d6:bc:ee:25:
        87:f3:6e:d4:a6:b0:c3:d3:ad:16:4c:86:29:ad:e1:00:
        ab:d1:09:24:a5:e0:4f:98:c3:ee:b5:fe:90:e4:8f:61:
        4a:4e:b3:db:78:47:bc:61:32:92:78:45:f1:97:60:ea:
        2d:ef:3a:ab:6e:b2:e1:2f:48:bf:d9:0a:b6:c1:3c:a6
    Fingerprint (SHA-256):
        4D:42:F7:18:9F:F5:4D:5E:D2:0B:F7:F7:94:27:6B:8B:F0:8D:B1:D4:F6:66:D0:B5:B0:66:9E:0B:BA:89:FC:80
    Fingerprint (SHA1):
        5F:F7:BA:B3:50:04:B7:8E:9D:FD:6C:56:61:6C:9A:EA:11:20:B0:0B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3657: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3658: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235698 (0x300e2e32)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:24 2017
            Not After : Sat Aug 06 23:56:24 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:33:3b:18:e7:ec:73:ac:6d:a7:ed:06:49:70:fa:11:
                    f5:0d:52:4e:e6:ef:3f:bc:d4:fb:4b:8a:91:cc:21:58:
                    f8:ac:d0:75:43:88:c1:b2:59:22:4d:6b:cd:1e:2c:da:
                    6d:2d:48:37:d3:5d:10:b2:7b:5a:da:be:f8:1d:15:3e:
                    1a:6a:aa:5f:69:23:99:7e:04:f2:00:e7:d1:a6:c5:ec:
                    bf:4d:9f:da:e2:a5:4e:fb:1a:d2:f5:b2:9c:89:1f:ff:
                    2c:9a:73:34:d8:a4:1d:c1:33:2a:cb:be:40:21:d8:48:
                    1e:b4:8b:72:25:af:fd:24:9b:a8:78:37:5f:ee:01:a5:
                    29:84:f6:2d:d1:5b:b2:56:ed:24:02:34:ea:6a:39:df:
                    b0:b1:d9:31:d3:35:89:68:9d:6d:a8:62:4c:ea:bd:a4:
                    9f:44:4e:ca:eb:58:d8:88:85:a5:1b:99:9e:e7:5e:d4:
                    74:2e:56:dc:d5:8c:b4:75:2e:31:d9:05:bf:8a:f4:51:
                    9b:63:12:f5:ac:96:8b:f7:d9:2c:33:09:9e:6a:0b:a3:
                    2c:8a:9a:02:39:ec:61:4a:aa:63:67:ad:09:80:00:a2:
                    08:7f:3a:22:c2:cc:24:9c:62:76:59:4f:5b:11:3d:ab:
                    1c:38:7a:8c:81:a8:2b:96:dc:18:07:0d:85:e8:04:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b9:2b:31:2c:ca:65:ed:4d:1a:4c:fa:40:31:2e:a6:c6:
        96:f9:ba:43:0c:3a:90:38:f6:97:0c:70:96:3c:67:a8:
        a7:3c:ef:e2:30:f6:8f:8e:b5:e6:15:8b:95:05:07:06:
        8f:8c:5e:67:e3:58:2b:be:04:44:2b:13:d2:23:6a:93:
        d9:da:f1:00:70:6a:7d:7f:f0:57:b1:26:53:10:b4:08:
        db:db:9b:1f:64:48:32:58:0a:88:6a:23:03:76:f8:99:
        17:95:ba:09:6e:b4:30:d0:3f:07:09:ac:51:13:f4:de:
        02:09:ad:09:e9:4a:72:97:ca:a8:d0:22:95:d4:c2:a8:
        a5:3e:30:eb:5e:c5:b8:6a:5f:bc:c9:64:f7:ff:17:07:
        40:45:17:46:a4:be:23:54:ce:b1:a5:8a:dc:a1:9e:4e:
        23:65:e8:d5:ac:6f:6c:73:fa:a9:cf:d6:3c:5c:42:cd:
        32:dc:5d:53:69:f9:88:0d:3b:91:72:55:cf:28:31:98:
        85:66:fe:1c:13:51:7b:0c:e8:7d:ff:f1:ec:7d:d0:5e:
        b4:e5:9a:a5:38:c4:b8:d5:98:5e:a9:81:47:f6:08:ab:
        cf:1a:9f:a5:7c:e3:f4:b3:e2:e2:11:f4:f9:d8:77:2e:
        07:ee:bb:c0:54:df:4d:4c:cc:70:9e:6f:d4:1a:c5:38
    Fingerprint (SHA-256):
        94:EE:75:E3:03:A5:81:78:CD:90:84:AF:FB:2B:DE:41:7F:A8:B8:EA:18:04:DC:95:19:C9:79:24:29:01:59:64
    Fingerprint (SHA1):
        EB:B0:14:DB:93:7B:22:6A:76:1E:33:89:E7:85:EF:6B:93:54:6E:C2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3659: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235698 (0x300e2e32)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:24 2017
            Not After : Sat Aug 06 23:56:24 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:33:3b:18:e7:ec:73:ac:6d:a7:ed:06:49:70:fa:11:
                    f5:0d:52:4e:e6:ef:3f:bc:d4:fb:4b:8a:91:cc:21:58:
                    f8:ac:d0:75:43:88:c1:b2:59:22:4d:6b:cd:1e:2c:da:
                    6d:2d:48:37:d3:5d:10:b2:7b:5a:da:be:f8:1d:15:3e:
                    1a:6a:aa:5f:69:23:99:7e:04:f2:00:e7:d1:a6:c5:ec:
                    bf:4d:9f:da:e2:a5:4e:fb:1a:d2:f5:b2:9c:89:1f:ff:
                    2c:9a:73:34:d8:a4:1d:c1:33:2a:cb:be:40:21:d8:48:
                    1e:b4:8b:72:25:af:fd:24:9b:a8:78:37:5f:ee:01:a5:
                    29:84:f6:2d:d1:5b:b2:56:ed:24:02:34:ea:6a:39:df:
                    b0:b1:d9:31:d3:35:89:68:9d:6d:a8:62:4c:ea:bd:a4:
                    9f:44:4e:ca:eb:58:d8:88:85:a5:1b:99:9e:e7:5e:d4:
                    74:2e:56:dc:d5:8c:b4:75:2e:31:d9:05:bf:8a:f4:51:
                    9b:63:12:f5:ac:96:8b:f7:d9:2c:33:09:9e:6a:0b:a3:
                    2c:8a:9a:02:39:ec:61:4a:aa:63:67:ad:09:80:00:a2:
                    08:7f:3a:22:c2:cc:24:9c:62:76:59:4f:5b:11:3d:ab:
                    1c:38:7a:8c:81:a8:2b:96:dc:18:07:0d:85:e8:04:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b9:2b:31:2c:ca:65:ed:4d:1a:4c:fa:40:31:2e:a6:c6:
        96:f9:ba:43:0c:3a:90:38:f6:97:0c:70:96:3c:67:a8:
        a7:3c:ef:e2:30:f6:8f:8e:b5:e6:15:8b:95:05:07:06:
        8f:8c:5e:67:e3:58:2b:be:04:44:2b:13:d2:23:6a:93:
        d9:da:f1:00:70:6a:7d:7f:f0:57:b1:26:53:10:b4:08:
        db:db:9b:1f:64:48:32:58:0a:88:6a:23:03:76:f8:99:
        17:95:ba:09:6e:b4:30:d0:3f:07:09:ac:51:13:f4:de:
        02:09:ad:09:e9:4a:72:97:ca:a8:d0:22:95:d4:c2:a8:
        a5:3e:30:eb:5e:c5:b8:6a:5f:bc:c9:64:f7:ff:17:07:
        40:45:17:46:a4:be:23:54:ce:b1:a5:8a:dc:a1:9e:4e:
        23:65:e8:d5:ac:6f:6c:73:fa:a9:cf:d6:3c:5c:42:cd:
        32:dc:5d:53:69:f9:88:0d:3b:91:72:55:cf:28:31:98:
        85:66:fe:1c:13:51:7b:0c:e8:7d:ff:f1:ec:7d:d0:5e:
        b4:e5:9a:a5:38:c4:b8:d5:98:5e:a9:81:47:f6:08:ab:
        cf:1a:9f:a5:7c:e3:f4:b3:e2:e2:11:f4:f9:d8:77:2e:
        07:ee:bb:c0:54:df:4d:4c:cc:70:9e:6f:d4:1a:c5:38
    Fingerprint (SHA-256):
        94:EE:75:E3:03:A5:81:78:CD:90:84:AF:FB:2B:DE:41:7F:A8:B8:EA:18:04:DC:95:19:C9:79:24:29:01:59:64
    Fingerprint (SHA1):
        EB:B0:14:DB:93:7B:22:6A:76:1E:33:89:E7:85:EF:6B:93:54:6E:C2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3660: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235699 (0x300e2e33)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:24 2017
            Not After : Sat Aug 06 23:56:24 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e4:86:75:c7:65:36:35:cb:61:fe:b0:ff:00:71:f3:90:
                    7e:4c:f9:36:72:54:3d:9d:a3:e1:35:04:52:1d:98:d5:
                    de:57:65:f6:dd:d8:63:5a:0d:74:af:80:aa:09:78:e1:
                    cd:ab:5a:20:2c:cf:19:e6:62:ed:2e:8a:b9:83:22:82:
                    7b:0a:53:fa:8c:b1:3c:7c:c3:16:d5:94:fb:29:31:56:
                    eb:09:29:8e:70:31:b7:92:6b:cc:70:24:30:ab:62:67:
                    8e:f8:85:48:de:5a:83:56:0b:a9:e4:df:bb:53:8e:fb:
                    b1:5a:6a:08:ba:b2:33:cf:df:9d:29:24:f6:31:b0:bc:
                    6a:5d:37:c6:a3:d0:b5:d1:6d:60:4e:84:24:19:77:15:
                    2e:72:0d:75:d5:14:7f:6d:97:4a:dc:1d:f5:1b:49:0b:
                    87:cf:1f:1d:67:44:fb:2e:e7:e9:ef:35:03:c6:9a:de:
                    ef:b1:dc:5a:66:4c:98:f0:9c:32:24:a7:39:e3:dc:62:
                    b4:99:15:bd:41:52:bc:67:39:21:8d:c7:f2:dd:06:e7:
                    39:7b:11:98:c6:0e:bf:5b:ca:10:93:00:25:a9:82:b2:
                    97:6c:d8:97:a4:87:83:5d:99:3f:20:5a:cf:d0:de:e8:
                    2f:97:4a:bc:07:cc:7f:6c:56:5a:27:02:63:13:f2:07
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b4:8e:00:83:b5:b3:a0:e0:fa:ca:cc:d1:87:80:9a:45:
        46:95:bb:f5:13:17:15:75:05:03:e9:9d:ca:57:4c:9d:
        e9:6a:5a:3b:2e:04:da:82:df:a6:1b:a5:2e:0a:0f:a7:
        75:ff:d6:5d:c2:57:37:8f:c3:12:32:cb:89:50:8e:c5:
        5a:a0:24:4f:fb:54:0c:74:bd:05:39:68:52:40:8b:c2:
        e7:af:ed:50:33:ed:a8:92:ea:d9:ee:87:32:9d:7a:7d:
        c1:fd:35:7f:dd:8e:1d:ac:b2:78:af:e2:d7:8f:14:bd:
        3c:42:54:e9:93:55:1a:9d:0a:f1:c3:63:85:21:f5:7c:
        12:91:e6:f6:09:0d:7a:37:c3:9b:f6:30:06:f8:c0:9c:
        40:50:ab:cd:1a:4d:ca:ba:3f:f7:28:0e:79:b6:3b:8f:
        be:fb:9b:24:47:43:7a:ca:18:b6:50:0a:cf:ec:a1:4b:
        d6:45:79:97:28:0b:43:6e:e5:3a:5a:a7:61:3b:72:23:
        66:8a:b4:1e:42:bf:49:02:32:73:c0:56:21:71:a3:5f:
        11:2e:b0:a1:7d:3e:01:78:77:81:8e:c6:65:b8:f0:12:
        3a:6c:c1:e9:82:2e:67:67:3e:6e:64:99:05:ca:a5:54:
        81:19:d5:8d:4e:ca:44:c9:56:37:71:90:e0:a2:1f:d4
    Fingerprint (SHA-256):
        AA:8A:62:4E:DC:7E:01:EF:3F:18:1C:A6:D5:4C:56:ED:53:91:72:F6:D9:18:45:FD:E7:18:30:5C:1D:1D:D2:F4
    Fingerprint (SHA1):
        7A:6A:89:A4:89:FE:4A:4C:71:D3:11:57:B8:AF:63:20:DA:DF:2E:36
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3661: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235699 (0x300e2e33)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:24 2017
            Not After : Sat Aug 06 23:56:24 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e4:86:75:c7:65:36:35:cb:61:fe:b0:ff:00:71:f3:90:
                    7e:4c:f9:36:72:54:3d:9d:a3:e1:35:04:52:1d:98:d5:
                    de:57:65:f6:dd:d8:63:5a:0d:74:af:80:aa:09:78:e1:
                    cd:ab:5a:20:2c:cf:19:e6:62:ed:2e:8a:b9:83:22:82:
                    7b:0a:53:fa:8c:b1:3c:7c:c3:16:d5:94:fb:29:31:56:
                    eb:09:29:8e:70:31:b7:92:6b:cc:70:24:30:ab:62:67:
                    8e:f8:85:48:de:5a:83:56:0b:a9:e4:df:bb:53:8e:fb:
                    b1:5a:6a:08:ba:b2:33:cf:df:9d:29:24:f6:31:b0:bc:
                    6a:5d:37:c6:a3:d0:b5:d1:6d:60:4e:84:24:19:77:15:
                    2e:72:0d:75:d5:14:7f:6d:97:4a:dc:1d:f5:1b:49:0b:
                    87:cf:1f:1d:67:44:fb:2e:e7:e9:ef:35:03:c6:9a:de:
                    ef:b1:dc:5a:66:4c:98:f0:9c:32:24:a7:39:e3:dc:62:
                    b4:99:15:bd:41:52:bc:67:39:21:8d:c7:f2:dd:06:e7:
                    39:7b:11:98:c6:0e:bf:5b:ca:10:93:00:25:a9:82:b2:
                    97:6c:d8:97:a4:87:83:5d:99:3f:20:5a:cf:d0:de:e8:
                    2f:97:4a:bc:07:cc:7f:6c:56:5a:27:02:63:13:f2:07
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b4:8e:00:83:b5:b3:a0:e0:fa:ca:cc:d1:87:80:9a:45:
        46:95:bb:f5:13:17:15:75:05:03:e9:9d:ca:57:4c:9d:
        e9:6a:5a:3b:2e:04:da:82:df:a6:1b:a5:2e:0a:0f:a7:
        75:ff:d6:5d:c2:57:37:8f:c3:12:32:cb:89:50:8e:c5:
        5a:a0:24:4f:fb:54:0c:74:bd:05:39:68:52:40:8b:c2:
        e7:af:ed:50:33:ed:a8:92:ea:d9:ee:87:32:9d:7a:7d:
        c1:fd:35:7f:dd:8e:1d:ac:b2:78:af:e2:d7:8f:14:bd:
        3c:42:54:e9:93:55:1a:9d:0a:f1:c3:63:85:21:f5:7c:
        12:91:e6:f6:09:0d:7a:37:c3:9b:f6:30:06:f8:c0:9c:
        40:50:ab:cd:1a:4d:ca:ba:3f:f7:28:0e:79:b6:3b:8f:
        be:fb:9b:24:47:43:7a:ca:18:b6:50:0a:cf:ec:a1:4b:
        d6:45:79:97:28:0b:43:6e:e5:3a:5a:a7:61:3b:72:23:
        66:8a:b4:1e:42:bf:49:02:32:73:c0:56:21:71:a3:5f:
        11:2e:b0:a1:7d:3e:01:78:77:81:8e:c6:65:b8:f0:12:
        3a:6c:c1:e9:82:2e:67:67:3e:6e:64:99:05:ca:a5:54:
        81:19:d5:8d:4e:ca:44:c9:56:37:71:90:e0:a2:1f:d4
    Fingerprint (SHA-256):
        AA:8A:62:4E:DC:7E:01:EF:3F:18:1C:A6:D5:4C:56:ED:53:91:72:F6:D9:18:45:FD:E7:18:30:5C:1D:1D:D2:F4
    Fingerprint (SHA1):
        7A:6A:89:A4:89:FE:4A:4C:71:D3:11:57:B8:AF:63:20:DA:DF:2E:36
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3662: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235700 (0x300e2e34)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:24 2017
            Not After : Sat Aug 06 23:56:24 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:8f:78:bc:64:10:90:05:e1:c7:86:99:e7:2c:89:b2:
                    41:9b:79:1c:f1:74:2c:8e:51:df:23:89:f7:93:cb:0f:
                    fa:6b:50:e1:d9:4a:33:ef:25:4f:95:f3:b1:5e:d6:80:
                    e4:39:24:bc:39:7b:53:d2:66:ac:1e:ac:52:eb:f0:f8:
                    b5:00:cd:db:b2:33:e5:21:6c:3d:59:09:cf:45:bb:d7:
                    04:64:99:06:c0:97:fc:a2:ca:b4:34:d9:ed:df:1d:22:
                    a8:af:1b:10:2a:02:48:17:b1:a8:07:05:31:7d:05:36:
                    74:11:86:be:10:2a:b7:8a:58:9a:f6:4b:b3:a9:c3:25:
                    76:2e:7d:29:d3:fa:a7:78:f8:03:98:fb:6c:fb:04:78:
                    92:71:f6:39:ff:e0:c6:66:55:58:e6:20:48:54:2a:c7:
                    83:a0:40:e6:87:dc:62:97:94:e9:25:46:62:54:28:42:
                    3e:20:bf:e2:c3:7e:70:b4:9a:b5:d7:2a:fe:c7:5a:d3:
                    f1:be:52:51:8d:09:cf:0c:91:67:73:37:f3:25:de:d6:
                    e7:46:61:c2:73:5a:37:a3:74:0f:78:eb:59:b7:a6:21:
                    5a:c9:bd:93:d6:db:5e:8d:c3:bf:c5:c1:ff:ca:36:d5:
                    3b:f9:37:da:c7:15:6d:6b:07:a3:14:b1:e3:cb:2f:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4a:cf:b2:f8:60:5c:15:91:98:45:c4:28:16:f0:f8:77:
        ca:c4:43:95:f3:2a:e8:b5:81:c4:e2:f9:c1:ac:8c:d1:
        99:21:29:2a:d7:eb:c0:35:36:34:f2:c3:b8:bb:c2:fa:
        99:7b:f4:88:e9:89:1d:ab:b9:bd:ec:9d:42:1d:75:78:
        69:af:0b:70:eb:60:45:e6:ca:a7:d0:73:97:73:c3:70:
        c6:b8:94:89:53:05:24:eb:33:07:08:91:d8:59:9d:b8:
        89:6d:96:11:27:74:a3:d4:16:63:43:66:17:c9:4e:a2:
        28:36:23:a0:2c:05:f6:58:ef:e5:e5:10:e6:28:4b:61:
        48:72:32:79:5f:bc:f0:93:c9:a7:6e:63:7a:ed:2e:98:
        fc:6e:a4:dc:7b:57:41:62:1b:e6:8e:6d:56:eb:50:0b:
        14:4b:7d:75:2b:da:20:80:7e:11:6a:90:79:34:13:2f:
        4b:72:1f:4a:b6:70:11:1f:45:5e:b9:dc:d6:bc:ee:25:
        87:f3:6e:d4:a6:b0:c3:d3:ad:16:4c:86:29:ad:e1:00:
        ab:d1:09:24:a5:e0:4f:98:c3:ee:b5:fe:90:e4:8f:61:
        4a:4e:b3:db:78:47:bc:61:32:92:78:45:f1:97:60:ea:
        2d:ef:3a:ab:6e:b2:e1:2f:48:bf:d9:0a:b6:c1:3c:a6
    Fingerprint (SHA-256):
        4D:42:F7:18:9F:F5:4D:5E:D2:0B:F7:F7:94:27:6B:8B:F0:8D:B1:D4:F6:66:D0:B5:B0:66:9E:0B:BA:89:FC:80
    Fingerprint (SHA1):
        5F:F7:BA:B3:50:04:B7:8E:9D:FD:6C:56:61:6C:9A:EA:11:20:B0:0B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3663: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235700 (0x300e2e34)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:24 2017
            Not After : Sat Aug 06 23:56:24 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:8f:78:bc:64:10:90:05:e1:c7:86:99:e7:2c:89:b2:
                    41:9b:79:1c:f1:74:2c:8e:51:df:23:89:f7:93:cb:0f:
                    fa:6b:50:e1:d9:4a:33:ef:25:4f:95:f3:b1:5e:d6:80:
                    e4:39:24:bc:39:7b:53:d2:66:ac:1e:ac:52:eb:f0:f8:
                    b5:00:cd:db:b2:33:e5:21:6c:3d:59:09:cf:45:bb:d7:
                    04:64:99:06:c0:97:fc:a2:ca:b4:34:d9:ed:df:1d:22:
                    a8:af:1b:10:2a:02:48:17:b1:a8:07:05:31:7d:05:36:
                    74:11:86:be:10:2a:b7:8a:58:9a:f6:4b:b3:a9:c3:25:
                    76:2e:7d:29:d3:fa:a7:78:f8:03:98:fb:6c:fb:04:78:
                    92:71:f6:39:ff:e0:c6:66:55:58:e6:20:48:54:2a:c7:
                    83:a0:40:e6:87:dc:62:97:94:e9:25:46:62:54:28:42:
                    3e:20:bf:e2:c3:7e:70:b4:9a:b5:d7:2a:fe:c7:5a:d3:
                    f1:be:52:51:8d:09:cf:0c:91:67:73:37:f3:25:de:d6:
                    e7:46:61:c2:73:5a:37:a3:74:0f:78:eb:59:b7:a6:21:
                    5a:c9:bd:93:d6:db:5e:8d:c3:bf:c5:c1:ff:ca:36:d5:
                    3b:f9:37:da:c7:15:6d:6b:07:a3:14:b1:e3:cb:2f:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4a:cf:b2:f8:60:5c:15:91:98:45:c4:28:16:f0:f8:77:
        ca:c4:43:95:f3:2a:e8:b5:81:c4:e2:f9:c1:ac:8c:d1:
        99:21:29:2a:d7:eb:c0:35:36:34:f2:c3:b8:bb:c2:fa:
        99:7b:f4:88:e9:89:1d:ab:b9:bd:ec:9d:42:1d:75:78:
        69:af:0b:70:eb:60:45:e6:ca:a7:d0:73:97:73:c3:70:
        c6:b8:94:89:53:05:24:eb:33:07:08:91:d8:59:9d:b8:
        89:6d:96:11:27:74:a3:d4:16:63:43:66:17:c9:4e:a2:
        28:36:23:a0:2c:05:f6:58:ef:e5:e5:10:e6:28:4b:61:
        48:72:32:79:5f:bc:f0:93:c9:a7:6e:63:7a:ed:2e:98:
        fc:6e:a4:dc:7b:57:41:62:1b:e6:8e:6d:56:eb:50:0b:
        14:4b:7d:75:2b:da:20:80:7e:11:6a:90:79:34:13:2f:
        4b:72:1f:4a:b6:70:11:1f:45:5e:b9:dc:d6:bc:ee:25:
        87:f3:6e:d4:a6:b0:c3:d3:ad:16:4c:86:29:ad:e1:00:
        ab:d1:09:24:a5:e0:4f:98:c3:ee:b5:fe:90:e4:8f:61:
        4a:4e:b3:db:78:47:bc:61:32:92:78:45:f1:97:60:ea:
        2d:ef:3a:ab:6e:b2:e1:2f:48:bf:d9:0a:b6:c1:3c:a6
    Fingerprint (SHA-256):
        4D:42:F7:18:9F:F5:4D:5E:D2:0B:F7:F7:94:27:6B:8B:F0:8D:B1:D4:F6:66:D0:B5:B0:66:9E:0B:BA:89:FC:80
    Fingerprint (SHA1):
        5F:F7:BA:B3:50:04:B7:8E:9D:FD:6C:56:61:6C:9A:EA:11:20:B0:0B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3664: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #3665: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235703 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3666: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #3667: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3668: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3669: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 806235704   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3670: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3671: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3672: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3673: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 806235705   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #3674: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3675: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #3676: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3677: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 806235706   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3678: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3679: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #3680: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3681: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 806235707   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3682: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3683: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #3684: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3685: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 806235708   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3686: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3687: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #3688: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3689: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 806235709   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3690: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3691: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3692: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #3693: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #3694: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3695: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #3696: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235703 (0x300e2e37)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:25 2017
            Not After : Sat Aug 06 23:56:25 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:30:18:8a:39:e1:97:c9:54:78:b6:bf:ce:a6:ef:59:
                    f8:51:9e:88:bd:9a:7d:c1:06:3f:04:df:1d:4e:47:62:
                    ab:d8:8a:bf:b4:87:20:e3:da:fa:0a:9b:8f:5f:f4:52:
                    70:c4:bd:f7:79:5f:21:cb:a1:32:8b:de:08:64:54:33:
                    56:4f:e8:76:a8:df:13:dc:b0:86:e3:1c:33:d4:8e:81:
                    72:4a:8b:94:b8:9b:29:04:6a:29:dc:79:63:6b:a9:a8:
                    06:12:bd:ce:f7:d9:e9:ce:fe:1f:6b:52:0b:70:60:e1:
                    54:a3:67:de:92:69:89:d1:5d:79:6a:8d:1d:5e:1b:bf:
                    88:aa:9d:45:0f:b0:37:b2:33:c0:d9:3d:59:01:d5:6f:
                    e8:41:7c:74:7d:b3:2a:01:bc:6f:4b:5a:35:ea:45:76:
                    2e:90:3d:f5:95:74:c5:43:36:b9:0c:ea:8f:18:f7:2f:
                    ae:4d:77:2c:a1:b0:f8:31:f9:d6:66:66:08:0d:91:c5:
                    b8:5f:96:cb:ac:e9:dd:bd:dd:31:a7:9e:af:f4:11:fa:
                    de:a4:9d:21:f1:c7:51:f4:6e:8b:9b:f3:cf:c2:bd:63:
                    54:07:d1:b0:36:8a:52:a6:f6:43:a8:24:73:5e:39:77:
                    bd:36:34:ac:c3:cc:b6:88:36:50:00:e3:c4:e2:11:a5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ac:0d:68:53:e7:d6:eb:5e:c4:85:d4:3f:0c:7b:dc:60:
        22:d0:89:52:35:2d:a0:ce:6f:ae:77:6e:ff:9e:ae:56:
        d4:2d:8e:24:c7:d6:24:78:a5:7d:19:9c:62:a0:bd:d2:
        dd:77:94:5e:d4:a2:1c:c4:e9:38:d2:59:d7:6e:db:3c:
        29:12:2f:04:a7:ca:d2:29:50:1a:82:c5:15:b3:06:ce:
        ed:3a:24:79:c8:03:f0:ce:30:85:bc:dd:32:80:47:24:
        dd:a3:56:5d:cb:92:08:12:0e:47:b0:98:c9:ed:a2:d6:
        31:92:50:d7:fb:21:ba:b9:3b:d2:6b:e8:8e:8d:12:6e:
        f1:c4:8b:a8:97:ba:32:84:de:18:8b:f0:1c:dc:45:a0:
        b3:65:05:ba:76:04:0c:f8:44:b4:44:9f:29:f3:0c:a6:
        85:19:fb:cb:92:d2:b8:e3:29:1c:e5:33:6d:ab:10:4a:
        82:1b:c2:75:cf:69:cc:50:42:ba:0e:ea:d4:bc:d9:3a:
        91:bf:e8:2f:00:fc:5a:87:27:c8:c0:78:61:56:d6:f1:
        60:91:1d:67:08:50:4c:4b:1d:7c:c1:e6:95:29:07:64:
        fa:c0:06:33:75:fb:ba:f5:1f:8c:1d:98:a3:a6:2c:d3:
        00:33:42:5e:2a:1d:ba:cb:4f:d1:38:ee:6c:4a:be:e9
    Fingerprint (SHA-256):
        04:4A:BE:C8:0E:C2:66:84:CC:B0:F5:52:66:F8:3B:BC:41:6C:CA:63:7D:B0:64:A1:20:F9:AB:0A:3B:92:E0:BA
    Fingerprint (SHA1):
        5F:39:A1:97:D1:06:7B:81:28:45:9C:78:17:CA:36:C3:09:DF:7A:28
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3697: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3698: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3699: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3700: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235703 (0x300e2e37)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:25 2017
            Not After : Sat Aug 06 23:56:25 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:30:18:8a:39:e1:97:c9:54:78:b6:bf:ce:a6:ef:59:
                    f8:51:9e:88:bd:9a:7d:c1:06:3f:04:df:1d:4e:47:62:
                    ab:d8:8a:bf:b4:87:20:e3:da:fa:0a:9b:8f:5f:f4:52:
                    70:c4:bd:f7:79:5f:21:cb:a1:32:8b:de:08:64:54:33:
                    56:4f:e8:76:a8:df:13:dc:b0:86:e3:1c:33:d4:8e:81:
                    72:4a:8b:94:b8:9b:29:04:6a:29:dc:79:63:6b:a9:a8:
                    06:12:bd:ce:f7:d9:e9:ce:fe:1f:6b:52:0b:70:60:e1:
                    54:a3:67:de:92:69:89:d1:5d:79:6a:8d:1d:5e:1b:bf:
                    88:aa:9d:45:0f:b0:37:b2:33:c0:d9:3d:59:01:d5:6f:
                    e8:41:7c:74:7d:b3:2a:01:bc:6f:4b:5a:35:ea:45:76:
                    2e:90:3d:f5:95:74:c5:43:36:b9:0c:ea:8f:18:f7:2f:
                    ae:4d:77:2c:a1:b0:f8:31:f9:d6:66:66:08:0d:91:c5:
                    b8:5f:96:cb:ac:e9:dd:bd:dd:31:a7:9e:af:f4:11:fa:
                    de:a4:9d:21:f1:c7:51:f4:6e:8b:9b:f3:cf:c2:bd:63:
                    54:07:d1:b0:36:8a:52:a6:f6:43:a8:24:73:5e:39:77:
                    bd:36:34:ac:c3:cc:b6:88:36:50:00:e3:c4:e2:11:a5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ac:0d:68:53:e7:d6:eb:5e:c4:85:d4:3f:0c:7b:dc:60:
        22:d0:89:52:35:2d:a0:ce:6f:ae:77:6e:ff:9e:ae:56:
        d4:2d:8e:24:c7:d6:24:78:a5:7d:19:9c:62:a0:bd:d2:
        dd:77:94:5e:d4:a2:1c:c4:e9:38:d2:59:d7:6e:db:3c:
        29:12:2f:04:a7:ca:d2:29:50:1a:82:c5:15:b3:06:ce:
        ed:3a:24:79:c8:03:f0:ce:30:85:bc:dd:32:80:47:24:
        dd:a3:56:5d:cb:92:08:12:0e:47:b0:98:c9:ed:a2:d6:
        31:92:50:d7:fb:21:ba:b9:3b:d2:6b:e8:8e:8d:12:6e:
        f1:c4:8b:a8:97:ba:32:84:de:18:8b:f0:1c:dc:45:a0:
        b3:65:05:ba:76:04:0c:f8:44:b4:44:9f:29:f3:0c:a6:
        85:19:fb:cb:92:d2:b8:e3:29:1c:e5:33:6d:ab:10:4a:
        82:1b:c2:75:cf:69:cc:50:42:ba:0e:ea:d4:bc:d9:3a:
        91:bf:e8:2f:00:fc:5a:87:27:c8:c0:78:61:56:d6:f1:
        60:91:1d:67:08:50:4c:4b:1d:7c:c1:e6:95:29:07:64:
        fa:c0:06:33:75:fb:ba:f5:1f:8c:1d:98:a3:a6:2c:d3:
        00:33:42:5e:2a:1d:ba:cb:4f:d1:38:ee:6c:4a:be:e9
    Fingerprint (SHA-256):
        04:4A:BE:C8:0E:C2:66:84:CC:B0:F5:52:66:F8:3B:BC:41:6C:CA:63:7D:B0:64:A1:20:F9:AB:0A:3B:92:E0:BA
    Fingerprint (SHA1):
        5F:39:A1:97:D1:06:7B:81:28:45:9C:78:17:CA:36:C3:09:DF:7A:28
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3701: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3702: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #3703: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235710 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3704: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #3705: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3706: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3707: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 806235711   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #3708: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3709: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #3710: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3711: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 806235712   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3712: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3713: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #3714: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3715: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 806235713   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3716: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3717: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3718: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3719: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 806235714   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3720: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3721: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #3722: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3723: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 806235715   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3724: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3725: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #3726: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3727: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 806235716   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3728: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3729: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3730: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3731: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 806235717   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3732: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3733: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #3734: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3735: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 806235718   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #3736: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3737: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #3738: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3739: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 806235719   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3740: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3741: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #3742: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3743: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 806235720   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3744: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3745: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #3746: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3747: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 806235721   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3748: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3749: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #3750: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3751: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 806235722   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3752: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3753: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #3754: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3755: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 806235723   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3756: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3757: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #3758: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3759: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 806235724   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3760: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3761: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #3762: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3763: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 806235725   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3764: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3765: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #3766: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3767: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 806235726   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3768: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3769: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #3770: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3771: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 806235727   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #3772: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3773: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #3774: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3775: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 806235728   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3776: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3777: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #3778: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3779: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 806235729   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3780: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3781: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #3782: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3783: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 806235730   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3784: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3785: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #3786: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3787: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 806235731   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3788: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3789: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #3790: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3791: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 806235732   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3792: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3793: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #3794: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3795: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 806235733   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3796: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3797: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #3798: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3799: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 806235734   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3800: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3801: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #3802: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3803: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 806235735   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3804: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3805: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #3806: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3807: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 806235736   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3808: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3809: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #3810: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3811: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 806235737   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3812: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3813: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #3814: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3815: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 806235738   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3816: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3817: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #3818: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3819: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 806235739   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3820: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3821: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3822: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235710 (0x300e2e3e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:27 2017
            Not After : Sat Aug 06 23:56:27 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:5e:e2:60:68:c2:26:c5:24:df:0a:78:96:ba:d7:1e:
                    ab:11:90:1f:0a:ec:2a:2e:5f:0b:77:63:18:e4:92:52:
                    5d:b7:67:4b:ec:b6:9c:ff:15:6d:03:8b:21:be:6f:8b:
                    c9:7d:8c:5c:92:52:d7:fa:63:b3:db:cb:3d:c3:33:78:
                    7a:31:e8:5a:1e:df:77:97:5c:d0:f7:71:91:f3:dd:95:
                    b2:4e:c7:2a:a0:16:91:5a:37:a6:6f:49:a2:87:a7:9b:
                    92:f4:cb:ad:0d:11:d1:7e:b4:3b:66:71:9c:cc:c2:c3:
                    3f:3e:20:8c:41:09:9b:aa:10:31:44:3d:83:a5:f3:6b:
                    99:4f:c1:25:ed:f7:dc:e6:e4:e2:49:51:81:d1:f6:56:
                    6e:cd:66:46:92:52:c3:7a:d4:b1:01:3b:60:ec:35:04:
                    79:12:8e:b4:22:a6:ac:a9:e3:eb:e8:92:4c:97:d8:60:
                    b5:88:dd:f7:0d:79:36:6e:58:04:38:8f:61:9c:94:61:
                    3c:88:24:bb:e4:60:e5:24:30:f1:81:5c:47:75:f6:e2:
                    3f:61:53:60:bf:47:01:c3:35:90:e2:08:ca:71:a8:74:
                    38:01:4b:ee:bc:e9:a2:9c:90:69:6f:ba:48:6f:c2:de:
                    aa:0c:df:a2:86:b2:dd:0d:f2:31:ac:07:55:3e:c9:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ba:0e:14:23:49:bd:60:43:51:32:95:8d:12:24:9b:5a:
        2c:cd:d3:32:04:dc:ab:1e:12:09:2e:88:32:f8:9d:56:
        d4:6a:08:df:54:92:41:68:db:f1:8f:27:46:0d:0a:dd:
        f6:6f:68:74:2a:d4:d1:d9:f4:85:83:d4:69:a6:9d:59:
        04:c7:b4:f8:35:e4:20:86:7f:32:c6:aa:49:7c:95:57:
        f3:1d:68:09:83:05:ec:9b:05:b1:a5:0d:0c:a4:ef:2c:
        e5:54:c3:5b:bc:8f:95:e8:dd:32:23:72:21:80:fc:a1:
        dc:fd:21:e7:ad:6b:ce:53:86:54:f5:ed:12:26:3d:69:
        76:20:5a:46:3f:8e:8e:d7:3c:1b:63:42:c1:d1:7d:e3:
        f8:a5:04:29:e8:81:dc:84:69:4c:3a:f6:ee:4c:79:91:
        13:e6:e3:20:17:55:b3:a7:f6:36:70:e8:24:6b:c3:17:
        f1:2b:c2:8a:e8:4c:e3:b3:b3:70:52:46:b6:cb:a7:e2:
        a6:5c:f0:22:6b:40:08:65:8c:aa:48:3a:ba:5a:66:37:
        4c:ca:32:05:bb:c1:3b:90:ef:5d:70:e2:42:c8:ff:c5:
        51:28:44:e7:bd:a0:eb:1f:90:b8:96:d4:6a:5d:0f:80:
        cb:3a:d2:99:7c:50:14:da:87:ba:ed:6c:4d:d9:1c:04
    Fingerprint (SHA-256):
        5B:DA:75:37:8C:99:CF:4C:73:67:64:4D:D9:27:D2:5F:E4:24:6A:CB:77:1E:4B:CA:38:43:4D:41:F6:B4:C3:8D
    Fingerprint (SHA1):
        AC:A1:E7:B0:EC:F1:C4:C0:F9:C4:A2:3A:FA:9D:F2:BB:CE:D4:A8:04
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3823: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3824: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235710 (0x300e2e3e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:27 2017
            Not After : Sat Aug 06 23:56:27 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:5e:e2:60:68:c2:26:c5:24:df:0a:78:96:ba:d7:1e:
                    ab:11:90:1f:0a:ec:2a:2e:5f:0b:77:63:18:e4:92:52:
                    5d:b7:67:4b:ec:b6:9c:ff:15:6d:03:8b:21:be:6f:8b:
                    c9:7d:8c:5c:92:52:d7:fa:63:b3:db:cb:3d:c3:33:78:
                    7a:31:e8:5a:1e:df:77:97:5c:d0:f7:71:91:f3:dd:95:
                    b2:4e:c7:2a:a0:16:91:5a:37:a6:6f:49:a2:87:a7:9b:
                    92:f4:cb:ad:0d:11:d1:7e:b4:3b:66:71:9c:cc:c2:c3:
                    3f:3e:20:8c:41:09:9b:aa:10:31:44:3d:83:a5:f3:6b:
                    99:4f:c1:25:ed:f7:dc:e6:e4:e2:49:51:81:d1:f6:56:
                    6e:cd:66:46:92:52:c3:7a:d4:b1:01:3b:60:ec:35:04:
                    79:12:8e:b4:22:a6:ac:a9:e3:eb:e8:92:4c:97:d8:60:
                    b5:88:dd:f7:0d:79:36:6e:58:04:38:8f:61:9c:94:61:
                    3c:88:24:bb:e4:60:e5:24:30:f1:81:5c:47:75:f6:e2:
                    3f:61:53:60:bf:47:01:c3:35:90:e2:08:ca:71:a8:74:
                    38:01:4b:ee:bc:e9:a2:9c:90:69:6f:ba:48:6f:c2:de:
                    aa:0c:df:a2:86:b2:dd:0d:f2:31:ac:07:55:3e:c9:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ba:0e:14:23:49:bd:60:43:51:32:95:8d:12:24:9b:5a:
        2c:cd:d3:32:04:dc:ab:1e:12:09:2e:88:32:f8:9d:56:
        d4:6a:08:df:54:92:41:68:db:f1:8f:27:46:0d:0a:dd:
        f6:6f:68:74:2a:d4:d1:d9:f4:85:83:d4:69:a6:9d:59:
        04:c7:b4:f8:35:e4:20:86:7f:32:c6:aa:49:7c:95:57:
        f3:1d:68:09:83:05:ec:9b:05:b1:a5:0d:0c:a4:ef:2c:
        e5:54:c3:5b:bc:8f:95:e8:dd:32:23:72:21:80:fc:a1:
        dc:fd:21:e7:ad:6b:ce:53:86:54:f5:ed:12:26:3d:69:
        76:20:5a:46:3f:8e:8e:d7:3c:1b:63:42:c1:d1:7d:e3:
        f8:a5:04:29:e8:81:dc:84:69:4c:3a:f6:ee:4c:79:91:
        13:e6:e3:20:17:55:b3:a7:f6:36:70:e8:24:6b:c3:17:
        f1:2b:c2:8a:e8:4c:e3:b3:b3:70:52:46:b6:cb:a7:e2:
        a6:5c:f0:22:6b:40:08:65:8c:aa:48:3a:ba:5a:66:37:
        4c:ca:32:05:bb:c1:3b:90:ef:5d:70:e2:42:c8:ff:c5:
        51:28:44:e7:bd:a0:eb:1f:90:b8:96:d4:6a:5d:0f:80:
        cb:3a:d2:99:7c:50:14:da:87:ba:ed:6c:4d:d9:1c:04
    Fingerprint (SHA-256):
        5B:DA:75:37:8C:99:CF:4C:73:67:64:4D:D9:27:D2:5F:E4:24:6A:CB:77:1E:4B:CA:38:43:4D:41:F6:B4:C3:8D
    Fingerprint (SHA1):
        AC:A1:E7:B0:EC:F1:C4:C0:F9:C4:A2:3A:FA:9D:F2:BB:CE:D4:A8:04
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3825: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3826: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3827: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3828: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235710 (0x300e2e3e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:27 2017
            Not After : Sat Aug 06 23:56:27 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:5e:e2:60:68:c2:26:c5:24:df:0a:78:96:ba:d7:1e:
                    ab:11:90:1f:0a:ec:2a:2e:5f:0b:77:63:18:e4:92:52:
                    5d:b7:67:4b:ec:b6:9c:ff:15:6d:03:8b:21:be:6f:8b:
                    c9:7d:8c:5c:92:52:d7:fa:63:b3:db:cb:3d:c3:33:78:
                    7a:31:e8:5a:1e:df:77:97:5c:d0:f7:71:91:f3:dd:95:
                    b2:4e:c7:2a:a0:16:91:5a:37:a6:6f:49:a2:87:a7:9b:
                    92:f4:cb:ad:0d:11:d1:7e:b4:3b:66:71:9c:cc:c2:c3:
                    3f:3e:20:8c:41:09:9b:aa:10:31:44:3d:83:a5:f3:6b:
                    99:4f:c1:25:ed:f7:dc:e6:e4:e2:49:51:81:d1:f6:56:
                    6e:cd:66:46:92:52:c3:7a:d4:b1:01:3b:60:ec:35:04:
                    79:12:8e:b4:22:a6:ac:a9:e3:eb:e8:92:4c:97:d8:60:
                    b5:88:dd:f7:0d:79:36:6e:58:04:38:8f:61:9c:94:61:
                    3c:88:24:bb:e4:60:e5:24:30:f1:81:5c:47:75:f6:e2:
                    3f:61:53:60:bf:47:01:c3:35:90:e2:08:ca:71:a8:74:
                    38:01:4b:ee:bc:e9:a2:9c:90:69:6f:ba:48:6f:c2:de:
                    aa:0c:df:a2:86:b2:dd:0d:f2:31:ac:07:55:3e:c9:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ba:0e:14:23:49:bd:60:43:51:32:95:8d:12:24:9b:5a:
        2c:cd:d3:32:04:dc:ab:1e:12:09:2e:88:32:f8:9d:56:
        d4:6a:08:df:54:92:41:68:db:f1:8f:27:46:0d:0a:dd:
        f6:6f:68:74:2a:d4:d1:d9:f4:85:83:d4:69:a6:9d:59:
        04:c7:b4:f8:35:e4:20:86:7f:32:c6:aa:49:7c:95:57:
        f3:1d:68:09:83:05:ec:9b:05:b1:a5:0d:0c:a4:ef:2c:
        e5:54:c3:5b:bc:8f:95:e8:dd:32:23:72:21:80:fc:a1:
        dc:fd:21:e7:ad:6b:ce:53:86:54:f5:ed:12:26:3d:69:
        76:20:5a:46:3f:8e:8e:d7:3c:1b:63:42:c1:d1:7d:e3:
        f8:a5:04:29:e8:81:dc:84:69:4c:3a:f6:ee:4c:79:91:
        13:e6:e3:20:17:55:b3:a7:f6:36:70:e8:24:6b:c3:17:
        f1:2b:c2:8a:e8:4c:e3:b3:b3:70:52:46:b6:cb:a7:e2:
        a6:5c:f0:22:6b:40:08:65:8c:aa:48:3a:ba:5a:66:37:
        4c:ca:32:05:bb:c1:3b:90:ef:5d:70:e2:42:c8:ff:c5:
        51:28:44:e7:bd:a0:eb:1f:90:b8:96:d4:6a:5d:0f:80:
        cb:3a:d2:99:7c:50:14:da:87:ba:ed:6c:4d:d9:1c:04
    Fingerprint (SHA-256):
        5B:DA:75:37:8C:99:CF:4C:73:67:64:4D:D9:27:D2:5F:E4:24:6A:CB:77:1E:4B:CA:38:43:4D:41:F6:B4:C3:8D
    Fingerprint (SHA1):
        AC:A1:E7:B0:EC:F1:C4:C0:F9:C4:A2:3A:FA:9D:F2:BB:CE:D4:A8:04
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3829: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3830: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3831: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3832: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235710 (0x300e2e3e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:27 2017
            Not After : Sat Aug 06 23:56:27 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:5e:e2:60:68:c2:26:c5:24:df:0a:78:96:ba:d7:1e:
                    ab:11:90:1f:0a:ec:2a:2e:5f:0b:77:63:18:e4:92:52:
                    5d:b7:67:4b:ec:b6:9c:ff:15:6d:03:8b:21:be:6f:8b:
                    c9:7d:8c:5c:92:52:d7:fa:63:b3:db:cb:3d:c3:33:78:
                    7a:31:e8:5a:1e:df:77:97:5c:d0:f7:71:91:f3:dd:95:
                    b2:4e:c7:2a:a0:16:91:5a:37:a6:6f:49:a2:87:a7:9b:
                    92:f4:cb:ad:0d:11:d1:7e:b4:3b:66:71:9c:cc:c2:c3:
                    3f:3e:20:8c:41:09:9b:aa:10:31:44:3d:83:a5:f3:6b:
                    99:4f:c1:25:ed:f7:dc:e6:e4:e2:49:51:81:d1:f6:56:
                    6e:cd:66:46:92:52:c3:7a:d4:b1:01:3b:60:ec:35:04:
                    79:12:8e:b4:22:a6:ac:a9:e3:eb:e8:92:4c:97:d8:60:
                    b5:88:dd:f7:0d:79:36:6e:58:04:38:8f:61:9c:94:61:
                    3c:88:24:bb:e4:60:e5:24:30:f1:81:5c:47:75:f6:e2:
                    3f:61:53:60:bf:47:01:c3:35:90:e2:08:ca:71:a8:74:
                    38:01:4b:ee:bc:e9:a2:9c:90:69:6f:ba:48:6f:c2:de:
                    aa:0c:df:a2:86:b2:dd:0d:f2:31:ac:07:55:3e:c9:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ba:0e:14:23:49:bd:60:43:51:32:95:8d:12:24:9b:5a:
        2c:cd:d3:32:04:dc:ab:1e:12:09:2e:88:32:f8:9d:56:
        d4:6a:08:df:54:92:41:68:db:f1:8f:27:46:0d:0a:dd:
        f6:6f:68:74:2a:d4:d1:d9:f4:85:83:d4:69:a6:9d:59:
        04:c7:b4:f8:35:e4:20:86:7f:32:c6:aa:49:7c:95:57:
        f3:1d:68:09:83:05:ec:9b:05:b1:a5:0d:0c:a4:ef:2c:
        e5:54:c3:5b:bc:8f:95:e8:dd:32:23:72:21:80:fc:a1:
        dc:fd:21:e7:ad:6b:ce:53:86:54:f5:ed:12:26:3d:69:
        76:20:5a:46:3f:8e:8e:d7:3c:1b:63:42:c1:d1:7d:e3:
        f8:a5:04:29:e8:81:dc:84:69:4c:3a:f6:ee:4c:79:91:
        13:e6:e3:20:17:55:b3:a7:f6:36:70:e8:24:6b:c3:17:
        f1:2b:c2:8a:e8:4c:e3:b3:b3:70:52:46:b6:cb:a7:e2:
        a6:5c:f0:22:6b:40:08:65:8c:aa:48:3a:ba:5a:66:37:
        4c:ca:32:05:bb:c1:3b:90:ef:5d:70:e2:42:c8:ff:c5:
        51:28:44:e7:bd:a0:eb:1f:90:b8:96:d4:6a:5d:0f:80:
        cb:3a:d2:99:7c:50:14:da:87:ba:ed:6c:4d:d9:1c:04
    Fingerprint (SHA-256):
        5B:DA:75:37:8C:99:CF:4C:73:67:64:4D:D9:27:D2:5F:E4:24:6A:CB:77:1E:4B:CA:38:43:4D:41:F6:B4:C3:8D
    Fingerprint (SHA1):
        AC:A1:E7:B0:EC:F1:C4:C0:F9:C4:A2:3A:FA:9D:F2:BB:CE:D4:A8:04
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3833: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235710 (0x300e2e3e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:27 2017
            Not After : Sat Aug 06 23:56:27 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:5e:e2:60:68:c2:26:c5:24:df:0a:78:96:ba:d7:1e:
                    ab:11:90:1f:0a:ec:2a:2e:5f:0b:77:63:18:e4:92:52:
                    5d:b7:67:4b:ec:b6:9c:ff:15:6d:03:8b:21:be:6f:8b:
                    c9:7d:8c:5c:92:52:d7:fa:63:b3:db:cb:3d:c3:33:78:
                    7a:31:e8:5a:1e:df:77:97:5c:d0:f7:71:91:f3:dd:95:
                    b2:4e:c7:2a:a0:16:91:5a:37:a6:6f:49:a2:87:a7:9b:
                    92:f4:cb:ad:0d:11:d1:7e:b4:3b:66:71:9c:cc:c2:c3:
                    3f:3e:20:8c:41:09:9b:aa:10:31:44:3d:83:a5:f3:6b:
                    99:4f:c1:25:ed:f7:dc:e6:e4:e2:49:51:81:d1:f6:56:
                    6e:cd:66:46:92:52:c3:7a:d4:b1:01:3b:60:ec:35:04:
                    79:12:8e:b4:22:a6:ac:a9:e3:eb:e8:92:4c:97:d8:60:
                    b5:88:dd:f7:0d:79:36:6e:58:04:38:8f:61:9c:94:61:
                    3c:88:24:bb:e4:60:e5:24:30:f1:81:5c:47:75:f6:e2:
                    3f:61:53:60:bf:47:01:c3:35:90:e2:08:ca:71:a8:74:
                    38:01:4b:ee:bc:e9:a2:9c:90:69:6f:ba:48:6f:c2:de:
                    aa:0c:df:a2:86:b2:dd:0d:f2:31:ac:07:55:3e:c9:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ba:0e:14:23:49:bd:60:43:51:32:95:8d:12:24:9b:5a:
        2c:cd:d3:32:04:dc:ab:1e:12:09:2e:88:32:f8:9d:56:
        d4:6a:08:df:54:92:41:68:db:f1:8f:27:46:0d:0a:dd:
        f6:6f:68:74:2a:d4:d1:d9:f4:85:83:d4:69:a6:9d:59:
        04:c7:b4:f8:35:e4:20:86:7f:32:c6:aa:49:7c:95:57:
        f3:1d:68:09:83:05:ec:9b:05:b1:a5:0d:0c:a4:ef:2c:
        e5:54:c3:5b:bc:8f:95:e8:dd:32:23:72:21:80:fc:a1:
        dc:fd:21:e7:ad:6b:ce:53:86:54:f5:ed:12:26:3d:69:
        76:20:5a:46:3f:8e:8e:d7:3c:1b:63:42:c1:d1:7d:e3:
        f8:a5:04:29:e8:81:dc:84:69:4c:3a:f6:ee:4c:79:91:
        13:e6:e3:20:17:55:b3:a7:f6:36:70:e8:24:6b:c3:17:
        f1:2b:c2:8a:e8:4c:e3:b3:b3:70:52:46:b6:cb:a7:e2:
        a6:5c:f0:22:6b:40:08:65:8c:aa:48:3a:ba:5a:66:37:
        4c:ca:32:05:bb:c1:3b:90:ef:5d:70:e2:42:c8:ff:c5:
        51:28:44:e7:bd:a0:eb:1f:90:b8:96:d4:6a:5d:0f:80:
        cb:3a:d2:99:7c:50:14:da:87:ba:ed:6c:4d:d9:1c:04
    Fingerprint (SHA-256):
        5B:DA:75:37:8C:99:CF:4C:73:67:64:4D:D9:27:D2:5F:E4:24:6A:CB:77:1E:4B:CA:38:43:4D:41:F6:B4:C3:8D
    Fingerprint (SHA1):
        AC:A1:E7:B0:EC:F1:C4:C0:F9:C4:A2:3A:FA:9D:F2:BB:CE:D4:A8:04
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3834: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3835: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235710 (0x300e2e3e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:27 2017
            Not After : Sat Aug 06 23:56:27 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:5e:e2:60:68:c2:26:c5:24:df:0a:78:96:ba:d7:1e:
                    ab:11:90:1f:0a:ec:2a:2e:5f:0b:77:63:18:e4:92:52:
                    5d:b7:67:4b:ec:b6:9c:ff:15:6d:03:8b:21:be:6f:8b:
                    c9:7d:8c:5c:92:52:d7:fa:63:b3:db:cb:3d:c3:33:78:
                    7a:31:e8:5a:1e:df:77:97:5c:d0:f7:71:91:f3:dd:95:
                    b2:4e:c7:2a:a0:16:91:5a:37:a6:6f:49:a2:87:a7:9b:
                    92:f4:cb:ad:0d:11:d1:7e:b4:3b:66:71:9c:cc:c2:c3:
                    3f:3e:20:8c:41:09:9b:aa:10:31:44:3d:83:a5:f3:6b:
                    99:4f:c1:25:ed:f7:dc:e6:e4:e2:49:51:81:d1:f6:56:
                    6e:cd:66:46:92:52:c3:7a:d4:b1:01:3b:60:ec:35:04:
                    79:12:8e:b4:22:a6:ac:a9:e3:eb:e8:92:4c:97:d8:60:
                    b5:88:dd:f7:0d:79:36:6e:58:04:38:8f:61:9c:94:61:
                    3c:88:24:bb:e4:60:e5:24:30:f1:81:5c:47:75:f6:e2:
                    3f:61:53:60:bf:47:01:c3:35:90:e2:08:ca:71:a8:74:
                    38:01:4b:ee:bc:e9:a2:9c:90:69:6f:ba:48:6f:c2:de:
                    aa:0c:df:a2:86:b2:dd:0d:f2:31:ac:07:55:3e:c9:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ba:0e:14:23:49:bd:60:43:51:32:95:8d:12:24:9b:5a:
        2c:cd:d3:32:04:dc:ab:1e:12:09:2e:88:32:f8:9d:56:
        d4:6a:08:df:54:92:41:68:db:f1:8f:27:46:0d:0a:dd:
        f6:6f:68:74:2a:d4:d1:d9:f4:85:83:d4:69:a6:9d:59:
        04:c7:b4:f8:35:e4:20:86:7f:32:c6:aa:49:7c:95:57:
        f3:1d:68:09:83:05:ec:9b:05:b1:a5:0d:0c:a4:ef:2c:
        e5:54:c3:5b:bc:8f:95:e8:dd:32:23:72:21:80:fc:a1:
        dc:fd:21:e7:ad:6b:ce:53:86:54:f5:ed:12:26:3d:69:
        76:20:5a:46:3f:8e:8e:d7:3c:1b:63:42:c1:d1:7d:e3:
        f8:a5:04:29:e8:81:dc:84:69:4c:3a:f6:ee:4c:79:91:
        13:e6:e3:20:17:55:b3:a7:f6:36:70:e8:24:6b:c3:17:
        f1:2b:c2:8a:e8:4c:e3:b3:b3:70:52:46:b6:cb:a7:e2:
        a6:5c:f0:22:6b:40:08:65:8c:aa:48:3a:ba:5a:66:37:
        4c:ca:32:05:bb:c1:3b:90:ef:5d:70:e2:42:c8:ff:c5:
        51:28:44:e7:bd:a0:eb:1f:90:b8:96:d4:6a:5d:0f:80:
        cb:3a:d2:99:7c:50:14:da:87:ba:ed:6c:4d:d9:1c:04
    Fingerprint (SHA-256):
        5B:DA:75:37:8C:99:CF:4C:73:67:64:4D:D9:27:D2:5F:E4:24:6A:CB:77:1E:4B:CA:38:43:4D:41:F6:B4:C3:8D
    Fingerprint (SHA1):
        AC:A1:E7:B0:EC:F1:C4:C0:F9:C4:A2:3A:FA:9D:F2:BB:CE:D4:A8:04
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3836: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3837: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3838: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3839: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235710 (0x300e2e3e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:27 2017
            Not After : Sat Aug 06 23:56:27 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:5e:e2:60:68:c2:26:c5:24:df:0a:78:96:ba:d7:1e:
                    ab:11:90:1f:0a:ec:2a:2e:5f:0b:77:63:18:e4:92:52:
                    5d:b7:67:4b:ec:b6:9c:ff:15:6d:03:8b:21:be:6f:8b:
                    c9:7d:8c:5c:92:52:d7:fa:63:b3:db:cb:3d:c3:33:78:
                    7a:31:e8:5a:1e:df:77:97:5c:d0:f7:71:91:f3:dd:95:
                    b2:4e:c7:2a:a0:16:91:5a:37:a6:6f:49:a2:87:a7:9b:
                    92:f4:cb:ad:0d:11:d1:7e:b4:3b:66:71:9c:cc:c2:c3:
                    3f:3e:20:8c:41:09:9b:aa:10:31:44:3d:83:a5:f3:6b:
                    99:4f:c1:25:ed:f7:dc:e6:e4:e2:49:51:81:d1:f6:56:
                    6e:cd:66:46:92:52:c3:7a:d4:b1:01:3b:60:ec:35:04:
                    79:12:8e:b4:22:a6:ac:a9:e3:eb:e8:92:4c:97:d8:60:
                    b5:88:dd:f7:0d:79:36:6e:58:04:38:8f:61:9c:94:61:
                    3c:88:24:bb:e4:60:e5:24:30:f1:81:5c:47:75:f6:e2:
                    3f:61:53:60:bf:47:01:c3:35:90:e2:08:ca:71:a8:74:
                    38:01:4b:ee:bc:e9:a2:9c:90:69:6f:ba:48:6f:c2:de:
                    aa:0c:df:a2:86:b2:dd:0d:f2:31:ac:07:55:3e:c9:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ba:0e:14:23:49:bd:60:43:51:32:95:8d:12:24:9b:5a:
        2c:cd:d3:32:04:dc:ab:1e:12:09:2e:88:32:f8:9d:56:
        d4:6a:08:df:54:92:41:68:db:f1:8f:27:46:0d:0a:dd:
        f6:6f:68:74:2a:d4:d1:d9:f4:85:83:d4:69:a6:9d:59:
        04:c7:b4:f8:35:e4:20:86:7f:32:c6:aa:49:7c:95:57:
        f3:1d:68:09:83:05:ec:9b:05:b1:a5:0d:0c:a4:ef:2c:
        e5:54:c3:5b:bc:8f:95:e8:dd:32:23:72:21:80:fc:a1:
        dc:fd:21:e7:ad:6b:ce:53:86:54:f5:ed:12:26:3d:69:
        76:20:5a:46:3f:8e:8e:d7:3c:1b:63:42:c1:d1:7d:e3:
        f8:a5:04:29:e8:81:dc:84:69:4c:3a:f6:ee:4c:79:91:
        13:e6:e3:20:17:55:b3:a7:f6:36:70:e8:24:6b:c3:17:
        f1:2b:c2:8a:e8:4c:e3:b3:b3:70:52:46:b6:cb:a7:e2:
        a6:5c:f0:22:6b:40:08:65:8c:aa:48:3a:ba:5a:66:37:
        4c:ca:32:05:bb:c1:3b:90:ef:5d:70:e2:42:c8:ff:c5:
        51:28:44:e7:bd:a0:eb:1f:90:b8:96:d4:6a:5d:0f:80:
        cb:3a:d2:99:7c:50:14:da:87:ba:ed:6c:4d:d9:1c:04
    Fingerprint (SHA-256):
        5B:DA:75:37:8C:99:CF:4C:73:67:64:4D:D9:27:D2:5F:E4:24:6A:CB:77:1E:4B:CA:38:43:4D:41:F6:B4:C3:8D
    Fingerprint (SHA1):
        AC:A1:E7:B0:EC:F1:C4:C0:F9:C4:A2:3A:FA:9D:F2:BB:CE:D4:A8:04
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3840: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235710 (0x300e2e3e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:27 2017
            Not After : Sat Aug 06 23:56:27 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:5e:e2:60:68:c2:26:c5:24:df:0a:78:96:ba:d7:1e:
                    ab:11:90:1f:0a:ec:2a:2e:5f:0b:77:63:18:e4:92:52:
                    5d:b7:67:4b:ec:b6:9c:ff:15:6d:03:8b:21:be:6f:8b:
                    c9:7d:8c:5c:92:52:d7:fa:63:b3:db:cb:3d:c3:33:78:
                    7a:31:e8:5a:1e:df:77:97:5c:d0:f7:71:91:f3:dd:95:
                    b2:4e:c7:2a:a0:16:91:5a:37:a6:6f:49:a2:87:a7:9b:
                    92:f4:cb:ad:0d:11:d1:7e:b4:3b:66:71:9c:cc:c2:c3:
                    3f:3e:20:8c:41:09:9b:aa:10:31:44:3d:83:a5:f3:6b:
                    99:4f:c1:25:ed:f7:dc:e6:e4:e2:49:51:81:d1:f6:56:
                    6e:cd:66:46:92:52:c3:7a:d4:b1:01:3b:60:ec:35:04:
                    79:12:8e:b4:22:a6:ac:a9:e3:eb:e8:92:4c:97:d8:60:
                    b5:88:dd:f7:0d:79:36:6e:58:04:38:8f:61:9c:94:61:
                    3c:88:24:bb:e4:60:e5:24:30:f1:81:5c:47:75:f6:e2:
                    3f:61:53:60:bf:47:01:c3:35:90:e2:08:ca:71:a8:74:
                    38:01:4b:ee:bc:e9:a2:9c:90:69:6f:ba:48:6f:c2:de:
                    aa:0c:df:a2:86:b2:dd:0d:f2:31:ac:07:55:3e:c9:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ba:0e:14:23:49:bd:60:43:51:32:95:8d:12:24:9b:5a:
        2c:cd:d3:32:04:dc:ab:1e:12:09:2e:88:32:f8:9d:56:
        d4:6a:08:df:54:92:41:68:db:f1:8f:27:46:0d:0a:dd:
        f6:6f:68:74:2a:d4:d1:d9:f4:85:83:d4:69:a6:9d:59:
        04:c7:b4:f8:35:e4:20:86:7f:32:c6:aa:49:7c:95:57:
        f3:1d:68:09:83:05:ec:9b:05:b1:a5:0d:0c:a4:ef:2c:
        e5:54:c3:5b:bc:8f:95:e8:dd:32:23:72:21:80:fc:a1:
        dc:fd:21:e7:ad:6b:ce:53:86:54:f5:ed:12:26:3d:69:
        76:20:5a:46:3f:8e:8e:d7:3c:1b:63:42:c1:d1:7d:e3:
        f8:a5:04:29:e8:81:dc:84:69:4c:3a:f6:ee:4c:79:91:
        13:e6:e3:20:17:55:b3:a7:f6:36:70:e8:24:6b:c3:17:
        f1:2b:c2:8a:e8:4c:e3:b3:b3:70:52:46:b6:cb:a7:e2:
        a6:5c:f0:22:6b:40:08:65:8c:aa:48:3a:ba:5a:66:37:
        4c:ca:32:05:bb:c1:3b:90:ef:5d:70:e2:42:c8:ff:c5:
        51:28:44:e7:bd:a0:eb:1f:90:b8:96:d4:6a:5d:0f:80:
        cb:3a:d2:99:7c:50:14:da:87:ba:ed:6c:4d:d9:1c:04
    Fingerprint (SHA-256):
        5B:DA:75:37:8C:99:CF:4C:73:67:64:4D:D9:27:D2:5F:E4:24:6A:CB:77:1E:4B:CA:38:43:4D:41:F6:B4:C3:8D
    Fingerprint (SHA1):
        AC:A1:E7:B0:EC:F1:C4:C0:F9:C4:A2:3A:FA:9D:F2:BB:CE:D4:A8:04
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3841: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235710 (0x300e2e3e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:27 2017
            Not After : Sat Aug 06 23:56:27 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:5e:e2:60:68:c2:26:c5:24:df:0a:78:96:ba:d7:1e:
                    ab:11:90:1f:0a:ec:2a:2e:5f:0b:77:63:18:e4:92:52:
                    5d:b7:67:4b:ec:b6:9c:ff:15:6d:03:8b:21:be:6f:8b:
                    c9:7d:8c:5c:92:52:d7:fa:63:b3:db:cb:3d:c3:33:78:
                    7a:31:e8:5a:1e:df:77:97:5c:d0:f7:71:91:f3:dd:95:
                    b2:4e:c7:2a:a0:16:91:5a:37:a6:6f:49:a2:87:a7:9b:
                    92:f4:cb:ad:0d:11:d1:7e:b4:3b:66:71:9c:cc:c2:c3:
                    3f:3e:20:8c:41:09:9b:aa:10:31:44:3d:83:a5:f3:6b:
                    99:4f:c1:25:ed:f7:dc:e6:e4:e2:49:51:81:d1:f6:56:
                    6e:cd:66:46:92:52:c3:7a:d4:b1:01:3b:60:ec:35:04:
                    79:12:8e:b4:22:a6:ac:a9:e3:eb:e8:92:4c:97:d8:60:
                    b5:88:dd:f7:0d:79:36:6e:58:04:38:8f:61:9c:94:61:
                    3c:88:24:bb:e4:60:e5:24:30:f1:81:5c:47:75:f6:e2:
                    3f:61:53:60:bf:47:01:c3:35:90:e2:08:ca:71:a8:74:
                    38:01:4b:ee:bc:e9:a2:9c:90:69:6f:ba:48:6f:c2:de:
                    aa:0c:df:a2:86:b2:dd:0d:f2:31:ac:07:55:3e:c9:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ba:0e:14:23:49:bd:60:43:51:32:95:8d:12:24:9b:5a:
        2c:cd:d3:32:04:dc:ab:1e:12:09:2e:88:32:f8:9d:56:
        d4:6a:08:df:54:92:41:68:db:f1:8f:27:46:0d:0a:dd:
        f6:6f:68:74:2a:d4:d1:d9:f4:85:83:d4:69:a6:9d:59:
        04:c7:b4:f8:35:e4:20:86:7f:32:c6:aa:49:7c:95:57:
        f3:1d:68:09:83:05:ec:9b:05:b1:a5:0d:0c:a4:ef:2c:
        e5:54:c3:5b:bc:8f:95:e8:dd:32:23:72:21:80:fc:a1:
        dc:fd:21:e7:ad:6b:ce:53:86:54:f5:ed:12:26:3d:69:
        76:20:5a:46:3f:8e:8e:d7:3c:1b:63:42:c1:d1:7d:e3:
        f8:a5:04:29:e8:81:dc:84:69:4c:3a:f6:ee:4c:79:91:
        13:e6:e3:20:17:55:b3:a7:f6:36:70:e8:24:6b:c3:17:
        f1:2b:c2:8a:e8:4c:e3:b3:b3:70:52:46:b6:cb:a7:e2:
        a6:5c:f0:22:6b:40:08:65:8c:aa:48:3a:ba:5a:66:37:
        4c:ca:32:05:bb:c1:3b:90:ef:5d:70:e2:42:c8:ff:c5:
        51:28:44:e7:bd:a0:eb:1f:90:b8:96:d4:6a:5d:0f:80:
        cb:3a:d2:99:7c:50:14:da:87:ba:ed:6c:4d:d9:1c:04
    Fingerprint (SHA-256):
        5B:DA:75:37:8C:99:CF:4C:73:67:64:4D:D9:27:D2:5F:E4:24:6A:CB:77:1E:4B:CA:38:43:4D:41:F6:B4:C3:8D
    Fingerprint (SHA1):
        AC:A1:E7:B0:EC:F1:C4:C0:F9:C4:A2:3A:FA:9D:F2:BB:CE:D4:A8:04
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3842: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235710 (0x300e2e3e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:27 2017
            Not After : Sat Aug 06 23:56:27 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:5e:e2:60:68:c2:26:c5:24:df:0a:78:96:ba:d7:1e:
                    ab:11:90:1f:0a:ec:2a:2e:5f:0b:77:63:18:e4:92:52:
                    5d:b7:67:4b:ec:b6:9c:ff:15:6d:03:8b:21:be:6f:8b:
                    c9:7d:8c:5c:92:52:d7:fa:63:b3:db:cb:3d:c3:33:78:
                    7a:31:e8:5a:1e:df:77:97:5c:d0:f7:71:91:f3:dd:95:
                    b2:4e:c7:2a:a0:16:91:5a:37:a6:6f:49:a2:87:a7:9b:
                    92:f4:cb:ad:0d:11:d1:7e:b4:3b:66:71:9c:cc:c2:c3:
                    3f:3e:20:8c:41:09:9b:aa:10:31:44:3d:83:a5:f3:6b:
                    99:4f:c1:25:ed:f7:dc:e6:e4:e2:49:51:81:d1:f6:56:
                    6e:cd:66:46:92:52:c3:7a:d4:b1:01:3b:60:ec:35:04:
                    79:12:8e:b4:22:a6:ac:a9:e3:eb:e8:92:4c:97:d8:60:
                    b5:88:dd:f7:0d:79:36:6e:58:04:38:8f:61:9c:94:61:
                    3c:88:24:bb:e4:60:e5:24:30:f1:81:5c:47:75:f6:e2:
                    3f:61:53:60:bf:47:01:c3:35:90:e2:08:ca:71:a8:74:
                    38:01:4b:ee:bc:e9:a2:9c:90:69:6f:ba:48:6f:c2:de:
                    aa:0c:df:a2:86:b2:dd:0d:f2:31:ac:07:55:3e:c9:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ba:0e:14:23:49:bd:60:43:51:32:95:8d:12:24:9b:5a:
        2c:cd:d3:32:04:dc:ab:1e:12:09:2e:88:32:f8:9d:56:
        d4:6a:08:df:54:92:41:68:db:f1:8f:27:46:0d:0a:dd:
        f6:6f:68:74:2a:d4:d1:d9:f4:85:83:d4:69:a6:9d:59:
        04:c7:b4:f8:35:e4:20:86:7f:32:c6:aa:49:7c:95:57:
        f3:1d:68:09:83:05:ec:9b:05:b1:a5:0d:0c:a4:ef:2c:
        e5:54:c3:5b:bc:8f:95:e8:dd:32:23:72:21:80:fc:a1:
        dc:fd:21:e7:ad:6b:ce:53:86:54:f5:ed:12:26:3d:69:
        76:20:5a:46:3f:8e:8e:d7:3c:1b:63:42:c1:d1:7d:e3:
        f8:a5:04:29:e8:81:dc:84:69:4c:3a:f6:ee:4c:79:91:
        13:e6:e3:20:17:55:b3:a7:f6:36:70:e8:24:6b:c3:17:
        f1:2b:c2:8a:e8:4c:e3:b3:b3:70:52:46:b6:cb:a7:e2:
        a6:5c:f0:22:6b:40:08:65:8c:aa:48:3a:ba:5a:66:37:
        4c:ca:32:05:bb:c1:3b:90:ef:5d:70:e2:42:c8:ff:c5:
        51:28:44:e7:bd:a0:eb:1f:90:b8:96:d4:6a:5d:0f:80:
        cb:3a:d2:99:7c:50:14:da:87:ba:ed:6c:4d:d9:1c:04
    Fingerprint (SHA-256):
        5B:DA:75:37:8C:99:CF:4C:73:67:64:4D:D9:27:D2:5F:E4:24:6A:CB:77:1E:4B:CA:38:43:4D:41:F6:B4:C3:8D
    Fingerprint (SHA1):
        AC:A1:E7:B0:EC:F1:C4:C0:F9:C4:A2:3A:FA:9D:F2:BB:CE:D4:A8:04
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3843: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235710 (0x300e2e3e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:27 2017
            Not After : Sat Aug 06 23:56:27 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:5e:e2:60:68:c2:26:c5:24:df:0a:78:96:ba:d7:1e:
                    ab:11:90:1f:0a:ec:2a:2e:5f:0b:77:63:18:e4:92:52:
                    5d:b7:67:4b:ec:b6:9c:ff:15:6d:03:8b:21:be:6f:8b:
                    c9:7d:8c:5c:92:52:d7:fa:63:b3:db:cb:3d:c3:33:78:
                    7a:31:e8:5a:1e:df:77:97:5c:d0:f7:71:91:f3:dd:95:
                    b2:4e:c7:2a:a0:16:91:5a:37:a6:6f:49:a2:87:a7:9b:
                    92:f4:cb:ad:0d:11:d1:7e:b4:3b:66:71:9c:cc:c2:c3:
                    3f:3e:20:8c:41:09:9b:aa:10:31:44:3d:83:a5:f3:6b:
                    99:4f:c1:25:ed:f7:dc:e6:e4:e2:49:51:81:d1:f6:56:
                    6e:cd:66:46:92:52:c3:7a:d4:b1:01:3b:60:ec:35:04:
                    79:12:8e:b4:22:a6:ac:a9:e3:eb:e8:92:4c:97:d8:60:
                    b5:88:dd:f7:0d:79:36:6e:58:04:38:8f:61:9c:94:61:
                    3c:88:24:bb:e4:60:e5:24:30:f1:81:5c:47:75:f6:e2:
                    3f:61:53:60:bf:47:01:c3:35:90:e2:08:ca:71:a8:74:
                    38:01:4b:ee:bc:e9:a2:9c:90:69:6f:ba:48:6f:c2:de:
                    aa:0c:df:a2:86:b2:dd:0d:f2:31:ac:07:55:3e:c9:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ba:0e:14:23:49:bd:60:43:51:32:95:8d:12:24:9b:5a:
        2c:cd:d3:32:04:dc:ab:1e:12:09:2e:88:32:f8:9d:56:
        d4:6a:08:df:54:92:41:68:db:f1:8f:27:46:0d:0a:dd:
        f6:6f:68:74:2a:d4:d1:d9:f4:85:83:d4:69:a6:9d:59:
        04:c7:b4:f8:35:e4:20:86:7f:32:c6:aa:49:7c:95:57:
        f3:1d:68:09:83:05:ec:9b:05:b1:a5:0d:0c:a4:ef:2c:
        e5:54:c3:5b:bc:8f:95:e8:dd:32:23:72:21:80:fc:a1:
        dc:fd:21:e7:ad:6b:ce:53:86:54:f5:ed:12:26:3d:69:
        76:20:5a:46:3f:8e:8e:d7:3c:1b:63:42:c1:d1:7d:e3:
        f8:a5:04:29:e8:81:dc:84:69:4c:3a:f6:ee:4c:79:91:
        13:e6:e3:20:17:55:b3:a7:f6:36:70:e8:24:6b:c3:17:
        f1:2b:c2:8a:e8:4c:e3:b3:b3:70:52:46:b6:cb:a7:e2:
        a6:5c:f0:22:6b:40:08:65:8c:aa:48:3a:ba:5a:66:37:
        4c:ca:32:05:bb:c1:3b:90:ef:5d:70:e2:42:c8:ff:c5:
        51:28:44:e7:bd:a0:eb:1f:90:b8:96:d4:6a:5d:0f:80:
        cb:3a:d2:99:7c:50:14:da:87:ba:ed:6c:4d:d9:1c:04
    Fingerprint (SHA-256):
        5B:DA:75:37:8C:99:CF:4C:73:67:64:4D:D9:27:D2:5F:E4:24:6A:CB:77:1E:4B:CA:38:43:4D:41:F6:B4:C3:8D
    Fingerprint (SHA1):
        AC:A1:E7:B0:EC:F1:C4:C0:F9:C4:A2:3A:FA:9D:F2:BB:CE:D4:A8:04
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3844: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235710 (0x300e2e3e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:27 2017
            Not After : Sat Aug 06 23:56:27 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:5e:e2:60:68:c2:26:c5:24:df:0a:78:96:ba:d7:1e:
                    ab:11:90:1f:0a:ec:2a:2e:5f:0b:77:63:18:e4:92:52:
                    5d:b7:67:4b:ec:b6:9c:ff:15:6d:03:8b:21:be:6f:8b:
                    c9:7d:8c:5c:92:52:d7:fa:63:b3:db:cb:3d:c3:33:78:
                    7a:31:e8:5a:1e:df:77:97:5c:d0:f7:71:91:f3:dd:95:
                    b2:4e:c7:2a:a0:16:91:5a:37:a6:6f:49:a2:87:a7:9b:
                    92:f4:cb:ad:0d:11:d1:7e:b4:3b:66:71:9c:cc:c2:c3:
                    3f:3e:20:8c:41:09:9b:aa:10:31:44:3d:83:a5:f3:6b:
                    99:4f:c1:25:ed:f7:dc:e6:e4:e2:49:51:81:d1:f6:56:
                    6e:cd:66:46:92:52:c3:7a:d4:b1:01:3b:60:ec:35:04:
                    79:12:8e:b4:22:a6:ac:a9:e3:eb:e8:92:4c:97:d8:60:
                    b5:88:dd:f7:0d:79:36:6e:58:04:38:8f:61:9c:94:61:
                    3c:88:24:bb:e4:60:e5:24:30:f1:81:5c:47:75:f6:e2:
                    3f:61:53:60:bf:47:01:c3:35:90:e2:08:ca:71:a8:74:
                    38:01:4b:ee:bc:e9:a2:9c:90:69:6f:ba:48:6f:c2:de:
                    aa:0c:df:a2:86:b2:dd:0d:f2:31:ac:07:55:3e:c9:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ba:0e:14:23:49:bd:60:43:51:32:95:8d:12:24:9b:5a:
        2c:cd:d3:32:04:dc:ab:1e:12:09:2e:88:32:f8:9d:56:
        d4:6a:08:df:54:92:41:68:db:f1:8f:27:46:0d:0a:dd:
        f6:6f:68:74:2a:d4:d1:d9:f4:85:83:d4:69:a6:9d:59:
        04:c7:b4:f8:35:e4:20:86:7f:32:c6:aa:49:7c:95:57:
        f3:1d:68:09:83:05:ec:9b:05:b1:a5:0d:0c:a4:ef:2c:
        e5:54:c3:5b:bc:8f:95:e8:dd:32:23:72:21:80:fc:a1:
        dc:fd:21:e7:ad:6b:ce:53:86:54:f5:ed:12:26:3d:69:
        76:20:5a:46:3f:8e:8e:d7:3c:1b:63:42:c1:d1:7d:e3:
        f8:a5:04:29:e8:81:dc:84:69:4c:3a:f6:ee:4c:79:91:
        13:e6:e3:20:17:55:b3:a7:f6:36:70:e8:24:6b:c3:17:
        f1:2b:c2:8a:e8:4c:e3:b3:b3:70:52:46:b6:cb:a7:e2:
        a6:5c:f0:22:6b:40:08:65:8c:aa:48:3a:ba:5a:66:37:
        4c:ca:32:05:bb:c1:3b:90:ef:5d:70:e2:42:c8:ff:c5:
        51:28:44:e7:bd:a0:eb:1f:90:b8:96:d4:6a:5d:0f:80:
        cb:3a:d2:99:7c:50:14:da:87:ba:ed:6c:4d:d9:1c:04
    Fingerprint (SHA-256):
        5B:DA:75:37:8C:99:CF:4C:73:67:64:4D:D9:27:D2:5F:E4:24:6A:CB:77:1E:4B:CA:38:43:4D:41:F6:B4:C3:8D
    Fingerprint (SHA1):
        AC:A1:E7:B0:EC:F1:C4:C0:F9:C4:A2:3A:FA:9D:F2:BB:CE:D4:A8:04
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3845: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3846: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3847: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235740 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3848: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3849: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #3850: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3851: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 806235741   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3852: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3853: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #3854: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3855: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 806235742   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3856: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3857: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #3858: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3859: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 806235743   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3860: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3861: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #3862: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3863: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 806235744   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3864: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3865: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #3866: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3867: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 806235745   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3868: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3869: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #3870: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3871: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 806235746   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3872: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3873: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3874: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235740 (0x300e2e5c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:37 2017
            Not After : Sat Aug 06 23:56:37 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:89:29:d8:9c:1b:21:6f:5d:65:2d:5b:3c:d6:d7:ce:
                    d9:0b:eb:e8:d7:c6:9b:8f:8e:a6:23:a4:2a:b5:65:8a:
                    2a:93:a6:d5:45:8f:0b:54:4c:4f:cd:55:b5:26:7c:87:
                    9c:24:92:e4:bb:b4:b9:4c:aa:f5:76:f3:80:87:a4:52:
                    60:ad:ef:72:72:bd:45:b5:54:2f:80:71:ba:3a:e3:7c:
                    46:0b:58:fe:b3:09:2f:42:b5:39:4d:c0:8b:da:e7:47:
                    2d:fd:15:9d:51:0e:78:b1:41:98:09:2a:df:e2:e3:03:
                    a9:11:fd:2d:e0:6e:8f:68:53:7f:3d:e8:90:61:5a:bb:
                    e9:d1:fc:ba:fd:01:28:a8:d0:a8:a1:ee:97:f0:1e:b4:
                    91:00:2c:71:41:8e:39:d1:44:8a:0d:5b:96:12:ae:4c:
                    28:f2:1f:84:fa:0e:42:0e:2b:9f:cc:7b:4a:a1:24:70:
                    98:5f:db:82:06:44:90:ea:d2:4a:92:6a:5e:5d:af:ad:
                    1e:89:95:3e:fa:22:e4:e1:b0:88:46:c7:4d:bb:d0:ab:
                    99:8e:5e:de:e9:cd:19:59:5e:76:12:b1:9b:0f:0b:22:
                    f4:4e:d4:5c:7d:d0:5d:0d:af:e3:54:82:85:55:71:f4:
                    81:09:ae:38:57:5c:6f:45:fb:e7:08:99:3f:6e:75:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:63:e2:1f:07:0b:23:6e:16:61:a8:89:26:1f:49:34:
        2c:7c:0f:69:43:f1:07:5a:74:22:f8:31:0a:83:11:cf:
        48:01:5d:d6:c1:ed:6d:c2:ee:fa:86:c3:51:8d:f0:d2:
        b0:b4:28:6e:29:01:21:7d:64:95:4a:b5:0e:a1:c6:cf:
        98:f5:94:b3:61:4e:17:46:58:93:05:c8:c7:72:08:62:
        9a:2c:e9:52:bb:af:18:c1:7b:8b:7d:46:e8:3d:28:00:
        4a:3c:aa:40:14:cb:cd:6d:e0:2d:f8:8f:cc:50:4f:db:
        ab:8a:a5:b3:e9:66:3e:93:2c:db:62:66:d1:8a:b2:fe:
        07:38:cb:c2:73:d1:31:40:d0:58:e7:c8:ed:f4:84:f5:
        55:a4:30:80:1b:51:14:e0:e5:b8:44:af:4d:4c:4c:50:
        1f:8a:82:3f:77:21:4f:c8:da:19:9f:9d:65:c9:c2:30:
        27:84:af:7e:8a:2a:6e:05:3a:dd:69:09:72:7c:f9:03:
        fd:c3:51:ca:97:dd:88:da:98:ee:ef:f5:78:6b:2d:11:
        8d:66:a0:ef:47:93:69:ce:5f:f5:74:f6:1c:ef:b7:9d:
        40:19:dc:6a:c0:26:e6:52:60:3c:fe:99:fc:37:7b:1f:
        53:1b:c2:35:26:77:52:eb:35:c1:d6:96:bb:6b:2b:e0
    Fingerprint (SHA-256):
        24:B3:BE:73:65:63:E5:12:BC:FF:7C:8F:E2:92:A7:B2:A7:75:2C:D4:CF:A3:DA:85:1F:2D:37:D4:63:58:38:81
    Fingerprint (SHA1):
        B5:0D:33:F2:82:22:92:76:C2:37:35:85:FB:43:91:1E:F3:9A:8E:7B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3875: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3876: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3877: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3878: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235740 (0x300e2e5c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:37 2017
            Not After : Sat Aug 06 23:56:37 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:89:29:d8:9c:1b:21:6f:5d:65:2d:5b:3c:d6:d7:ce:
                    d9:0b:eb:e8:d7:c6:9b:8f:8e:a6:23:a4:2a:b5:65:8a:
                    2a:93:a6:d5:45:8f:0b:54:4c:4f:cd:55:b5:26:7c:87:
                    9c:24:92:e4:bb:b4:b9:4c:aa:f5:76:f3:80:87:a4:52:
                    60:ad:ef:72:72:bd:45:b5:54:2f:80:71:ba:3a:e3:7c:
                    46:0b:58:fe:b3:09:2f:42:b5:39:4d:c0:8b:da:e7:47:
                    2d:fd:15:9d:51:0e:78:b1:41:98:09:2a:df:e2:e3:03:
                    a9:11:fd:2d:e0:6e:8f:68:53:7f:3d:e8:90:61:5a:bb:
                    e9:d1:fc:ba:fd:01:28:a8:d0:a8:a1:ee:97:f0:1e:b4:
                    91:00:2c:71:41:8e:39:d1:44:8a:0d:5b:96:12:ae:4c:
                    28:f2:1f:84:fa:0e:42:0e:2b:9f:cc:7b:4a:a1:24:70:
                    98:5f:db:82:06:44:90:ea:d2:4a:92:6a:5e:5d:af:ad:
                    1e:89:95:3e:fa:22:e4:e1:b0:88:46:c7:4d:bb:d0:ab:
                    99:8e:5e:de:e9:cd:19:59:5e:76:12:b1:9b:0f:0b:22:
                    f4:4e:d4:5c:7d:d0:5d:0d:af:e3:54:82:85:55:71:f4:
                    81:09:ae:38:57:5c:6f:45:fb:e7:08:99:3f:6e:75:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:63:e2:1f:07:0b:23:6e:16:61:a8:89:26:1f:49:34:
        2c:7c:0f:69:43:f1:07:5a:74:22:f8:31:0a:83:11:cf:
        48:01:5d:d6:c1:ed:6d:c2:ee:fa:86:c3:51:8d:f0:d2:
        b0:b4:28:6e:29:01:21:7d:64:95:4a:b5:0e:a1:c6:cf:
        98:f5:94:b3:61:4e:17:46:58:93:05:c8:c7:72:08:62:
        9a:2c:e9:52:bb:af:18:c1:7b:8b:7d:46:e8:3d:28:00:
        4a:3c:aa:40:14:cb:cd:6d:e0:2d:f8:8f:cc:50:4f:db:
        ab:8a:a5:b3:e9:66:3e:93:2c:db:62:66:d1:8a:b2:fe:
        07:38:cb:c2:73:d1:31:40:d0:58:e7:c8:ed:f4:84:f5:
        55:a4:30:80:1b:51:14:e0:e5:b8:44:af:4d:4c:4c:50:
        1f:8a:82:3f:77:21:4f:c8:da:19:9f:9d:65:c9:c2:30:
        27:84:af:7e:8a:2a:6e:05:3a:dd:69:09:72:7c:f9:03:
        fd:c3:51:ca:97:dd:88:da:98:ee:ef:f5:78:6b:2d:11:
        8d:66:a0:ef:47:93:69:ce:5f:f5:74:f6:1c:ef:b7:9d:
        40:19:dc:6a:c0:26:e6:52:60:3c:fe:99:fc:37:7b:1f:
        53:1b:c2:35:26:77:52:eb:35:c1:d6:96:bb:6b:2b:e0
    Fingerprint (SHA-256):
        24:B3:BE:73:65:63:E5:12:BC:FF:7C:8F:E2:92:A7:B2:A7:75:2C:D4:CF:A3:DA:85:1F:2D:37:D4:63:58:38:81
    Fingerprint (SHA1):
        B5:0D:33:F2:82:22:92:76:C2:37:35:85:FB:43:91:1E:F3:9A:8E:7B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3879: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3880: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3881: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3882: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235747 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3883: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3884: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3885: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3886: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 806235748   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3887: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3888: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3889: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3890: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 806235749   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3891: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3892: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3893: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3894: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 806235750   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3895: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3896: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3897: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3898: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3899: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3900: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235747 (0x300e2e63)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:38 2017
            Not After : Sat Aug 06 23:56:38 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:6f:e6:f2:f3:82:6e:8f:dc:d7:72:cd:b2:89:5e:72:
                    57:c2:44:b1:0a:b1:5e:8d:91:50:20:62:25:8e:d2:eb:
                    e4:a8:13:ab:c5:24:f0:2b:3d:ae:9b:c3:c2:35:6a:07:
                    af:85:22:b3:07:ac:9a:90:f1:f2:59:aa:09:cc:5c:26:
                    09:35:36:06:d1:8b:9f:3a:bc:d8:5c:6d:6f:e1:61:85:
                    dd:48:a2:5e:5a:fd:56:f0:50:79:e6:6f:43:d5:1e:ae:
                    8c:f8:cc:43:76:0e:35:f8:c5:77:e2:f2:25:f2:c1:9d:
                    76:6a:84:9b:32:6a:79:dd:f5:5b:ed:c6:eb:b0:b3:1f:
                    94:2b:f9:0d:7d:4d:43:f9:b6:8d:3d:59:dc:9c:a9:92:
                    8a:55:35:e0:be:c8:4b:33:c4:1e:6b:a3:ac:9a:45:6d:
                    7d:0f:d4:14:58:b4:3d:9c:7a:59:98:3f:07:06:ea:b1:
                    d0:c1:47:74:ed:eb:13:c5:01:12:c4:2d:c4:76:51:d5:
                    ef:b7:27:b7:eb:51:d9:34:2d:51:9d:3c:07:45:b6:71:
                    1d:ec:0d:c8:59:a3:0a:27:fb:a8:28:8a:17:73:ef:77:
                    f1:37:49:ef:5e:81:3b:43:2b:78:ec:e6:5d:5d:da:cd:
                    e8:ec:06:cd:75:83:25:48:b1:a2:17:36:7a:63:87:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:b6:a3:c5:85:3d:e5:21:9a:13:0b:52:31:29:2f:0b:
        20:ad:cf:fe:e4:1f:1c:c5:f7:ee:2d:4a:ed:64:7f:1c:
        8f:e1:28:24:35:d7:be:5d:0a:97:0d:8d:4b:c2:53:0e:
        ed:53:3a:5c:04:41:db:97:b7:2d:2e:d7:12:c2:f6:af:
        46:e8:d4:ad:83:4b:45:a6:0a:b7:9e:49:df:16:86:81:
        ce:30:e0:ef:79:6e:43:50:7f:26:86:e7:44:33:88:e6:
        b6:f7:46:78:11:38:e3:ea:76:49:d9:4a:c1:dc:48:f8:
        a3:56:63:9a:a1:df:76:07:38:3f:ff:2a:3d:a4:5c:43:
        bf:8e:a8:5b:d8:48:e9:31:fc:a0:b0:82:4d:2e:1c:62:
        e3:94:31:58:58:4d:86:d4:50:aa:dd:03:0b:b4:34:ad:
        a1:1c:01:ae:83:b1:71:27:d8:7b:e8:0f:e6:c5:df:bb:
        95:29:1d:27:22:84:34:1f:ae:31:52:32:e9:25:ed:fe:
        ff:54:a9:f6:0e:a3:53:84:0c:98:48:a7:80:4a:51:fc:
        d6:f7:dd:74:43:6c:cb:18:4b:86:26:ed:5d:4b:11:07:
        53:ad:76:32:04:ed:bd:da:fd:c2:41:d1:5e:da:b6:74:
        4c:f4:cc:01:30:78:5f:57:4f:3a:d7:94:91:fd:26:c9
    Fingerprint (SHA-256):
        29:80:11:68:74:6A:EA:A5:48:E7:01:7A:44:A9:13:8A:FB:44:00:AE:BE:EE:BB:B5:46:4A:BE:72:44:FD:59:0F
    Fingerprint (SHA1):
        10:80:C0:63:8D:82:2C:DC:0F:1D:AF:1D:3F:BD:E6:7F:F8:48:8F:50
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3901: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3902: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3903: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235748 (0x300e2e64)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:39 2017
            Not After : Sat Aug 06 23:56:39 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:17:6a:10:83:85:93:af:33:5e:7c:2e:94:f8:60:b1:
                    cd:a8:6a:fd:ef:7c:2e:87:15:8c:25:2d:b8:20:a7:a1:
                    9d:ab:b5:db:01:a9:74:8a:89:ef:a7:f9:de:04:f0:41:
                    1e:90:84:eb:c1:7e:c1:be:7c:19:80:19:dd:90:8b:0b:
                    88:c5:88:1b:02:a1:71:96:48:40:e5:6c:e4:59:47:7e:
                    d0:2a:26:a0:d2:8d:6c:3b:6e:76:0f:2f:63:10:75:fc:
                    14:8a:ce:b0:7b:0e:10:ed:c4:b8:40:39:be:5a:00:35:
                    e3:27:16:7f:5c:f4:a5:41:8e:ac:58:ee:06:02:d9:77:
                    e1:7b:5a:fe:c9:6b:70:cd:ac:c7:fd:26:db:0a:44:e7:
                    9d:bb:a6:9e:59:aa:38:39:98:b0:cc:eb:9f:90:4b:1e:
                    14:6a:fb:fc:a9:e8:01:17:17:a9:4f:14:67:02:b2:3c:
                    e0:ee:29:fb:77:3a:2e:ed:f8:9f:4e:97:d6:d6:07:4e:
                    e3:f8:70:86:d0:3f:a8:02:3b:3b:62:08:83:43:f0:5e:
                    cf:ac:1b:87:b8:ef:22:f5:5a:80:32:19:eb:c9:11:54:
                    d2:e7:9c:f4:b5:25:0b:dd:3e:90:05:f0:13:ee:8e:f9:
                    94:f5:17:b3:1f:f2:52:8c:bc:09:22:c5:e7:bb:1d:51
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5f:42:9f:c4:8d:f4:9b:2f:02:33:41:37:03:89:2e:9d:
        89:fa:80:24:eb:97:30:f5:6c:fc:97:bc:8b:12:96:71:
        93:72:00:4e:c8:14:0f:b1:97:58:bc:7b:3c:d9:25:b5:
        62:1f:5f:5d:ed:a5:11:f8:f5:d6:c3:6a:f3:86:16:b3:
        88:fc:f4:f1:77:4a:a9:fd:a9:25:07:3b:81:2a:eb:c2:
        83:71:73:ea:ad:99:63:bc:72:b0:66:ad:08:8f:2f:3d:
        8b:69:7b:2b:ae:8b:70:a9:01:0b:a4:82:d1:7a:dd:08:
        18:eb:06:85:4c:8f:b8:89:33:72:94:c3:59:10:de:26:
        8d:45:4b:1e:82:81:58:48:55:7f:59:44:e1:92:51:af:
        f4:be:6a:e3:3f:d7:1e:36:f6:3a:ef:74:79:02:69:88:
        f8:fb:9b:bf:fd:ec:59:c9:e4:09:64:a5:80:32:78:1b:
        b0:39:0a:be:8b:38:d8:91:27:79:fd:d1:14:84:1c:58:
        60:9b:28:59:e2:d8:e9:a3:5a:41:9d:18:0a:9a:72:24:
        5d:7e:4d:b7:2e:d9:ae:93:41:18:c1:b4:c4:4c:aa:76:
        3a:c9:d6:dd:7b:47:53:3b:5b:cb:a6:88:fc:df:11:61:
        c1:d3:33:dc:a9:50:cd:43:68:7e:69:2e:b5:e5:c6:b4
    Fingerprint (SHA-256):
        9B:3B:EB:D0:86:24:A5:E1:DC:BC:17:A4:88:9E:10:F9:CD:3C:95:11:F7:48:AA:72:32:C2:1C:E7:52:34:0B:88
    Fingerprint (SHA1):
        43:A0:CA:CD:77:53:37:40:4E:D9:F6:C3:79:0E:EF:D9:31:79:59:EC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3904: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3905: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235749 (0x300e2e65)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:39 2017
            Not After : Sat Aug 06 23:56:39 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:aa:28:82:14:9c:e0:a7:c1:08:26:aa:fe:12:76:2e:
                    cd:f9:d4:55:cb:90:37:b2:37:be:97:54:b3:0b:7f:80:
                    47:7c:55:89:23:62:d2:81:77:a4:aa:9c:5a:0a:b6:2c:
                    a9:f7:74:d7:40:df:d1:fa:01:00:fd:1b:89:8b:ea:3a:
                    ee:d5:c9:1a:37:0d:db:5d:76:ad:9f:90:3c:60:4b:0b:
                    e0:11:b7:02:fb:96:2c:85:5e:46:c8:ed:5b:56:d0:83:
                    d0:a5:0e:fe:6c:ec:74:a5:4f:53:a6:1c:f4:e0:69:4e:
                    d1:ce:42:17:e2:49:85:bc:f1:60:0b:24:ba:aa:d5:a4:
                    57:8d:87:4d:39:64:e0:4b:1e:2c:1d:bd:6d:77:02:0e:
                    a2:17:17:8b:ae:c7:65:e0:c6:ec:df:a3:3f:f7:27:5e:
                    a9:8d:4a:7d:99:17:f3:60:d5:3b:93:60:2b:eb:11:2a:
                    7c:e4:08:f4:5c:a1:cb:02:19:a1:3e:61:f6:a8:7d:0a:
                    9a:0b:d9:3a:29:d8:2d:fc:96:d2:4e:87:c0:83:5d:b4:
                    cb:46:62:ca:70:06:09:4f:9b:a8:d2:a7:15:c2:87:ce:
                    ad:00:d9:07:12:72:b2:ca:7a:4f:42:b7:03:96:52:02:
                    0f:f3:19:43:bc:f9:cc:ed:0d:97:b6:34:96:ba:04:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:84:b3:83:b0:8d:a1:c3:72:b3:d5:54:54:cf:32:7e:
        2c:7b:f3:49:83:ad:d1:12:dd:3a:b0:39:73:a4:bd:c9:
        e6:13:c7:6b:83:2e:15:bb:10:d1:68:66:49:6a:f4:12:
        d4:dd:66:84:17:21:bf:e1:6e:65:db:26:f8:06:b9:2d:
        96:9f:d5:08:5c:7a:c4:e9:6d:b3:0c:50:60:09:e2:3b:
        29:de:f6:bf:1e:55:36:c8:37:f9:30:42:06:8c:7e:f0:
        d7:93:bc:46:02:0e:70:8b:6e:50:04:1b:40:7e:e2:70:
        58:e7:1b:23:27:64:6a:7f:fc:33:9f:f2:5a:e4:0c:8e:
        e6:01:8e:54:16:e3:20:ed:6a:fe:e6:15:27:5d:a4:64:
        c9:68:7a:ba:3e:f1:b4:b4:31:7d:51:9f:5e:b6:1c:b9:
        51:2b:1b:d4:e0:d1:73:20:2c:89:22:88:86:71:88:8c:
        c5:58:a7:bc:2c:d3:78:06:81:da:8e:97:bb:f4:11:64:
        31:82:0b:25:f9:9a:f5:af:8e:83:8e:3d:01:a1:ce:c9:
        45:d2:42:8e:5a:3e:ce:8c:76:65:d8:c7:fb:c6:82:0e:
        5f:0c:7e:09:04:a5:64:de:13:6d:fe:32:53:2f:9d:40:
        76:af:f4:d9:1a:27:e5:67:45:86:d5:8d:5b:84:9b:4c
    Fingerprint (SHA-256):
        9D:B3:36:A5:D9:14:AC:5F:E8:9B:EF:8E:37:CF:1A:4B:1E:29:53:2A:B8:BB:9F:3E:6B:9C:21:30:49:92:C8:88
    Fingerprint (SHA1):
        61:C9:AE:02:0B:6C:F0:1F:74:BC:C1:A6:50:BB:46:86:E9:DB:D1:20
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #3906: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3907: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235751 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3908: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3909: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3910: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3911: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 806235752   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3912: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3913: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3914: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3915: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 806235753   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3916: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3917: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #3918: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3919: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 806235754   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3920: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3921: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3922: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3923: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 806235755   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3924: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3925: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3926: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3927: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3928: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3929: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #3930: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235751 (0x300e2e67)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:39 2017
            Not After : Sat Aug 06 23:56:39 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e3:be:5b:73:19:6b:be:b4:fb:e6:74:4b:67:3d:a8:c8:
                    67:71:13:a2:18:25:d0:42:de:18:19:1c:bb:0d:ad:7c:
                    a8:28:db:7e:63:5d:17:f9:ae:be:10:51:4e:b8:67:64:
                    69:66:30:c9:b4:11:a7:30:df:eb:51:11:3b:7c:73:4e:
                    c0:69:a1:58:dd:e2:8c:3f:13:11:d4:8c:66:4d:04:79:
                    14:b1:b6:52:be:9a:d9:cc:0e:74:ce:a6:d0:93:d1:15:
                    32:c3:80:03:01:1e:c4:02:af:55:8e:d8:6b:cd:a6:fe:
                    26:4d:0c:45:c6:e4:7b:06:2a:bc:7b:af:81:4a:c3:e2:
                    85:84:dd:5b:c1:d5:77:83:fc:4f:99:b7:12:05:e3:7c:
                    71:66:b2:ea:b8:6a:19:3c:f3:4a:49:88:50:b8:6d:1d:
                    2e:d6:58:b0:15:70:70:63:1e:fb:9e:dd:0e:f1:d6:08:
                    e3:48:96:70:31:e1:02:3c:b5:d4:cc:bf:4b:e9:16:90:
                    67:f7:34:d9:48:f2:42:0c:74:9a:76:24:cb:55:50:a1:
                    59:71:01:01:99:85:32:50:c4:ac:b1:0d:48:a8:10:00:
                    1b:20:a3:7f:f4:2c:f9:43:f4:64:7c:04:f1:80:4f:1e:
                    07:4a:3e:d5:15:8a:cb:8a:fe:f4:12:b2:5e:bd:5b:eb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cc:62:7a:24:eb:ac:61:03:d0:14:0f:16:50:08:38:72:
        d1:ba:ab:9f:be:f0:1d:3f:59:9d:46:d6:04:e9:70:9a:
        ba:0d:b1:ba:13:31:3e:71:36:81:96:d6:38:c6:05:46:
        ad:24:98:18:a0:de:67:13:f1:d5:0e:6e:6e:2e:c6:ee:
        84:e6:6e:11:ba:f2:a1:e3:8c:83:39:19:4d:37:16:b3:
        b3:38:9e:0e:0a:25:b1:86:91:35:ba:9e:2f:2c:64:ba:
        df:78:79:59:3e:7b:f8:48:ba:48:16:14:ff:57:ba:6b:
        78:2a:eb:da:c9:7a:78:49:82:de:ae:fb:cb:88:af:e0:
        65:a2:0f:9e:6f:84:9d:84:4f:08:b9:74:59:e9:69:dd:
        bb:20:05:1e:94:d1:ce:e3:3c:a4:ba:7c:e6:2c:f0:b9:
        57:b4:da:ac:7f:0d:49:b1:10:b5:a3:b8:d6:10:af:33:
        ba:ff:4e:03:83:55:16:2d:4c:01:34:47:64:13:ae:04:
        7d:b2:96:9c:0f:8b:ed:3c:8a:67:77:5a:d5:97:01:a2:
        8f:da:e3:49:90:19:1d:ea:73:f7:47:e0:16:12:47:11:
        10:e0:0a:be:19:f9:8c:37:0a:65:cd:44:fc:88:4c:cb:
        bb:14:0b:42:00:91:ef:32:9c:c1:f8:53:33:ed:2c:8a
    Fingerprint (SHA-256):
        25:FC:B0:27:D0:A6:F9:DB:40:F6:AD:C4:6B:B6:FD:8B:B5:90:22:F2:F5:5D:B2:0C:B7:C8:48:6E:B1:0F:52:E7
    Fingerprint (SHA1):
        FD:B2:D4:E4:55:29:C7:61:E0:77:C5:4F:57:CE:9A:58:BA:B4:4F:15
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3931: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3932: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235752 (0x300e2e68)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:40 2017
            Not After : Sat Aug 06 23:56:40 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:5b:2f:47:67:d4:c2:b2:b7:50:e7:51:4e:bd:ef:45:
                    32:57:b8:a2:28:0c:83:b0:c8:c9:a2:cf:dc:29:85:25:
                    53:e6:52:ea:6b:15:ea:65:b7:80:a0:d8:3d:66:3d:1d:
                    f4:f3:91:bf:68:5b:5b:ae:08:a0:f2:22:00:86:04:8d:
                    d5:0b:b1:c1:9e:02:9f:88:d2:51:55:9b:71:4f:12:4f:
                    08:be:93:7f:31:3a:f7:eb:90:8e:52:2a:0f:be:75:24:
                    a7:7a:d6:c8:c0:e6:4f:6f:5e:14:ff:db:2c:7e:40:ea:
                    bc:1e:33:09:6f:21:16:4c:38:ad:b8:37:fc:73:2b:ef:
                    6c:b0:e2:3e:c8:b0:90:92:e3:c1:83:b5:77:46:d8:6a:
                    f5:af:8b:80:fb:d1:56:a9:c8:d8:1f:d8:9b:c5:12:a8:
                    c7:de:a7:30:61:5d:67:9d:e4:ba:8a:c5:4e:b5:25:39:
                    c6:c8:15:37:6a:85:16:6a:c5:e4:a6:6a:88:0f:dc:b6:
                    a4:51:dc:e1:0e:52:4a:df:79:3a:5f:62:17:fa:8d:c8:
                    41:e9:eb:23:51:33:af:56:dc:4f:dc:33:62:23:fe:85:
                    ab:78:8a:32:b6:67:f9:d6:fa:28:9f:5b:62:d4:a6:92:
                    38:a7:6c:51:95:6a:42:93:05:c1:3a:2d:2c:32:74:19
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b5:e8:7c:d8:8d:3f:5b:dd:c4:97:49:04:ff:b7:29:ad:
        51:c9:37:5a:5e:b5:c1:8f:4f:83:7c:fd:a1:89:c7:b5:
        e3:f4:68:2b:33:ad:62:36:67:16:11:44:38:0c:0a:c1:
        26:38:2d:17:3e:d6:29:ee:7a:e6:36:04:26:ca:11:20:
        03:be:22:84:ea:01:be:b9:b7:1c:05:02:6d:8a:92:77:
        8d:d9:93:ab:c8:51:fd:4c:04:a1:3e:b7:1b:57:52:62:
        46:39:cf:55:3f:ac:67:0e:f5:99:67:0b:31:b4:08:a8:
        a6:fb:c4:e7:0a:03:3f:0e:73:bc:e1:49:1a:22:7b:28:
        c6:cf:b3:bd:87:35:74:5c:42:2c:ca:fb:01:a2:88:28:
        5e:5b:dc:4e:50:cb:60:97:dc:67:6d:3a:63:0e:f5:b7:
        7d:9e:33:7d:ad:7a:1a:5d:79:7d:28:b3:7a:0a:e6:a7:
        9e:6a:c4:88:ef:3c:81:83:2a:a2:d3:b2:ef:95:da:43:
        a7:74:1d:a1:8c:c1:74:ba:25:f0:54:2c:fb:62:ce:e8:
        ad:7e:6c:bf:6c:da:66:f7:f1:09:d7:36:a2:6b:f8:71:
        38:0e:b3:00:be:49:0c:56:35:a8:da:30:e6:0d:e9:2d:
        59:04:65:57:f0:5b:27:a8:8f:6b:91:c1:42:de:93:72
    Fingerprint (SHA-256):
        0C:35:82:50:59:6F:3B:EB:7F:DF:1D:E3:FF:86:DA:A5:33:71:5D:52:8C:DD:1F:AB:33:1A:02:40:BA:F3:95:16
    Fingerprint (SHA1):
        68:DF:57:26:3D:A0:BB:6D:40:DF:E8:1F:17:DB:AD:48:5C:0E:E6:78
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3933: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3934: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3935: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235753 (0x300e2e69)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:40 2017
            Not After : Sat Aug 06 23:56:40 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:61:7d:e0:22:52:ca:53:c0:95:0c:4d:71:36:79:2d:
                    74:0b:bb:fc:84:cf:50:ff:bf:ed:90:29:00:41:a5:94:
                    1b:1a:e6:7f:82:ab:9b:b4:dc:92:a2:64:f7:47:1d:f7:
                    ef:97:b8:d7:29:83:7f:3b:06:47:f0:27:d0:1c:9d:70:
                    43:33:d2:73:bd:a6:92:21:98:17:ae:b0:be:da:62:a8:
                    11:66:a5:f9:83:66:f5:1b:4d:af:bb:b4:0b:89:a9:68:
                    6e:bb:be:8d:89:3b:a9:bc:e9:7a:8e:43:a7:e3:f4:a4:
                    db:c9:e5:60:10:75:61:6f:fb:71:81:4c:fa:1a:72:b0:
                    e1:8f:a7:a2:cd:5a:4f:65:8b:42:dd:72:a5:b5:82:53:
                    25:c8:24:53:56:4b:ee:bb:47:99:d1:99:7f:b2:14:0c:
                    00:ad:3a:14:f1:bb:3e:f4:ba:fe:5c:5f:a7:a3:46:34:
                    e6:ae:ac:ae:46:85:8e:5d:0a:57:53:42:14:56:cd:48:
                    38:3b:67:5d:fc:75:89:f2:c6:bf:9f:c0:fb:f2:7a:35:
                    83:fa:26:50:c3:13:c1:80:37:35:b2:6d:86:79:0c:18:
                    ce:60:14:47:fd:70:fe:e3:34:28:7a:89:76:ed:30:a8:
                    69:62:fa:4c:93:db:cd:ff:15:25:0b:66:7e:a9:1f:33
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4f:ab:56:c8:62:db:5e:36:b8:ce:51:76:76:49:a9:11:
        4e:ca:20:4c:a8:d6:74:e4:17:a2:6e:c1:40:1e:cf:a6:
        08:16:af:0b:15:54:b0:2d:b5:cf:07:16:43:ac:ff:9b:
        29:58:8d:bd:54:98:8c:4f:89:09:b6:84:46:ca:4f:c6:
        6e:3c:ba:4c:72:99:1d:b2:ab:81:a0:74:e0:f2:8b:16:
        1d:d0:cc:17:89:87:19:7c:63:73:52:19:b1:e6:a0:67:
        b7:3b:75:f7:65:fb:bf:b5:5b:2f:07:33:07:a1:ee:b9:
        9a:76:5a:29:dd:4f:92:5f:91:4f:3a:ef:6e:6d:c3:92:
        36:be:23:fa:f5:e5:67:1f:d0:17:2a:3a:85:02:7a:c8:
        f1:17:32:52:6d:4c:c7:47:0b:70:bc:c4:3f:4d:53:8f:
        bb:a7:80:8b:a3:7f:81:94:bb:e6:09:f4:77:f5:c3:1e:
        64:92:b7:9f:6e:cb:14:a6:5f:dd:72:00:05:e6:7b:a0:
        21:3f:c9:00:fd:5b:dd:a8:b4:1f:cd:83:d8:1c:9a:a7:
        08:e2:54:a0:20:40:c0:51:65:20:bc:6d:1d:c9:2d:3e:
        d3:cf:e1:4e:26:42:a7:90:06:9b:46:fe:ee:18:ef:3b:
        d1:e6:6f:5c:bd:4b:71:e2:b5:dc:86:db:cc:dc:56:7e
    Fingerprint (SHA-256):
        AA:8D:BA:10:59:46:72:55:60:E5:A5:00:94:E8:7C:DA:01:8A:76:CA:90:76:17:9D:4A:AA:E2:64:19:D2:6C:EA
    Fingerprint (SHA1):
        11:0E:ED:BE:EA:63:BB:9C:55:6E:3C:84:74:16:FC:81:05:08:95:EA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #3936: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3937: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235756 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3938: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3939: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3940: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3941: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 806235757   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3942: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3943: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3944: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3945: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 806235758   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA1Root-806235535.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3946: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3947: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3948: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3949: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 806235759   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3950: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3951: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #3952: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235756 (0x300e2e6c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:41 2017
            Not After : Sat Aug 06 23:56:41 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:fc:0b:9e:7f:bb:51:f2:b9:7a:94:af:e4:43:ed:2f:
                    e0:fb:1f:57:4f:60:d8:00:a2:15:9e:d3:2b:d8:b1:8f:
                    5d:69:30:92:fe:ae:7e:83:56:b7:b8:77:7e:b1:39:01:
                    c7:a0:af:8a:d6:fe:25:b0:df:9a:15:b9:59:c3:75:f3:
                    36:55:d9:a6:21:40:e3:0d:08:be:d5:d2:23:f6:e3:f4:
                    72:56:e7:65:e6:c5:b8:0a:22:61:c1:c4:75:c3:fd:19:
                    40:03:e5:04:ee:22:44:96:80:52:e1:84:bc:b3:4e:62:
                    04:cc:65:e3:2a:10:27:1a:74:25:2d:a9:91:32:14:d8:
                    44:45:99:bf:14:43:6b:4a:a4:70:10:b2:30:9f:78:1c:
                    93:94:f5:46:f1:cd:26:3a:6e:f8:18:0a:b9:48:cc:69:
                    25:64:81:59:16:af:e4:b8:42:b0:55:52:d8:98:75:68:
                    53:3c:53:14:77:21:b7:38:32:89:9b:ff:2b:03:88:e0:
                    fe:7f:bf:0d:99:d3:40:6b:0c:8a:6d:e0:bd:86:3f:4c:
                    48:eb:6a:cb:e5:ec:44:fc:9e:79:8f:30:eb:60:2d:3c:
                    35:ad:42:9c:6f:6c:fa:b4:96:72:a3:30:a1:8b:89:cd:
                    bb:15:bb:3a:66:9d:2d:68:2b:b4:7c:9c:09:65:62:c1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7b:0c:ea:7c:aa:e8:14:72:7d:e9:9f:e6:33:ed:a8:42:
        7e:44:21:c9:7b:df:72:45:be:31:da:ca:70:ef:a1:3e:
        43:9c:80:77:5d:c8:c1:d9:9b:c5:87:0a:a8:d1:d4:05:
        10:b0:69:ad:f7:5c:e8:b1:18:2b:d5:c1:45:f2:f9:44:
        3d:9d:5f:37:71:60:5a:63:7d:a2:30:04:b3:10:73:ef:
        a0:d3:2b:a4:c3:c9:d8:d6:98:53:a0:bb:09:e9:8e:b6:
        66:ad:45:6e:d5:47:ef:5d:6f:d6:f2:64:5a:a7:6e:6d:
        4b:ac:af:2b:1e:65:64:f3:8b:59:63:f7:48:38:ec:90:
        93:da:f5:5d:4c:37:22:c4:d2:1f:07:cf:01:0a:89:2c:
        c1:ba:68:1c:e5:b1:d4:9b:32:ee:c7:3f:e7:ea:55:58:
        a7:08:52:7d:ff:1b:07:c0:c0:0c:e3:fd:a3:a3:b9:16:
        50:39:bc:fb:cd:00:6d:77:8d:73:15:06:43:70:d2:c0:
        7f:44:09:08:8f:59:ef:f4:4f:82:0b:41:84:61:f3:e9:
        f2:47:e4:41:af:39:44:d3:22:35:46:57:f3:3e:53:01:
        42:16:65:9c:08:ba:c1:61:2c:3d:ed:58:0a:74:cd:8a:
        ab:d2:e3:b9:f8:8a:f8:73:d5:9a:31:77:d5:a9:99:0b
    Fingerprint (SHA-256):
        BC:05:B8:C8:77:45:86:28:EE:B0:01:CC:16:9C:0C:92:A9:02:A6:32:30:24:75:15:5B:A6:0B:93:3B:9D:4E:06
    Fingerprint (SHA1):
        0D:A6:43:B5:85:31:FD:AC:09:7E:08:70:C9:FA:85:F4:26:2A:81:EA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3953: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3954: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235760 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3955: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3956: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3957: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235761 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3958: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3959: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3960: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3961: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 806235762 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3962: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3963: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 806235763 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3964: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3965: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3966: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3967: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3968: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 806235764   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-Bridge-806235536.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3969: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3970: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3971: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3972: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 806235765   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3973: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3974: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3975: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3976: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235761 (0x300e2e71)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:41 2017
            Not After : Sat Aug 06 23:56:41 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:1f:7c:ae:97:25:fe:4a:25:fe:cc:ed:4f:c5:fa:5d:
                    39:7e:0f:d5:e2:58:42:74:4e:74:e2:da:ec:74:9b:62:
                    48:03:d3:10:3c:a2:ab:a2:95:40:77:6c:63:08:fd:7d:
                    c6:8f:6e:6e:fa:ab:df:e6:4a:4d:74:bf:a5:c9:08:8d:
                    17:41:26:bc:f5:c6:95:34:1a:63:5e:35:eb:33:be:eb:
                    70:b8:24:be:21:2f:7e:4a:b3:bd:ff:b9:0e:23:56:c0:
                    4d:9e:32:7f:d6:72:e4:ab:c8:c0:0c:0c:a7:ee:0f:d7:
                    a5:cd:3f:cd:98:20:46:66:0f:33:5f:2f:2e:f6:6f:7f:
                    56:c5:fd:e5:90:ec:e7:e9:04:e7:24:fd:e9:27:2a:9c:
                    31:47:ca:91:07:56:67:55:26:93:2b:49:30:12:f4:9b:
                    57:4e:2e:f4:42:39:6d:a5:a0:21:60:61:09:7c:d7:be:
                    c9:42:15:18:95:92:c0:5e:ac:06:9d:1a:cc:dd:71:a5:
                    b1:b2:4a:7f:cb:73:20:09:96:ed:b5:a3:36:d2:80:3d:
                    3c:bf:c2:fe:04:8c:24:e1:d7:ac:0a:f2:ab:3e:c3:05:
                    c1:4f:1f:71:c4:cd:15:cf:5b:a7:0e:70:dc:f8:cd:65:
                    85:ee:3b:a4:18:44:0e:16:fe:75:72:f9:65:4e:73:85
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1e:15:17:fb:6a:98:ff:8a:e7:87:49:e1:26:32:2d:ed:
        4c:ff:af:3f:fb:c1:19:de:34:36:a8:9d:41:dd:f2:3f:
        36:d0:4d:ca:8e:df:d2:17:29:c7:c0:d0:a0:3f:ad:79:
        70:04:ba:1b:a0:21:a5:bc:c1:d6:15:d3:fc:73:eb:9e:
        e5:04:ec:e1:11:8b:d6:2f:0e:c3:89:59:7d:b5:24:56:
        a7:8b:b5:32:25:f3:bf:e3:1c:07:ee:24:c3:d0:38:64:
        4a:40:7d:cf:1a:35:76:3e:30:09:3d:47:7b:62:e8:24:
        11:a6:3c:6a:03:84:38:6c:28:99:00:ee:42:87:e9:cd:
        93:a0:26:0d:f5:c6:bc:4c:21:7e:55:6d:14:02:af:70:
        2e:d7:fa:95:d4:95:7d:3f:fb:c8:2e:12:c8:00:14:78:
        2f:ef:be:fd:6f:00:59:80:93:93:4a:aa:14:2e:9f:4f:
        50:d2:43:7e:fd:04:f9:94:a7:03:ff:02:87:e4:da:d1:
        af:21:e3:1f:f2:64:c1:1f:bb:7f:53:9b:b3:ea:53:45:
        3b:32:8d:33:79:0b:db:37:47:c8:ad:bd:9e:9c:67:6b:
        b6:1a:44:00:c7:ba:dd:d7:3a:ac:39:f8:40:ca:1b:da:
        96:0a:5a:c1:a7:b1:25:84:90:89:03:5b:46:c6:0e:a1
    Fingerprint (SHA-256):
        1B:9A:6A:A5:8C:83:61:E7:46:D3:B7:3B:2E:B4:29:67:F1:47:26:05:1A:A7:99:A8:6A:0E:6B:FB:8F:D1:D8:8C
    Fingerprint (SHA1):
        25:D3:47:6D:12:CD:81:D8:59:61:A2:0C:4E:FC:F3:39:83:71:C2:F7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3977: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235761 (0x300e2e71)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:41 2017
            Not After : Sat Aug 06 23:56:41 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:1f:7c:ae:97:25:fe:4a:25:fe:cc:ed:4f:c5:fa:5d:
                    39:7e:0f:d5:e2:58:42:74:4e:74:e2:da:ec:74:9b:62:
                    48:03:d3:10:3c:a2:ab:a2:95:40:77:6c:63:08:fd:7d:
                    c6:8f:6e:6e:fa:ab:df:e6:4a:4d:74:bf:a5:c9:08:8d:
                    17:41:26:bc:f5:c6:95:34:1a:63:5e:35:eb:33:be:eb:
                    70:b8:24:be:21:2f:7e:4a:b3:bd:ff:b9:0e:23:56:c0:
                    4d:9e:32:7f:d6:72:e4:ab:c8:c0:0c:0c:a7:ee:0f:d7:
                    a5:cd:3f:cd:98:20:46:66:0f:33:5f:2f:2e:f6:6f:7f:
                    56:c5:fd:e5:90:ec:e7:e9:04:e7:24:fd:e9:27:2a:9c:
                    31:47:ca:91:07:56:67:55:26:93:2b:49:30:12:f4:9b:
                    57:4e:2e:f4:42:39:6d:a5:a0:21:60:61:09:7c:d7:be:
                    c9:42:15:18:95:92:c0:5e:ac:06:9d:1a:cc:dd:71:a5:
                    b1:b2:4a:7f:cb:73:20:09:96:ed:b5:a3:36:d2:80:3d:
                    3c:bf:c2:fe:04:8c:24:e1:d7:ac:0a:f2:ab:3e:c3:05:
                    c1:4f:1f:71:c4:cd:15:cf:5b:a7:0e:70:dc:f8:cd:65:
                    85:ee:3b:a4:18:44:0e:16:fe:75:72:f9:65:4e:73:85
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1e:15:17:fb:6a:98:ff:8a:e7:87:49:e1:26:32:2d:ed:
        4c:ff:af:3f:fb:c1:19:de:34:36:a8:9d:41:dd:f2:3f:
        36:d0:4d:ca:8e:df:d2:17:29:c7:c0:d0:a0:3f:ad:79:
        70:04:ba:1b:a0:21:a5:bc:c1:d6:15:d3:fc:73:eb:9e:
        e5:04:ec:e1:11:8b:d6:2f:0e:c3:89:59:7d:b5:24:56:
        a7:8b:b5:32:25:f3:bf:e3:1c:07:ee:24:c3:d0:38:64:
        4a:40:7d:cf:1a:35:76:3e:30:09:3d:47:7b:62:e8:24:
        11:a6:3c:6a:03:84:38:6c:28:99:00:ee:42:87:e9:cd:
        93:a0:26:0d:f5:c6:bc:4c:21:7e:55:6d:14:02:af:70:
        2e:d7:fa:95:d4:95:7d:3f:fb:c8:2e:12:c8:00:14:78:
        2f:ef:be:fd:6f:00:59:80:93:93:4a:aa:14:2e:9f:4f:
        50:d2:43:7e:fd:04:f9:94:a7:03:ff:02:87:e4:da:d1:
        af:21:e3:1f:f2:64:c1:1f:bb:7f:53:9b:b3:ea:53:45:
        3b:32:8d:33:79:0b:db:37:47:c8:ad:bd:9e:9c:67:6b:
        b6:1a:44:00:c7:ba:dd:d7:3a:ac:39:f8:40:ca:1b:da:
        96:0a:5a:c1:a7:b1:25:84:90:89:03:5b:46:c6:0e:a1
    Fingerprint (SHA-256):
        1B:9A:6A:A5:8C:83:61:E7:46:D3:B7:3B:2E:B4:29:67:F1:47:26:05:1A:A7:99:A8:6A:0E:6B:FB:8F:D1:D8:8C
    Fingerprint (SHA1):
        25:D3:47:6D:12:CD:81:D8:59:61:A2:0C:4E:FC:F3:39:83:71:C2:F7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3978: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3979: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235766 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3980: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3981: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3982: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235767 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3983: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3984: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3985: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3986: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 806235768 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3987: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3988: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 806235769 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3989: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3990: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3991: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3992: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3993: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 806235770   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-Bridge-806235537.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3994: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3995: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3996: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3997: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 806235771   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3998: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3999: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4000: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4001: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 806235772   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-BridgeNavy-806235538.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4002: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4003: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4004: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4005: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 806235773   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4006: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4007: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #4008: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #4009: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235767 (0x300e2e77)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:43 2017
            Not After : Sat Aug 06 23:56:43 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:e3:2c:45:ff:df:f0:7e:d0:25:b9:70:f0:69:ee:12:
                    ef:48:ea:fc:fa:fc:1f:63:99:e1:3d:69:a4:77:af:e5:
                    f4:b9:9d:d5:34:34:b7:da:76:5c:c8:be:80:27:eb:64:
                    38:c6:21:4e:fd:ae:40:dc:38:cd:c9:13:e1:aa:31:89:
                    57:8a:15:bc:27:fe:c1:57:9b:81:24:70:c8:6c:e0:70:
                    b8:ab:7d:be:8a:14:9b:6e:1d:e8:0b:90:a9:ef:1d:e0:
                    a5:1c:a2:41:5e:31:e3:77:75:e3:64:8b:f2:c9:1a:06:
                    67:79:75:68:44:97:95:d8:5f:f3:b9:1d:32:49:66:3d:
                    0b:36:db:5a:79:1e:fd:5e:1e:ac:8b:e0:07:5f:20:c8:
                    75:b4:1d:22:5c:1e:37:fc:02:98:b1:20:21:dc:0d:11:
                    20:4f:5e:ed:44:9c:5f:69:e0:d4:29:e8:de:ac:57:53:
                    fa:dc:db:87:b5:9b:90:c9:19:23:97:a6:48:46:09:d3:
                    f2:d3:bf:d1:81:9f:77:1b:10:b3:c3:6c:b1:82:5b:78:
                    5b:db:1b:d2:f2:da:7a:44:ba:69:d0:58:ad:d0:1e:04:
                    39:ee:d7:ec:a9:ac:5e:99:96:17:d7:c6:ca:17:64:0b:
                    ae:1f:a8:8c:36:6d:ba:82:11:c0:bd:75:15:d2:ea:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:b3:fc:13:ff:58:00:93:4e:26:3a:14:60:15:f4:14:
        6f:6a:0a:66:2e:a5:a4:74:77:f5:cf:4e:09:f4:ac:b8:
        8b:5b:db:b0:0d:20:86:83:18:31:b6:a5:76:9f:05:01:
        e0:bc:dc:cd:d2:eb:a0:3c:e1:ce:d6:6b:32:d4:f5:44:
        77:10:45:e5:4f:da:d7:ef:b2:68:86:de:0e:5a:ba:79:
        4e:45:43:f6:ae:9b:17:68:4f:06:77:b5:e3:09:7c:eb:
        ed:60:5d:37:44:83:c6:de:1d:d7:22:b6:50:da:dd:3a:
        83:2a:ba:2c:24:ed:1a:04:e8:dc:f8:de:28:76:c5:3f:
        a2:d0:f1:16:c2:78:d3:22:12:e1:66:6d:2f:05:4c:3e:
        b4:e4:a2:6d:bb:4b:f4:a4:25:a0:62:18:dd:0e:0c:94:
        cb:c6:6c:33:d1:10:a7:d4:38:16:c4:ac:b8:d5:ac:f3:
        46:ff:7d:32:04:fe:e8:d1:55:4d:b1:93:7d:96:02:a2:
        48:e0:8b:0f:c2:39:d5:86:49:2e:ea:39:59:1c:11:35:
        32:d1:05:c2:6b:11:1b:35:66:0c:5c:7f:e5:82:cb:9a:
        d1:22:de:48:03:b7:ea:44:fc:a8:39:9a:1e:20:c5:43:
        68:a4:17:85:24:48:44:82:05:5a:1f:33:9f:7c:ec:1e
    Fingerprint (SHA-256):
        85:2A:FD:50:6C:17:74:95:62:34:2E:CA:5C:17:B6:EB:6F:99:BD:87:98:4F:FF:4F:53:BE:F4:F6:B6:85:11:A8
    Fingerprint (SHA1):
        E9:D8:19:0B:59:2B:78:BF:86:0D:AB:34:38:CC:1B:CF:FE:B4:C2:86
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #4010: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235767 (0x300e2e77)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:43 2017
            Not After : Sat Aug 06 23:56:43 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:e3:2c:45:ff:df:f0:7e:d0:25:b9:70:f0:69:ee:12:
                    ef:48:ea:fc:fa:fc:1f:63:99:e1:3d:69:a4:77:af:e5:
                    f4:b9:9d:d5:34:34:b7:da:76:5c:c8:be:80:27:eb:64:
                    38:c6:21:4e:fd:ae:40:dc:38:cd:c9:13:e1:aa:31:89:
                    57:8a:15:bc:27:fe:c1:57:9b:81:24:70:c8:6c:e0:70:
                    b8:ab:7d:be:8a:14:9b:6e:1d:e8:0b:90:a9:ef:1d:e0:
                    a5:1c:a2:41:5e:31:e3:77:75:e3:64:8b:f2:c9:1a:06:
                    67:79:75:68:44:97:95:d8:5f:f3:b9:1d:32:49:66:3d:
                    0b:36:db:5a:79:1e:fd:5e:1e:ac:8b:e0:07:5f:20:c8:
                    75:b4:1d:22:5c:1e:37:fc:02:98:b1:20:21:dc:0d:11:
                    20:4f:5e:ed:44:9c:5f:69:e0:d4:29:e8:de:ac:57:53:
                    fa:dc:db:87:b5:9b:90:c9:19:23:97:a6:48:46:09:d3:
                    f2:d3:bf:d1:81:9f:77:1b:10:b3:c3:6c:b1:82:5b:78:
                    5b:db:1b:d2:f2:da:7a:44:ba:69:d0:58:ad:d0:1e:04:
                    39:ee:d7:ec:a9:ac:5e:99:96:17:d7:c6:ca:17:64:0b:
                    ae:1f:a8:8c:36:6d:ba:82:11:c0:bd:75:15:d2:ea:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:b3:fc:13:ff:58:00:93:4e:26:3a:14:60:15:f4:14:
        6f:6a:0a:66:2e:a5:a4:74:77:f5:cf:4e:09:f4:ac:b8:
        8b:5b:db:b0:0d:20:86:83:18:31:b6:a5:76:9f:05:01:
        e0:bc:dc:cd:d2:eb:a0:3c:e1:ce:d6:6b:32:d4:f5:44:
        77:10:45:e5:4f:da:d7:ef:b2:68:86:de:0e:5a:ba:79:
        4e:45:43:f6:ae:9b:17:68:4f:06:77:b5:e3:09:7c:eb:
        ed:60:5d:37:44:83:c6:de:1d:d7:22:b6:50:da:dd:3a:
        83:2a:ba:2c:24:ed:1a:04:e8:dc:f8:de:28:76:c5:3f:
        a2:d0:f1:16:c2:78:d3:22:12:e1:66:6d:2f:05:4c:3e:
        b4:e4:a2:6d:bb:4b:f4:a4:25:a0:62:18:dd:0e:0c:94:
        cb:c6:6c:33:d1:10:a7:d4:38:16:c4:ac:b8:d5:ac:f3:
        46:ff:7d:32:04:fe:e8:d1:55:4d:b1:93:7d:96:02:a2:
        48:e0:8b:0f:c2:39:d5:86:49:2e:ea:39:59:1c:11:35:
        32:d1:05:c2:6b:11:1b:35:66:0c:5c:7f:e5:82:cb:9a:
        d1:22:de:48:03:b7:ea:44:fc:a8:39:9a:1e:20:c5:43:
        68:a4:17:85:24:48:44:82:05:5a:1f:33:9f:7c:ec:1e
    Fingerprint (SHA-256):
        85:2A:FD:50:6C:17:74:95:62:34:2E:CA:5C:17:B6:EB:6F:99:BD:87:98:4F:FF:4F:53:BE:F4:F6:B6:85:11:A8
    Fingerprint (SHA1):
        E9:D8:19:0B:59:2B:78:BF:86:0D:AB:34:38:CC:1B:CF:FE:B4:C2:86
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #4011: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #4012: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235766 (0x300e2e76)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:42 2017
            Not After : Sat Aug 06 23:56:42 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:a3:58:e6:43:f0:ea:31:97:4f:1a:af:2e:e9:fc:c4:
                    c0:f8:09:e7:95:29:ce:fb:ee:25:ea:b1:f1:e1:99:0a:
                    30:e2:27:ff:72:80:b1:19:1e:2d:9d:4a:00:ce:0c:78:
                    04:ef:2a:79:14:5a:f2:c9:5d:28:9a:94:36:63:e5:7f:
                    71:d7:99:62:52:1f:89:d0:64:6f:70:79:f5:98:3e:bc:
                    86:80:eb:3c:bb:7d:41:19:50:3a:4f:80:33:1a:27:8c:
                    97:5d:d4:3d:19:c4:ca:f5:02:e2:e9:3a:63:fb:1e:4a:
                    9d:e5:ae:84:ac:f5:05:4b:37:4a:f6:42:d6:69:4e:ce:
                    08:89:07:94:c4:89:6c:59:c3:83:dc:77:68:f1:61:7e:
                    dd:cf:18:cf:b7:25:ab:f0:9d:3b:0d:a0:70:94:a0:c0:
                    9c:e6:ff:65:f9:b9:fe:2e:20:27:0c:80:56:29:f1:62:
                    8d:c3:0c:e2:30:ac:d8:02:87:f5:2f:57:03:8c:44:8f:
                    41:58:ed:28:39:69:d8:d5:24:f9:c1:56:92:5e:6d:72:
                    ca:d7:19:7f:e7:47:ce:e0:24:6d:17:fc:12:46:41:43:
                    9e:bf:2c:1e:83:76:66:04:90:e2:56:2c:94:d3:a6:6c:
                    60:5d:6c:bb:2e:c7:f2:56:47:be:98:ff:c9:03:1b:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        73:4f:d5:de:d4:6a:c2:e7:d3:14:d7:70:67:e3:ce:4c:
        b8:b4:f6:31:d4:99:ce:e6:8b:7b:6f:6c:65:9f:72:e0:
        56:73:bf:84:80:77:0c:08:b2:fe:0b:02:98:af:d2:8e:
        6c:02:d0:fe:18:04:2d:2f:51:96:7b:98:7a:43:3b:4c:
        57:21:a6:4e:f8:b6:e9:74:01:b6:57:61:d4:fc:05:7a:
        bd:3b:c8:16:d6:c9:d6:c5:ed:25:80:b5:80:bb:61:d7:
        c3:25:e4:1d:6b:b4:d3:e7:ba:f1:1e:94:6f:f2:ce:20:
        99:b8:15:8d:07:f1:0f:7b:a1:94:f6:a8:78:04:ad:4c:
        4b:02:29:a3:8f:11:1a:f8:ed:22:df:a3:1f:82:3d:79:
        05:cd:af:5b:1d:e5:f8:2b:fb:6f:74:ab:52:cf:2d:56:
        f5:fa:42:f3:46:88:16:e0:fa:16:49:fd:86:a0:f2:e3:
        e9:65:d4:b0:a8:85:90:a7:fd:3b:a6:03:de:58:84:bd:
        da:58:6f:e8:e3:1f:5a:90:a1:aa:fc:2b:ba:6e:4e:df:
        8f:2c:36:63:b7:36:b5:aa:ee:f9:d3:69:6e:cb:47:05:
        ca:83:d9:d0:ee:7c:64:a6:21:a1:a4:99:b4:d2:0e:0c:
        c3:b7:73:06:ed:40:28:f4:aa:09:6b:93:b9:9d:7c:1a
    Fingerprint (SHA-256):
        E7:94:DF:29:6C:AE:B9:E0:74:67:C7:6F:08:A4:5F:13:58:C6:5D:22:E1:B5:15:34:96:BF:64:07:BC:F3:16:30
    Fingerprint (SHA1):
        03:6B:F6:83:25:DE:98:D9:CB:6E:EF:4D:04:9B:23:D1:86:32:90:51
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #4013: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235767 (0x300e2e77)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:43 2017
            Not After : Sat Aug 06 23:56:43 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:e3:2c:45:ff:df:f0:7e:d0:25:b9:70:f0:69:ee:12:
                    ef:48:ea:fc:fa:fc:1f:63:99:e1:3d:69:a4:77:af:e5:
                    f4:b9:9d:d5:34:34:b7:da:76:5c:c8:be:80:27:eb:64:
                    38:c6:21:4e:fd:ae:40:dc:38:cd:c9:13:e1:aa:31:89:
                    57:8a:15:bc:27:fe:c1:57:9b:81:24:70:c8:6c:e0:70:
                    b8:ab:7d:be:8a:14:9b:6e:1d:e8:0b:90:a9:ef:1d:e0:
                    a5:1c:a2:41:5e:31:e3:77:75:e3:64:8b:f2:c9:1a:06:
                    67:79:75:68:44:97:95:d8:5f:f3:b9:1d:32:49:66:3d:
                    0b:36:db:5a:79:1e:fd:5e:1e:ac:8b:e0:07:5f:20:c8:
                    75:b4:1d:22:5c:1e:37:fc:02:98:b1:20:21:dc:0d:11:
                    20:4f:5e:ed:44:9c:5f:69:e0:d4:29:e8:de:ac:57:53:
                    fa:dc:db:87:b5:9b:90:c9:19:23:97:a6:48:46:09:d3:
                    f2:d3:bf:d1:81:9f:77:1b:10:b3:c3:6c:b1:82:5b:78:
                    5b:db:1b:d2:f2:da:7a:44:ba:69:d0:58:ad:d0:1e:04:
                    39:ee:d7:ec:a9:ac:5e:99:96:17:d7:c6:ca:17:64:0b:
                    ae:1f:a8:8c:36:6d:ba:82:11:c0:bd:75:15:d2:ea:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:b3:fc:13:ff:58:00:93:4e:26:3a:14:60:15:f4:14:
        6f:6a:0a:66:2e:a5:a4:74:77:f5:cf:4e:09:f4:ac:b8:
        8b:5b:db:b0:0d:20:86:83:18:31:b6:a5:76:9f:05:01:
        e0:bc:dc:cd:d2:eb:a0:3c:e1:ce:d6:6b:32:d4:f5:44:
        77:10:45:e5:4f:da:d7:ef:b2:68:86:de:0e:5a:ba:79:
        4e:45:43:f6:ae:9b:17:68:4f:06:77:b5:e3:09:7c:eb:
        ed:60:5d:37:44:83:c6:de:1d:d7:22:b6:50:da:dd:3a:
        83:2a:ba:2c:24:ed:1a:04:e8:dc:f8:de:28:76:c5:3f:
        a2:d0:f1:16:c2:78:d3:22:12:e1:66:6d:2f:05:4c:3e:
        b4:e4:a2:6d:bb:4b:f4:a4:25:a0:62:18:dd:0e:0c:94:
        cb:c6:6c:33:d1:10:a7:d4:38:16:c4:ac:b8:d5:ac:f3:
        46:ff:7d:32:04:fe:e8:d1:55:4d:b1:93:7d:96:02:a2:
        48:e0:8b:0f:c2:39:d5:86:49:2e:ea:39:59:1c:11:35:
        32:d1:05:c2:6b:11:1b:35:66:0c:5c:7f:e5:82:cb:9a:
        d1:22:de:48:03:b7:ea:44:fc:a8:39:9a:1e:20:c5:43:
        68:a4:17:85:24:48:44:82:05:5a:1f:33:9f:7c:ec:1e
    Fingerprint (SHA-256):
        85:2A:FD:50:6C:17:74:95:62:34:2E:CA:5C:17:B6:EB:6F:99:BD:87:98:4F:FF:4F:53:BE:F4:F6:B6:85:11:A8
    Fingerprint (SHA1):
        E9:D8:19:0B:59:2B:78:BF:86:0D:AB:34:38:CC:1B:CF:FE:B4:C2:86
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #4014: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235767 (0x300e2e77)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:43 2017
            Not After : Sat Aug 06 23:56:43 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:e3:2c:45:ff:df:f0:7e:d0:25:b9:70:f0:69:ee:12:
                    ef:48:ea:fc:fa:fc:1f:63:99:e1:3d:69:a4:77:af:e5:
                    f4:b9:9d:d5:34:34:b7:da:76:5c:c8:be:80:27:eb:64:
                    38:c6:21:4e:fd:ae:40:dc:38:cd:c9:13:e1:aa:31:89:
                    57:8a:15:bc:27:fe:c1:57:9b:81:24:70:c8:6c:e0:70:
                    b8:ab:7d:be:8a:14:9b:6e:1d:e8:0b:90:a9:ef:1d:e0:
                    a5:1c:a2:41:5e:31:e3:77:75:e3:64:8b:f2:c9:1a:06:
                    67:79:75:68:44:97:95:d8:5f:f3:b9:1d:32:49:66:3d:
                    0b:36:db:5a:79:1e:fd:5e:1e:ac:8b:e0:07:5f:20:c8:
                    75:b4:1d:22:5c:1e:37:fc:02:98:b1:20:21:dc:0d:11:
                    20:4f:5e:ed:44:9c:5f:69:e0:d4:29:e8:de:ac:57:53:
                    fa:dc:db:87:b5:9b:90:c9:19:23:97:a6:48:46:09:d3:
                    f2:d3:bf:d1:81:9f:77:1b:10:b3:c3:6c:b1:82:5b:78:
                    5b:db:1b:d2:f2:da:7a:44:ba:69:d0:58:ad:d0:1e:04:
                    39:ee:d7:ec:a9:ac:5e:99:96:17:d7:c6:ca:17:64:0b:
                    ae:1f:a8:8c:36:6d:ba:82:11:c0:bd:75:15:d2:ea:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:b3:fc:13:ff:58:00:93:4e:26:3a:14:60:15:f4:14:
        6f:6a:0a:66:2e:a5:a4:74:77:f5:cf:4e:09:f4:ac:b8:
        8b:5b:db:b0:0d:20:86:83:18:31:b6:a5:76:9f:05:01:
        e0:bc:dc:cd:d2:eb:a0:3c:e1:ce:d6:6b:32:d4:f5:44:
        77:10:45:e5:4f:da:d7:ef:b2:68:86:de:0e:5a:ba:79:
        4e:45:43:f6:ae:9b:17:68:4f:06:77:b5:e3:09:7c:eb:
        ed:60:5d:37:44:83:c6:de:1d:d7:22:b6:50:da:dd:3a:
        83:2a:ba:2c:24:ed:1a:04:e8:dc:f8:de:28:76:c5:3f:
        a2:d0:f1:16:c2:78:d3:22:12:e1:66:6d:2f:05:4c:3e:
        b4:e4:a2:6d:bb:4b:f4:a4:25:a0:62:18:dd:0e:0c:94:
        cb:c6:6c:33:d1:10:a7:d4:38:16:c4:ac:b8:d5:ac:f3:
        46:ff:7d:32:04:fe:e8:d1:55:4d:b1:93:7d:96:02:a2:
        48:e0:8b:0f:c2:39:d5:86:49:2e:ea:39:59:1c:11:35:
        32:d1:05:c2:6b:11:1b:35:66:0c:5c:7f:e5:82:cb:9a:
        d1:22:de:48:03:b7:ea:44:fc:a8:39:9a:1e:20:c5:43:
        68:a4:17:85:24:48:44:82:05:5a:1f:33:9f:7c:ec:1e
    Fingerprint (SHA-256):
        85:2A:FD:50:6C:17:74:95:62:34:2E:CA:5C:17:B6:EB:6F:99:BD:87:98:4F:FF:4F:53:BE:F4:F6:B6:85:11:A8
    Fingerprint (SHA1):
        E9:D8:19:0B:59:2B:78:BF:86:0D:AB:34:38:CC:1B:CF:FE:B4:C2:86
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #4015: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #4016: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235774 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4017: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #4018: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #4019: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235775 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4020: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #4021: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #4022: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4023: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 806235776   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4024: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4025: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #4026: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4027: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 806235777   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4028: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4029: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #4030: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4031: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 806235778 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #4032: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4033: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 806235779 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #4034: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4035: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #4036: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4037: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4038: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 806235780   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4039: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4040: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4041: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4042: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 806235781   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4043: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4044: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #4045: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4046: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 806235782   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4047: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4048: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4049: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4050: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 806235783   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4051: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4052: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4053: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235774 (0x300e2e7e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:44 2017
            Not After : Sat Aug 06 23:56:44 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:1b:a9:b7:1f:08:34:11:69:5d:e6:dd:35:3a:42:29:
                    a9:25:05:4b:27:53:91:d9:a6:ab:6c:36:9b:d1:21:35:
                    28:18:5d:f8:9e:eb:5b:1a:3f:4f:38:66:c6:49:7b:21:
                    53:26:19:ce:c8:ac:94:70:91:c0:cf:09:cb:d3:0d:cf:
                    d0:a0:f8:f9:f4:6c:4f:2f:34:94:4b:f0:b4:60:c5:98:
                    22:8a:b0:fa:64:b7:e9:cc:37:a7:2d:2c:e0:c6:4e:1a:
                    23:f0:ca:16:a6:f9:9b:a3:c5:f4:a4:ff:49:9c:69:cc:
                    af:77:01:c3:7b:92:cb:75:08:30:76:25:f9:ff:29:9c:
                    40:e1:63:a9:a4:f0:97:b4:21:29:4e:7e:d2:8a:b6:48:
                    de:f0:10:c3:32:08:85:8e:1c:b0:7d:bd:96:b2:51:83:
                    19:04:5e:7b:dc:3d:9f:e2:34:d9:0d:07:18:1f:41:30:
                    be:84:e9:ed:e8:87:41:23:f4:d0:83:9f:f4:a6:43:cb:
                    c0:68:60:05:3d:f5:25:a4:eb:a6:36:af:7d:19:16:24:
                    4f:b3:54:f4:8c:9c:a2:4c:40:13:d6:49:49:1b:12:09:
                    2d:a7:6b:28:4a:74:e4:da:02:ec:2d:5e:86:90:8b:06:
                    5b:91:41:57:d7:5e:ff:37:3f:b5:5d:da:16:bd:de:07
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8c:1e:74:8e:bf:c2:49:d1:40:26:90:f7:e9:36:20:8f:
        87:94:6b:2e:65:25:63:bb:5f:f2:50:e6:06:f5:19:25:
        c7:8b:d2:7c:31:fc:1e:fc:6b:1c:00:e5:05:06:c2:89:
        44:a2:34:d3:7a:49:9c:93:40:ae:86:67:a7:18:84:18:
        6a:be:e3:06:74:87:57:25:4b:92:e4:5d:5e:92:2c:a0:
        84:4f:62:96:ac:a1:ee:0f:54:b2:aa:fb:46:97:52:d4:
        8c:6b:f4:d6:06:eb:4c:94:dc:c0:5d:15:e2:72:ed:5f:
        4e:d5:d7:ed:c3:ec:cc:70:8e:76:22:cc:7f:62:2c:be:
        7f:ac:01:19:b6:a7:3c:5b:48:0b:c9:05:00:56:8c:51:
        93:50:5a:0d:eb:81:33:78:af:e6:87:08:ef:06:c0:2b:
        e5:fe:27:ee:48:ad:61:c0:78:c5:8e:e4:f9:ac:4d:29:
        fc:4d:a9:15:12:23:21:ac:46:16:af:f5:a7:2c:9b:0c:
        e3:24:06:97:28:72:69:59:4d:14:9c:b8:01:10:1d:ac:
        42:79:ef:1f:95:d7:25:59:a5:cb:4d:05:1b:e6:67:6a:
        1a:51:31:66:60:a6:1b:9a:45:20:89:ca:1e:d1:2b:22:
        8d:95:35:5c:95:19:9d:7d:41:04:3b:88:d0:8e:fe:0f
    Fingerprint (SHA-256):
        7F:B0:55:89:94:74:DB:DF:CD:97:40:64:AC:3E:2C:99:72:25:36:54:0F:E6:64:A8:06:52:FA:BA:22:CE:F1:27
    Fingerprint (SHA1):
        E2:82:E9:B9:2C:32:88:22:FE:D6:61:76:DF:D6:5B:EB:A8:60:AE:1E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #4054: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4055: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4056: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4057: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4058: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4059: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4060: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4061: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4062: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235775 (0x300e2e7f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:45 2017
            Not After : Sat Aug 06 23:56:45 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:45:87:1e:f1:6a:df:82:2e:23:3a:ad:88:ea:97:63:
                    5f:a4:a2:d8:39:73:c7:2e:78:db:59:3c:6c:ac:c6:db:
                    79:3e:ff:03:3d:57:63:d4:1c:47:79:0c:2b:38:44:5a:
                    51:64:83:48:20:e1:a3:dd:e0:04:42:5e:ed:46:d3:a1:
                    a0:40:9d:37:5b:5a:02:98:b8:72:e4:5f:53:23:19:0f:
                    02:db:df:42:a2:37:8c:76:ce:0e:f7:90:43:c3:fc:88:
                    e1:fc:81:55:ba:41:fb:e7:37:a5:de:15:5e:14:7d:0b:
                    f1:45:45:df:f3:29:7d:9e:d9:c4:b7:29:98:0d:39:29:
                    2e:b2:7d:d7:2b:29:e5:82:16:8e:84:1b:ae:db:7a:92:
                    43:47:4b:a6:b2:c8:31:7a:ed:15:74:a9:a8:20:27:cf:
                    2d:6f:6a:88:8b:fc:ca:fe:34:09:f0:b5:84:43:7a:5b:
                    fc:5a:51:ec:88:9d:12:5b:46:80:14:a3:21:cc:6a:d5:
                    ad:e4:75:d3:f4:d7:46:15:6a:23:9e:09:68:26:51:4d:
                    c1:3f:ff:df:90:99:27:5e:5e:37:25:d4:20:26:72:9e:
                    3c:f8:12:7c:f5:55:bb:17:90:7a:13:51:2c:de:5c:e2:
                    94:d9:63:c4:bc:38:e9:a8:e4:36:b6:0f:4b:e3:36:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:27:f3:53:b9:52:86:5c:64:de:31:d4:d7:21:04:5d:
        71:2d:c2:a4:6a:29:f9:8b:2a:32:97:4b:f6:88:c1:4b:
        27:3c:09:b1:23:a2:97:d8:92:26:ec:14:7c:9a:24:fc:
        3a:9d:69:eb:21:bc:4a:15:07:0d:10:6d:ed:78:21:b0:
        5a:20:bd:24:60:87:b1:d2:16:44:66:4f:14:78:57:6b:
        1e:c4:4e:70:9c:fa:ad:1c:14:9f:0c:84:7f:28:48:fd:
        8c:52:0d:df:cd:d6:65:63:1f:aa:84:dd:ff:d1:13:d7:
        ce:bd:25:da:1e:ea:55:e2:44:65:99:e3:87:df:07:e6:
        bf:e3:68:f8:9b:2b:15:87:18:73:69:85:7a:10:ba:c8:
        c3:4b:14:5f:b9:b9:38:f3:c0:2c:66:dc:b3:ab:44:05:
        8f:b7:fd:0a:99:ae:7f:84:93:07:82:29:78:ce:cc:3a:
        82:d4:3d:30:23:ea:f6:d7:c5:f8:30:7e:6d:db:9f:14:
        3b:9c:af:83:6c:ff:6e:9d:f4:37:67:93:b1:a9:d7:45:
        b8:00:07:70:6f:c7:30:2e:d4:0c:70:2b:96:58:51:1b:
        25:59:07:2a:95:66:c3:73:0a:5e:b6:0a:cf:06:11:c2:
        04:a5:b3:94:7c:4f:ee:cb:80:70:b3:11:9a:5d:66:a0
    Fingerprint (SHA-256):
        2F:2A:87:80:92:21:2C:6F:78:2A:5A:BC:28:2F:0E:27:8C:BA:83:70:19:F8:39:6D:92:BA:02:05:2F:80:BC:32
    Fingerprint (SHA1):
        44:2D:2B:59:4B:CC:43:26:B3:B9:BC:45:A5:66:EA:0F:9F:18:FA:41
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #4063: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4064: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4065: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4066: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4067: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4068: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #4069: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #4070: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #4071: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #4072: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #4073: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #4074: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #4075: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #4076: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4077: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4078: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #4079: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #4080: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #4081: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235784 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4082: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #4083: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4084: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4085: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 806235785   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4086: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4087: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #4088: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4089: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 806235786   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4090: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4091: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4092: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4093: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 806235787   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4094: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4095: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4096: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4097: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 806235788   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4098: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4099: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #4100: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4101: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 806235789   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4102: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4103: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #4104: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4105: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 806235790   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4106: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4107: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #4108: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4109: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 806235791   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4110: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4111: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #4112: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4113: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 806235792   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4114: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4115: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #4116: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235784 (0x300e2e88)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:47 2017
            Not After : Sat Aug 06 23:56:47 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    a8:aa:32:3c:23:d3:94:3d:37:86:08:5c:25:65:91:5f:
                    05:71:46:a3:bb:1d:72:d5:d4:40:23:29:61:28:0b:af:
                    e1:cf:42:6e:ba:be:64:b1:a8:0b:b9:0c:74:e4:89:61:
                    77:10:6a:34:25:3c:a3:26:33:0f:05:ba:2d:9b:a6:d6:
                    5c:6a:c2:4a:b1:fd:00:e6:23:17:41:92:6d:78:90:b1:
                    ca:99:4f:ef:b8:c8:70:16:6b:3e:e9:d0:c6:e8:99:06:
                    8b:dd:1b:1a:4e:5a:90:53:8c:7a:ad:3b:df:58:b6:b7:
                    ed:23:59:b7:2e:d4:95:fc:79:d0:ea:2d:94:6f:7e:dd:
                    23:0f:ad:1d:5b:a2:78:5d:2c:12:20:35:3a:b8:83:c9:
                    85:9f:e0:04:13:d8:71:f9:4f:cb:2f:c6:4d:ea:1c:6d:
                    8f:6f:a4:b7:1e:48:08:e6:1b:d2:ae:43:bb:71:c9:64:
                    80:eb:e4:39:51:85:c0:5d:91:c8:78:e0:01:0d:c2:01:
                    9b:82:08:5f:0f:75:23:a2:0d:17:f3:0f:ad:5a:35:44:
                    bd:34:c0:e0:90:ae:e8:b3:10:8f:a5:00:d0:57:74:3d:
                    1e:3a:32:07:6a:5c:d5:eb:16:fd:43:1e:a3:42:a3:c5:
                    44:7c:40:36:ac:d0:94:39:b9:dd:ea:39:ef:8a:56:c4
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1d:00:9c:f8:2f:be:80:f3:93:77:04:30:ab:
        04:ce:74:5e:ba:37:93:b8:e6:25:df:36:9b:1d:2b:15:
        62:02:1c:1b:b3:02:27:ef:5d:24:9c:3a:9d:e2:4a:95:
        c9:e4:72:4a:7d:eb:84:ec:84:19:b9:1b:a5:16:19
    Fingerprint (SHA-256):
        43:EA:A1:07:39:67:AF:C9:0E:C4:F8:F5:8C:DA:80:8F:7F:A9:D8:CB:0E:38:25:42:1F:CD:56:5A:F0:87:8A:8F
    Fingerprint (SHA1):
        AF:7C:91:B7:8D:3F:46:19:EF:09:2C:81:F3:A9:B0:CA:C4:C8:A8:14
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4117: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235784 (0x300e2e88)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:47 2017
            Not After : Sat Aug 06 23:56:47 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    a8:aa:32:3c:23:d3:94:3d:37:86:08:5c:25:65:91:5f:
                    05:71:46:a3:bb:1d:72:d5:d4:40:23:29:61:28:0b:af:
                    e1:cf:42:6e:ba:be:64:b1:a8:0b:b9:0c:74:e4:89:61:
                    77:10:6a:34:25:3c:a3:26:33:0f:05:ba:2d:9b:a6:d6:
                    5c:6a:c2:4a:b1:fd:00:e6:23:17:41:92:6d:78:90:b1:
                    ca:99:4f:ef:b8:c8:70:16:6b:3e:e9:d0:c6:e8:99:06:
                    8b:dd:1b:1a:4e:5a:90:53:8c:7a:ad:3b:df:58:b6:b7:
                    ed:23:59:b7:2e:d4:95:fc:79:d0:ea:2d:94:6f:7e:dd:
                    23:0f:ad:1d:5b:a2:78:5d:2c:12:20:35:3a:b8:83:c9:
                    85:9f:e0:04:13:d8:71:f9:4f:cb:2f:c6:4d:ea:1c:6d:
                    8f:6f:a4:b7:1e:48:08:e6:1b:d2:ae:43:bb:71:c9:64:
                    80:eb:e4:39:51:85:c0:5d:91:c8:78:e0:01:0d:c2:01:
                    9b:82:08:5f:0f:75:23:a2:0d:17:f3:0f:ad:5a:35:44:
                    bd:34:c0:e0:90:ae:e8:b3:10:8f:a5:00:d0:57:74:3d:
                    1e:3a:32:07:6a:5c:d5:eb:16:fd:43:1e:a3:42:a3:c5:
                    44:7c:40:36:ac:d0:94:39:b9:dd:ea:39:ef:8a:56:c4
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1d:00:9c:f8:2f:be:80:f3:93:77:04:30:ab:
        04:ce:74:5e:ba:37:93:b8:e6:25:df:36:9b:1d:2b:15:
        62:02:1c:1b:b3:02:27:ef:5d:24:9c:3a:9d:e2:4a:95:
        c9:e4:72:4a:7d:eb:84:ec:84:19:b9:1b:a5:16:19
    Fingerprint (SHA-256):
        43:EA:A1:07:39:67:AF:C9:0E:C4:F8:F5:8C:DA:80:8F:7F:A9:D8:CB:0E:38:25:42:1F:CD:56:5A:F0:87:8A:8F
    Fingerprint (SHA1):
        AF:7C:91:B7:8D:3F:46:19:EF:09:2C:81:F3:A9:B0:CA:C4:C8:A8:14
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #4118: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235784 (0x300e2e88)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:47 2017
            Not After : Sat Aug 06 23:56:47 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    a8:aa:32:3c:23:d3:94:3d:37:86:08:5c:25:65:91:5f:
                    05:71:46:a3:bb:1d:72:d5:d4:40:23:29:61:28:0b:af:
                    e1:cf:42:6e:ba:be:64:b1:a8:0b:b9:0c:74:e4:89:61:
                    77:10:6a:34:25:3c:a3:26:33:0f:05:ba:2d:9b:a6:d6:
                    5c:6a:c2:4a:b1:fd:00:e6:23:17:41:92:6d:78:90:b1:
                    ca:99:4f:ef:b8:c8:70:16:6b:3e:e9:d0:c6:e8:99:06:
                    8b:dd:1b:1a:4e:5a:90:53:8c:7a:ad:3b:df:58:b6:b7:
                    ed:23:59:b7:2e:d4:95:fc:79:d0:ea:2d:94:6f:7e:dd:
                    23:0f:ad:1d:5b:a2:78:5d:2c:12:20:35:3a:b8:83:c9:
                    85:9f:e0:04:13:d8:71:f9:4f:cb:2f:c6:4d:ea:1c:6d:
                    8f:6f:a4:b7:1e:48:08:e6:1b:d2:ae:43:bb:71:c9:64:
                    80:eb:e4:39:51:85:c0:5d:91:c8:78:e0:01:0d:c2:01:
                    9b:82:08:5f:0f:75:23:a2:0d:17:f3:0f:ad:5a:35:44:
                    bd:34:c0:e0:90:ae:e8:b3:10:8f:a5:00:d0:57:74:3d:
                    1e:3a:32:07:6a:5c:d5:eb:16:fd:43:1e:a3:42:a3:c5:
                    44:7c:40:36:ac:d0:94:39:b9:dd:ea:39:ef:8a:56:c4
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1d:00:9c:f8:2f:be:80:f3:93:77:04:30:ab:
        04:ce:74:5e:ba:37:93:b8:e6:25:df:36:9b:1d:2b:15:
        62:02:1c:1b:b3:02:27:ef:5d:24:9c:3a:9d:e2:4a:95:
        c9:e4:72:4a:7d:eb:84:ec:84:19:b9:1b:a5:16:19
    Fingerprint (SHA-256):
        43:EA:A1:07:39:67:AF:C9:0E:C4:F8:F5:8C:DA:80:8F:7F:A9:D8:CB:0E:38:25:42:1F:CD:56:5A:F0:87:8A:8F
    Fingerprint (SHA1):
        AF:7C:91:B7:8D:3F:46:19:EF:09:2C:81:F3:A9:B0:CA:C4:C8:A8:14
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #4119: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235784 (0x300e2e88)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:47 2017
            Not After : Sat Aug 06 23:56:47 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    a8:aa:32:3c:23:d3:94:3d:37:86:08:5c:25:65:91:5f:
                    05:71:46:a3:bb:1d:72:d5:d4:40:23:29:61:28:0b:af:
                    e1:cf:42:6e:ba:be:64:b1:a8:0b:b9:0c:74:e4:89:61:
                    77:10:6a:34:25:3c:a3:26:33:0f:05:ba:2d:9b:a6:d6:
                    5c:6a:c2:4a:b1:fd:00:e6:23:17:41:92:6d:78:90:b1:
                    ca:99:4f:ef:b8:c8:70:16:6b:3e:e9:d0:c6:e8:99:06:
                    8b:dd:1b:1a:4e:5a:90:53:8c:7a:ad:3b:df:58:b6:b7:
                    ed:23:59:b7:2e:d4:95:fc:79:d0:ea:2d:94:6f:7e:dd:
                    23:0f:ad:1d:5b:a2:78:5d:2c:12:20:35:3a:b8:83:c9:
                    85:9f:e0:04:13:d8:71:f9:4f:cb:2f:c6:4d:ea:1c:6d:
                    8f:6f:a4:b7:1e:48:08:e6:1b:d2:ae:43:bb:71:c9:64:
                    80:eb:e4:39:51:85:c0:5d:91:c8:78:e0:01:0d:c2:01:
                    9b:82:08:5f:0f:75:23:a2:0d:17:f3:0f:ad:5a:35:44:
                    bd:34:c0:e0:90:ae:e8:b3:10:8f:a5:00:d0:57:74:3d:
                    1e:3a:32:07:6a:5c:d5:eb:16:fd:43:1e:a3:42:a3:c5:
                    44:7c:40:36:ac:d0:94:39:b9:dd:ea:39:ef:8a:56:c4
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1d:00:9c:f8:2f:be:80:f3:93:77:04:30:ab:
        04:ce:74:5e:ba:37:93:b8:e6:25:df:36:9b:1d:2b:15:
        62:02:1c:1b:b3:02:27:ef:5d:24:9c:3a:9d:e2:4a:95:
        c9:e4:72:4a:7d:eb:84:ec:84:19:b9:1b:a5:16:19
    Fingerprint (SHA-256):
        43:EA:A1:07:39:67:AF:C9:0E:C4:F8:F5:8C:DA:80:8F:7F:A9:D8:CB:0E:38:25:42:1F:CD:56:5A:F0:87:8A:8F
    Fingerprint (SHA1):
        AF:7C:91:B7:8D:3F:46:19:EF:09:2C:81:F3:A9:B0:CA:C4:C8:A8:14
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #4120: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #4121: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 10 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4122: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #4123: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #4124: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4125: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4126: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4127: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4128: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4129: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4130: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4131: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #4132: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4133: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4134: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4135: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #4136: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4137: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4138: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4139: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4140: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4141: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4142: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4143: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #4144: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4145: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4146: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4147: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170806235650Z
nextupdate=20180806235650Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Sun Aug 06 23:56:50 2017
    Next Update: Mon Aug 06 23:56:50 2018
    CRL Extensions:
chains.sh: #4148: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170806235650Z
nextupdate=20180806235650Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sun Aug 06 23:56:50 2017
    Next Update: Mon Aug 06 23:56:50 2018
    CRL Extensions:
chains.sh: #4149: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170806235650Z
nextupdate=20180806235650Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Sun Aug 06 23:56:50 2017
    Next Update: Mon Aug 06 23:56:50 2018
    CRL Extensions:
chains.sh: #4150: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170806235650Z
nextupdate=20180806235650Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Sun Aug 06 23:56:50 2017
    Next Update: Mon Aug 06 23:56:50 2018
    CRL Extensions:
chains.sh: #4151: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170806235651Z
addcert 14 20170806235651Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Sun Aug 06 23:56:51 2017
    Next Update: Mon Aug 06 23:56:50 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Sun Aug 06 23:56:51 2017
    CRL Extensions:
chains.sh: #4152: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170806235652Z
addcert 15 20170806235652Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sun Aug 06 23:56:52 2017
    Next Update: Mon Aug 06 23:56:50 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Sun Aug 06 23:56:52 2017
    CRL Extensions:
chains.sh: #4153: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #4154: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4155: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #4156: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #4157: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #4158: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #4159: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #4160: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #4161: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #4162: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:49 2017
            Not After : Sat Aug 06 23:56:49 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:0e:97:59:80:d0:e0:94:64:3d:5e:ee:68:68:e2:4b:
                    96:54:88:f2:05:48:12:ba:64:5f:54:62:87:0b:1e:5b:
                    38:80:9e:ad:68:b8:13:7e:21:c3:0e:62:fb:7d:9a:84:
                    84:1e:6f:c7:ab:9b:8f:04:d5:27:23:67:0b:33:45:97:
                    7b:41:bc:29:5d:54:4d:d1:5c:73:6c:0f:1f:e4:f4:0b:
                    ac:b8:99:f9:5b:9a:bf:4a:ff:62:91:c9:b6:25:54:50:
                    c3:a6:94:87:75:a3:a1:65:1e:16:5c:e1:d5:eb:17:a8:
                    85:36:93:2d:83:e3:73:7c:e2:fd:14:f3:d3:0f:21:2b:
                    f3:dc:c7:11:e9:81:5b:3e:b6:b5:ca:e0:d0:93:74:48:
                    0e:5e:d1:54:4a:82:f3:5f:5c:50:e0:12:a5:3d:35:a2:
                    22:9e:80:f1:70:f7:7a:40:31:10:83:a8:ce:7b:da:76:
                    1e:91:66:d0:14:56:82:f8:2f:d8:cd:79:f6:7b:e6:61:
                    8c:8e:bc:c5:18:5d:f6:cb:34:f8:2c:d7:34:b1:03:3b:
                    5a:c6:a0:eb:db:65:a3:5f:82:a3:0f:ef:ad:30:18:47:
                    bb:6b:18:37:22:13:45:d9:c8:eb:ed:d7:48:e2:46:d8:
                    3f:98:05:c4:e2:c5:53:e5:f5:7c:e2:66:a5:3e:42:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:af:76:0e:f2:e7:0e:a0:6d:12:b0:bb:1b:55:38:1a:
        c4:98:69:eb:bc:15:f4:9e:54:6e:a0:6e:e8:66:d3:a0:
        cf:a7:05:72:6b:a3:5f:1a:30:2d:c2:19:9d:84:59:9e:
        e7:9b:e2:0e:59:18:6c:02:5b:7e:03:c2:87:4f:dc:0a:
        6b:bb:91:c5:17:37:c1:f9:9c:b1:20:a6:91:49:99:5b:
        61:85:46:c0:a8:d4:8b:d1:0a:42:24:04:46:41:f5:b4:
        97:8c:0a:81:ad:8b:05:79:41:7f:ff:bc:66:07:01:e0:
        0d:1e:fb:39:07:0d:63:52:5e:c4:56:34:56:ee:5f:6d:
        0c:8d:0a:a5:dc:8e:0f:f6:85:d8:ff:64:af:5b:57:09:
        bd:74:ce:ba:e5:a8:9e:a6:86:84:2f:d5:d7:8e:48:e4:
        34:ac:36:56:ea:a9:1f:b4:44:79:95:1e:bd:1c:65:53:
        23:e0:86:64:02:d5:27:b6:10:a3:8c:c1:58:6e:b4:05:
        1c:3a:ca:7c:0c:d4:a2:8e:16:1f:da:7f:58:42:b0:48:
        b5:0e:b9:09:1b:49:ed:57:8d:1f:66:74:cb:7e:fc:0d:
        7e:f8:2a:10:ea:60:4e:fe:61:a3:90:1d:bc:f9:42:5d:
        d6:03:68:4a:6f:88:50:8f:03:01:d5:e2:f7:eb:3e:ce
    Fingerprint (SHA-256):
        17:69:AD:81:46:2E:87:17:C6:AD:EA:21:81:2D:E5:F6:4F:9A:82:6C:B6:82:F6:86:9C:D4:FB:D7:CF:99:4D:26
    Fingerprint (SHA1):
        DE:C6:8F:94:45:77:0F:31:75:11:85:AF:54:9A:46:BC:F1:11:74:93
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #4163: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #4164: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:49 2017
            Not After : Sat Aug 06 23:56:49 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:0e:97:59:80:d0:e0:94:64:3d:5e:ee:68:68:e2:4b:
                    96:54:88:f2:05:48:12:ba:64:5f:54:62:87:0b:1e:5b:
                    38:80:9e:ad:68:b8:13:7e:21:c3:0e:62:fb:7d:9a:84:
                    84:1e:6f:c7:ab:9b:8f:04:d5:27:23:67:0b:33:45:97:
                    7b:41:bc:29:5d:54:4d:d1:5c:73:6c:0f:1f:e4:f4:0b:
                    ac:b8:99:f9:5b:9a:bf:4a:ff:62:91:c9:b6:25:54:50:
                    c3:a6:94:87:75:a3:a1:65:1e:16:5c:e1:d5:eb:17:a8:
                    85:36:93:2d:83:e3:73:7c:e2:fd:14:f3:d3:0f:21:2b:
                    f3:dc:c7:11:e9:81:5b:3e:b6:b5:ca:e0:d0:93:74:48:
                    0e:5e:d1:54:4a:82:f3:5f:5c:50:e0:12:a5:3d:35:a2:
                    22:9e:80:f1:70:f7:7a:40:31:10:83:a8:ce:7b:da:76:
                    1e:91:66:d0:14:56:82:f8:2f:d8:cd:79:f6:7b:e6:61:
                    8c:8e:bc:c5:18:5d:f6:cb:34:f8:2c:d7:34:b1:03:3b:
                    5a:c6:a0:eb:db:65:a3:5f:82:a3:0f:ef:ad:30:18:47:
                    bb:6b:18:37:22:13:45:d9:c8:eb:ed:d7:48:e2:46:d8:
                    3f:98:05:c4:e2:c5:53:e5:f5:7c:e2:66:a5:3e:42:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:af:76:0e:f2:e7:0e:a0:6d:12:b0:bb:1b:55:38:1a:
        c4:98:69:eb:bc:15:f4:9e:54:6e:a0:6e:e8:66:d3:a0:
        cf:a7:05:72:6b:a3:5f:1a:30:2d:c2:19:9d:84:59:9e:
        e7:9b:e2:0e:59:18:6c:02:5b:7e:03:c2:87:4f:dc:0a:
        6b:bb:91:c5:17:37:c1:f9:9c:b1:20:a6:91:49:99:5b:
        61:85:46:c0:a8:d4:8b:d1:0a:42:24:04:46:41:f5:b4:
        97:8c:0a:81:ad:8b:05:79:41:7f:ff:bc:66:07:01:e0:
        0d:1e:fb:39:07:0d:63:52:5e:c4:56:34:56:ee:5f:6d:
        0c:8d:0a:a5:dc:8e:0f:f6:85:d8:ff:64:af:5b:57:09:
        bd:74:ce:ba:e5:a8:9e:a6:86:84:2f:d5:d7:8e:48:e4:
        34:ac:36:56:ea:a9:1f:b4:44:79:95:1e:bd:1c:65:53:
        23:e0:86:64:02:d5:27:b6:10:a3:8c:c1:58:6e:b4:05:
        1c:3a:ca:7c:0c:d4:a2:8e:16:1f:da:7f:58:42:b0:48:
        b5:0e:b9:09:1b:49:ed:57:8d:1f:66:74:cb:7e:fc:0d:
        7e:f8:2a:10:ea:60:4e:fe:61:a3:90:1d:bc:f9:42:5d:
        d6:03:68:4a:6f:88:50:8f:03:01:d5:e2:f7:eb:3e:ce
    Fingerprint (SHA-256):
        17:69:AD:81:46:2E:87:17:C6:AD:EA:21:81:2D:E5:F6:4F:9A:82:6C:B6:82:F6:86:9C:D4:FB:D7:CF:99:4D:26
    Fingerprint (SHA1):
        DE:C6:8F:94:45:77:0F:31:75:11:85:AF:54:9A:46:BC:F1:11:74:93
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #4165: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #4166: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #4167: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235793 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4168: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #4169: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #4170: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4171: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 806235794   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4172: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4173: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4174: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9019/localhost-8843-CA0-806235565.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4175: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0Root-806235539.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4176: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4177: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #4178: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0-806235565.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4179: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 806235795   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4180: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4181: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4182: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9019/localhost-8843-CA0-806235565.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4183: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0Root-806235540.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4184: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4185: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #4186: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4187: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 806235796   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4188: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4189: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #4190: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0-806235565.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4191: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0Root-806235541.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4192: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4193: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4194: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0-806235565.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4195: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0Root-806235542.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4196: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4197: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170806235654Z
nextupdate=20180806235654Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Sun Aug 06 23:56:54 2017
    Next Update: Mon Aug 06 23:56:54 2018
    CRL Extensions:
chains.sh: #4198: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170806235654Z
nextupdate=20180806235654Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sun Aug 06 23:56:54 2017
    Next Update: Mon Aug 06 23:56:54 2018
    CRL Extensions:
chains.sh: #4199: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170806235654Z
nextupdate=20180806235654Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Sun Aug 06 23:56:54 2017
    Next Update: Mon Aug 06 23:56:54 2018
    CRL Extensions:
chains.sh: #4200: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170806235654Z
nextupdate=20180806235654Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Sun Aug 06 23:56:54 2017
    Next Update: Mon Aug 06 23:56:54 2018
    CRL Extensions:
chains.sh: #4201: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170806235655Z
addcert 20 20170806235655Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sun Aug 06 23:56:55 2017
    Next Update: Mon Aug 06 23:56:54 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Sun Aug 06 23:56:55 2017
    CRL Extensions:
chains.sh: #4202: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170806235656Z
addcert 40 20170806235656Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sun Aug 06 23:56:56 2017
    Next Update: Mon Aug 06 23:56:54 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Sun Aug 06 23:56:55 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Sun Aug 06 23:56:56 2017
    CRL Extensions:
chains.sh: #4203: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #4204: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4205: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #4206: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235793 (0x300e2e91)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:52 2017
            Not After : Sat Aug 06 23:56:52 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ef:f0:aa:e0:5d:eb:20:5c:6d:3f:5f:e8:d7:7b:3c:f4:
                    0c:97:95:90:04:8c:e4:33:77:9e:10:4b:07:02:73:5e:
                    c5:ec:65:e8:bf:c5:f8:e3:2b:fb:0f:db:bb:99:68:d9:
                    8d:7a:c7:cc:a4:a5:a6:75:27:eb:2f:f6:28:0e:ba:7f:
                    7d:82:13:b6:b8:4d:4c:90:f5:ce:32:cc:11:f3:f0:d6:
                    d3:38:06:46:82:4b:00:75:40:f2:e3:c0:2a:40:bb:d6:
                    db:fe:28:c4:75:18:ff:b0:37:ca:eb:14:91:96:0b:63:
                    fb:9e:62:6f:4a:e1:51:d3:29:d0:84:0d:2c:77:c9:c3:
                    64:cb:a5:58:c8:8d:92:22:78:07:50:7e:85:e7:92:f0:
                    44:6c:04:a3:63:df:ac:88:a9:26:2c:f5:c0:58:b0:62:
                    94:05:3b:b8:bd:1e:23:56:e2:cb:f9:67:17:6b:d7:59:
                    ad:4a:01:e2:72:6c:8a:76:16:d6:5c:9a:44:a5:16:80:
                    6c:fd:a7:90:f7:42:4e:6a:c8:79:fd:7d:97:75:d0:b8:
                    0d:68:8d:14:a1:c1:97:57:74:10:42:02:97:03:cb:4b:
                    6a:27:da:5e:c7:36:c3:c4:64:f3:ca:2f:6e:a3:ca:89:
                    cc:97:6e:b0:41:40:d3:a8:cd:38:33:f6:50:69:1d:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b5:54:2c:3a:1b:26:b6:8e:5b:94:e0:79:33:0a:c3:1a:
        ab:b9:6d:28:19:af:a8:b4:28:92:0b:c2:66:c1:d9:72:
        1f:c6:38:89:3f:43:0f:27:8e:6a:87:05:ad:c9:0f:5c:
        4c:02:a4:07:49:b4:96:9f:d0:55:b1:d9:69:bb:56:75:
        d5:05:f0:96:af:58:6a:16:dd:1a:08:09:0a:b2:df:7a:
        f4:e9:e3:18:fe:01:ef:49:ee:05:26:38:34:d6:93:ad:
        32:17:ba:60:7e:aa:50:cf:d8:55:24:64:a1:8f:eb:aa:
        1c:ed:a2:06:1e:92:44:7c:c2:8a:8c:b2:ee:52:d5:fa:
        fb:f8:6d:03:fb:42:4c:36:44:37:a7:0d:c2:b2:a7:3a:
        67:32:d3:2e:b3:43:83:69:be:1c:d3:9e:bc:72:fc:2f:
        25:12:0b:05:68:cc:cf:dd:17:10:c8:c9:41:51:6c:f1:
        1d:06:51:3c:8b:8c:0a:1e:de:01:b3:57:1b:cc:b9:2a:
        be:46:1e:ed:62:f1:e3:09:33:43:22:51:56:f4:c6:f6:
        2d:a4:65:85:bf:3d:d9:fd:df:91:0f:50:af:ee:d3:de:
        60:c8:1a:ee:e7:30:48:f5:c0:ef:66:cc:5e:29:86:f5:
        c7:35:42:b4:a9:27:05:5e:d3:15:a9:8e:c0:39:bd:c8
    Fingerprint (SHA-256):
        0A:C3:98:6C:49:69:DE:E0:EB:D5:7F:30:9D:45:E8:BF:5C:0E:0F:BC:58:39:C2:BB:81:B3:E4:89:18:DE:76:FF
    Fingerprint (SHA1):
        F6:FB:5B:7F:61:BE:62:CC:89:2D:43:25:2A:71:42:DC:8F:48:1F:84
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #4207: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #4208: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235793 (0x300e2e91)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:52 2017
            Not After : Sat Aug 06 23:56:52 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ef:f0:aa:e0:5d:eb:20:5c:6d:3f:5f:e8:d7:7b:3c:f4:
                    0c:97:95:90:04:8c:e4:33:77:9e:10:4b:07:02:73:5e:
                    c5:ec:65:e8:bf:c5:f8:e3:2b:fb:0f:db:bb:99:68:d9:
                    8d:7a:c7:cc:a4:a5:a6:75:27:eb:2f:f6:28:0e:ba:7f:
                    7d:82:13:b6:b8:4d:4c:90:f5:ce:32:cc:11:f3:f0:d6:
                    d3:38:06:46:82:4b:00:75:40:f2:e3:c0:2a:40:bb:d6:
                    db:fe:28:c4:75:18:ff:b0:37:ca:eb:14:91:96:0b:63:
                    fb:9e:62:6f:4a:e1:51:d3:29:d0:84:0d:2c:77:c9:c3:
                    64:cb:a5:58:c8:8d:92:22:78:07:50:7e:85:e7:92:f0:
                    44:6c:04:a3:63:df:ac:88:a9:26:2c:f5:c0:58:b0:62:
                    94:05:3b:b8:bd:1e:23:56:e2:cb:f9:67:17:6b:d7:59:
                    ad:4a:01:e2:72:6c:8a:76:16:d6:5c:9a:44:a5:16:80:
                    6c:fd:a7:90:f7:42:4e:6a:c8:79:fd:7d:97:75:d0:b8:
                    0d:68:8d:14:a1:c1:97:57:74:10:42:02:97:03:cb:4b:
                    6a:27:da:5e:c7:36:c3:c4:64:f3:ca:2f:6e:a3:ca:89:
                    cc:97:6e:b0:41:40:d3:a8:cd:38:33:f6:50:69:1d:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b5:54:2c:3a:1b:26:b6:8e:5b:94:e0:79:33:0a:c3:1a:
        ab:b9:6d:28:19:af:a8:b4:28:92:0b:c2:66:c1:d9:72:
        1f:c6:38:89:3f:43:0f:27:8e:6a:87:05:ad:c9:0f:5c:
        4c:02:a4:07:49:b4:96:9f:d0:55:b1:d9:69:bb:56:75:
        d5:05:f0:96:af:58:6a:16:dd:1a:08:09:0a:b2:df:7a:
        f4:e9:e3:18:fe:01:ef:49:ee:05:26:38:34:d6:93:ad:
        32:17:ba:60:7e:aa:50:cf:d8:55:24:64:a1:8f:eb:aa:
        1c:ed:a2:06:1e:92:44:7c:c2:8a:8c:b2:ee:52:d5:fa:
        fb:f8:6d:03:fb:42:4c:36:44:37:a7:0d:c2:b2:a7:3a:
        67:32:d3:2e:b3:43:83:69:be:1c:d3:9e:bc:72:fc:2f:
        25:12:0b:05:68:cc:cf:dd:17:10:c8:c9:41:51:6c:f1:
        1d:06:51:3c:8b:8c:0a:1e:de:01:b3:57:1b:cc:b9:2a:
        be:46:1e:ed:62:f1:e3:09:33:43:22:51:56:f4:c6:f6:
        2d:a4:65:85:bf:3d:d9:fd:df:91:0f:50:af:ee:d3:de:
        60:c8:1a:ee:e7:30:48:f5:c0:ef:66:cc:5e:29:86:f5:
        c7:35:42:b4:a9:27:05:5e:d3:15:a9:8e:c0:39:bd:c8
    Fingerprint (SHA-256):
        0A:C3:98:6C:49:69:DE:E0:EB:D5:7F:30:9D:45:E8:BF:5C:0E:0F:BC:58:39:C2:BB:81:B3:E4:89:18:DE:76:FF
    Fingerprint (SHA1):
        F6:FB:5B:7F:61:BE:62:CC:89:2D:43:25:2A:71:42:DC:8F:48:1F:84
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #4209: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #4210: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #4211: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235797 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4212: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #4213: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4214: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4215: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 806235798   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4216: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4217: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4218: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4219: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 806235799   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4220: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4221: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #4222: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4223: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 806235800   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4224: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4225: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #4226: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 806235801 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4227: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #4228: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #4229: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4230: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 806235802   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4231: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4232: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4233: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4234: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 806235803   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4235: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4236: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #4237: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #4238: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #4239: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235797 (0x300e2e95)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:57 2017
            Not After : Sat Aug 06 23:56:57 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:3a:b2:ef:85:41:70:d1:1c:53:96:5f:23:d7:6b:86:
                    65:dd:c6:45:cc:6b:4f:23:36:64:ea:13:96:de:2b:3f:
                    df:6b:29:af:2e:99:af:5f:40:09:94:a8:f6:cc:89:94:
                    da:63:1d:3e:40:78:ab:8d:cc:6f:bf:48:6f:a3:ab:9b:
                    a6:cf:66:26:46:f7:8f:0d:a6:48:83:7e:2a:af:ad:b3:
                    46:91:8e:95:85:2f:5a:26:f1:d6:02:2b:d2:8e:76:53:
                    bc:66:d6:7c:74:5e:9d:f8:0a:f4:3e:b1:51:61:c5:e8:
                    e8:a3:32:0c:cb:76:56:a0:fd:04:6d:46:f2:56:fe:aa:
                    79:aa:e6:b7:3e:a9:cc:26:e0:a2:99:21:75:cd:2f:ab:
                    c7:ec:af:c4:db:3f:be:8d:d6:58:be:9f:ad:84:5b:18:
                    eb:df:be:6e:fd:ec:85:1e:48:d8:72:7e:96:74:e0:9e:
                    af:4f:6a:ac:f4:00:6f:6b:0a:24:0c:82:9e:c6:2c:b9:
                    72:2b:d2:e5:d3:b6:70:c6:ff:5c:2a:7b:a8:3e:c9:96:
                    aa:52:c8:2a:ab:15:0e:39:d3:e7:c6:c7:b0:4d:5b:6a:
                    af:05:23:ee:57:84:0d:e4:1b:06:67:85:32:d9:b7:54:
                    41:6b:bf:c6:cc:f9:01:83:fe:ef:5b:dc:a1:f0:e6:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cb:97:a4:c1:3d:c4:e7:7c:ab:7c:04:bd:9b:fb:77:cd:
        d5:72:5e:32:91:2d:a4:73:a4:26:1d:e2:81:30:1e:7d:
        0f:7a:fc:a0:2e:9d:fd:f6:a8:e8:00:48:4f:cb:c3:e7:
        72:d5:f4:45:88:d4:cf:5f:a0:44:62:bd:ab:b7:de:a1:
        f6:19:2d:3d:0a:27:16:f6:1e:a2:f7:0e:03:2f:1d:54:
        ca:ad:42:33:d4:4b:38:bd:39:f6:f2:26:64:df:2e:12:
        a9:c6:99:46:10:69:0f:02:ea:a4:bb:a2:e9:49:7b:51:
        41:60:b0:eb:fa:3d:62:91:33:24:c4:e1:d4:49:a7:2e:
        58:76:44:f1:e4:f8:40:c3:e2:52:2d:7c:00:17:03:9d:
        c9:3f:4d:1e:8c:c5:64:87:63:84:e8:40:f0:23:36:7e:
        bd:be:17:c5:b1:96:0b:17:e8:2f:2e:7a:6e:e0:90:80:
        8b:ea:4b:9c:0d:57:48:de:37:e9:bf:97:0d:53:87:88:
        5d:0f:cf:b7:9d:cc:8c:7a:b0:63:3d:73:9e:e4:4e:42:
        91:5a:a7:8d:45:b7:05:50:38:38:4b:35:67:c0:c0:30:
        93:e3:2f:bb:a0:bd:89:49:ca:1b:f9:85:5f:c4:a4:57:
        14:0a:07:64:81:a4:e6:7b:da:47:4d:98:5a:84:b8:e1
    Fingerprint (SHA-256):
        38:9B:5F:64:8F:26:10:5C:C9:9E:F8:FC:D3:B0:D2:F8:37:41:3E:45:B2:CC:85:37:96:B2:D2:9D:60:00:A7:9B
    Fingerprint (SHA1):
        52:18:44:32:EB:D7:73:6B:E6:E5:1F:79:48:82:3F:26:08:4B:AC:AF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4240: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235799 (0x300e2e97)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:57 2017
            Not After : Sat Aug 06 23:56:57 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:42:68:98:72:78:0b:00:cb:bf:1d:55:af:39:cb:27:
                    71:9d:da:36:9c:21:54:98:27:5f:b5:77:ca:d8:d1:53:
                    d4:ac:6b:45:e6:42:69:42:e6:9c:59:82:56:b8:bb:16:
                    ba:2e:51:f0:61:85:88:45:c5:fd:d1:31:dc:57:01:55:
                    77:8f:5a:c4:26:ef:cf:d2:fb:ef:ea:67:8c:10:53:d9:
                    b1:16:f0:7f:2a:63:6f:93:71:89:77:cb:8a:13:65:75:
                    74:b1:de:74:d3:ff:c2:d5:25:46:03:6c:24:f5:1b:8f:
                    90:75:34:81:41:81:a2:41:9a:41:0c:77:77:a7:52:40:
                    35:73:41:3d:a1:4f:34:f8:1b:36:fb:84:73:f7:56:c7:
                    bd:f8:4f:d1:f9:5d:55:77:1a:98:a0:47:d3:9c:53:32:
                    70:13:e9:af:83:27:b5:01:50:c6:3f:3f:b5:e2:08:5c:
                    f7:21:07:d7:a2:f7:b9:9c:da:8d:a0:40:21:85:67:f8:
                    4d:a3:b2:a1:f5:64:2b:fc:0f:d6:c4:2c:17:bf:5a:d4:
                    5f:14:19:3d:c9:90:fd:2f:c1:22:8f:09:ee:6a:86:8f:
                    08:df:30:b3:20:66:4e:88:87:98:35:78:e6:d0:2e:b5:
                    61:2f:e7:eb:f2:75:64:de:ee:f5:00:21:68:45:89:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:88:a1:ba:b0:74:5e:55:26:ce:61:27:6c:87:fb:5e:
        9a:7d:09:14:91:02:79:bc:3b:c8:73:df:2c:e8:ae:1b:
        ce:ce:b3:d1:bd:e4:e5:19:3d:bc:dd:f8:18:d3:82:31:
        88:ff:93:7c:2b:e2:a5:22:c0:19:ba:5a:61:a8:00:6e:
        de:ed:23:0a:ab:76:4c:66:10:4c:88:0d:aa:f4:1b:dd:
        09:8f:e3:6e:81:16:20:70:8b:d2:dd:a0:20:32:34:f7:
        5f:bf:77:aa:09:43:7a:c3:da:94:37:0e:07:de:4d:1b:
        80:bc:64:44:44:cf:4f:b0:4c:a5:65:02:c6:6a:07:58:
        0d:41:c6:a9:34:df:02:6f:cb:6a:b2:b5:10:20:dc:c6:
        a1:3d:b3:2d:76:0d:6a:ef:9e:37:70:6a:4d:99:72:cf:
        75:8e:ba:7d:49:b1:6c:2c:b9:4e:b1:9c:dd:82:fb:95:
        81:5f:a0:54:1b:8d:32:de:f3:62:e0:eb:ea:ce:28:74:
        af:3e:41:97:44:a8:45:09:d7:94:fd:7c:55:fa:00:d4:
        0a:89:a4:77:df:a4:54:d4:ca:ef:3d:d7:f6:59:3c:a9:
        45:2e:c7:05:0a:3f:8b:78:97:ed:65:3d:07:54:68:68:
        55:d5:c5:da:d8:86:75:37:35:c0:30:1f:38:a6:1b:27
    Fingerprint (SHA-256):
        0E:22:07:EE:4B:C6:A3:B7:84:77:02:1C:02:C3:71:4F:46:4E:63:69:DA:2E:83:6A:4C:0D:91:E3:86:6A:DB:EE
    Fingerprint (SHA1):
        B4:F1:16:5A:85:98:21:08:D2:ED:BB:8C:0C:8A:BF:AC:BB:EB:36:A9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4241: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235797 (0x300e2e95)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:57 2017
            Not After : Sat Aug 06 23:56:57 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:3a:b2:ef:85:41:70:d1:1c:53:96:5f:23:d7:6b:86:
                    65:dd:c6:45:cc:6b:4f:23:36:64:ea:13:96:de:2b:3f:
                    df:6b:29:af:2e:99:af:5f:40:09:94:a8:f6:cc:89:94:
                    da:63:1d:3e:40:78:ab:8d:cc:6f:bf:48:6f:a3:ab:9b:
                    a6:cf:66:26:46:f7:8f:0d:a6:48:83:7e:2a:af:ad:b3:
                    46:91:8e:95:85:2f:5a:26:f1:d6:02:2b:d2:8e:76:53:
                    bc:66:d6:7c:74:5e:9d:f8:0a:f4:3e:b1:51:61:c5:e8:
                    e8:a3:32:0c:cb:76:56:a0:fd:04:6d:46:f2:56:fe:aa:
                    79:aa:e6:b7:3e:a9:cc:26:e0:a2:99:21:75:cd:2f:ab:
                    c7:ec:af:c4:db:3f:be:8d:d6:58:be:9f:ad:84:5b:18:
                    eb:df:be:6e:fd:ec:85:1e:48:d8:72:7e:96:74:e0:9e:
                    af:4f:6a:ac:f4:00:6f:6b:0a:24:0c:82:9e:c6:2c:b9:
                    72:2b:d2:e5:d3:b6:70:c6:ff:5c:2a:7b:a8:3e:c9:96:
                    aa:52:c8:2a:ab:15:0e:39:d3:e7:c6:c7:b0:4d:5b:6a:
                    af:05:23:ee:57:84:0d:e4:1b:06:67:85:32:d9:b7:54:
                    41:6b:bf:c6:cc:f9:01:83:fe:ef:5b:dc:a1:f0:e6:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cb:97:a4:c1:3d:c4:e7:7c:ab:7c:04:bd:9b:fb:77:cd:
        d5:72:5e:32:91:2d:a4:73:a4:26:1d:e2:81:30:1e:7d:
        0f:7a:fc:a0:2e:9d:fd:f6:a8:e8:00:48:4f:cb:c3:e7:
        72:d5:f4:45:88:d4:cf:5f:a0:44:62:bd:ab:b7:de:a1:
        f6:19:2d:3d:0a:27:16:f6:1e:a2:f7:0e:03:2f:1d:54:
        ca:ad:42:33:d4:4b:38:bd:39:f6:f2:26:64:df:2e:12:
        a9:c6:99:46:10:69:0f:02:ea:a4:bb:a2:e9:49:7b:51:
        41:60:b0:eb:fa:3d:62:91:33:24:c4:e1:d4:49:a7:2e:
        58:76:44:f1:e4:f8:40:c3:e2:52:2d:7c:00:17:03:9d:
        c9:3f:4d:1e:8c:c5:64:87:63:84:e8:40:f0:23:36:7e:
        bd:be:17:c5:b1:96:0b:17:e8:2f:2e:7a:6e:e0:90:80:
        8b:ea:4b:9c:0d:57:48:de:37:e9:bf:97:0d:53:87:88:
        5d:0f:cf:b7:9d:cc:8c:7a:b0:63:3d:73:9e:e4:4e:42:
        91:5a:a7:8d:45:b7:05:50:38:38:4b:35:67:c0:c0:30:
        93:e3:2f:bb:a0:bd:89:49:ca:1b:f9:85:5f:c4:a4:57:
        14:0a:07:64:81:a4:e6:7b:da:47:4d:98:5a:84:b8:e1
    Fingerprint (SHA-256):
        38:9B:5F:64:8F:26:10:5C:C9:9E:F8:FC:D3:B0:D2:F8:37:41:3E:45:B2:CC:85:37:96:B2:D2:9D:60:00:A7:9B
    Fingerprint (SHA1):
        52:18:44:32:EB:D7:73:6B:E6:E5:1F:79:48:82:3F:26:08:4B:AC:AF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4242: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #4243: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235797 (0x300e2e95)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:57 2017
            Not After : Sat Aug 06 23:56:57 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:3a:b2:ef:85:41:70:d1:1c:53:96:5f:23:d7:6b:86:
                    65:dd:c6:45:cc:6b:4f:23:36:64:ea:13:96:de:2b:3f:
                    df:6b:29:af:2e:99:af:5f:40:09:94:a8:f6:cc:89:94:
                    da:63:1d:3e:40:78:ab:8d:cc:6f:bf:48:6f:a3:ab:9b:
                    a6:cf:66:26:46:f7:8f:0d:a6:48:83:7e:2a:af:ad:b3:
                    46:91:8e:95:85:2f:5a:26:f1:d6:02:2b:d2:8e:76:53:
                    bc:66:d6:7c:74:5e:9d:f8:0a:f4:3e:b1:51:61:c5:e8:
                    e8:a3:32:0c:cb:76:56:a0:fd:04:6d:46:f2:56:fe:aa:
                    79:aa:e6:b7:3e:a9:cc:26:e0:a2:99:21:75:cd:2f:ab:
                    c7:ec:af:c4:db:3f:be:8d:d6:58:be:9f:ad:84:5b:18:
                    eb:df:be:6e:fd:ec:85:1e:48:d8:72:7e:96:74:e0:9e:
                    af:4f:6a:ac:f4:00:6f:6b:0a:24:0c:82:9e:c6:2c:b9:
                    72:2b:d2:e5:d3:b6:70:c6:ff:5c:2a:7b:a8:3e:c9:96:
                    aa:52:c8:2a:ab:15:0e:39:d3:e7:c6:c7:b0:4d:5b:6a:
                    af:05:23:ee:57:84:0d:e4:1b:06:67:85:32:d9:b7:54:
                    41:6b:bf:c6:cc:f9:01:83:fe:ef:5b:dc:a1:f0:e6:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cb:97:a4:c1:3d:c4:e7:7c:ab:7c:04:bd:9b:fb:77:cd:
        d5:72:5e:32:91:2d:a4:73:a4:26:1d:e2:81:30:1e:7d:
        0f:7a:fc:a0:2e:9d:fd:f6:a8:e8:00:48:4f:cb:c3:e7:
        72:d5:f4:45:88:d4:cf:5f:a0:44:62:bd:ab:b7:de:a1:
        f6:19:2d:3d:0a:27:16:f6:1e:a2:f7:0e:03:2f:1d:54:
        ca:ad:42:33:d4:4b:38:bd:39:f6:f2:26:64:df:2e:12:
        a9:c6:99:46:10:69:0f:02:ea:a4:bb:a2:e9:49:7b:51:
        41:60:b0:eb:fa:3d:62:91:33:24:c4:e1:d4:49:a7:2e:
        58:76:44:f1:e4:f8:40:c3:e2:52:2d:7c:00:17:03:9d:
        c9:3f:4d:1e:8c:c5:64:87:63:84:e8:40:f0:23:36:7e:
        bd:be:17:c5:b1:96:0b:17:e8:2f:2e:7a:6e:e0:90:80:
        8b:ea:4b:9c:0d:57:48:de:37:e9:bf:97:0d:53:87:88:
        5d:0f:cf:b7:9d:cc:8c:7a:b0:63:3d:73:9e:e4:4e:42:
        91:5a:a7:8d:45:b7:05:50:38:38:4b:35:67:c0:c0:30:
        93:e3:2f:bb:a0:bd:89:49:ca:1b:f9:85:5f:c4:a4:57:
        14:0a:07:64:81:a4:e6:7b:da:47:4d:98:5a:84:b8:e1
    Fingerprint (SHA-256):
        38:9B:5F:64:8F:26:10:5C:C9:9E:F8:FC:D3:B0:D2:F8:37:41:3E:45:B2:CC:85:37:96:B2:D2:9D:60:00:A7:9B
    Fingerprint (SHA1):
        52:18:44:32:EB:D7:73:6B:E6:E5:1F:79:48:82:3F:26:08:4B:AC:AF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4244: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235799 (0x300e2e97)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:57 2017
            Not After : Sat Aug 06 23:56:57 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:42:68:98:72:78:0b:00:cb:bf:1d:55:af:39:cb:27:
                    71:9d:da:36:9c:21:54:98:27:5f:b5:77:ca:d8:d1:53:
                    d4:ac:6b:45:e6:42:69:42:e6:9c:59:82:56:b8:bb:16:
                    ba:2e:51:f0:61:85:88:45:c5:fd:d1:31:dc:57:01:55:
                    77:8f:5a:c4:26:ef:cf:d2:fb:ef:ea:67:8c:10:53:d9:
                    b1:16:f0:7f:2a:63:6f:93:71:89:77:cb:8a:13:65:75:
                    74:b1:de:74:d3:ff:c2:d5:25:46:03:6c:24:f5:1b:8f:
                    90:75:34:81:41:81:a2:41:9a:41:0c:77:77:a7:52:40:
                    35:73:41:3d:a1:4f:34:f8:1b:36:fb:84:73:f7:56:c7:
                    bd:f8:4f:d1:f9:5d:55:77:1a:98:a0:47:d3:9c:53:32:
                    70:13:e9:af:83:27:b5:01:50:c6:3f:3f:b5:e2:08:5c:
                    f7:21:07:d7:a2:f7:b9:9c:da:8d:a0:40:21:85:67:f8:
                    4d:a3:b2:a1:f5:64:2b:fc:0f:d6:c4:2c:17:bf:5a:d4:
                    5f:14:19:3d:c9:90:fd:2f:c1:22:8f:09:ee:6a:86:8f:
                    08:df:30:b3:20:66:4e:88:87:98:35:78:e6:d0:2e:b5:
                    61:2f:e7:eb:f2:75:64:de:ee:f5:00:21:68:45:89:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:88:a1:ba:b0:74:5e:55:26:ce:61:27:6c:87:fb:5e:
        9a:7d:09:14:91:02:79:bc:3b:c8:73:df:2c:e8:ae:1b:
        ce:ce:b3:d1:bd:e4:e5:19:3d:bc:dd:f8:18:d3:82:31:
        88:ff:93:7c:2b:e2:a5:22:c0:19:ba:5a:61:a8:00:6e:
        de:ed:23:0a:ab:76:4c:66:10:4c:88:0d:aa:f4:1b:dd:
        09:8f:e3:6e:81:16:20:70:8b:d2:dd:a0:20:32:34:f7:
        5f:bf:77:aa:09:43:7a:c3:da:94:37:0e:07:de:4d:1b:
        80:bc:64:44:44:cf:4f:b0:4c:a5:65:02:c6:6a:07:58:
        0d:41:c6:a9:34:df:02:6f:cb:6a:b2:b5:10:20:dc:c6:
        a1:3d:b3:2d:76:0d:6a:ef:9e:37:70:6a:4d:99:72:cf:
        75:8e:ba:7d:49:b1:6c:2c:b9:4e:b1:9c:dd:82:fb:95:
        81:5f:a0:54:1b:8d:32:de:f3:62:e0:eb:ea:ce:28:74:
        af:3e:41:97:44:a8:45:09:d7:94:fd:7c:55:fa:00:d4:
        0a:89:a4:77:df:a4:54:d4:ca:ef:3d:d7:f6:59:3c:a9:
        45:2e:c7:05:0a:3f:8b:78:97:ed:65:3d:07:54:68:68:
        55:d5:c5:da:d8:86:75:37:35:c0:30:1f:38:a6:1b:27
    Fingerprint (SHA-256):
        0E:22:07:EE:4B:C6:A3:B7:84:77:02:1C:02:C3:71:4F:46:4E:63:69:DA:2E:83:6A:4C:0D:91:E3:86:6A:DB:EE
    Fingerprint (SHA1):
        B4:F1:16:5A:85:98:21:08:D2:ED:BB:8C:0C:8A:BF:AC:BB:EB:36:A9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4245: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #4246: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #4247: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #4248: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235797 (0x300e2e95)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:57 2017
            Not After : Sat Aug 06 23:56:57 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:3a:b2:ef:85:41:70:d1:1c:53:96:5f:23:d7:6b:86:
                    65:dd:c6:45:cc:6b:4f:23:36:64:ea:13:96:de:2b:3f:
                    df:6b:29:af:2e:99:af:5f:40:09:94:a8:f6:cc:89:94:
                    da:63:1d:3e:40:78:ab:8d:cc:6f:bf:48:6f:a3:ab:9b:
                    a6:cf:66:26:46:f7:8f:0d:a6:48:83:7e:2a:af:ad:b3:
                    46:91:8e:95:85:2f:5a:26:f1:d6:02:2b:d2:8e:76:53:
                    bc:66:d6:7c:74:5e:9d:f8:0a:f4:3e:b1:51:61:c5:e8:
                    e8:a3:32:0c:cb:76:56:a0:fd:04:6d:46:f2:56:fe:aa:
                    79:aa:e6:b7:3e:a9:cc:26:e0:a2:99:21:75:cd:2f:ab:
                    c7:ec:af:c4:db:3f:be:8d:d6:58:be:9f:ad:84:5b:18:
                    eb:df:be:6e:fd:ec:85:1e:48:d8:72:7e:96:74:e0:9e:
                    af:4f:6a:ac:f4:00:6f:6b:0a:24:0c:82:9e:c6:2c:b9:
                    72:2b:d2:e5:d3:b6:70:c6:ff:5c:2a:7b:a8:3e:c9:96:
                    aa:52:c8:2a:ab:15:0e:39:d3:e7:c6:c7:b0:4d:5b:6a:
                    af:05:23:ee:57:84:0d:e4:1b:06:67:85:32:d9:b7:54:
                    41:6b:bf:c6:cc:f9:01:83:fe:ef:5b:dc:a1:f0:e6:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cb:97:a4:c1:3d:c4:e7:7c:ab:7c:04:bd:9b:fb:77:cd:
        d5:72:5e:32:91:2d:a4:73:a4:26:1d:e2:81:30:1e:7d:
        0f:7a:fc:a0:2e:9d:fd:f6:a8:e8:00:48:4f:cb:c3:e7:
        72:d5:f4:45:88:d4:cf:5f:a0:44:62:bd:ab:b7:de:a1:
        f6:19:2d:3d:0a:27:16:f6:1e:a2:f7:0e:03:2f:1d:54:
        ca:ad:42:33:d4:4b:38:bd:39:f6:f2:26:64:df:2e:12:
        a9:c6:99:46:10:69:0f:02:ea:a4:bb:a2:e9:49:7b:51:
        41:60:b0:eb:fa:3d:62:91:33:24:c4:e1:d4:49:a7:2e:
        58:76:44:f1:e4:f8:40:c3:e2:52:2d:7c:00:17:03:9d:
        c9:3f:4d:1e:8c:c5:64:87:63:84:e8:40:f0:23:36:7e:
        bd:be:17:c5:b1:96:0b:17:e8:2f:2e:7a:6e:e0:90:80:
        8b:ea:4b:9c:0d:57:48:de:37:e9:bf:97:0d:53:87:88:
        5d:0f:cf:b7:9d:cc:8c:7a:b0:63:3d:73:9e:e4:4e:42:
        91:5a:a7:8d:45:b7:05:50:38:38:4b:35:67:c0:c0:30:
        93:e3:2f:bb:a0:bd:89:49:ca:1b:f9:85:5f:c4:a4:57:
        14:0a:07:64:81:a4:e6:7b:da:47:4d:98:5a:84:b8:e1
    Fingerprint (SHA-256):
        38:9B:5F:64:8F:26:10:5C:C9:9E:F8:FC:D3:B0:D2:F8:37:41:3E:45:B2:CC:85:37:96:B2:D2:9D:60:00:A7:9B
    Fingerprint (SHA1):
        52:18:44:32:EB:D7:73:6B:E6:E5:1F:79:48:82:3F:26:08:4B:AC:AF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4249: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235801 (0x300e2e99)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:57 2017
            Not After : Sat Aug 06 23:56:57 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:60:f3:5b:b4:29:ed:13:b0:e7:be:05:e2:13:d2:55:
                    d1:f7:fb:29:c0:b2:55:33:6b:3a:42:7e:18:d0:8f:9f:
                    8f:27:96:30:bc:09:4d:28:f7:00:f7:a1:b3:2b:73:40:
                    de:f4:16:60:2d:d4:9e:7f:df:8b:5a:16:9c:2c:e0:07:
                    84:2b:33:47:a5:76:08:32:c0:a1:cf:31:d5:0f:bb:41:
                    f2:59:50:90:36:47:eb:72:25:22:e1:81:4a:a1:08:33:
                    d4:d3:c3:3f:01:a4:50:89:d8:9b:23:15:03:25:f4:f9:
                    16:bc:13:27:68:b3:f8:34:bc:11:b0:5f:c4:de:61:2b:
                    87:6c:df:6b:40:99:09:88:ed:04:92:5a:a2:f0:5a:34:
                    e6:9f:71:d8:6c:bd:8a:08:b3:a4:44:38:b5:7c:74:1a:
                    f1:85:cb:80:b2:85:ab:0c:66:d5:13:6d:3f:1a:a9:a2:
                    ca:2c:52:56:f4:c6:6c:b1:df:34:42:2b:c3:54:8b:ad:
                    7d:2f:ed:85:d8:49:16:6c:a9:1e:fb:b1:d0:2d:e1:64:
                    77:74:ea:38:f3:a6:65:0c:e9:74:55:10:d6:4a:b0:f0:
                    2b:de:dc:65:0a:c0:de:9b:2e:65:72:35:59:1a:62:e3:
                    68:8f:cf:43:8e:69:fc:ec:fa:5a:bc:fa:bb:a5:1d:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:b7:42:b3:64:01:06:75:61:39:68:fa:e6:33:84:83:
        2a:e4:e5:3e:8f:7e:5c:b8:f7:a6:43:cb:eb:10:15:25:
        37:ad:1f:71:8f:16:39:ba:35:87:43:23:e0:a3:dc:a5:
        6c:2a:66:e3:87:02:90:bb:7a:b0:fd:4b:1d:94:3e:d4:
        2f:db:bf:84:77:b2:28:bf:9d:0a:b9:ef:ae:86:0f:87:
        f7:3c:8e:35:96:23:1f:08:da:ca:8a:95:90:0c:e4:e6:
        a4:07:cb:24:67:ec:13:24:78:61:ad:40:62:c0:48:76:
        51:69:bf:a3:73:06:72:8c:52:4b:83:56:9c:53:c9:99:
        15:26:65:24:15:d1:38:ed:eb:8b:86:4c:1d:9f:46:bd:
        5b:0a:a3:d0:95:f6:37:89:1b:44:6b:22:21:4b:92:72:
        1d:43:64:95:b2:f2:79:d1:c6:d2:e1:f0:6c:ed:8c:d7:
        fb:11:ae:0e:36:f2:05:77:92:4b:48:70:46:6d:71:27:
        0a:c3:b8:c3:79:dd:11:fc:36:b8:f2:d8:f9:3c:6d:04:
        3f:eb:0c:d9:bd:03:d6:90:76:0d:e7:af:56:72:c4:d6:
        5f:44:66:43:38:db:ba:f1:8c:9a:50:ae:96:97:e3:16:
        7e:87:da:06:84:ce:4c:8c:45:39:05:4f:36:fe:e7:bd
    Fingerprint (SHA-256):
        75:FC:76:F3:29:F4:54:F1:99:84:29:20:11:AD:4E:9A:1D:96:74:B8:9C:05:FD:1F:04:AD:EB:B2:1D:14:EA:97
    Fingerprint (SHA1):
        3E:EC:12:C5:87:78:FF:A1:99:A2:06:20:D1:24:7C:D0:F0:5D:6B:84
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #4250: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235797 (0x300e2e95)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:57 2017
            Not After : Sat Aug 06 23:56:57 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:3a:b2:ef:85:41:70:d1:1c:53:96:5f:23:d7:6b:86:
                    65:dd:c6:45:cc:6b:4f:23:36:64:ea:13:96:de:2b:3f:
                    df:6b:29:af:2e:99:af:5f:40:09:94:a8:f6:cc:89:94:
                    da:63:1d:3e:40:78:ab:8d:cc:6f:bf:48:6f:a3:ab:9b:
                    a6:cf:66:26:46:f7:8f:0d:a6:48:83:7e:2a:af:ad:b3:
                    46:91:8e:95:85:2f:5a:26:f1:d6:02:2b:d2:8e:76:53:
                    bc:66:d6:7c:74:5e:9d:f8:0a:f4:3e:b1:51:61:c5:e8:
                    e8:a3:32:0c:cb:76:56:a0:fd:04:6d:46:f2:56:fe:aa:
                    79:aa:e6:b7:3e:a9:cc:26:e0:a2:99:21:75:cd:2f:ab:
                    c7:ec:af:c4:db:3f:be:8d:d6:58:be:9f:ad:84:5b:18:
                    eb:df:be:6e:fd:ec:85:1e:48:d8:72:7e:96:74:e0:9e:
                    af:4f:6a:ac:f4:00:6f:6b:0a:24:0c:82:9e:c6:2c:b9:
                    72:2b:d2:e5:d3:b6:70:c6:ff:5c:2a:7b:a8:3e:c9:96:
                    aa:52:c8:2a:ab:15:0e:39:d3:e7:c6:c7:b0:4d:5b:6a:
                    af:05:23:ee:57:84:0d:e4:1b:06:67:85:32:d9:b7:54:
                    41:6b:bf:c6:cc:f9:01:83:fe:ef:5b:dc:a1:f0:e6:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cb:97:a4:c1:3d:c4:e7:7c:ab:7c:04:bd:9b:fb:77:cd:
        d5:72:5e:32:91:2d:a4:73:a4:26:1d:e2:81:30:1e:7d:
        0f:7a:fc:a0:2e:9d:fd:f6:a8:e8:00:48:4f:cb:c3:e7:
        72:d5:f4:45:88:d4:cf:5f:a0:44:62:bd:ab:b7:de:a1:
        f6:19:2d:3d:0a:27:16:f6:1e:a2:f7:0e:03:2f:1d:54:
        ca:ad:42:33:d4:4b:38:bd:39:f6:f2:26:64:df:2e:12:
        a9:c6:99:46:10:69:0f:02:ea:a4:bb:a2:e9:49:7b:51:
        41:60:b0:eb:fa:3d:62:91:33:24:c4:e1:d4:49:a7:2e:
        58:76:44:f1:e4:f8:40:c3:e2:52:2d:7c:00:17:03:9d:
        c9:3f:4d:1e:8c:c5:64:87:63:84:e8:40:f0:23:36:7e:
        bd:be:17:c5:b1:96:0b:17:e8:2f:2e:7a:6e:e0:90:80:
        8b:ea:4b:9c:0d:57:48:de:37:e9:bf:97:0d:53:87:88:
        5d:0f:cf:b7:9d:cc:8c:7a:b0:63:3d:73:9e:e4:4e:42:
        91:5a:a7:8d:45:b7:05:50:38:38:4b:35:67:c0:c0:30:
        93:e3:2f:bb:a0:bd:89:49:ca:1b:f9:85:5f:c4:a4:57:
        14:0a:07:64:81:a4:e6:7b:da:47:4d:98:5a:84:b8:e1
    Fingerprint (SHA-256):
        38:9B:5F:64:8F:26:10:5C:C9:9E:F8:FC:D3:B0:D2:F8:37:41:3E:45:B2:CC:85:37:96:B2:D2:9D:60:00:A7:9B
    Fingerprint (SHA1):
        52:18:44:32:EB:D7:73:6B:E6:E5:1F:79:48:82:3F:26:08:4B:AC:AF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4251: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #4252: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #4253: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #4254: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #4255: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #4256: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235802 (0x300e2e9a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Sun Aug 06 23:56:58 2017
            Not After : Sat Aug 06 23:56:58 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:d4:ff:7f:c0:93:32:a9:29:35:d2:44:a0:c1:74:0f:
                    37:28:9b:44:46:19:33:95:95:65:22:9a:74:d1:99:d4:
                    d7:b2:fa:19:b1:19:82:e4:31:72:1f:b0:ba:5a:ba:dc:
                    25:8f:30:af:59:3d:17:7b:1f:44:1f:87:39:b7:6e:41:
                    0b:fd:fb:47:10:00:f8:97:2c:47:c2:2a:21:fa:ee:4b:
                    a9:c6:ad:b9:0c:95:d8:5c:d5:45:07:6e:ee:08:28:89:
                    9e:02:c3:e6:c3:d1:44:62:90:47:d4:f3:5e:18:44:33:
                    87:5e:8f:85:d6:5b:f8:b4:8b:4b:95:66:b4:b5:b9:67:
                    3b:b4:f1:15:6b:d1:79:02:72:96:4f:fc:77:88:77:70:
                    af:f7:af:ff:5a:7d:39:15:cf:48:82:40:0b:c9:16:99:
                    04:22:79:c6:29:f8:db:db:d1:5b:e1:a2:54:69:9e:bf:
                    3f:4f:46:38:d3:68:a0:4a:32:9a:20:7f:ba:51:40:99:
                    72:8d:1c:ad:4d:e7:0c:0c:51:31:73:49:4a:1f:70:25:
                    fa:02:6e:2e:2c:18:16:d1:bb:09:5c:9a:1c:f5:d8:70:
                    7c:50:0f:fe:cb:c6:93:0e:b8:d5:ab:98:51:4a:82:98:
                    9e:64:ca:67:6e:1e:53:e2:c4:31:9d:ad:90:e1:2b:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        aa:5b:43:2b:60:0c:2b:2d:70:90:22:4a:44:62:73:26:
        b2:86:ca:b4:d7:8d:ed:06:5e:3e:df:75:74:5f:e0:76:
        8e:bc:37:12:30:8c:01:b6:4c:4d:ad:61:4d:37:5e:5f:
        92:16:0c:65:e0:62:3b:a9:ca:e3:fc:df:dc:29:01:35:
        b8:fd:e7:06:24:75:90:31:81:ca:d2:e7:81:2f:c6:c5:
        5b:11:7a:d9:b4:4d:7a:00:10:94:d2:c8:c2:3d:06:47:
        7e:85:05:ac:d2:bf:3a:f0:67:53:e8:24:e5:72:19:03:
        86:57:3c:cf:57:7b:16:f1:9d:27:2f:5c:e7:96:ff:7f:
        6c:ac:99:18:26:b7:a8:91:81:64:5a:8f:1d:b8:a6:ff:
        de:5e:7a:9c:c7:b9:c4:30:ba:e1:d6:a8:25:a5:fb:d5:
        44:a6:7f:7d:e7:af:71:57:07:54:26:3a:65:72:e6:d9:
        06:34:90:b2:db:17:84:96:8e:9a:76:e4:0c:25:a5:5e:
        fe:e2:13:e4:61:8b:ec:6d:4a:a7:ae:15:63:c2:53:aa:
        d7:d0:88:e5:df:33:0c:e3:9c:00:ec:14:d8:59:4a:79:
        fd:f9:22:03:0e:c1:09:be:7d:91:5e:ed:7d:0f:f5:88:
        b4:c7:df:e7:2c:ac:5f:5e:04:43:dd:c3:70:45:48:7b
    Fingerprint (SHA-256):
        09:36:80:5A:2A:A5:1C:06:D4:78:35:FB:94:B6:A7:0A:92:D1:CA:5F:A7:22:5F:36:B0:44:80:10:C0:30:BD:9A
    Fingerprint (SHA1):
        0A:94:75:1B:80:30:1F:76:20:E8:B0:58:CA:2A:1E:8C:FD:79:86:2A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #4257: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #4258: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #4259: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #4260: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #4261: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #4262: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4263: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4264: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #4265: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4266: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4267: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4268: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4269: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #4270: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4271: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4272: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4273: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #4274: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4275: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #4276: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4277: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #4278: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4279: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #4280: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 532 at Sun Aug  6 23:57:00 UTC 2017
kill -USR1 532
httpserv: normal termination
httpserv -b -p 9019 2>/dev/null;
httpserv with PID 532 killed at Sun Aug  6 23:57:00 UTC 2017
TIMESTAMP chains END: Sun Aug  6 23:57:00 UTC 2017
Running tests for ec
TIMESTAMP ec BEGIN: Sun Aug  6 23:57:00 UTC 2017
Running ec tests for ecperf
TIMESTAMP ecperf BEGIN: Sun Aug  6 23:57:00 UTC 2017
ecperf.sh: ecperf test ===============================
./ecperf.sh: line 43: ecperf: command not found
ecperf.sh: #4281: ec(perf) test - PASSED
TIMESTAMP ecperf END: Sun Aug  6 23:57:00 UTC 2017
Running ec tests for ectest
TIMESTAMP ectest BEGIN: Sun Aug  6 23:57:00 UTC 2017
ectest.sh: freebl and pk11 ectest tests ===============================
No password file "../tests.pw" exists.
Test curve25519 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #4282: ec test certutil keygen - curve25519 - PASSED
Test secp256r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #4283: ec test certutil keygen - secp256r1 - PASSED
Test secp384r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #4284: ec test certutil keygen - secp384r1 - PASSED
Test secp521r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #4285: ec test certutil keygen - secp521r1 - PASSED
Test sect571r1 key generation using certutil that should fail because it's not implemented ...
Generating key.  This may take a few moments...
certutil: unable to generate key(s)
: SEC_ERROR_INVALID_KEY: The key does not support the requested operation.
ectest.sh: #4286: ec test certutil keygen - secp521r1 - PASSED
ectest.sh: #4287: pk11 ec tests - PASSED
TIMESTAMP ectest END: Sun Aug  6 23:57:00 UTC 2017
TIMESTAMP ec END: Sun Aug  6 23:57:00 UTC 2017
Running tests for gtests
TIMESTAMP gtests BEGIN: Sun Aug  6 23:57:00 UTC 2017
gtests: der_gtest pk11_gtest
gtests.sh: der_gtest ===============================
executing der_gtest
[==========] Running 16 tests from 2 test cases.
[----------] Global test environment set-up.
[----------] 13 tests from DERIntegerDecodingTest
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus126
[       OK ] DERIntegerDecodingTest.DecodeLongMinus126 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130
[       OK ] DERIntegerDecodingTest.DecodeLong130 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130Padded
[       OK ] DERIntegerDecodingTest.DecodeLong130Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong0
[       OK ] DERIntegerDecodingTest.DecodeLong0 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong1
[       OK ] DERIntegerDecodingTest.DecodeLong1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1Padded
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMax
[       OK ] DERIntegerDecodingTest.DecodeLongMax (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMin
[       OK ] DERIntegerDecodingTest.DecodeLongMin (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinPlus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxPlus1 (0 ms)
[----------] 13 tests from DERIntegerDecodingTest (0 ms total)
[----------] 3 tests from DERPrivateKeyImportTest
[ RUN      ] DERPrivateKeyImportTest.ImportPrivateRSAKey
[       OK ] DERPrivateKeyImportTest.ImportPrivateRSAKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportInvalidPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportInvalidPrivateKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey (0 ms)
[----------] 3 tests from DERPrivateKeyImportTest (0 ms total)
[----------] Global test environment tear-down
[==========] 16 tests from 2 test cases ran. (0 ms total)
[  PASSED  ] 16 tests.
gtests.sh: #4288: der_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/der_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #4289: 'DERIntegerDecodingTest: DecodeLongMinus126' - PASSED
gtests.sh: #4290: 'DERIntegerDecodingTest: DecodeLong130' - PASSED
gtests.sh: #4291: 'DERIntegerDecodingTest: DecodeLong130Padded' - PASSED
gtests.sh: #4292: 'DERIntegerDecodingTest: DecodeLong0' - PASSED
gtests.sh: #4293: 'DERIntegerDecodingTest: DecodeLong1' - PASSED
gtests.sh: #4294: 'DERIntegerDecodingTest: DecodeLongMinus1' - PASSED
gtests.sh: #4295: 'DERIntegerDecodingTest: DecodeLongMinus1Padded' - PASSED
gtests.sh: #4296: 'DERIntegerDecodingTest: DecodeLongMax' - PASSED
gtests.sh: #4297: 'DERIntegerDecodingTest: DecodeLongMin' - PASSED
gtests.sh: #4298: 'DERIntegerDecodingTest: DecodeLongMaxMinus1' - PASSED
gtests.sh: #4299: 'DERIntegerDecodingTest: DecodeLongMinPlus1' - PASSED
gtests.sh: #4300: 'DERIntegerDecodingTest: DecodeLongMinMinus1' - PASSED
gtests.sh: #4301: 'DERIntegerDecodingTest: DecodeLongMaxPlus1' - PASSED
gtests.sh: #4302: 'DERPrivateKeyImportTest: ImportPrivateRSAKey' - PASSED
gtests.sh: #4303: 'DERPrivateKeyImportTest: ImportInvalidPrivateKey' - PASSED
gtests.sh: #4304: 'DERPrivateKeyImportTest: ImportZeroLengthPrivateKey' - PASSED
gtests.sh: pk11_gtest ===============================
executing pk11_gtest
[==========] Running 21 tests from 7 test cases.
[----------] Global test environment set-up.
[----------] 6 tests from Pkcs11AESKeyWrapTest
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest1
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest1 (1 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest2
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest2 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest3
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest3 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest4
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest4 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest5
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest5 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest6
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest6 (0 ms)
[----------] 6 tests from Pkcs11AESKeyWrapTest (1 ms total)
[----------] 3 tests from Pkcs11ChaCha20Poly1305Test
[ RUN      ] Pkcs11ChaCha20Poly1305Test.GenerateEncryptDecrypt
[       OK ] Pkcs11ChaCha20Poly1305Test.GenerateEncryptDecrypt (0 ms)
[ RUN      ] Pkcs11ChaCha20Poly1305Test.CheckTestVector1
[       OK ] Pkcs11ChaCha20Poly1305Test.CheckTestVector1 (0 ms)
[ RUN      ] Pkcs11ChaCha20Poly1305Test.CheckTestVector2
[       OK ] Pkcs11ChaCha20Poly1305Test.CheckTestVector2 (0 ms)
[----------] 3 tests from Pkcs11ChaCha20Poly1305Test (0 ms total)
[----------] 2 tests from Pkcs11ExportTest
[ RUN      ] Pkcs11ExportTest.DeriveNonExport
[       OK ] Pkcs11ExportTest.DeriveNonExport (0 ms)
[ RUN      ] Pkcs11ExportTest.DeriveExport
[       OK ] Pkcs11ExportTest.DeriveExport (0 ms)
[----------] 2 tests from Pkcs11ExportTest (0 ms total)
[----------] 2 tests from Pkcs11Pbkdf2Test
[ RUN      ] Pkcs11Pbkdf2Test.DeriveKnown1
[       OK ] Pkcs11Pbkdf2Test.DeriveKnown1 (44 ms)
[ RUN      ] Pkcs11Pbkdf2Test.DeriveKnown2
[       OK ] Pkcs11Pbkdf2Test.DeriveKnown2 (86 ms)
[----------] 2 tests from Pkcs11Pbkdf2Test (130 ms total)
[----------] 5 tests from TlsPrfTest
[ RUN      ] TlsPrfTest.ExtendedMsParamErr
[       OK ] TlsPrfTest.ExtendedMsParamErr (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsDhTlsPrf
[       OK ] TlsPrfTest.ExtendedMsDhTlsPrf (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsRsaTlsPrf
[       OK ] TlsPrfTest.ExtendedMsRsaTlsPrf (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsDhSha256
[       OK ] TlsPrfTest.ExtendedMsDhSha256 (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsRsaSha256
[       OK ] TlsPrfTest.ExtendedMsRsaSha256 (0 ms)
[----------] 5 tests from TlsPrfTest (0 ms total)
[----------] 1 test from Pkcs11RsaPssTest
[ RUN      ] Pkcs11RsaPssTest.GenerateAndSignAndVerify
[       OK ] Pkcs11RsaPssTest.GenerateAndSignAndVerify (21 ms)
[----------] 1 test from Pkcs11RsaPssTest (21 ms total)
[----------] 2 tests from Pkcs11RsaPssVectorTest
[ RUN      ] Pkcs11RsaPssVectorTest.VerifyKnownSignature1
[       OK ] Pkcs11RsaPssVectorTest.VerifyKnownSignature1 (1 ms)
[ RUN      ] Pkcs11RsaPssVectorTest.VerifyKnownSignature2
[       OK ] Pkcs11RsaPssVectorTest.VerifyKnownSignature2 (0 ms)
[----------] 2 tests from Pkcs11RsaPssVectorTest (1 ms total)
[----------] Global test environment tear-down
[==========] 21 tests from 7 test cases ran. (153 ms total)
[  PASSED  ] 21 tests.
gtests.sh: #4305: pk11_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pk11_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #4306: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest1' - PASSED
gtests.sh: #4307: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest2' - PASSED
gtests.sh: #4308: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest3' - PASSED
gtests.sh: #4309: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest4' - PASSED
gtests.sh: #4310: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest5' - PASSED
gtests.sh: #4311: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest6' - PASSED
gtests.sh: #4312: 'Pkcs11ChaCha20Poly1305Test: GenerateEncryptDecrypt' - PASSED
gtests.sh: #4313: 'Pkcs11ChaCha20Poly1305Test: CheckTestVector1' - PASSED
gtests.sh: #4314: 'Pkcs11ChaCha20Poly1305Test: CheckTestVector2' - PASSED
gtests.sh: #4315: 'Pkcs11ExportTest: DeriveNonExport' - PASSED
gtests.sh: #4316: 'Pkcs11ExportTest: DeriveExport' - PASSED
gtests.sh: #4317: 'Pkcs11Pbkdf2Test: DeriveKnown1' - PASSED
gtests.sh: #4318: 'Pkcs11Pbkdf2Test: DeriveKnown2' - PASSED
gtests.sh: #4319: 'TlsPrfTest: ExtendedMsParamErr' - PASSED
gtests.sh: #4320: 'TlsPrfTest: ExtendedMsDhTlsPrf' - PASSED
gtests.sh: #4321: 'TlsPrfTest: ExtendedMsRsaTlsPrf' - PASSED
gtests.sh: #4322: 'TlsPrfTest: ExtendedMsDhSha256' - PASSED
gtests.sh: #4323: 'TlsPrfTest: ExtendedMsRsaSha256' - PASSED
gtests.sh: #4324: 'Pkcs11RsaPssTest: GenerateAndSignAndVerify' - PASSED
gtests.sh: #4325: 'Pkcs11RsaPssVectorTest: VerifyKnownSignature1' - PASSED
gtests.sh: #4326: 'Pkcs11RsaPssVectorTest: VerifyKnownSignature2' - PASSED
TIMESTAMP gtests END: Sun Aug  6 23:57:00 UTC 2017
Running tests for ssl_gtests
TIMESTAMP ssl_gtests BEGIN: Sun Aug  6 23:57:00 UTC 2017
ssl_gtest.sh: SSL Gtests ===============================
ssl_gtest.sh: #4327: create ssl_gtest database  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4328: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4329: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4330: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4331: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4332: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4333: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4334: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4335: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4336: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4337: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4338: create certificate: ca  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4339: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4340: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4341: create certificate: sign  - PASSED
executing ssl_gtest
[==========] Running 816 tests from 15 test cases.
[----------] Global test environment set-up.
[----------] 60 tests from CipherSuiteRC4/TlsCipherSuiteTest
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/0 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/1 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/2 (7 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/3 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/4 (5 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/5 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/6 (7 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/7 (7 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/8 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/9 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/10 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/11 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/12 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/13 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/14 (5 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/0 (11 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/1 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/2 (13 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/3 (15 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/4 (13 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/5 (11 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/6 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/7 (13 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/8 (15 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/9 (13 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/10 (11 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/11 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/12 (13 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/13 (15 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/14 (12 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/0 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/1 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/2 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/3 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/4 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/5 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/6 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/7 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/8 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/9 (5 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/10 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/11 (7 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/12 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/13 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/14 (5 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/0 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/1 (7 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/2 (7 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/3 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/4 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/5 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/6 (7 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/7 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/8 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/9 (5 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/10 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/11 (7 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/12 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/13 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/14 (4 ms)
[----------] 60 tests from CipherSuiteRC4/TlsCipherSuiteTest (474 ms total)
[----------] 48 tests from CipherSuiteAEAD12/TlsCipherSuiteTest
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/0 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/1 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/2 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/3 (10 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/4 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/5 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/6 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/7 (3 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/8 (10 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/9 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/10 (7 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/11 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/0 (12 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/1 (11 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/2 (0 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/3 (0 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/4 (13 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/5 (13 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/6 (12 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/7 (12 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/8 (0 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/9 (0 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/10 (13 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/11 (13 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/0 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/1 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/2 (10 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/3 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/4 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/5 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/6 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/7 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/8 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/9 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/10 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/11 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/0 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/1 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/2 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/3 (10 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/4 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/5 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/6 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/7 (3 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/8 (10 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/9 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/10 (7 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/11 (4 ms)
[----------] 48 tests from CipherSuiteAEAD12/TlsCipherSuiteTest (325 ms total)
[----------] 72 tests from CipherSuiteAEAD/TlsCipherSuiteTest
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/0 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/1 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/2 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/3 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/4 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/5 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/6 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/7 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/8 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/9 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/10 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/11 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/12 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/13 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/14 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/15 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/16 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/17 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/0 (13 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/1 (12 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/2 (13 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/3 (12 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/4 (16 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/5 (15 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/6 (12 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/7 (13 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/8 (15 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/9 (13 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/10 (12 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/11 (13 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/12 (12 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/13 (16 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/14 (15 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/15 (13 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/16 (12 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/17 (16 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/0 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/1 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/2 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/3 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/4 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/5 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/6 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/7 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/8 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/9 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/10 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/11 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/12 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/13 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/14 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/15 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/16 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/17 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/0 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/1 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/2 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/3 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/4 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/5 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/6 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/7 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/8 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/9 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/10 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/11 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/12 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/13 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/14 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/15 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/16 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/17 (7 ms)
[----------] 72 tests from CipherSuiteAEAD/TlsCipherSuiteTest (564 ms total)
[----------] 64 tests from CipherSuiteCBC12/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/0 (7 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/1 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/2 (7 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/3 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/4 (7 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/5 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/6 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/7 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/8 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/9 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/10 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/11 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/12 (7 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/13 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/14 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/15 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/0 (16 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/1 (12 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/2 (12 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/3 (13 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/4 (16 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/5 (12 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/6 (0 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/7 (0 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/8 (16 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/9 (12 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/10 (13 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/11 (13 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/12 (16 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/13 (12 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/14 (0 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/15 (0 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/0 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/1 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/2 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/3 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/4 (7 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/5 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/6 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/7 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/8 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/9 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/10 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/11 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/12 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/13 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/14 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/15 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/0 (7 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/1 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/2 (7 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/3 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/4 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/5 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/6 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/7 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/8 (7 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/9 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/10 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/11 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/12 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/13 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/14 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/15 (9 ms)
[----------] 64 tests from CipherSuiteCBC12/TlsCipherSuiteTest (485 ms total)
[----------] 192 tests from CipherSuiteCBCStream/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/0 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/1 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/2 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/3 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/4 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/5 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/6 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/7 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/8 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/9 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/10 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/11 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/12 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/13 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/14 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/15 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/16 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/17 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/18 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/19 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/20 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/21 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/22 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/23 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/24 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/25 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/26 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/27 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/28 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/29 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/30 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/31 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/32 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/33 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/34 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/35 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/36 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/37 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/38 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/39 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/40 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/41 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/42 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/43 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/44 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/45 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/46 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/47 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/0 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/1 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/2 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/3 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/4 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/5 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/6 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/7 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/8 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/9 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/10 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/11 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/12 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/13 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/14 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/15 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/16 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/17 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/18 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/19 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/20 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/21 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/22 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/23 (12 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/24 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/25 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/26 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/27 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/28 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/29 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/30 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/31 (12 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/32 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/33 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/34 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/35 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/36 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/37 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/38 (12 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/39 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/40 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/41 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/42 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/43 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/44 (12 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/45 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/46 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/47 (12 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/0 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/1 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/2 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/3 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/4 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/5 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/6 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/7 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/8 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/9 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/10 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/11 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/12 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/13 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/14 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/15 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/16 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/17 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/18 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/19 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/20 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/21 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/22 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/23 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/24 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/25 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/26 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/27 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/28 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/29 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/30 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/31 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/32 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/33 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/34 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/35 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/36 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/37 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/38 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/39 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/40 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/41 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/42 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/43 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/44 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/45 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/46 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/47 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/0 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/1 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/2 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/3 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/4 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/5 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/6 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/7 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/8 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/9 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/10 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/11 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/12 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/13 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/14 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/15 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/16 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/17 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/18 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/19 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/20 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/21 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/22 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/23 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/24 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/25 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/26 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/27 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/28 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/29 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/30 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/31 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/32 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/33 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/34 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/35 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/36 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/37 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/38 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/39 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/40 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/41 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/42 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/43 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/44 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/45 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/46 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/47 (5 ms)
[----------] 192 tests from CipherSuiteCBCStream/TlsCipherSuiteTest (1598 ms total)
[----------] 96 tests from CipherSuiteCBCDatagram/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/0 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/1 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/2 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/3 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/4 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/5 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/6 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/7 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/8 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/9 (4 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/10 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/11 (4 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/12 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/13 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/14 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/15 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/16 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/17 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/18 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/19 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/20 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/21 (4 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/22 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/23 (4 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/0 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/1 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/2 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/3 (12 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/4 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/5 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/6 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/7 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/8 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/9 (12 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/10 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/11 (12 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/12 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/13 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/14 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/15 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/16 (12 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/17 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/18 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/19 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/20 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/21 (12 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/22 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/23 (12 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/0 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/1 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/2 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/3 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/4 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/5 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/6 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/7 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/8 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/9 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/10 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/11 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/12 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/13 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/14 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/15 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/16 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/17 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/18 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/19 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/20 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/21 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/22 (4 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/23 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/0 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/1 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/2 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/3 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/4 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/5 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/6 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/7 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/8 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/9 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/10 (4 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/11 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/12 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/13 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/14 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/15 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/16 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/17 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/18 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/19 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/20 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/21 (4 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/22 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/23 (4 ms)
[----------] 96 tests from CipherSuiteCBCDatagram/TlsCipherSuiteTest (794 ms total)
[----------] 8 tests from TestSecurityStatus/SecurityStatusTest
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/0
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/0 (4 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/1
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/1 (4 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/2 (5 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/3
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/3 (4 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/4
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/4 (4 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/5 (4 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/6
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/6 (3 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/7 (4 ms)
[----------] 8 tests from TestSecurityStatus/SecurityStatusTest (33 ms total)
[----------] 72 tests from DamageYStream/TlsDamageDHYTest
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103016b4fb2e145a6a35f9c78895979be804b3916a922626264a761a9...
record new: [1184] 0200005103016b4fb2e145a6a35f9c78895979be804b3916a922626264a761a9...
server: Original packet: [1189] 16030104a00200005103016b4fb2e145a6a35f9c78895979be804b3916a92262...
server: Filtered packet: [1189] 16030104a00200005103016b4fb2e145a6a35f9c78895979be804b3916a92262...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/0 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/1
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301dd68fd34259bf922b70578eebc7fad01f1600085f0b238dd9ee3...
record new: [1184] 020000510301dd68fd34259bf922b70578eebc7fad01f1600085f0b238dd9ee3...
server: Original packet: [1189] 16030104a0020000510301dd68fd34259bf922b70578eebc7fad01f1600085f0...
server: Filtered packet: [1189] 16030104a0020000510301dd68fd34259bf922b70578eebc7fad01f1600085f0...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/1 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/2
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301f610ebca9d9616c194194c4d69715f2403e7a9967e4ded9bec4c...
record new: [1184] 020000510301f610ebca9d9616c194194c4d69715f2403e7a9967e4ded9bec4c...
server: Original packet: [1189] 16030104a0020000510301f610ebca9d9616c194194c4d69715f2403e7a9967e...
server: Filtered packet: [1189] 16030104a0020000510301f610ebca9d9616c194194c4d69715f2403e7a9967e...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/2 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/3
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301618e2ea204a2d2f1433eaed3608cc66365e4d7d006228afbfc2f...
record new: [1184] 020000510301618e2ea204a2d2f1433eaed3608cc66365e4d7d006228afbfc2f...
server: Original packet: [1189] 16030104a0020000510301618e2ea204a2d2f1433eaed3608cc66365e4d7d006...
server: Filtered packet: [1189] 16030104a0020000510301618e2ea204a2d2f1433eaed3608cc66365e4d7d006...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/3 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/4
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301b1f058dbff84f73172ec50a1cb34295b8dfb29d4a10d9bfa35ba...
record new: [1184] 020000510301b1f058dbff84f73172ec50a1cb34295b8dfb29d4a10d9bfa35ba...
server: Original packet: [1189] 16030104a0020000510301b1f058dbff84f73172ec50a1cb34295b8dfb29d4a1...
server: Filtered packet: [1189] 16030104a0020000510301b1f058dbff84f73172ec50a1cb34295b8dfb29d4a1...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/4 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/5
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301b34e2b7d85468c1e1f4b679398cefc1ef34ed621716f0674299b...
record new: [1184] 020000510301b34e2b7d85468c1e1f4b679398cefc1ef34ed621716f0674299b...
server: Original packet: [1189] 16030104a0020000510301b34e2b7d85468c1e1f4b679398cefc1ef34ed62171...
server: Filtered packet: [1189] 16030104a0020000510301b34e2b7d85468c1e1f4b679398cefc1ef34ed62171...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/5 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/6
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103019ac206dd3307ca79b80e79dbb3e8edffc5b905913e907339766e...
record new: [1184] 0200005103019ac206dd3307ca79b80e79dbb3e8edffc5b905913e907339766e...
server: Original packet: [1189] 16030104a00200005103019ac206dd3307ca79b80e79dbb3e8edffc5b905913e...
server: Filtered packet: [1189] 16030104a00200005103019ac206dd3307ca79b80e79dbb3e8edffc5b905913e...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/6 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/7
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103012d43b7872f5243238a7ca59d56c1c9fe4a4263301d54b393bdc0...
record new: [1184] 0200005103012d43b7872f5243238a7ca59d56c1c9fe4a4263301d54b393bdc0...
server: Original packet: [1189] 16030104a00200005103012d43b7872f5243238a7ca59d56c1c9fe4a4263301d...
server: Filtered packet: [1189] 16030104a00200005103012d43b7872f5243238a7ca59d56c1c9fe4a4263301d...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/7 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/8
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103019dca97709be8510e36db82f72783263b970a023183ec4a60fae9...
record new: [1185] 0200005103019dca97709be8510e36db82f72783263b970a023183ec4a60fae9...
server: Original packet: [1189] 16030104a00200005103019dca97709be8510e36db82f72783263b970a023183...
server: Filtered packet: [1190] 16030104a10200005103019dca97709be8510e36db82f72783263b970a023183...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/8 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/9
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301ce92106095b0fb273da128d2cab9ee48d3585e02d211a998ea58...
record new: [1185] 020000510301ce92106095b0fb273da128d2cab9ee48d3585e02d211a998ea58...
server: Original packet: [1189] 16030104a0020000510301ce92106095b0fb273da128d2cab9ee48d3585e02d2...
server: Filtered packet: [1190] 16030104a1020000510301ce92106095b0fb273da128d2cab9ee48d3585e02d2...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/9 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/10
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301bd12d279a2bb42b954da2a210b6bcb2ae94a6cec8523d62bb321...
record new: [1185] 020000510301bd12d279a2bb42b954da2a210b6bcb2ae94a6cec8523d62bb321...
server: Original packet: [1189] 16030104a0020000510301bd12d279a2bb42b954da2a210b6bcb2ae94a6cec85...
server: Filtered packet: [1190] 16030104a1020000510301bd12d279a2bb42b954da2a210b6bcb2ae94a6cec85...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/10 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/11
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103014f51357ff3d858ee1aabd82c1c29afd9711b3fb32d25754167c6...
record new: [1185] 0200005103014f51357ff3d858ee1aabd82c1c29afd9711b3fb32d25754167c6...
server: Original packet: [1189] 16030104a00200005103014f51357ff3d858ee1aabd82c1c29afd9711b3fb32d...
server: Filtered packet: [1190] 16030104a10200005103014f51357ff3d858ee1aabd82c1c29afd9711b3fb32d...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/11 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/12
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302093b2951a75ae8582fd29d2f28025e57ea403b168b5d11bdc547...
record new: [1184] 020000510302093b2951a75ae8582fd29d2f28025e57ea403b168b5d11bdc547...
server: Original packet: [1189] 16030204a0020000510302093b2951a75ae8582fd29d2f28025e57ea403b168b...
server: Filtered packet: [1189] 16030204a0020000510302093b2951a75ae8582fd29d2f28025e57ea403b168b...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/12 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/13
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103026c07b2ba58544731ee19726f7895244b8f759628f31165dc5208...
record new: [1184] 0200005103026c07b2ba58544731ee19726f7895244b8f759628f31165dc5208...
server: Original packet: [1189] 16030204a00200005103026c07b2ba58544731ee19726f7895244b8f759628f3...
server: Filtered packet: [1189] 16030204a00200005103026c07b2ba58544731ee19726f7895244b8f759628f3...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/13 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/14
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302e6af705f34e93dde7227351e88a5d7f58c114f8fc0c35e414552...
record new: [1184] 020000510302e6af705f34e93dde7227351e88a5d7f58c114f8fc0c35e414552...
server: Original packet: [1189] 16030204a0020000510302e6af705f34e93dde7227351e88a5d7f58c114f8fc0...
server: Filtered packet: [1189] 16030204a0020000510302e6af705f34e93dde7227351e88a5d7f58c114f8fc0...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/14 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/15
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302f56b5a868e6e497cd8d0c09e40fcd23920c74cf6510b740fd0af...
record new: [1184] 020000510302f56b5a868e6e497cd8d0c09e40fcd23920c74cf6510b740fd0af...
server: Original packet: [1189] 16030204a0020000510302f56b5a868e6e497cd8d0c09e40fcd23920c74cf651...
server: Filtered packet: [1189] 16030204a0020000510302f56b5a868e6e497cd8d0c09e40fcd23920c74cf651...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/15 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/16
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302b3866f02b26131b5ef2c4a9eb6f473a220f7f791246b28c62363...
record new: [1184] 020000510302b3866f02b26131b5ef2c4a9eb6f473a220f7f791246b28c62363...
server: Original packet: [1189] 16030204a0020000510302b3866f02b26131b5ef2c4a9eb6f473a220f7f79124...
server: Filtered packet: [1189] 16030204a0020000510302b3866f02b26131b5ef2c4a9eb6f473a220f7f79124...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/16 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/17
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302e73b283944485afede5789e80ef795ec2bc0fd8b7dfe96235991...
record new: [1184] 020000510302e73b283944485afede5789e80ef795ec2bc0fd8b7dfe96235991...
server: Original packet: [1189] 16030204a0020000510302e73b283944485afede5789e80ef795ec2bc0fd8b7d...
server: Filtered packet: [1189] 16030204a0020000510302e73b283944485afede5789e80ef795ec2bc0fd8b7d...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/17 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/18
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302a7bb48b53021fb5baa0c92f884db9c26786b8260b74802be340c...
record new: [1184] 020000510302a7bb48b53021fb5baa0c92f884db9c26786b8260b74802be340c...
server: Original packet: [1189] 16030204a0020000510302a7bb48b53021fb5baa0c92f884db9c26786b8260b7...
server: Filtered packet: [1189] 16030204a0020000510302a7bb48b53021fb5baa0c92f884db9c26786b8260b7...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/18 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/19
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030288aad00d02110c69ba43f5ef75c9737c331a6d1d7378f39ad860...
record new: [1184] 02000051030288aad00d02110c69ba43f5ef75c9737c331a6d1d7378f39ad860...
server: Original packet: [1189] 16030204a002000051030288aad00d02110c69ba43f5ef75c9737c331a6d1d73...
server: Filtered packet: [1189] 16030204a002000051030288aad00d02110c69ba43f5ef75c9737c331a6d1d73...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/19 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/20
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302fcd84eb43b1fe2230be9798311af59817d247c77b1bd32570af1...
record new: [1185] 020000510302fcd84eb43b1fe2230be9798311af59817d247c77b1bd32570af1...
server: Original packet: [1189] 16030204a0020000510302fcd84eb43b1fe2230be9798311af59817d247c77b1...
server: Filtered packet: [1190] 16030204a1020000510302fcd84eb43b1fe2230be9798311af59817d247c77b1...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/20 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/21
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302da8f982807e3025f65221bf576d11a4c85afc1c238e1cff6c7df...
record new: [1185] 020000510302da8f982807e3025f65221bf576d11a4c85afc1c238e1cff6c7df...
server: Original packet: [1189] 16030204a0020000510302da8f982807e3025f65221bf576d11a4c85afc1c238...
server: Filtered packet: [1190] 16030204a1020000510302da8f982807e3025f65221bf576d11a4c85afc1c238...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/21 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/22
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302a2f04701036a52c5e127533872bb0743817bbbea9b400f8b8f0a...
record new: [1185] 020000510302a2f04701036a52c5e127533872bb0743817bbbea9b400f8b8f0a...
server: Original packet: [1189] 16030204a0020000510302a2f04701036a52c5e127533872bb0743817bbbea9b...
server: Filtered packet: [1190] 16030204a1020000510302a2f04701036a52c5e127533872bb0743817bbbea9b...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/22 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/23
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103021056e733db5a8f601cb93a65c12929b3e1725eb378010b9c679d...
record new: [1185] 0200005103021056e733db5a8f601cb93a65c12929b3e1725eb378010b9c679d...
server: Original packet: [1189] 16030204a00200005103021056e733db5a8f601cb93a65c12929b3e1725eb378...
server: Filtered packet: [1190] 16030204a10200005103021056e733db5a8f601cb93a65c12929b3e1725eb378...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/23 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/24
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 02000051030300575d7601a5902ce8a7665dd125676316124cc99f12932280cb...
record new: [1186] 02000051030300575d7601a5902ce8a7665dd125676316124cc99f12932280cb...
server: Original packet: [1191] 16030304a202000051030300575d7601a5902ce8a7665dd125676316124cc99f...
server: Filtered packet: [1191] 16030304a202000051030300575d7601a5902ce8a7665dd125676316124cc99f...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/24 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/25
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303a789d4f4ac69437ed642e5cf03bc032b50d6c44c48a9a6fc060e...
record new: [1186] 020000510303a789d4f4ac69437ed642e5cf03bc032b50d6c44c48a9a6fc060e...
server: Original packet: [1191] 16030304a2020000510303a789d4f4ac69437ed642e5cf03bc032b50d6c44c48...
server: Filtered packet: [1191] 16030304a2020000510303a789d4f4ac69437ed642e5cf03bc032b50d6c44c48...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/25 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/26
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303bd700cbe6129c404f4bd812dda0ec4dfe7391decf1da12cea838...
record new: [1186] 020000510303bd700cbe6129c404f4bd812dda0ec4dfe7391decf1da12cea838...
server: Original packet: [1191] 16030304a2020000510303bd700cbe6129c404f4bd812dda0ec4dfe7391decf1...
server: Filtered packet: [1191] 16030304a2020000510303bd700cbe6129c404f4bd812dda0ec4dfe7391decf1...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/26 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/27
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 02000051030304bba46551a0b62e9048abb205b82b06f3a26abe66dd62c4384c...
record new: [1186] 02000051030304bba46551a0b62e9048abb205b82b06f3a26abe66dd62c4384c...
server: Original packet: [1191] 16030304a202000051030304bba46551a0b62e9048abb205b82b06f3a26abe66...
server: Filtered packet: [1191] 16030304a202000051030304bba46551a0b62e9048abb205b82b06f3a26abe66...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/27 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/28
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303c146aa29f762b325acb1302b34da28873c3a4100618596a49575...
record new: [1186] 020000510303c146aa29f762b325acb1302b34da28873c3a4100618596a49575...
server: Original packet: [1191] 16030304a2020000510303c146aa29f762b325acb1302b34da28873c3a410061...
server: Filtered packet: [1191] 16030304a2020000510303c146aa29f762b325acb1302b34da28873c3a410061...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/28 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/29
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103035c63f29d3962e221872e24ef50d331f9ce54e2c9eccf1c5b97fa...
record new: [1186] 0200005103035c63f29d3962e221872e24ef50d331f9ce54e2c9eccf1c5b97fa...
server: Original packet: [1191] 16030304a20200005103035c63f29d3962e221872e24ef50d331f9ce54e2c9ec...
server: Filtered packet: [1191] 16030304a20200005103035c63f29d3962e221872e24ef50d331f9ce54e2c9ec...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/29 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/30
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303cf94dd65756ff31eb821311eb0133bb95b6a17cbcf653b5b6f53...
record new: [1186] 020000510303cf94dd65756ff31eb821311eb0133bb95b6a17cbcf653b5b6f53...
server: Original packet: [1191] 16030304a2020000510303cf94dd65756ff31eb821311eb0133bb95b6a17cbcf...
server: Filtered packet: [1191] 16030304a2020000510303cf94dd65756ff31eb821311eb0133bb95b6a17cbcf...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/30 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/31
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303233317d059b3a4024d5d8fcb976a4ad87e00d73eb1687ec689b6...
record new: [1186] 020000510303233317d059b3a4024d5d8fcb976a4ad87e00d73eb1687ec689b6...
server: Original packet: [1191] 16030304a2020000510303233317d059b3a4024d5d8fcb976a4ad87e00d73eb1...
server: Filtered packet: [1191] 16030304a2020000510303233317d059b3a4024d5d8fcb976a4ad87e00d73eb1...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/31 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/32
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103039216c3b5d5ed85f65a2f872f68323d843aeccdbc50ad7332e2ac...
record new: [1187] 0200005103039216c3b5d5ed85f65a2f872f68323d843aeccdbc50ad7332e2ac...
server: Original packet: [1191] 16030304a20200005103039216c3b5d5ed85f65a2f872f68323d843aeccdbc50...
server: Filtered packet: [1192] 16030304a30200005103039216c3b5d5ed85f65a2f872f68323d843aeccdbc50...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/32 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/33
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103039830761b793ec621359a2165ee78b654f0226bf2ab982d1c6095...
record new: [1187] 0200005103039830761b793ec621359a2165ee78b654f0226bf2ab982d1c6095...
server: Original packet: [1191] 16030304a20200005103039830761b793ec621359a2165ee78b654f0226bf2ab...
server: Filtered packet: [1192] 16030304a30200005103039830761b793ec621359a2165ee78b654f0226bf2ab...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/33 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/34
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 02000051030320d0e4c69d5cd481a40738273b94e4419dcf3bb01f0d52e1b7da...
record new: [1187] 02000051030320d0e4c69d5cd481a40738273b94e4419dcf3bb01f0d52e1b7da...
server: Original packet: [1191] 16030304a202000051030320d0e4c69d5cd481a40738273b94e4419dcf3bb01f...
server: Filtered packet: [1192] 16030304a302000051030320d0e4c69d5cd481a40738273b94e4419dcf3bb01f...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/34 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/35
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303407fde88d9805ba8c2426498e090a00161e01cd746b6cae1e1c6...
record new: [1187] 020000510303407fde88d9805ba8c2426498e090a00161e01cd746b6cae1e1c6...
server: Original packet: [1191] 16030304a2020000510303407fde88d9805ba8c2426498e090a00161e01cd746...
server: Filtered packet: [1192] 16030304a3020000510303407fde88d9805ba8c2426498e090a00161e01cd746...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/35 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01005a0ef52fd96d0b7ac51a0b79675ea38dfc353096ca9320de78744c7c448a...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201005a0ef52fd96d0b7ac51a0b79675ea38dfc353096ca9320de7874...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 16030101061000010201005a0ef52fd96d0b7ac51a0b79675ea38dfc353096ca...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/0 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/1
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01009611bfcab27fc8efd8c07b3ccf631c6324acda7ca7f2fd5df0b5d0778b20...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201009611bfcab27fc8efd8c07b3ccf631c6324acda7ca7f2fd5df0b5...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 16030101061000010201009611bfcab27fc8efd8c07b3ccf631c6324acda7ca7...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/1 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/2
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01001b70fffa075a2c39ca0bd71dfc1fc38a9da80661105cb1d5eebfef935621...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201001b70fffa075a2c39ca0bd71dfc1fc38a9da80661105cb1d5eebf...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 16030101061000010201001b70fffa075a2c39ca0bd71dfc1fc38a9da8066110...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/2 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/3
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100b7d45df489930824a1ffcd5d9a8112656237731837cf08f0b54972ffa381...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100b7d45df489930824a1ffcd5d9a8112656237731837cf08f0b549...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 1603010106100001020100b7d45df489930824a1ffcd5d9a8112656237731837...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/3 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/4
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a60bd0adf802e30520d13ecf24dc9a2fa8c3e1e0a151a84bfe16997f3907...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100a60bd0adf802e30520d13ecf24dc9a2fa8c3e1e0a151a84bfe16...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [326] 1603010106100001020100a60bd0adf802e30520d13ecf24dc9a2fa8c3e1e0a1...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/4 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/5
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100ce7f15480f5f0286d9ad5f4a9474acee92a822a60ac03a247498b94b6e63...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100ce7f15480f5f0286d9ad5f4a9474acee92a822a60ac03a247498...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [326] 1603010106100001020100ce7f15480f5f0286d9ad5f4a9474acee92a822a60a...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/5 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/6
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c7f5461c9d21ce3b54faf2e037eab7062fd4075de000949c5210162bcec2...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100c7f5461c9d21ce3b54faf2e037eab7062fd4075de000949c5210...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [326] 1603010106100001020100c7f5461c9d21ce3b54faf2e037eab7062fd4075de0...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/6 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/7
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01006823480bcd69c5fb7330bedbd67de3c6c7610fedfba2b8694fc957c130ac...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 1000010201006823480bcd69c5fb7330bedbd67de3c6c7610fedfba2b8694fc9...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [326] 16030101061000010201006823480bcd69c5fb7330bedbd67de3c6c7610fedfb...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/7 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/8
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100d46e35ed63c03bc233b32bb50e5540b46fbb4d194ac240dfea8d58d4fb79...
handshake new: [259] 010101d46e35ed63c03bc233b32bb50e5540b46fbb4d194ac240dfea8d58d4fb...
record old: [262] 100001020100d46e35ed63c03bc233b32bb50e5540b46fbb4d194ac240dfea8d...
record new: [263] 10000103010101d46e35ed63c03bc233b32bb50e5540b46fbb4d194ac240dfea...
client: Original packet: [326] 1603010106100001020100d46e35ed63c03bc233b32bb50e5540b46fbb4d194a...
client: Filtered packet: [327] 160301010710000103010101d46e35ed63c03bc233b32bb50e5540b46fbb4d19...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/8 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/9
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01005e833a61305f810baca24707cd03ec5c20e54112a7d8c5563895b38d86fa...
handshake new: [259] 0101015e833a61305f810baca24707cd03ec5c20e54112a7d8c5563895b38d86...
record old: [262] 1000010201005e833a61305f810baca24707cd03ec5c20e54112a7d8c5563895...
record new: [263] 100001030101015e833a61305f810baca24707cd03ec5c20e54112a7d8c55638...
client: Original packet: [326] 16030101061000010201005e833a61305f810baca24707cd03ec5c20e54112a7...
client: Filtered packet: [327] 1603010107100001030101015e833a61305f810baca24707cd03ec5c20e54112...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/9 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/10
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100b8f7d9e8287d1aaf5045dde01554c48f687d7030f9691111968324544afc...
handshake new: [259] 010100b8f7d9e8287d1aaf5045dde01554c48f687d7030f9691111968324544a...
record old: [262] 100001020100b8f7d9e8287d1aaf5045dde01554c48f687d7030f96911119683...
record new: [263] 10000103010100b8f7d9e8287d1aaf5045dde01554c48f687d7030f969111196...
client: Original packet: [326] 1603010106100001020100b8f7d9e8287d1aaf5045dde01554c48f687d7030f9...
client: Filtered packet: [327] 160301010710000103010100b8f7d9e8287d1aaf5045dde01554c48f687d7030...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/10 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/11
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01007770515dc56e680242bd09eb72c7af8f91f8a87e7d84da7558b3c0933cc0...
handshake new: [259] 0101007770515dc56e680242bd09eb72c7af8f91f8a87e7d84da7558b3c0933c...
record old: [262] 1000010201007770515dc56e680242bd09eb72c7af8f91f8a87e7d84da7558b3...
record new: [263] 100001030101007770515dc56e680242bd09eb72c7af8f91f8a87e7d84da7558...
client: Original packet: [326] 16030101061000010201007770515dc56e680242bd09eb72c7af8f91f8a87e7d...
client: Filtered packet: [327] 1603010107100001030101007770515dc56e680242bd09eb72c7af8f91f8a87e...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/11 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/12
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100263fb33cddc06b45e1d724568ea32cb4810e9890d20db38050372b12b581...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100263fb33cddc06b45e1d724568ea32cb4810e9890d20db3805037...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 1603020106100001020100263fb33cddc06b45e1d724568ea32cb4810e9890d2...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/12 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/13
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e2e11fb78ae098e5372647e5f5e49c5d35e169cbe36145810e20a04933ff...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100e2e11fb78ae098e5372647e5f5e49c5d35e169cbe36145810e20...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 1603020106100001020100e2e11fb78ae098e5372647e5f5e49c5d35e169cbe3...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/13 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/14
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01006c97ea2cce7cfad0aa255fb6cda5cd749ea8b1f644f55125bc53b642ed0a...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201006c97ea2cce7cfad0aa255fb6cda5cd749ea8b1f644f55125bc53...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 16030201061000010201006c97ea2cce7cfad0aa255fb6cda5cd749ea8b1f644...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/14 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/15
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100fb3b1361f3290702671e5a7811c62793d28fb8773ef0983fe5f23c68dd7c...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100fb3b1361f3290702671e5a7811c62793d28fb8773ef0983fe5f2...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 1603020106100001020100fb3b1361f3290702671e5a7811c62793d28fb8773e...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/15 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/16
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e412a67f0c514219dec28b941fd4bde8f76a95eadcb50cf8d02d75c87176...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100e412a67f0c514219dec28b941fd4bde8f76a95eadcb50cf8d02d...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [342] 1603020106100001020100e412a67f0c514219dec28b941fd4bde8f76a95eadc...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/16 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/17
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100ee78e9f23e16fb14ea8f898345e4ebc940566784a84553263d0b0504069e...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100ee78e9f23e16fb14ea8f898345e4ebc940566784a84553263d0b...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [342] 1603020106100001020100ee78e9f23e16fb14ea8f898345e4ebc940566784a8...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/17 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/18
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01004bf61b737d2d9d49852eceefa56cf76bb805beb6dc5a91441025c65f6899...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 1000010201004bf61b737d2d9d49852eceefa56cf76bb805beb6dc5a91441025...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [342] 16030201061000010201004bf61b737d2d9d49852eceefa56cf76bb805beb6dc...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/18 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/19
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010085bfcc6aa8b3d1274c36f78d37eecef0be70dfd27b2bdb0d8ea968ccaf4e...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 10000102010085bfcc6aa8b3d1274c36f78d37eecef0be70dfd27b2bdb0d8ea9...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [342] 160302010610000102010085bfcc6aa8b3d1274c36f78d37eecef0be70dfd27b...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/19 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/20
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100683e50e2d7e2534618770f6194c1af3abdc503c2dfe04fe893ccc9630b5f...
handshake new: [259] 010101683e50e2d7e2534618770f6194c1af3abdc503c2dfe04fe893ccc9630b...
record old: [262] 100001020100683e50e2d7e2534618770f6194c1af3abdc503c2dfe04fe893cc...
record new: [263] 10000103010101683e50e2d7e2534618770f6194c1af3abdc503c2dfe04fe893...
client: Original packet: [342] 1603020106100001020100683e50e2d7e2534618770f6194c1af3abdc503c2df...
client: Filtered packet: [343] 160302010710000103010101683e50e2d7e2534618770f6194c1af3abdc503c2...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/20 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/21
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010027dd52c331dd7a345b76469128b2d43eb7cdf902faf5ef1e0b298ade2882...
handshake new: [259] 01010127dd52c331dd7a345b76469128b2d43eb7cdf902faf5ef1e0b298ade28...
record old: [262] 10000102010027dd52c331dd7a345b76469128b2d43eb7cdf902faf5ef1e0b29...
record new: [263] 1000010301010127dd52c331dd7a345b76469128b2d43eb7cdf902faf5ef1e0b...
client: Original packet: [342] 160302010610000102010027dd52c331dd7a345b76469128b2d43eb7cdf902fa...
client: Filtered packet: [343] 16030201071000010301010127dd52c331dd7a345b76469128b2d43eb7cdf902...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/21 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/22
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010090cb39da337ee426654f4ee6114a8b793617a33b3269bece09d36abf5759...
handshake new: [259] 01010090cb39da337ee426654f4ee6114a8b793617a33b3269bece09d36abf57...
record old: [262] 10000102010090cb39da337ee426654f4ee6114a8b793617a33b3269bece09d3...
record new: [263] 1000010301010090cb39da337ee426654f4ee6114a8b793617a33b3269bece09...
client: Original packet: [342] 160302010610000102010090cb39da337ee426654f4ee6114a8b793617a33b32...
client: Filtered packet: [343] 16030201071000010301010090cb39da337ee426654f4ee6114a8b793617a33b...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/22 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/23
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c3476a84f99605a1f6183aafcbe4300f3b7ba3bf55f00f764943e399827c...
handshake new: [259] 010100c3476a84f99605a1f6183aafcbe4300f3b7ba3bf55f00f764943e39982...
record old: [262] 100001020100c3476a84f99605a1f6183aafcbe4300f3b7ba3bf55f00f764943...
record new: [263] 10000103010100c3476a84f99605a1f6183aafcbe4300f3b7ba3bf55f00f7649...
client: Original packet: [342] 1603020106100001020100c3476a84f99605a1f6183aafcbe4300f3b7ba3bf55...
client: Filtered packet: [343] 160302010710000103010100c3476a84f99605a1f6183aafcbe4300f3b7ba3bf...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/23 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/24
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01000965a15a222e2eab92a77e1cecd34934d347e5816950dd96410d2d748fe3...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201000965a15a222e2eab92a77e1cecd34934d347e5816950dd96410d...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 16030301061000010201000965a15a222e2eab92a77e1cecd34934d347e58169...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/24 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/25
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010047a77c90cf84ad14a24e2cafc1c939d8d2259229ee6fe40de8e5bf873ba4...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 10000102010047a77c90cf84ad14a24e2cafc1c939d8d2259229ee6fe40de8e5...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 160303010610000102010047a77c90cf84ad14a24e2cafc1c939d8d2259229ee...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/25 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/26
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100864786f094324c71574c5fefe9430f8357acfba23ecdd3513a82cef1076f...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100864786f094324c71574c5fefe9430f8357acfba23ecdd3513a82...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 1603030106100001020100864786f094324c71574c5fefe9430f8357acfba23e...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/26 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/27
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01000a1bd00608e8ed85c2b81a0b2852dea54ebba79cd04afb96b7af18c2284f...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201000a1bd00608e8ed85c2b81a0b2852dea54ebba79cd04afb96b7af...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 16030301061000010201000a1bd00608e8ed85c2b81a0b2852dea54ebba79cd0...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/27 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/28
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100089259fa3961045b8686299146bb697f448f4369f92f204e4783930c3aef...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100089259fa3961045b8686299146bb697f448f4369f92f204e4783...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [318] 1603030106100001020100089259fa3961045b8686299146bb697f448f4369f9...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/28 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/29
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e60e313aabb7c4b2f9614efc21d284ecd294cb77410f72a29239ef89c5cd...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100e60e313aabb7c4b2f9614efc21d284ecd294cb77410f72a29239...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [318] 1603030106100001020100e60e313aabb7c4b2f9614efc21d284ecd294cb7741...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/29 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/30
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100ccc8435f7681f78f94002a26adb984e064ba339c15e2e5ead525f31558ff...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100ccc8435f7681f78f94002a26adb984e064ba339c15e2e5ead525...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [318] 1603030106100001020100ccc8435f7681f78f94002a26adb984e064ba339c15...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/30 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/31
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01000dc0c3e058b9ccf18466b5b15166902b4e328c0a92bd02680eb792fe24bc...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 1000010201000dc0c3e058b9ccf18466b5b15166902b4e328c0a92bd02680eb7...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [318] 16030301061000010201000dc0c3e058b9ccf18466b5b15166902b4e328c0a92...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/31 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/32
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010043809f9ae4b689ce364401fbb70e64e6072b86f6ca111a454fe0c5fa4f95...
handshake new: [259] 01010143809f9ae4b689ce364401fbb70e64e6072b86f6ca111a454fe0c5fa4f...
record old: [262] 10000102010043809f9ae4b689ce364401fbb70e64e6072b86f6ca111a454fe0...
record new: [263] 1000010301010143809f9ae4b689ce364401fbb70e64e6072b86f6ca111a454f...
client: Original packet: [318] 160303010610000102010043809f9ae4b689ce364401fbb70e64e6072b86f6ca...
client: Filtered packet: [319] 16030301071000010301010143809f9ae4b689ce364401fbb70e64e6072b86f6...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/32 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/33
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010058f7ddaaa5a5d77f71ac9ff640b959b92e7db5c95f1b2bd875c9f81bdcfb...
handshake new: [259] 01010158f7ddaaa5a5d77f71ac9ff640b959b92e7db5c95f1b2bd875c9f81bdc...
record old: [262] 10000102010058f7ddaaa5a5d77f71ac9ff640b959b92e7db5c95f1b2bd875c9...
record new: [263] 1000010301010158f7ddaaa5a5d77f71ac9ff640b959b92e7db5c95f1b2bd875...
client: Original packet: [318] 160303010610000102010058f7ddaaa5a5d77f71ac9ff640b959b92e7db5c95f...
client: Filtered packet: [319] 16030301071000010301010158f7ddaaa5a5d77f71ac9ff640b959b92e7db5c9...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/33 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/34
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e6d1da6951898d32e4dd8a0eb84870f649c0cf7b74d49765c9299cd654c8...
handshake new: [259] 010100e6d1da6951898d32e4dd8a0eb84870f649c0cf7b74d49765c9299cd654...
record old: [262] 100001020100e6d1da6951898d32e4dd8a0eb84870f649c0cf7b74d49765c929...
record new: [263] 10000103010100e6d1da6951898d32e4dd8a0eb84870f649c0cf7b74d49765c9...
client: Original packet: [318] 1603030106100001020100e6d1da6951898d32e4dd8a0eb84870f649c0cf7b74...
client: Filtered packet: [319] 160303010710000103010100e6d1da6951898d32e4dd8a0eb84870f649c0cf7b...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/34 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/35
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100856c2d62ffe2f29e08de09e148e7131633b5b1ff5fb092df14adf9f15414...
handshake new: [259] 010100856c2d62ffe2f29e08de09e148e7131633b5b1ff5fb092df14adf9f154...
record old: [262] 100001020100856c2d62ffe2f29e08de09e148e7131633b5b1ff5fb092df14ad...
record new: [263] 10000103010100856c2d62ffe2f29e08de09e148e7131633b5b1ff5fb092df14...
client: Original packet: [318] 1603030106100001020100856c2d62ffe2f29e08de09e148e7131633b5b1ff5f...
client: Filtered packet: [319] 160303010710000103010100856c2d62ffe2f29e08de09e148e7131633b5b1ff...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/35 (7 ms)
[----------] 72 tests from DamageYStream/TlsDamageDHYTest (401 ms total)
[----------] 48 tests from DamageYDatagram/TlsDamageDHYTest
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/0
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffb359c1da62...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feffb359c1da62...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/0 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/1
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff3562ff928b...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff3562ff928b...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/1 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff868495014b...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff868495014b...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/2 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffbe88864fb7...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feffbe88864fb7...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/3 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/4
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffa24caf2762...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feffa24caf2762...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/4 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/5
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffec06beb3dd...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feffec06beb3dd...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/5 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/6
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffb5102e9597...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feffb5102e9597...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/6 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/7
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffda3a09b38f...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feffda3a09b38f...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/7 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/8
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff5a9785e770...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feff5a9785e770...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/8 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/9
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff7e2b4ef862...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feff7e2b4ef862...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/9 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/10
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff892c259ae8...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feff892c259ae8...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/10 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/11
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff4fd689818d...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feff4fd689818d...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/11 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/12
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdef2f066e35...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdef2f066e35...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/12 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/13
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd6e906abed1...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd6e906abed1...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/13 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/14
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd4e80501355...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd4e80501355...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/14 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/15
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdb8a493c1fc...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdb8a493c1fc...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/15 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/16
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd326f8d334b...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd326f8d334b...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/16 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/17
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd207c35a565...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd207c35a565...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/17 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/18
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefde94aec9668...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefde94aec9668...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/18 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/19
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdbf389a51fd...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdbf389a51fd...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/19 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/20
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd60e5eeb605...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefd60e5eeb605...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/20 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/21
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefda2ed444411...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefda2ed444411...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/21 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/22
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdf4d5ef1ab2...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefdf4d5ef1ab2...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/22 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/23
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdd2c9b350c3...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefdd2c9b350c3...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/23 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/0
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01003f3a4de3086483b29454d18fb0b129785a439f8bbf6170f244892c477456...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 10000102000100000000010201003f3a4de3086483b29454d18fb0b129785a43...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201003f3a4de308...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/0 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/1
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100edecec649dd4b7974146e9e421eb4a0633258c46775525c7b993624cd590...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100edecec649dd4b7974146e9e421eb4a063325...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100edecec649d...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/1 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01000d63ffb0fde3b58ed2bcf50d9c52b2ec094bb52dede931c4ed12f30f20a3...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 10000102000100000000010201000d63ffb0fde3b58ed2bcf50d9c52b2ec094b...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201000d63ffb0fd...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/2 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100f1ea8b7799ba1c82a88877c24d75f436578cbec7f347fed20428be444d48...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100f1ea8b7799ba1c82a88877c24d75f436578c...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100f1ea8b7799...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/3 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/4
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100b1406aa95d2a15d66a86e8d9f9d050fedee6d30f9ee0b0e92e024bd0c865...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 1000010200010000000001020100b1406aa95d2a15d66a86e8d9f9d050fedee6...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100b1406aa95d...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/4 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/5
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100821b832296d30395c5a3d1a669dad03950dcea3459da96e3d92c00dbc938...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 1000010200010000000001020100821b832296d30395c5a3d1a669dad03950dc...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100821b832296...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/5 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/6
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010042d855f7f4f3f42f2a72358905ff27b12c8e9ef5829bbd52788e12429d87...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 100001020001000000000102010042d855f7f4f3f42f2a72358905ff27b12c8e...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [374] 16feff0000000000000001010e100001020001000000000102010042d855f7f4...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/6 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/7
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010042c4f2c447bd47e2a96bcabaaaf6ea576ff44b32bc8f59c055f2ad324d04...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 100001020001000000000102010042c4f2c447bd47e2a96bcabaaaf6ea576ff4...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [374] 16feff0000000000000001010e100001020001000000000102010042c4f2c447...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/7 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/8
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100194aaea8b24f91e6ee6197d79434e5813ee551ac848a5f403bcbd537dc8d...
handshake new: [259] 010101194aaea8b24f91e6ee6197d79434e5813ee551ac848a5f403bcbd537dc...
record old: [270] 1000010200010000000001020100194aaea8b24f91e6ee6197d79434e5813ee5...
record new: [271] 100001030001000000000103010101194aaea8b24f91e6ee6197d79434e5813e...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100194aaea8b2...
client: Filtered packet: [375] 16feff0000000000000001010f100001030001000000000103010101194aaea8...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/8 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/9
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01003e3851a3836fc088ea972890f2d584472843270d9e76627c61158809683b...
handshake new: [259] 0101013e3851a3836fc088ea972890f2d584472843270d9e76627c6115880968...
record old: [270] 10000102000100000000010201003e3851a3836fc088ea972890f2d584472843...
record new: [271] 1000010300010000000001030101013e3851a3836fc088ea972890f2d5844728...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201003e3851a383...
client: Filtered packet: [375] 16feff0000000000000001010f1000010300010000000001030101013e3851a3...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/9 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/10
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010015094c43d47958167cd22ee2e78011c5b8d18dc08ac4f381b07a92d9c54f...
handshake new: [259] 01010015094c43d47958167cd22ee2e78011c5b8d18dc08ac4f381b07a92d9c5...
record old: [270] 100001020001000000000102010015094c43d47958167cd22ee2e78011c5b8d1...
record new: [271] 10000103000100000000010301010015094c43d47958167cd22ee2e78011c5b8...
client: Original packet: [374] 16feff0000000000000001010e100001020001000000000102010015094c43d4...
client: Filtered packet: [375] 16feff0000000000000001010f10000103000100000000010301010015094c43...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/10 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/11
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010044eb5a2d9e35fef913c673c2797f3c54c2b0e8b23a5999b4b179e841c4f6...
handshake new: [259] 01010044eb5a2d9e35fef913c673c2797f3c54c2b0e8b23a5999b4b179e841c4...
record old: [270] 100001020001000000000102010044eb5a2d9e35fef913c673c2797f3c54c2b0...
record new: [271] 10000103000100000000010301010044eb5a2d9e35fef913c673c2797f3c54c2...
client: Original packet: [374] 16feff0000000000000001010e100001020001000000000102010044eb5a2d9e...
client: Filtered packet: [375] 16feff0000000000000001010f10000103000100000000010301010044eb5a2d...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/11 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/12
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100872990c91d433a4f65fe474f9d6cca7352be588dcf4e65922c628b8eb59d...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100872990c91d433a4f65fe474f9d6cca7352be...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100872990c91d...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/12 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/13
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010098ccd6d6d41ab18b0d961fc8833391a600be04f36c95c5ce45cd20f62168...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 100001020001000000000102010098ccd6d6d41ab18b0d961fc8833391a600be...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e100001020001000000000102010098ccd6d6d4...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/13 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/14
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100d99f110e45b99e2a59a073ebaa7807deb6d2e2a1fe5b1374b8d668fad49c...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100d99f110e45b99e2a59a073ebaa7807deb6d2...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100d99f110e45...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/14 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/15
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010098838359ae0ccb473216f456e950bc12c5aa64e8b51cfad0829dcf0afd2c...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 100001020001000000000102010098838359ae0ccb473216f456e950bc12c5aa...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e100001020001000000000102010098838359ae...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/15 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/16
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100f3017a56a419076889e4c5cae40bcfcc2b41626adfca1296a9daa23b85c6...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 1000010200010000000001020100f3017a56a419076889e4c5cae40bcfcc2b41...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100f3017a56a4...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/16 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/17
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100d687d2d54493f15dcbe228be59356112956739d3d7fd5e5a748a0036e675...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 1000010200010000000001020100d687d2d54493f15dcbe228be593561129567...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100d687d2d544...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/17 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/18
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010085ad1c44513c31881d678ff0153d7702dc9015d49cec19be445c7b69bd1b...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 100001020001000000000102010085ad1c44513c31881d678ff0153d7702dc90...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [358] 16fefd0000000000000001010e100001020001000000000102010085ad1c4451...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/18 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/19
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01007ed8f27d55b65c482237f4a3b142293970c54f3f498c0c73be70c380898b...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 10000102000100000000010201007ed8f27d55b65c482237f4a3b142293970c5...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201007ed8f27d55...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/19 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/20
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100326876fdda8f25ee97991555de275cddb06d4a9b70c6e9d97685677ebda1...
handshake new: [259] 010101326876fdda8f25ee97991555de275cddb06d4a9b70c6e9d97685677ebd...
record old: [270] 1000010200010000000001020100326876fdda8f25ee97991555de275cddb06d...
record new: [271] 100001030001000000000103010101326876fdda8f25ee97991555de275cddb0...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100326876fdda...
client: Filtered packet: [359] 16fefd0000000000000001010f100001030001000000000103010101326876fd...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/20 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/21
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100288d6dcf0ae238888ce9213d32ae25faebea9a7d34ac509780bd4553feb9...
handshake new: [259] 010101288d6dcf0ae238888ce9213d32ae25faebea9a7d34ac509780bd4553fe...
record old: [270] 1000010200010000000001020100288d6dcf0ae238888ce9213d32ae25faebea...
record new: [271] 100001030001000000000103010101288d6dcf0ae238888ce9213d32ae25faeb...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100288d6dcf0a...
client: Filtered packet: [359] 16fefd0000000000000001010f100001030001000000000103010101288d6dcf...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/21 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/22
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100d1848ab02a19aff5c3d9564286b660489bcac000a03a5fca84bcf4ca546b...
handshake new: [259] 010100d1848ab02a19aff5c3d9564286b660489bcac000a03a5fca84bcf4ca54...
record old: [270] 1000010200010000000001020100d1848ab02a19aff5c3d9564286b660489bca...
record new: [271] 100001030001000000000103010100d1848ab02a19aff5c3d9564286b660489b...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100d1848ab02a...
client: Filtered packet: [359] 16fefd0000000000000001010f100001030001000000000103010100d1848ab0...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/22 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/23
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01000bc20e4a4f33ea7f90e5bc00ef2a96cdea783cec333ac54ef93d52c3b432...
handshake new: [259] 0101000bc20e4a4f33ea7f90e5bc00ef2a96cdea783cec333ac54ef93d52c3b4...
record old: [270] 10000102000100000000010201000bc20e4a4f33ea7f90e5bc00ef2a96cdea78...
record new: [271] 1000010300010000000001030101000bc20e4a4f33ea7f90e5bc00ef2a96cdea...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201000bc20e4a4f...
client: Filtered packet: [359] 16fefd0000000000000001010f1000010300010000000001030101000bc20e4a...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/23 (7 ms)
[----------] 48 tests from DamageYDatagram/TlsDamageDHYTest (270 ms total)
[----------] 2 tests from Datagram12Plus/TlsConnectDatagram12Plus
[ RUN      ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindow/0
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindow/0 (5 ms)
[ RUN      ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindowAndOne/0
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindowAndOne/0 (4 ms)
[----------] 2 tests from Datagram12Plus/TlsConnectDatagram12Plus (9 ms total)
[----------] 16 tests from KeyExchangeTest/TlsKeyExchangeTest
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/0 (16 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/1 (14 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/2 (13 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/3 (14 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/0 (13 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/1 (13 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/2 (13 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/3 (14 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/0 (13 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/1 (13 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/2 (13 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/3 (13 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/0 (6 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/1 (6 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/2 (6 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/3 (7 ms)
[----------] 16 tests from KeyExchangeTest/TlsKeyExchangeTest (188 ms total)
[----------] 88 tests from TlsPadding/TlsPaddingTest
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fefefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.Correct/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0e0e
[       OK ] TlsPadding/TlsPaddingTest.Correct/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fcfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.Correct/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0c0c
[       OK ] TlsPadding/TlsPaddingTest.Correct/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fbfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.Correct/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0b0b
[       OK ] TlsPadding/TlsPaddingTest.Correct/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f1f1...
[       OK ] TlsPadding/TlsPaddingTest.Correct/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410101
[       OK ] TlsPadding/TlsPaddingTest.Correct/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f0...
[       OK ] TlsPadding/TlsPaddingTest.Correct/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/9
Content length=31 padding length=0 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141414100
[       OK ] TlsPadding/TlsPaddingTest.Correct/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/19
Content length=287 padding length=0 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/0
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0e10
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/2
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0c20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/4
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0b20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/6
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410120
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/8
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/9
Content length=31 padding length=0 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141414120
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/9 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/10
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/12
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/14
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/15
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/16
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/17
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/18
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/19
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/21
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fffefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410f0e0e0e0e0e0e0e0e0e0e0e0e0e0e
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fdfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410d0c0c0c0c0c0c0c0c0c0c0c0c
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fcfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410c0b0b0b0b0b0b0b0b0b0b0b
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f2f1...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410201
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f1...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/9
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/19
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fefefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0f0e
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fcfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0d0c
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fbfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0c0b
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/5 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f1f1...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410201
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f0...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/9
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/19
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/21 (0 ms)
[----------] 88 tests from TlsPadding/TlsPaddingTest (2 ms total)
[----------] 8 tests from SkipTls10/TlsSkipTest
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateRsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 020000510301e71b7993d60fb68ae8796a2c92e556db08c846cfa180939dc46d...
record new: [89] 020000510301e71b7993d60fb68ae8796a2c92e556db08c846cfa180939dc46d...
server: Original packet: [536] 1603010213020000510301e71b7993d60fb68ae8796a2c92e556db08c846cfa1...
server: Filtered packet: [94] 1603010059020000510301e71b7993d60fb68ae8796a2c92e556db08c846cfa1...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateRsa/0 (3 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateDhe/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570301b3aa192494b0313f1a1b5dc52865de367f22feac0d3a28d10264...
record new: [265] 020000570301b3aa192494b0313f1a1b5dc52865de367f22feac0d3a28d10264...
server: Original packet: [712] 16030102c3020000570301b3aa192494b0313f1a1b5dc52865de367f22feac0d...
server: Filtered packet: [270] 1603010109020000570301b3aa192494b0313f1a1b5dc52865de367f22feac0d...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateDhe/0 (4 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateEcdhe/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 0200005703019980a11ba1765176a33161d80178a0718c673aba96547671cff6...
record new: [265] 0200005703019980a11ba1765176a33161d80178a0718c673aba96547671cff6...
server: Original packet: [712] 16030102c30200005703019980a11ba1765176a33161d80178a0718c673aba96...
server: Filtered packet: [270] 16030101090200005703019980a11ba1765176a33161d80178a0718c673aba96...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateEcdhe/0 (3 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [523] 0200005703015ecc9fc2bf0e836d3d3b5b591d8ee60526b3fbcd3b4d16c42a6b...
record new: [207] 0200005703015ecc9fc2bf0e836d3d3b5b591d8ee60526b3fbcd3b4d16c42a6b...
server: Original packet: [528] 160301020b0200005703015ecc9fc2bf0e836d3d3b5b591d8ee60526b3fbcd3b...
server: Filtered packet: [212] 16030100cf0200005703015ecc9fc2bf0e836d3d3b5b591d8ee60526b3fbcd3b...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateEcdsa/0 (2 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipServerKeyExchange/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [707] 020000570301360c0a25443caf587727a20c76e4cf6f7aedd060f5bc12cf93e5...
record new: [537] 020000570301360c0a25443caf587727a20c76e4cf6f7aedd060f5bc12cf93e5...
server: Original packet: [712] 16030102c3020000570301360c0a25443caf587727a20c76e4cf6f7aedd060f5...
server: Filtered packet: [542] 1603010219020000570301360c0a25443caf587727a20c76e4cf6f7aedd060f5...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipServerKeyExchange/0 (3 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipServerKeyExchangeEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [524] 02000057030116054cb63a7896a06257d0f02a55213fc29779b1daf7d8c809d6...
record new: [411] 02000057030116054cb63a7896a06257d0f02a55213fc29779b1daf7d8c809d6...
server: Original packet: [529] 160301020c02000057030116054cb63a7896a06257d0f02a55213fc29779b1da...
server: Filtered packet: [416] 160301019b02000057030116054cb63a7896a06257d0f02a55213fc29779b1da...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipServerKeyExchangeEcdsa/0 (2 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertAndKeyExch/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570301479b01f32b89138573011b59ab5ec89ab164b2f8009021824099...
record new: [265] 020000570301479b01f32b89138573011b59ab5ec89ab164b2f8009021824099...
Dropping handshake: 12
record old: [265] 020000570301479b01f32b89138573011b59ab5ec89ab164b2f8009021824099...
record new: [95] 020000570301479b01f32b89138573011b59ab5ec89ab164b2f8009021824099...
server: Original packet: [712] 16030102c3020000570301479b01f32b89138573011b59ab5ec89ab164b2f800...
server: Filtered packet: [100] 160301005f020000570301479b01f32b89138573011b59ab5ec89ab164b2f800...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertAndKeyExch/0 (4 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertAndKeyExchEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [525] 020000570301c8badc505506578fe547db21293ed597795305e86bda32214dc3...
record new: [209] 020000570301c8badc505506578fe547db21293ed597795305e86bda32214dc3...
Dropping handshake: 12
record old: [209] 020000570301c8badc505506578fe547db21293ed597795305e86bda32214dc3...
record new: [95] 020000570301c8badc505506578fe547db21293ed597795305e86bda32214dc3...
server: Original packet: [530] 160301020d020000570301c8badc505506578fe547db21293ed597795305e86b...
server: Filtered packet: [100] 160301005f020000570301c8badc505506578fe547db21293ed597795305e86b...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertAndKeyExchEcdsa/0 (1 ms)
[----------] 8 tests from SkipTls10/TlsSkipTest (22 ms total)
[----------] 32 tests from SkipVariants/TlsSkipTest
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 020000510302de7614676a109201c32396693fa6112085b556cad0d3c7c477b5...
record new: [89] 020000510302de7614676a109201c32396693fa6112085b556cad0d3c7c477b5...
server: Original packet: [536] 1603020213020000510302de7614676a109201c32396693fa6112085b556cad0...
server: Filtered packet: [94] 1603020059020000510302de7614676a109201c32396693fa6112085b556cad0...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/0 (3 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 0200005103034a2adf29934f7f213fdf6b4ea1af6970beda7d2434a6200ddb85...
record new: [89] 0200005103034a2adf29934f7f213fdf6b4ea1af6970beda7d2434a6200ddb85...
server: Original packet: [536] 16030302130200005103034a2adf29934f7f213fdf6b4ea1af6970beda7d2434...
server: Filtered packet: [94] 16030300590200005103034a2adf29934f7f213fdf6b4ea1af6970beda7d2434...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/1 (3 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [594] 16feff0000000000000000005d020000510000000000000051feff29de1548fa...
server: Filtered packet: [144] 16feff0000000000000000005d020000510000000000000051feff29de1548fa...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/2 (3 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [594] 16fefd0000000000000000005d020000510000000000000051fefdaaec41072e...
server: Filtered packet: [144] 16fefd0000000000000000005d020000510000000000000051fefdaaec41072e...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/3 (3 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570302fcaef3e0a6b81fa498aed046c03fd33111b4a938c51d8d55b471...
record new: [265] 020000570302fcaef3e0a6b81fa498aed046c03fd33111b4a938c51d8d55b471...
server: Original packet: [712] 16030202c3020000570302fcaef3e0a6b81fa498aed046c03fd33111b4a938c5...
server: Filtered packet: [270] 1603020109020000570302fcaef3e0a6b81fa498aed046c03fd33111b4a938c5...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/0 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 020000570303d9b1d8136ba92f109f13883f5a78b5298e1de270f7155c8b5b04...
record new: [267] 020000570303d9b1d8136ba92f109f13883f5a78b5298e1de270f7155c8b5b04...
server: Original packet: [714] 16030302c5020000570303d9b1d8136ba92f109f13883f5a78b5298e1de270f7...
server: Filtered packet: [272] 160303010b020000570303d9b1d8136ba92f109f13883f5a78b5298e1de270f7...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/1 (3 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d20d6b32195d5aee7e3ce6d1939d4b9726a...
record new: [178] 0c0000a600010000000000a603001d20d6b32195d5aee7e3ce6d1939d4b9726a...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff3813215748...
server: Filtered packet: [341] 16feff00000000000000000063020000570000000000000057feff3813215748...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/2 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d20d6b32195d5aee7e3ce6d1939d4b9726a...
record new: [180] 0c0000a800010000000000a803001d20d6b32195d5aee7e3ce6d1939d4b9726a...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefd2d838a56bc...
server: Filtered packet: [343] 16fefd00000000000000000063020000570000000000000057fefd2d838a56bc...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/3 (3 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 02000057030213f25c5befa6f4ca0dc04a0e9899f5d7e6e177d286530584af11...
record new: [265] 02000057030213f25c5befa6f4ca0dc04a0e9899f5d7e6e177d286530584af11...
server: Original packet: [712] 16030202c302000057030213f25c5befa6f4ca0dc04a0e9899f5d7e6e177d286...
server: Filtered packet: [270] 160302010902000057030213f25c5befa6f4ca0dc04a0e9899f5d7e6e177d286...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/0 (3 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 020000570303887b1437a5d7160cea20a418b6d7a0f05a102cd94957b1fa8ad1...
record new: [267] 020000570303887b1437a5d7160cea20a418b6d7a0f05a102cd94957b1fa8ad1...
server: Original packet: [714] 16030302c5020000570303887b1437a5d7160cea20a418b6d7a0f05a102cd949...
server: Filtered packet: [272] 160303010b020000570303887b1437a5d7160cea20a418b6d7a0f05a102cd949...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/1 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d20d6b32195d5aee7e3ce6d1939d4b9726a...
record new: [178] 0c0000a600010000000000a603001d20d6b32195d5aee7e3ce6d1939d4b9726a...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feffdba806a993...
server: Filtered packet: [341] 16feff00000000000000000063020000570000000000000057feffdba806a993...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/2 (3 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d20d6b32195d5aee7e3ce6d1939d4b9726a...
record new: [180] 0c0000a800010000000000a803001d20d6b32195d5aee7e3ce6d1939d4b9726a...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefda8022bbfb1...
server: Filtered packet: [343] 16fefd00000000000000000063020000570000000000000057fefda8022bbfb1...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/3 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [523] 0200005703025eae797b4d446556366200af4ec6b2f8bfeec84585cbdebbca7c...
record new: [207] 0200005703025eae797b4d446556366200af4ec6b2f8bfeec84585cbdebbca7c...
server: Original packet: [528] 160302020b0200005703025eae797b4d446556366200af4ec6b2f8bfeec84585...
server: Filtered packet: [212] 16030200cf0200005703025eae797b4d446556366200af4ec6b2f8bfeec84585...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/0 (1 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [526] 0200005703033755512d5bdd542b8ffd40214b05c15ffc7b41c6759b0400eb07...
record new: [210] 0200005703033755512d5bdd542b8ffd40214b05c15ffc7b41c6759b0400eb07...
server: Original packet: [531] 160303020e0200005703033755512d5bdd542b8ffd40214b05c15ffc7b41c675...
server: Filtered packet: [215] 16030300d20200005703033755512d5bdd542b8ffd40214b05c15ffc7b41c675...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/1 (2 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [324] 0b00013800010000000001380001350001323082012e3081d5a0030201020201...
record new: [0] 
record old: [121] 0c00006d000200000000006d03001d20d6b32195d5aee7e3ce6d1939d4b9726a...
record new: [121] 0c00006d000100000000006d03001d20d6b32195d5aee7e3ce6d1939d4b9726a...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [608] 16feff00000000000000000063020000570000000000000057feff53df7551f7...
server: Filtered packet: [284] 16feff00000000000000000063020000570000000000000057feff53df7551f7...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/2 (2 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [324] 0b00013800010000000001380001350001323082012e3081d5a0030201020201...
record new: [0] 
record old: [123] 0c00006f000200000000006f03001d20d6b32195d5aee7e3ce6d1939d4b9726a...
record new: [123] 0c00006f000100000000006f03001d20d6b32195d5aee7e3ce6d1939d4b9726a...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [610] 16fefd00000000000000000063020000570000000000000057fefde5f93e09cd...
server: Filtered packet: [286] 16fefd00000000000000000063020000570000000000000057fefde5f93e09cd...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/3 (1 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [707] 02000057030211e9ed71512ef7e002ad4c8763a0f790326d219359264164890a...
record new: [537] 02000057030211e9ed71512ef7e002ad4c8763a0f790326d219359264164890a...
server: Original packet: [712] 16030202c302000057030211e9ed71512ef7e002ad4c8763a0f790326d219359...
server: Filtered packet: [542] 160302021902000057030211e9ed71512ef7e002ad4c8763a0f790326d219359...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/0 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [709] 02000057030308720a44fa076dc49ba9247b94424813dabbf5cd50845246bcd3...
record new: [537] 02000057030308720a44fa076dc49ba9247b94424813dabbf5cd50845246bcd3...
server: Original packet: [714] 16030302c502000057030308720a44fa076dc49ba9247b94424813dabbf5cd50...
server: Filtered packet: [542] 160303021902000057030308720a44fa076dc49ba9247b94424813dabbf5cd50...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/1 (3 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [178] 0c0000a600020000000000a603001d20d6b32195d5aee7e3ce6d1939d4b9726a...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff479f68faa3...
server: Filtered packet: [613] 16feff00000000000000000063020000570000000000000057feff479f68faa3...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/2 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [180] 0c0000a800020000000000a803001d20d6b32195d5aee7e3ce6d1939d4b9726a...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefd49e55a56ad...
server: Filtered packet: [613] 16fefd00000000000000000063020000570000000000000057fefd49e55a56ad...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/3 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [525] 020000570302d4125406414056156d12cd4303d03e37c218626501860c0f7309...
record new: [411] 020000570302d4125406414056156d12cd4303d03e37c218626501860c0f7309...
server: Original packet: [530] 160302020d020000570302d4125406414056156d12cd4303d03e37c218626501...
server: Filtered packet: [416] 160302019b020000570302d4125406414056156d12cd4303d03e37c218626501...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/0 (1 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [527] 0200005703031818b08df554c9ee700ff9eafb7cacea030b656240ddabeb1135...
record new: [411] 0200005703031818b08df554c9ee700ff9eafb7cacea030b656240ddabeb1135...
server: Original packet: [532] 160303020f0200005703031818b08df554c9ee700ff9eafb7cacea030b656240...
server: Filtered packet: [416] 160303019b0200005703031818b08df554c9ee700ff9eafb7cacea030b656240...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/1 (2 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [122] 0c00006e000200000000006e03001d20d6b32195d5aee7e3ce6d1939d4b9726a...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [609] 16feff00000000000000000063020000570000000000000057feff395148a845...
server: Filtered packet: [487] 16feff00000000000000000063020000570000000000000057feff395148a845...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/2 (1 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [123] 0c00006f000200000000006f03001d20d6b32195d5aee7e3ce6d1939d4b9726a...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [610] 16fefd00000000000000000063020000570000000000000057fefd082b4dbf8f...
server: Filtered packet: [487] 16fefd00000000000000000063020000570000000000000057fefd082b4dbf8f...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/3 (2 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570302fa549dd97a1511849a5cf61b441173b2793a4576f235142d6f97...
record new: [265] 020000570302fa549dd97a1511849a5cf61b441173b2793a4576f235142d6f97...
Dropping handshake: 12
record old: [265] 020000570302fa549dd97a1511849a5cf61b441173b2793a4576f235142d6f97...
record new: [95] 020000570302fa549dd97a1511849a5cf61b441173b2793a4576f235142d6f97...
server: Original packet: [712] 16030202c3020000570302fa549dd97a1511849a5cf61b441173b2793a4576f2...
server: Filtered packet: [100] 160302005f020000570302fa549dd97a1511849a5cf61b441173b2793a4576f2...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/0 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 0200005703035f2c04420502184d810638beb4bf3f6fa3b72927acfd5abbcbcc...
record new: [267] 0200005703035f2c04420502184d810638beb4bf3f6fa3b72927acfd5abbcbcc...
Dropping handshake: 12
record old: [267] 0200005703035f2c04420502184d810638beb4bf3f6fa3b72927acfd5abbcbcc...
record new: [95] 0200005703035f2c04420502184d810638beb4bf3f6fa3b72927acfd5abbcbcc...
server: Original packet: [714] 16030302c50200005703035f2c04420502184d810638beb4bf3f6fa3b72927ac...
server: Filtered packet: [100] 160303005f0200005703035f2c04420502184d810638beb4bf3f6fa3b72927ac...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/1 (3 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d20d6b32195d5aee7e3ce6d1939d4b9726a...
record new: [178] 0c0000a600010000000000a603001d20d6b32195d5aee7e3ce6d1939d4b9726a...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [178] 0c0000a600010000000000a603001d20d6b32195d5aee7e3ce6d1939d4b9726a...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff0c217dd4be...
server: Filtered packet: [163] 16feff00000000000000000063020000570000000000000057feff0c217dd4be...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/2 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d20d6b32195d5aee7e3ce6d1939d4b9726a...
record new: [180] 0c0000a800010000000000a803001d20d6b32195d5aee7e3ce6d1939d4b9726a...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [180] 0c0000a800010000000000a803001d20d6b32195d5aee7e3ce6d1939d4b9726a...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefdf3b0ec02f7...
server: Filtered packet: [163] 16fefd00000000000000000063020000570000000000000057fefdf3b0ec02f7...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/3 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [524] 020000570302f5f4b0102c279179ac1346c41b95f7be9a8aed682cfb52897342...
record new: [208] 020000570302f5f4b0102c279179ac1346c41b95f7be9a8aed682cfb52897342...
Dropping handshake: 12
record old: [208] 020000570302f5f4b0102c279179ac1346c41b95f7be9a8aed682cfb52897342...
record new: [95] 020000570302f5f4b0102c279179ac1346c41b95f7be9a8aed682cfb52897342...
server: Original packet: [529] 160302020c020000570302f5f4b0102c279179ac1346c41b95f7be9a8aed682c...
server: Filtered packet: [100] 160302005f020000570302f5f4b0102c279179ac1346c41b95f7be9a8aed682c...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/0 (1 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [526] 020000570303dd0b11349ecfa65138784fbcbc7051454211318e76f549bf62ef...
record new: [210] 020000570303dd0b11349ecfa65138784fbcbc7051454211318e76f549bf62ef...
Dropping handshake: 12
record old: [210] 020000570303dd0b11349ecfa65138784fbcbc7051454211318e76f549bf62ef...
record new: [95] 020000570303dd0b11349ecfa65138784fbcbc7051454211318e76f549bf62ef...
server: Original packet: [531] 160303020e020000570303dd0b11349ecfa65138784fbcbc7051454211318e76...
server: Filtered packet: [100] 160303005f020000570303dd0b11349ecfa65138784fbcbc7051454211318e76...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/1 (2 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [324] 0b00013800010000000001380001350001323082012e3081d5a0030201020201...
record new: [0] 
record old: [121] 0c00006d000200000000006d03001d20d6b32195d5aee7e3ce6d1939d4b9726a...
record new: [121] 0c00006d000100000000006d03001d20d6b32195d5aee7e3ce6d1939d4b9726a...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [121] 0c00006d000100000000006d03001d20d6b32195d5aee7e3ce6d1939d4b9726a...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [608] 16feff00000000000000000063020000570000000000000057fefffafa1bb60f...
server: Filtered packet: [163] 16feff00000000000000000063020000570000000000000057fefffafa1bb60f...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/2 (2 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [324] 0b00013800010000000001380001350001323082012e3081d5a0030201020201...
record new: [0] 
record old: [123] 0c00006f000200000000006f03001d20d6b32195d5aee7e3ce6d1939d4b9726a...
record new: [123] 0c00006f000100000000006f03001d20d6b32195d5aee7e3ce6d1939d4b9726a...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [123] 0c00006f000100000000006f03001d20d6b32195d5aee7e3ce6d1939d4b9726a...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [610] 16fefd00000000000000000063020000570000000000000057fefd4586e2d919...
server: Filtered packet: [163] 16fefd00000000000000000063020000570000000000000057fefd4586e2d919...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/3 (1 ms)
[----------] 32 tests from SkipVariants/TlsSkipTest (89 ms total)
[----------] 10 tests from AllHashFuncs/TlsHkdfTest
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/0
Hash = SHA-256
Output: [32] 33ad0a1c607ec03b09e6cd9893680ce210adf300aa1f2660e1b22e10f170f92a
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/1
Hash = SHA-384
Output: [48] 7ee8206f5570023e6dc7519eb1073bc4e791ad37b5c382aa10ba18e2357e7169...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/1 (1 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/0
Hash = SHA-256
Output: [32] 11873828a9197811339124b58a1bb09f7f0d8dbb10f49c54bd1fd885cd153033
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/1
Hash = SHA-384
Output: [48] 51b1d5b4597979084a15b2db84d3d6bcfc9345d9dc74da1a57c2769f3f83452f...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/1 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/0
Hash = SHA-256
Output: [32] 2f5f78d0a4c436ee6c8a4ef9d043810213fd4783633ad2e1406d2d9800fdc187
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/1
Hash = SHA-384
Output: [48] 7b40f9ef91ffc9d129245cbff8827668ae4b63e803dd39a8d46af6e5eceaf87d...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/1 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/0
Hash = SHA-256
Output: [32] 7953b8dd6b98ce00b7dce803708ce3ac068b22fd0e3448e6e5e08ad61618e548
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/1
Hash = SHA-384
Output: [48] 0193c0073f6a830e2e4fb258e400085c689c37320037ffc31c5b980b02923ffd...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/1 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/0
Hash = SHA-256
Output: [32] 347c6780ff0bbad71c283b16eb2f9cf62d24e6cdb613d51776548cb07dcde74c
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/1
Hash = SHA-384
Output: [48] 4b1e5ec1493078ea35bd3f0104e61aea14cc182ad1c47621c464c04e4b361605...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/1 (0 ms)
[----------] 10 tests from AllHashFuncs/TlsHkdfTest (1 ms total)
[----------] Global test environment tear-down
[==========] 816 tests from 15 test cases ran. (5255 ms total)
[  PASSED  ] 816 tests.
ssl_gtest.sh: #4342: ssl_gtest run successfully  - PASSED
executing sed to parse the xml report
processing the parsed report
ssl_gtest.sh: #4343: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4344: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4345: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4346: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4347: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4348: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4349: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4350: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4351: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4352: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4353: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4354: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4355: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4356: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4357: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4358: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4359: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4360: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4361: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4362: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4363: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4364: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4365: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4366: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4367: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4368: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4369: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4370: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4371: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4372: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4373: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4374: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4375: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4376: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4377: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4378: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4379: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4380: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4381: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4382: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4383: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4384: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4385: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4386: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4387: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4388: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4389: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4390: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4391: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4392: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4393: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4394: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4395: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4396: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4397: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4398: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4399: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4400: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4401: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4402: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4403: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #4404: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #4405: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #4406: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #4407: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #4408: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #4409: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #4410: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #4411: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #4412: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #4413: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #4414: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #4415: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #4416: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #4417: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #4418: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #4419: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #4420: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #4421: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #4422: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #4423: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #4424: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #4425: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #4426: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #4427: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #4428: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #4429: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #4430: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #4431: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #4432: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #4433: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #4434: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #4435: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #4436: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #4437: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #4438: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #4439: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #4440: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #4441: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #4442: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #4443: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #4444: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #4445: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #4446: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #4447: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #4448: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #4449: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #4450: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #4451: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #4452: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #4453: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #4454: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #4455: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #4456: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #4457: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #4458: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #4459: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #4460: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #4461: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #4462: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #4463: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #4464: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #4465: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #4466: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #4467: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #4468: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #4469: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #4470: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #4471: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #4472: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #4473: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #4474: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #4475: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #4476: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #4477: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #4478: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #4479: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #4480: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #4481: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #4482: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #4483: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #4484: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #4485: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #4486: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #4487: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #4488: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #4489: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #4490: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #4491: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #4492: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #4493: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #4494: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #4495: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #4496: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #4497: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #4498: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #4499: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #4500: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #4501: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #4502: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #4503: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #4504: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #4505: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #4506: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #4507: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #4508: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #4509: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #4510: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #4511: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #4512: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #4513: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #4514: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #4515: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #4516: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #4517: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #4518: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #4519: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #4520: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #4521: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #4522: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #4523: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #4524: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #4525: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #4526: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #4527: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #4528: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #4529: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #4530: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #4531: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #4532: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #4533: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #4534: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #4535: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #4536: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #4537: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #4538: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #4539: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #4540: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #4541: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #4542: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #4543: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #4544: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #4545: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #4546: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #4547: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #4548: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #4549: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #4550: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #4551: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #4552: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #4553: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #4554: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #4555: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #4556: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #4557: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #4558: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #4559: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #4560: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #4561: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #4562: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #4563: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #4564: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #4565: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #4566: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #4567: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #4568: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #4569: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #4570: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #4571: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #4572: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #4573: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #4574: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #4575: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #4576: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #4577: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #4578: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #4579: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #4580: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #4581: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #4582: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #4583: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #4584: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #4585: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #4586: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #4587: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4588: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4589: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4590: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4591: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4592: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4593: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4594: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4595: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4596: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4597: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4598: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4599: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4600: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4601: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4602: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4603: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4604: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4605: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4606: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4607: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4608: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4609: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4610: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4611: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4612: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4613: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4614: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4615: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4616: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4617: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4618: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4619: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4620: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4621: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4622: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4623: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4624: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4625: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4626: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4627: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4628: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4629: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4630: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4631: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4632: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4633: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4634: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4635: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4636: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4637: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4638: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4639: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4640: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4641: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4642: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4643: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4644: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4645: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4646: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4647: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4648: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4649: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4650: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4651: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4652: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4653: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4654: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4655: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4656: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4657: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4658: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4659: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4660: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4661: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4662: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4663: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4664: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4665: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4666: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4667: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4668: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4669: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4670: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4671: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4672: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4673: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4674: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4675: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4676: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4677: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4678: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4679: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4680: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4681: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4682: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4683: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4684: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4685: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4686: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4687: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4688: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4689: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4690: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4691: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4692: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4693: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4694: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4695: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4696: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4697: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4698: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4699: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4700: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4701: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4702: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4703: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4704: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4705: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4706: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4707: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4708: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4709: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4710: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4711: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4712: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4713: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4714: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4715: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4716: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4717: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4718: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4719: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4720: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4721: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4722: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4723: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4724: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4725: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4726: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4727: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4728: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4729: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4730: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4731: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4732: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4733: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4734: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4735: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4736: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4737: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4738: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4739: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4740: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4741: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4742: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4743: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4744: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4745: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4746: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4747: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4748: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4749: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4750: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4751: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4752: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4753: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4754: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4755: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4756: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4757: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4758: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4759: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4760: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4761: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4762: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4763: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4764: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4765: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4766: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4767: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4768: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4769: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4770: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4771: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4772: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4773: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4774: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4775: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4776: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4777: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4778: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4779: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4780: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4781: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4782: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4783: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4784: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4785: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4786: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4787: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4788: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4789: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4790: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4791: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4792: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4793: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4794: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4795: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4796: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4797: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4798: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4799: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4800: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4801: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4802: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4803: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4804: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4805: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4806: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4807: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4808: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4809: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4810: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4811: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4812: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4813: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4814: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4815: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4816: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4817: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4818: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4819: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4820: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4821: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4822: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4823: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4824: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4825: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4826: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4827: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4828: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4829: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4830: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4831: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4832: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4833: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4834: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4835: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4836: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4837: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4838: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4839: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4840: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4841: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4842: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4843: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4844: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4845: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4846: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4847: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4848: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4849: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4850: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4851: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4852: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4853: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4854: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4855: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4856: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4857: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4858: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4859: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4860: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4861: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4862: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4863: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4864: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4865: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4866: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4867: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4868: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4869: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4870: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4871: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4872: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4873: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4874: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4875: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/0 TLS 1.0, TLS_ECDHE_RSA_WITH_NULL_SHA, name = &quot;NULL&quot;, key size = 0' - PASSED
ssl_gtest.sh: #4876: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/1 TLS 1.0, TLS_RSA_WITH_RC4_128_SHA, name = &quot;RC4&quot;, key size = 128' - PASSED
ssl_gtest.sh: #4877: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/2 TLS 1.0, TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA, name = &quot;3DES-EDE-CBC&quot;, key size = 168' - PASSED
ssl_gtest.sh: #4878: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/3 TLS 1.0, TLS_RSA_WITH_AES_128_CBC_SHA, name = &quot;AES-128&quot;, key size = 128' - PASSED
ssl_gtest.sh: #4879: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/4 TLS 1.2, TLS_RSA_WITH_AES_256_CBC_SHA256, name = &quot;AES-256&quot;, key size = 256' - PASSED
ssl_gtest.sh: #4880: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/5 TLS 1.2, TLS_RSA_WITH_AES_128_GCM_SHA256, name = &quot;AES-128-GCM&quot;, key size = 128' - PASSED
ssl_gtest.sh: #4881: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/6 TLS 1.2, TLS_RSA_WITH_AES_256_GCM_SHA384, name = &quot;AES-256-GCM&quot;, key size = 256' - PASSED
ssl_gtest.sh: #4882: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/7 TLS 1.2, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256, name = &quot;ChaCha20-Poly1305&quot;, key size = 256' - PASSED
ssl_gtest.sh: #4883: 'DamageYStream/TlsDamageDHYTest: DamageServerY/0 (&quot;TLS&quot;, 769, 0, true)' - PASSED
ssl_gtest.sh: #4884: 'DamageYStream/TlsDamageDHYTest: DamageServerY/1 (&quot;TLS&quot;, 769, 0, false)' - PASSED
ssl_gtest.sh: #4885: 'DamageYStream/TlsDamageDHYTest: DamageServerY/2 (&quot;TLS&quot;, 769, 1, true)' - PASSED
ssl_gtest.sh: #4886: 'DamageYStream/TlsDamageDHYTest: DamageServerY/3 (&quot;TLS&quot;, 769, 1, false)' - PASSED
ssl_gtest.sh: #4887: 'DamageYStream/TlsDamageDHYTest: DamageServerY/4 (&quot;TLS&quot;, 769, 2, true)' - PASSED
ssl_gtest.sh: #4888: 'DamageYStream/TlsDamageDHYTest: DamageServerY/5 (&quot;TLS&quot;, 769, 2, false)' - PASSED
ssl_gtest.sh: #4889: 'DamageYStream/TlsDamageDHYTest: DamageServerY/6 (&quot;TLS&quot;, 769, 3, true)' - PASSED
ssl_gtest.sh: #4890: 'DamageYStream/TlsDamageDHYTest: DamageServerY/7 (&quot;TLS&quot;, 769, 3, false)' - PASSED
ssl_gtest.sh: #4891: 'DamageYStream/TlsDamageDHYTest: DamageServerY/8 (&quot;TLS&quot;, 769, 4, true)' - PASSED
ssl_gtest.sh: #4892: 'DamageYStream/TlsDamageDHYTest: DamageServerY/9 (&quot;TLS&quot;, 769, 4, false)' - PASSED
ssl_gtest.sh: #4893: 'DamageYStream/TlsDamageDHYTest: DamageServerY/10 (&quot;TLS&quot;, 769, 5, true)' - PASSED
ssl_gtest.sh: #4894: 'DamageYStream/TlsDamageDHYTest: DamageServerY/11 (&quot;TLS&quot;, 769, 5, false)' - PASSED
ssl_gtest.sh: #4895: 'DamageYStream/TlsDamageDHYTest: DamageServerY/12 (&quot;TLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #4896: 'DamageYStream/TlsDamageDHYTest: DamageServerY/13 (&quot;TLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #4897: 'DamageYStream/TlsDamageDHYTest: DamageServerY/14 (&quot;TLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #4898: 'DamageYStream/TlsDamageDHYTest: DamageServerY/15 (&quot;TLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #4899: 'DamageYStream/TlsDamageDHYTest: DamageServerY/16 (&quot;TLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #4900: 'DamageYStream/TlsDamageDHYTest: DamageServerY/17 (&quot;TLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #4901: 'DamageYStream/TlsDamageDHYTest: DamageServerY/18 (&quot;TLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #4902: 'DamageYStream/TlsDamageDHYTest: DamageServerY/19 (&quot;TLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #4903: 'DamageYStream/TlsDamageDHYTest: DamageServerY/20 (&quot;TLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #4904: 'DamageYStream/TlsDamageDHYTest: DamageServerY/21 (&quot;TLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #4905: 'DamageYStream/TlsDamageDHYTest: DamageServerY/22 (&quot;TLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #4906: 'DamageYStream/TlsDamageDHYTest: DamageServerY/23 (&quot;TLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #4907: 'DamageYStream/TlsDamageDHYTest: DamageServerY/24 (&quot;TLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #4908: 'DamageYStream/TlsDamageDHYTest: DamageServerY/25 (&quot;TLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #4909: 'DamageYStream/TlsDamageDHYTest: DamageServerY/26 (&quot;TLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #4910: 'DamageYStream/TlsDamageDHYTest: DamageServerY/27 (&quot;TLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #4911: 'DamageYStream/TlsDamageDHYTest: DamageServerY/28 (&quot;TLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #4912: 'DamageYStream/TlsDamageDHYTest: DamageServerY/29 (&quot;TLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #4913: 'DamageYStream/TlsDamageDHYTest: DamageServerY/30 (&quot;TLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #4914: 'DamageYStream/TlsDamageDHYTest: DamageServerY/31 (&quot;TLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #4915: 'DamageYStream/TlsDamageDHYTest: DamageServerY/32 (&quot;TLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #4916: 'DamageYStream/TlsDamageDHYTest: DamageServerY/33 (&quot;TLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #4917: 'DamageYStream/TlsDamageDHYTest: DamageServerY/34 (&quot;TLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #4918: 'DamageYStream/TlsDamageDHYTest: DamageServerY/35 (&quot;TLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #4919: 'DamageYStream/TlsDamageDHYTest: DamageClientY/0 (&quot;TLS&quot;, 769, 0, true)' - PASSED
ssl_gtest.sh: #4920: 'DamageYStream/TlsDamageDHYTest: DamageClientY/1 (&quot;TLS&quot;, 769, 0, false)' - PASSED
ssl_gtest.sh: #4921: 'DamageYStream/TlsDamageDHYTest: DamageClientY/2 (&quot;TLS&quot;, 769, 1, true)' - PASSED
ssl_gtest.sh: #4922: 'DamageYStream/TlsDamageDHYTest: DamageClientY/3 (&quot;TLS&quot;, 769, 1, false)' - PASSED
ssl_gtest.sh: #4923: 'DamageYStream/TlsDamageDHYTest: DamageClientY/4 (&quot;TLS&quot;, 769, 2, true)' - PASSED
ssl_gtest.sh: #4924: 'DamageYStream/TlsDamageDHYTest: DamageClientY/5 (&quot;TLS&quot;, 769, 2, false)' - PASSED
ssl_gtest.sh: #4925: 'DamageYStream/TlsDamageDHYTest: DamageClientY/6 (&quot;TLS&quot;, 769, 3, true)' - PASSED
ssl_gtest.sh: #4926: 'DamageYStream/TlsDamageDHYTest: DamageClientY/7 (&quot;TLS&quot;, 769, 3, false)' - PASSED
ssl_gtest.sh: #4927: 'DamageYStream/TlsDamageDHYTest: DamageClientY/8 (&quot;TLS&quot;, 769, 4, true)' - PASSED
ssl_gtest.sh: #4928: 'DamageYStream/TlsDamageDHYTest: DamageClientY/9 (&quot;TLS&quot;, 769, 4, false)' - PASSED
ssl_gtest.sh: #4929: 'DamageYStream/TlsDamageDHYTest: DamageClientY/10 (&quot;TLS&quot;, 769, 5, true)' - PASSED
ssl_gtest.sh: #4930: 'DamageYStream/TlsDamageDHYTest: DamageClientY/11 (&quot;TLS&quot;, 769, 5, false)' - PASSED
ssl_gtest.sh: #4931: 'DamageYStream/TlsDamageDHYTest: DamageClientY/12 (&quot;TLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #4932: 'DamageYStream/TlsDamageDHYTest: DamageClientY/13 (&quot;TLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #4933: 'DamageYStream/TlsDamageDHYTest: DamageClientY/14 (&quot;TLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #4934: 'DamageYStream/TlsDamageDHYTest: DamageClientY/15 (&quot;TLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #4935: 'DamageYStream/TlsDamageDHYTest: DamageClientY/16 (&quot;TLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #4936: 'DamageYStream/TlsDamageDHYTest: DamageClientY/17 (&quot;TLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #4937: 'DamageYStream/TlsDamageDHYTest: DamageClientY/18 (&quot;TLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #4938: 'DamageYStream/TlsDamageDHYTest: DamageClientY/19 (&quot;TLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #4939: 'DamageYStream/TlsDamageDHYTest: DamageClientY/20 (&quot;TLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #4940: 'DamageYStream/TlsDamageDHYTest: DamageClientY/21 (&quot;TLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #4941: 'DamageYStream/TlsDamageDHYTest: DamageClientY/22 (&quot;TLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #4942: 'DamageYStream/TlsDamageDHYTest: DamageClientY/23 (&quot;TLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #4943: 'DamageYStream/TlsDamageDHYTest: DamageClientY/24 (&quot;TLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #4944: 'DamageYStream/TlsDamageDHYTest: DamageClientY/25 (&quot;TLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #4945: 'DamageYStream/TlsDamageDHYTest: DamageClientY/26 (&quot;TLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #4946: 'DamageYStream/TlsDamageDHYTest: DamageClientY/27 (&quot;TLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #4947: 'DamageYStream/TlsDamageDHYTest: DamageClientY/28 (&quot;TLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #4948: 'DamageYStream/TlsDamageDHYTest: DamageClientY/29 (&quot;TLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #4949: 'DamageYStream/TlsDamageDHYTest: DamageClientY/30 (&quot;TLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #4950: 'DamageYStream/TlsDamageDHYTest: DamageClientY/31 (&quot;TLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #4951: 'DamageYStream/TlsDamageDHYTest: DamageClientY/32 (&quot;TLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #4952: 'DamageYStream/TlsDamageDHYTest: DamageClientY/33 (&quot;TLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #4953: 'DamageYStream/TlsDamageDHYTest: DamageClientY/34 (&quot;TLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #4954: 'DamageYStream/TlsDamageDHYTest: DamageClientY/35 (&quot;TLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #4955: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/0 (&quot;DTLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #4956: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/1 (&quot;DTLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #4957: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/2 (&quot;DTLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #4958: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/3 (&quot;DTLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #4959: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/4 (&quot;DTLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #4960: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/5 (&quot;DTLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #4961: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/6 (&quot;DTLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #4962: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/7 (&quot;DTLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #4963: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/8 (&quot;DTLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #4964: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/9 (&quot;DTLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #4965: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/10 (&quot;DTLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #4966: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/11 (&quot;DTLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #4967: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/12 (&quot;DTLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #4968: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/13 (&quot;DTLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #4969: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/14 (&quot;DTLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #4970: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/15 (&quot;DTLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #4971: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/16 (&quot;DTLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #4972: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/17 (&quot;DTLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #4973: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/18 (&quot;DTLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #4974: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/19 (&quot;DTLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #4975: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/20 (&quot;DTLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #4976: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/21 (&quot;DTLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #4977: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/22 (&quot;DTLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #4978: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/23 (&quot;DTLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #4979: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/0 (&quot;DTLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #4980: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/1 (&quot;DTLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #4981: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/2 (&quot;DTLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #4982: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/3 (&quot;DTLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #4983: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/4 (&quot;DTLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #4984: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/5 (&quot;DTLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #4985: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/6 (&quot;DTLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #4986: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/7 (&quot;DTLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #4987: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/8 (&quot;DTLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #4988: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/9 (&quot;DTLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #4989: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/10 (&quot;DTLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #4990: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/11 (&quot;DTLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #4991: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/12 (&quot;DTLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #4992: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/13 (&quot;DTLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #4993: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/14 (&quot;DTLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #4994: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/15 (&quot;DTLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #4995: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/16 (&quot;DTLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #4996: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/17 (&quot;DTLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #4997: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/18 (&quot;DTLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #4998: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/19 (&quot;DTLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #4999: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/20 (&quot;DTLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #5000: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/21 (&quot;DTLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #5001: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/22 (&quot;DTLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #5002: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/23 (&quot;DTLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #5003: 'Datagram12Plus/TlsConnectDatagram12Plus: MissAWindow/0 771' - PASSED
ssl_gtest.sh: #5004: 'Datagram12Plus/TlsConnectDatagram12Plus: MissAWindowAndOne/0 771' - PASSED
ssl_gtest.sh: #5005: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5006: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5007: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5008: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5009: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5010: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5011: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5012: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5013: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5014: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5015: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5016: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5017: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5018: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5019: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5020: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5021: 'TlsPadding/TlsPaddingTest: Correct/0 (1, true)' - PASSED
ssl_gtest.sh: #5022: 'TlsPadding/TlsPaddingTest: Correct/1 (1, false)' - PASSED
ssl_gtest.sh: #5023: 'TlsPadding/TlsPaddingTest: Correct/2 (19, true)' - PASSED
ssl_gtest.sh: #5024: 'TlsPadding/TlsPaddingTest: Correct/3 (19, false)' - PASSED
ssl_gtest.sh: #5025: 'TlsPadding/TlsPaddingTest: Correct/4 (20, true)' - PASSED
ssl_gtest.sh: #5026: 'TlsPadding/TlsPaddingTest: Correct/5 (20, false)' - PASSED
ssl_gtest.sh: #5027: 'TlsPadding/TlsPaddingTest: Correct/6 (30, true)' - PASSED
ssl_gtest.sh: #5028: 'TlsPadding/TlsPaddingTest: Correct/7 (30, false)' - PASSED
ssl_gtest.sh: #5029: 'TlsPadding/TlsPaddingTest: Correct/8 (31, true)' - PASSED
ssl_gtest.sh: #5030: 'TlsPadding/TlsPaddingTest: Correct/9 (31, false)' - PASSED
ssl_gtest.sh: #5031: 'TlsPadding/TlsPaddingTest: Correct/10 (32, true)' - PASSED
ssl_gtest.sh: #5032: 'TlsPadding/TlsPaddingTest: Correct/11 (32, false)' - PASSED
ssl_gtest.sh: #5033: 'TlsPadding/TlsPaddingTest: Correct/12 (36, true)' - PASSED
ssl_gtest.sh: #5034: 'TlsPadding/TlsPaddingTest: Correct/13 (36, false)' - PASSED
ssl_gtest.sh: #5035: 'TlsPadding/TlsPaddingTest: Correct/14 (256, true)' - PASSED
ssl_gtest.sh: #5036: 'TlsPadding/TlsPaddingTest: Correct/15 (256, false)' - PASSED
ssl_gtest.sh: #5037: 'TlsPadding/TlsPaddingTest: Correct/16 (257, true)' - PASSED
ssl_gtest.sh: #5038: 'TlsPadding/TlsPaddingTest: Correct/17 (257, false)' - PASSED
ssl_gtest.sh: #5039: 'TlsPadding/TlsPaddingTest: Correct/18 (287, true)' - PASSED
ssl_gtest.sh: #5040: 'TlsPadding/TlsPaddingTest: Correct/19 (287, false)' - PASSED
ssl_gtest.sh: #5041: 'TlsPadding/TlsPaddingTest: Correct/20 (288, true)' - PASSED
ssl_gtest.sh: #5042: 'TlsPadding/TlsPaddingTest: Correct/21 (288, false)' - PASSED
ssl_gtest.sh: #5043: 'TlsPadding/TlsPaddingTest: PadTooLong/0 (1, true)' - PASSED
ssl_gtest.sh: #5044: 'TlsPadding/TlsPaddingTest: PadTooLong/1 (1, false)' - PASSED
ssl_gtest.sh: #5045: 'TlsPadding/TlsPaddingTest: PadTooLong/2 (19, true)' - PASSED
ssl_gtest.sh: #5046: 'TlsPadding/TlsPaddingTest: PadTooLong/3 (19, false)' - PASSED
ssl_gtest.sh: #5047: 'TlsPadding/TlsPaddingTest: PadTooLong/4 (20, true)' - PASSED
ssl_gtest.sh: #5048: 'TlsPadding/TlsPaddingTest: PadTooLong/5 (20, false)' - PASSED
ssl_gtest.sh: #5049: 'TlsPadding/TlsPaddingTest: PadTooLong/6 (30, true)' - PASSED
ssl_gtest.sh: #5050: 'TlsPadding/TlsPaddingTest: PadTooLong/7 (30, false)' - PASSED
ssl_gtest.sh: #5051: 'TlsPadding/TlsPaddingTest: PadTooLong/8 (31, true)' - PASSED
ssl_gtest.sh: #5052: 'TlsPadding/TlsPaddingTest: PadTooLong/9 (31, false)' - PASSED
ssl_gtest.sh: #5053: 'TlsPadding/TlsPaddingTest: PadTooLong/10 (32, true)' - PASSED
ssl_gtest.sh: #5054: 'TlsPadding/TlsPaddingTest: PadTooLong/11 (32, false)' - PASSED
ssl_gtest.sh: #5055: 'TlsPadding/TlsPaddingTest: PadTooLong/12 (36, true)' - PASSED
ssl_gtest.sh: #5056: 'TlsPadding/TlsPaddingTest: PadTooLong/13 (36, false)' - PASSED
ssl_gtest.sh: #5057: 'TlsPadding/TlsPaddingTest: PadTooLong/14 (256, true)' - PASSED
ssl_gtest.sh: #5058: 'TlsPadding/TlsPaddingTest: PadTooLong/15 (256, false)' - PASSED
ssl_gtest.sh: #5059: 'TlsPadding/TlsPaddingTest: PadTooLong/16 (257, true)' - PASSED
ssl_gtest.sh: #5060: 'TlsPadding/TlsPaddingTest: PadTooLong/17 (257, false)' - PASSED
ssl_gtest.sh: #5061: 'TlsPadding/TlsPaddingTest: PadTooLong/18 (287, true)' - PASSED
ssl_gtest.sh: #5062: 'TlsPadding/TlsPaddingTest: PadTooLong/19 (287, false)' - PASSED
ssl_gtest.sh: #5063: 'TlsPadding/TlsPaddingTest: PadTooLong/20 (288, true)' - PASSED
ssl_gtest.sh: #5064: 'TlsPadding/TlsPaddingTest: PadTooLong/21 (288, false)' - PASSED
ssl_gtest.sh: #5065: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/0 (1, true)' - PASSED
ssl_gtest.sh: #5066: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/1 (1, false)' - PASSED
ssl_gtest.sh: #5067: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/2 (19, true)' - PASSED
ssl_gtest.sh: #5068: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/3 (19, false)' - PASSED
ssl_gtest.sh: #5069: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/4 (20, true)' - PASSED
ssl_gtest.sh: #5070: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/5 (20, false)' - PASSED
ssl_gtest.sh: #5071: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/6 (30, true)' - PASSED
ssl_gtest.sh: #5072: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/7 (30, false)' - PASSED
ssl_gtest.sh: #5073: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/8 (31, true)' - PASSED
ssl_gtest.sh: #5074: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/9 (31, false)' - PASSED
ssl_gtest.sh: #5075: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/10 (32, true)' - PASSED
ssl_gtest.sh: #5076: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/11 (32, false)' - PASSED
ssl_gtest.sh: #5077: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/12 (36, true)' - PASSED
ssl_gtest.sh: #5078: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/13 (36, false)' - PASSED
ssl_gtest.sh: #5079: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/14 (256, true)' - PASSED
ssl_gtest.sh: #5080: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/15 (256, false)' - PASSED
ssl_gtest.sh: #5081: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/16 (257, true)' - PASSED
ssl_gtest.sh: #5082: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/17 (257, false)' - PASSED
ssl_gtest.sh: #5083: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/18 (287, true)' - PASSED
ssl_gtest.sh: #5084: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/19 (287, false)' - PASSED
ssl_gtest.sh: #5085: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/20 (288, true)' - PASSED
ssl_gtest.sh: #5086: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/21 (288, false)' - PASSED
ssl_gtest.sh: #5087: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/0 (1, true)' - PASSED
ssl_gtest.sh: #5088: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/1 (1, false)' - PASSED
ssl_gtest.sh: #5089: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/2 (19, true)' - PASSED
ssl_gtest.sh: #5090: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/3 (19, false)' - PASSED
ssl_gtest.sh: #5091: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/4 (20, true)' - PASSED
ssl_gtest.sh: #5092: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/5 (20, false)' - PASSED
ssl_gtest.sh: #5093: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/6 (30, true)' - PASSED
ssl_gtest.sh: #5094: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/7 (30, false)' - PASSED
ssl_gtest.sh: #5095: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/8 (31, true)' - PASSED
ssl_gtest.sh: #5096: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/9 (31, false)' - PASSED
ssl_gtest.sh: #5097: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/10 (32, true)' - PASSED
ssl_gtest.sh: #5098: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/11 (32, false)' - PASSED
ssl_gtest.sh: #5099: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/12 (36, true)' - PASSED
ssl_gtest.sh: #5100: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/13 (36, false)' - PASSED
ssl_gtest.sh: #5101: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/14 (256, true)' - PASSED
ssl_gtest.sh: #5102: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/15 (256, false)' - PASSED
ssl_gtest.sh: #5103: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/16 (257, true)' - PASSED
ssl_gtest.sh: #5104: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/17 (257, false)' - PASSED
ssl_gtest.sh: #5105: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/18 (287, true)' - PASSED
ssl_gtest.sh: #5106: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/19 (287, false)' - PASSED
ssl_gtest.sh: #5107: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/20 (288, true)' - PASSED
ssl_gtest.sh: #5108: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/21 (288, false)' - PASSED
ssl_gtest.sh: #5109: 'SkipTls10/TlsSkipTest: SkipCertificateRsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #5110: 'SkipTls10/TlsSkipTest: SkipCertificateDhe/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #5111: 'SkipTls10/TlsSkipTest: SkipCertificateEcdhe/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #5112: 'SkipTls10/TlsSkipTest: SkipCertificateEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #5113: 'SkipTls10/TlsSkipTest: SkipServerKeyExchange/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #5114: 'SkipTls10/TlsSkipTest: SkipServerKeyExchangeEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #5115: 'SkipTls10/TlsSkipTest: SkipCertAndKeyExch/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #5116: 'SkipTls10/TlsSkipTest: SkipCertAndKeyExchEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #5117: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5118: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5119: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5120: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5121: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5122: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5123: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5124: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5125: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5126: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5127: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5128: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5129: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5130: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5131: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5132: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5133: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5134: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5135: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5136: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5137: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5138: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5139: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5140: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5141: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5142: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5143: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5144: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5145: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5146: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5147: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5148: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5149: 'AllHashFuncs/TlsHkdfTest: HkdfNullNull/0 4' - PASSED
ssl_gtest.sh: #5150: 'AllHashFuncs/TlsHkdfTest: HkdfNullNull/1 5' - PASSED
ssl_gtest.sh: #5151: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Only/0 4' - PASSED
ssl_gtest.sh: #5152: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Only/1 5' - PASSED
ssl_gtest.sh: #5153: 'AllHashFuncs/TlsHkdfTest: HkdfKey2Only/0 4' - PASSED
ssl_gtest.sh: #5154: 'AllHashFuncs/TlsHkdfTest: HkdfKey2Only/1 5' - PASSED
ssl_gtest.sh: #5155: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Key2/0 4' - PASSED
ssl_gtest.sh: #5156: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Key2/1 5' - PASSED
ssl_gtest.sh: #5157: 'AllHashFuncs/TlsHkdfTest: HkdfExpandLabel/0 4' - PASSED
ssl_gtest.sh: #5158: 'AllHashFuncs/TlsHkdfTest: HkdfExpandLabel/1 5' - PASSED
TIMESTAMP ssl_gtests END: Sun Aug  6 23:57:12 UTC 2017
ssl_gtests.sh: Testing with PKIX ===============================
Running tests for libpkix
TIMESTAMP libpkix BEGIN: Sun Aug  6 23:57:12 UTC 2017
TIMESTAMP libpkix END: Sun Aug  6 23:57:12 UTC 2017
Running tests for cert
TIMESTAMP cert BEGIN: Sun Aug  6 23:57:12 UTC 2017
cert.sh: Certutil and Crlutil Tests with ECC ===============================
cert.sh: #5159: Looking for root certs module. - PASSED
cert.sh: Creating a CA Certificate TestCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -f ../tests.pw
cert.sh: #5160: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5161: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert TestCA  --------------------------
certutil -s "CN=NSS Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5162: Creating CA Cert TestCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n TestCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -o root.cert
cert.sh: #5163: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate serverCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -f ../tests.pw
cert.sh: #5164: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5165: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert serverCA  --------------------------
certutil -s "CN=NSS Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA -t Cu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5166: Creating CA Cert serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n serverCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -o root.cert
cert.sh: #5167: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-serverCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating CA Cert chain-1-serverCA  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA -t u,u,u -v 600 -c serverCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5168: Creating CA Cert chain-1-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-serverCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -o root.cert
cert.sh: #5169: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-serverCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating CA Cert chain-2-serverCA  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA -t u,u,u -v 600 -c chain-1-serverCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5170: Creating CA Cert chain-2-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-serverCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -o root.cert
cert.sh: #5171: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate clientCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -f ../tests.pw
cert.sh: #5172: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5173: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert clientCA  --------------------------
certutil -s "CN=NSS Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA -t Tu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5174: Creating CA Cert clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n clientCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -o root.cert
cert.sh: #5175: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-clientCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating CA Cert chain-1-clientCA  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA -t u,u,u -v 600 -c clientCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5176: Creating CA Cert chain-1-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-clientCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -o root.cert
cert.sh: #5177: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-clientCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating CA Cert chain-2-clientCA  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA -t u,u,u -v 600 -c chain-1-clientCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5178: Creating CA Cert chain-2-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-clientCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -o root.cert
cert.sh: #5179: Exporting Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate TestCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA
cert.sh: Creating DSA CA Cert TestCA-dsa  --------------------------
certutil -s "CN=NSS Test CA (DSA), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-dsa -k dsa -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5180: Creating DSA CA Cert TestCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n TestCA-dsa -r -d . -o dsaroot.cert
cert.sh: #5181: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating DSA CA Cert serverCA-dsa  --------------------------
certutil -s "CN=NSS Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-dsa -k dsa -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5182: Creating DSA CA Cert serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #5183: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating DSA CA Cert chain-1-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-dsa -k dsa -t u,u,u -v 600 -c serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5184: Creating DSA CA Cert chain-1-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #5185: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating DSA CA Cert chain-2-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5186: Creating DSA CA Cert chain-2-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #5187: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating DSA CA Cert clientCA-dsa  --------------------------
certutil -s "CN=NSS Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-dsa -k dsa -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5188: Creating DSA CA Cert clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #5189: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating DSA CA Cert chain-1-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-dsa -k dsa -t u,u,u -v 600 -c clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5190: Creating DSA CA Cert chain-1-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #5191: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating DSA CA Cert chain-2-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5192: Creating DSA CA Cert chain-2-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #5193: Exporting DSA Root Cert - PASSED
cert.sh: Creating an EC CA Certificate TestCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA
cert.sh: Creating EC CA Cert TestCA-ec  --------------------------
certutil -s "CN=NSS Test CA (ECC), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-ec -k ec -q secp521r1 -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5194: Creating EC CA Cert TestCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n TestCA-ec -r -d . -o ecroot.cert
cert.sh: #5195: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate serverCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating EC CA Cert serverCA-ec  --------------------------
certutil -s "CN=NSS Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-ec -k ec -q secp521r1 -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5196: Creating EC CA Cert serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n serverCA-ec -r -d . -o ecroot.cert
cert.sh: #5197: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating EC CA Cert chain-1-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5198: Creating EC CA Cert chain-1-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #5199: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating EC CA Cert chain-2-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5200: Creating EC CA Cert chain-2-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #5201: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate clientCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating EC CA Cert clientCA-ec  --------------------------
certutil -s "CN=NSS Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-ec -k ec -q secp521r1 -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5202: Creating EC CA Cert clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n clientCA-ec -r -d . -o ecroot.cert
cert.sh: #5203: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating EC CA Cert chain-1-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5204: Creating EC CA Cert chain-1-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #5205: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating EC CA Cert chain-2-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5206: Creating EC CA Cert chain-2-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #5207: Exporting EC Root Cert - PASSED
cert.sh: Creating Certificates, issued by the last ===============
     of a chain of CA's which are not in the same database============
Server Cert
cert.sh: Initializing localhost.localdomain's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw
cert.sh: #5208: Initializing localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5209: Loading root cert module to localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5210: Generate Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 200 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain.cert -f ../tests.pw
cert.sh: #5211: Sign localhost.localdomain's Request (ext) - PASSED
cert.sh: Import localhost.localdomain's Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5212: Import localhost.localdomain's Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/clientCA.ca.cert
cert.sh: #5213: Import Client Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5214: Generate DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA-dsa -m 200 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw
cert.sh: #5215: Sign localhost.localdomain's DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5216: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/clientCA-dsa.ca.cert
cert.sh: #5217: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5218: Generate mixed DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 202 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw
cert.sh: #5219: Sign localhost.localdomain's mixed DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5220: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5221: Generate EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA-ec -m 200 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain-ec.cert -f ../tests.pw
cert.sh: #5222: Sign localhost.localdomain's EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5223: Import localhost.localdomain's EC Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-ec -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/clientCA-ec.ca.cert
cert.sh: #5224: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5225: Generate mixed EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 201 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw
cert.sh: #5226: Sign localhost.localdomain's mixed EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5227: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) - PASSED
Importing all the server's own CA chain into the servers DB
cert.sh: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/serverCA.ca.cert
cert.sh: #5228: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/chain-1-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5229: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/chain-2-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5230: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/serverCA-dsa.ca.cert
cert.sh: #5231: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/chain-1-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5232: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/chain-2-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5233: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/serverCA-ec.ca.cert
cert.sh: #5234: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/chain-1-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5235: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/chain-2-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5236: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
Client Cert
cert.sh: Initializing ExtendedSSLUser's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw
cert.sh: #5237: Initializing ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5238: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5239: Generate Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 300 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser.cert -f ../tests.pw
cert.sh: #5240: Sign ExtendedSSLUser's Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5241: Import ExtendedSSLUser's Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/serverCA.ca.cert
cert.sh: #5242: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5243: Generate DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA-dsa -m 300 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser-dsa.cert -f ../tests.pw
cert.sh: #5244: Sign ExtendedSSLUser's DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5245: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/serverCA-dsa.ca.cert
cert.sh: #5246: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5247: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 302 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser-dsamixed.cert -f ../tests.pw
cert.sh: #5248: Sign ExtendedSSLUser's mixed DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5249: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5250: Generate EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA-ec -m 300 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser-ec.cert -f ../tests.pw
cert.sh: #5251: Sign ExtendedSSLUser's EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5252: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/serverCA-ec.ca.cert
cert.sh: #5253: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5254: Generate mixed EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 301 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser-ecmixed.cert -f ../tests.pw
cert.sh: #5255: Sign ExtendedSSLUser's mixed EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5256: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) - PASSED
Importing all the client's own CA chain into the servers DB
cert.sh: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/clientCA.ca.cert
cert.sh: #5257: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/chain-1-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5258: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/chain-2-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5259: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/clientCA-dsa.ca.cert
cert.sh: #5260: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/chain-1-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5261: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/chain-2-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5262: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-ec -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/clientCA-ec.ca.cert
cert.sh: #5263: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/chain-1-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5264: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/chain-2-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5265: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh SUCCESS: EXT passed
cert.sh: Creating Client CA Issued Certificates ===============
cert.sh: Initializing TestUser's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw
cert.sh: #5266: Initializing TestUser's Cert DB - PASSED
cert.sh: Loading root cert module to TestUser's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5267: Loading root cert module to TestUser's Cert DB - PASSED
cert.sh: Import Root CA for TestUser --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -i ../CA/TestCA.ca.cert
cert.sh: #5268: Import Root CA for TestUser - PASSED
cert.sh: Import DSA Root CA for TestUser --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -i ../CA/TestCA-dsa.ca.cert
cert.sh: #5269: Import DSA Root CA for TestUser - PASSED
cert.sh: Import EC Root CA for TestUser --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -i ../CA/TestCA-ec.ca.cert
cert.sh: #5270: Import EC Root CA for TestUser - PASSED
cert.sh: Generate Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5271: Generate Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's Request --------------------------
certutil -C -c TestCA -m 70 -v 60 -d ../CA -i req -o TestUser.cert -f ../tests.pw 
cert.sh: #5272: Sign TestUser's Request - PASSED
cert.sh: Import TestUser's Cert --------------------------
certutil -A -n TestUser -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5273: Import TestUser's Cert - PASSED
cert.sh SUCCESS: TestUser's Cert Created
cert.sh: Generate DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5274: Generate DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 70 -v 60 -d ../CA -i req -o TestUser-dsa.cert -f ../tests.pw 
cert.sh: #5275: Sign TestUser's DSA Request - PASSED
cert.sh: Import TestUser's DSA Cert --------------------------
certutil -A -n TestUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5276: Import TestUser's DSA Cert - PASSED
cert.sh SUCCESS: TestUser's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5277: Generate mixed DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20070 -v 60 -d ../CA -i req -o TestUser-dsamixed.cert -f ../tests.pw 
cert.sh: #5278: Sign TestUser's DSA Request with RSA - PASSED
cert.sh: Import TestUser's mixed DSA Cert --------------------------
certutil -A -n TestUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5279: Import TestUser's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5280: Generate EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request --------------------------
certutil -C -c TestCA-ec -m 70 -v 60 -d ../CA -i req -o TestUser-ec.cert -f ../tests.pw 
cert.sh: #5281: Sign TestUser's EC Request - PASSED
cert.sh: Import TestUser's EC Cert --------------------------
certutil -A -n TestUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5282: Import TestUser's EC Cert - PASSED
cert.sh SUCCESS: TestUser's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5283: Generate mixed EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10070 -v 60 -d ../CA -i req -o TestUser-ecmixed.cert -f ../tests.pw 
cert.sh: #5284: Sign TestUser's EC Request with RSA - PASSED
cert.sh: Import TestUser's mixed EC Cert --------------------------
certutil -A -n TestUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5285: Import TestUser's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain ------------------------------------
cert.sh: Initializing localhost.localdomain's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw
cert.sh: #5286: Initializing localhost.localdomain's Cert DB - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5287: Loading root cert module to localhost.localdomain's Cert DB - PASSED
cert.sh: Import Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -i ../CA/TestCA.ca.cert
cert.sh: #5288: Import Root CA for localhost.localdomain - PASSED
cert.sh: Import DSA Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -i ../CA/TestCA-dsa.ca.cert
cert.sh: #5289: Import DSA Root CA for localhost.localdomain - PASSED
cert.sh: Import EC Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -i ../CA/TestCA-ec.ca.cert
cert.sh: #5290: Import EC Root CA for localhost.localdomain - PASSED
cert.sh: Generate Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5291: Generate Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's Request --------------------------
certutil -C -c TestCA -m 100 -v 60 -d ../CA -i req -o localhost.localdomain.cert -f ../tests.pw 
cert.sh: #5292: Sign localhost.localdomain's Request - PASSED
cert.sh: Import localhost.localdomain's Cert --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5293: Import localhost.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5294: Generate DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #5295: Sign localhost.localdomain's DSA Request - PASSED
cert.sh: Import localhost.localdomain's DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5296: Import localhost.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5297: Generate mixed DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20100 -v 60 -d ../CA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #5298: Sign localhost.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5299: Import localhost.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5300: Generate EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-ec.cert -f ../tests.pw 
cert.sh: #5301: Sign localhost.localdomain's EC Request - PASSED
cert.sh: Import localhost.localdomain's EC Cert --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5302: Import localhost.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5303: Generate mixed EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10100 -v 60 -d ../CA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #5304: Sign localhost.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5305: Import localhost.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain-sni --------------------------------
cert.sh: Generate Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5306: Generate Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's Request --------------------------
certutil -C -c TestCA -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain.cert -f ../tests.pw 
cert.sh: #5307: Sign localhost-sni.localdomain's Request - PASSED
cert.sh: Import localhost-sni.localdomain's Cert --------------------------
certutil -A -n localhost-sni.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5308: Import localhost-sni.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5309: Generate DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #5310: Sign localhost-sni.localdomain's DSA Request - PASSED
cert.sh: Import localhost-sni.localdomain's DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5311: Import localhost-sni.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5312: Generate mixed DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #5313: Sign localhost-sni.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5314: Import localhost-sni.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5315: Generate EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ec.cert -f ../tests.pw 
cert.sh: #5316: Sign localhost-sni.localdomain's EC Request - PASSED
cert.sh: Import localhost-sni.localdomain's EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5317: Import localhost-sni.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5318: Generate mixed EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #5319: Sign localhost-sni.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5320: Import localhost-sni.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed EC Cert Created
cert.sh: Modify trust attributes of Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA -t TC,TC,TC -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw
cert.sh: #5321: Modify trust attributes of Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of DSA Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-dsa -t TC,TC,TC -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw
cert.sh: #5322: Modify trust attributes of DSA Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-ec -t TC,TC,TC -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw
cert.sh: #5323: Modify trust attributes of EC Root CA -t TC,TC,TC - PASSED
cert.sh SUCCESS: SSL passed
cert.sh: Creating database for OCSP stapling tests  ===============
cp -r /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/stapling
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -o ../stapling/ca.p12 -n TestCA -k ../tests.pw -w ../tests.pw -d ../CA
pk12util: PKCS12 EXPORT SUCCESSFUL
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -i ../stapling/ca.p12 -k ../tests.pw -w ../tests.pw -d ../stapling
pk12util: PKCS12 IMPORT SUCCESSFUL
cert.sh: Creating Client CA Issued Certificates ==============
cert.sh: Initializing Alice's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw
cert.sh: #5324: Initializing Alice's Cert DB - PASSED
cert.sh: Loading root cert module to Alice's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5325: Loading root cert module to Alice's Cert DB - PASSED
cert.sh: Import Root CA for Alice --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -i ../CA/TestCA.ca.cert
cert.sh: #5326: Import Root CA for Alice - PASSED
cert.sh: Import DSA Root CA for Alice --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #5327: Import DSA Root CA for Alice - PASSED
cert.sh: Import EC Root CA for Alice --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -i ../CA/TestCA-ec.ca.cert
cert.sh: #5328: Import EC Root CA for Alice - PASSED
cert.sh: Generate Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5329: Generate Cert Request for Alice - PASSED
cert.sh: Sign Alice's Request --------------------------
certutil -C -c TestCA -m 30 -v 60 -d ../CA -i req -o Alice.cert -f ../tests.pw 
cert.sh: #5330: Sign Alice's Request - PASSED
cert.sh: Import Alice's Cert --------------------------
certutil -A -n Alice -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5331: Import Alice's Cert - PASSED
cert.sh SUCCESS: Alice's Cert Created
cert.sh: Generate DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5332: Generate DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 30 -v 60 -d ../CA -i req -o Alice-dsa.cert -f ../tests.pw 
cert.sh: #5333: Sign Alice's DSA Request - PASSED
cert.sh: Import Alice's DSA Cert --------------------------
certutil -A -n Alice-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5334: Import Alice's DSA Cert - PASSED
cert.sh SUCCESS: Alice's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5335: Generate mixed DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20030 -v 60 -d ../CA -i req -o Alice-dsamixed.cert -f ../tests.pw 
cert.sh: #5336: Sign Alice's DSA Request with RSA - PASSED
cert.sh: Import Alice's mixed DSA Cert --------------------------
certutil -A -n Alice-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5337: Import Alice's mixed DSA Cert - PASSED
cert.sh SUCCESS: Alice's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5338: Generate EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request --------------------------
certutil -C -c TestCA-ec -m 30 -v 60 -d ../CA -i req -o Alice-ec.cert -f ../tests.pw 
cert.sh: #5339: Sign Alice's EC Request - PASSED
cert.sh: Import Alice's EC Cert --------------------------
certutil -A -n Alice-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5340: Import Alice's EC Cert - PASSED
cert.sh SUCCESS: Alice's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5341: Generate mixed EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10030 -v 60 -d ../CA -i req -o Alice-ecmixed.cert -f ../tests.pw 
cert.sh: #5342: Sign Alice's EC Request with RSA - PASSED
cert.sh: Import Alice's mixed EC Cert --------------------------
certutil -A -n Alice-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5343: Import Alice's mixed EC Cert - PASSED
cert.sh SUCCESS: Alice's mixed EC Cert Created
cert.sh: Initializing Bob's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw
cert.sh: #5344: Initializing Bob's Cert DB - PASSED
cert.sh: Loading root cert module to Bob's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5345: Loading root cert module to Bob's Cert DB - PASSED
cert.sh: Import Root CA for Bob --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -i ../CA/TestCA.ca.cert
cert.sh: #5346: Import Root CA for Bob - PASSED
cert.sh: Import DSA Root CA for Bob --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #5347: Import DSA Root CA for Bob - PASSED
cert.sh: Import EC Root CA for Bob --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -i ../CA/TestCA-ec.ca.cert
cert.sh: #5348: Import EC Root CA for Bob - PASSED
cert.sh: Generate Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5349: Generate Cert Request for Bob - PASSED
cert.sh: Sign Bob's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o Bob.cert -f ../tests.pw 
cert.sh: #5350: Sign Bob's Request - PASSED
cert.sh: Import Bob's Cert --------------------------
certutil -A -n Bob -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5351: Import Bob's Cert - PASSED
cert.sh SUCCESS: Bob's Cert Created
cert.sh: Generate DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5352: Generate DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o Bob-dsa.cert -f ../tests.pw 
cert.sh: #5353: Sign Bob's DSA Request - PASSED
cert.sh: Import Bob's DSA Cert --------------------------
certutil -A -n Bob-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5354: Import Bob's DSA Cert - PASSED
cert.sh SUCCESS: Bob's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5355: Generate mixed DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o Bob-dsamixed.cert -f ../tests.pw 
cert.sh: #5356: Sign Bob's DSA Request with RSA - PASSED
cert.sh: Import Bob's mixed DSA Cert --------------------------
certutil -A -n Bob-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5357: Import Bob's mixed DSA Cert - PASSED
cert.sh SUCCESS: Bob's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5358: Generate EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o Bob-ec.cert -f ../tests.pw 
cert.sh: #5359: Sign Bob's EC Request - PASSED
cert.sh: Import Bob's EC Cert --------------------------
certutil -A -n Bob-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5360: Import Bob's EC Cert - PASSED
cert.sh SUCCESS: Bob's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5361: Generate mixed EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o Bob-ecmixed.cert -f ../tests.pw 
cert.sh: #5362: Sign Bob's EC Request with RSA - PASSED
cert.sh: Import Bob's mixed EC Cert --------------------------
certutil -A -n Bob-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5363: Import Bob's mixed EC Cert - PASSED
cert.sh SUCCESS: Bob's mixed EC Cert Created
cert.sh: Creating Dave's Certificate -------------------------
cert.sh: Initializing Dave's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -f ../tests.pw
cert.sh: #5364: Initializing Dave's Cert DB - PASSED
cert.sh: Loading root cert module to Dave's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5365: Loading root cert module to Dave's Cert DB - PASSED
cert.sh: Import Root CA for Dave --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -i ../CA/TestCA.ca.cert
cert.sh: #5366: Import Root CA for Dave - PASSED
cert.sh: Import DSA Root CA for Dave --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -i ../CA/TestCA-dsa.ca.cert
cert.sh: #5367: Import DSA Root CA for Dave - PASSED
cert.sh: Import EC Root CA for Dave --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -i ../CA/TestCA-ec.ca.cert
cert.sh: #5368: Import EC Root CA for Dave - PASSED
cert.sh: Generate Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5369: Generate Cert Request for Dave - PASSED
cert.sh: Sign Dave's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o Dave.cert -f ../tests.pw 
cert.sh: #5370: Sign Dave's Request - PASSED
cert.sh: Import Dave's Cert --------------------------
certutil -A -n Dave -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5371: Import Dave's Cert - PASSED
cert.sh SUCCESS: Dave's Cert Created
cert.sh: Generate DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5372: Generate DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o Dave-dsa.cert -f ../tests.pw 
cert.sh: #5373: Sign Dave's DSA Request - PASSED
cert.sh: Import Dave's DSA Cert --------------------------
certutil -A -n Dave-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5374: Import Dave's DSA Cert - PASSED
cert.sh SUCCESS: Dave's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5375: Generate mixed DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o Dave-dsamixed.cert -f ../tests.pw 
cert.sh: #5376: Sign Dave's DSA Request with RSA - PASSED
cert.sh: Import Dave's mixed DSA Cert --------------------------
certutil -A -n Dave-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5377: Import Dave's mixed DSA Cert - PASSED
cert.sh SUCCESS: Dave's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5378: Generate EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o Dave-ec.cert -f ../tests.pw 
cert.sh: #5379: Sign Dave's EC Request - PASSED
cert.sh: Import Dave's EC Cert --------------------------
certutil -A -n Dave-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5380: Import Dave's EC Cert - PASSED
cert.sh SUCCESS: Dave's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5381: Generate mixed EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o Dave-ecmixed.cert -f ../tests.pw 
cert.sh: #5382: Sign Dave's EC Request with RSA - PASSED
cert.sh: Import Dave's mixed EC Cert --------------------------
certutil -A -n Dave-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5383: Import Dave's mixed EC Cert - PASSED
cert.sh SUCCESS: Dave's mixed EC Cert Created
cert.sh: Creating multiEmail's Certificate --------------------
cert.sh: Initializing Eve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -f ../tests.pw
cert.sh: #5384: Initializing Eve's Cert DB - PASSED
cert.sh: Loading root cert module to Eve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5385: Loading root cert module to Eve's Cert DB - PASSED
cert.sh: Import Root CA for Eve --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -i ../CA/TestCA.ca.cert
cert.sh: #5386: Import Root CA for Eve - PASSED
cert.sh: Import DSA Root CA for Eve --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -i ../CA/TestCA-dsa.ca.cert
cert.sh: #5387: Import DSA Root CA for Eve - PASSED
cert.sh: Import EC Root CA for Eve --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -i ../CA/TestCA-ec.ca.cert
cert.sh: #5388: Import EC Root CA for Eve - PASSED
cert.sh: Generate Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5389: Generate Cert Request for Eve - PASSED
cert.sh: Sign Eve's Request --------------------------
certutil -C -c TestCA -m 60 -v 60 -d ../CA -i req -o Eve.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #5390: Sign Eve's Request - PASSED
cert.sh: Import Eve's Cert --------------------------
certutil -A -n Eve -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5391: Import Eve's Cert - PASSED
cert.sh SUCCESS: Eve's Cert Created
cert.sh: Generate DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5392: Generate DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 60 -v 60 -d ../CA -i req -o Eve-dsa.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #5393: Sign Eve's DSA Request - PASSED
cert.sh: Import Eve's DSA Cert --------------------------
certutil -A -n Eve-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5394: Import Eve's DSA Cert - PASSED
cert.sh SUCCESS: Eve's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5395: Generate mixed DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20060 -v 60 -d ../CA -i req -o Eve-dsamixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #5396: Sign Eve's DSA Request with RSA - PASSED
cert.sh: Import Eve's mixed DSA Cert --------------------------
certutil -A -n Eve-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5397: Import Eve's mixed DSA Cert - PASSED
cert.sh SUCCESS: Eve's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5398: Generate EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request --------------------------
certutil -C -c TestCA-ec -m 60 -v 60 -d ../CA -i req -o Eve-ec.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #5399: Sign Eve's EC Request - PASSED
cert.sh: Import Eve's EC Cert --------------------------
certutil -A -n Eve-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5400: Import Eve's EC Cert - PASSED
cert.sh SUCCESS: Eve's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5401: Generate mixed EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10060 -v 60 -d ../CA -i req -o Eve-ecmixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #5402: Sign Eve's EC Request with RSA - PASSED
cert.sh: Import Eve's mixed EC Cert --------------------------
certutil -A -n Eve-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5403: Import Eve's mixed EC Cert - PASSED
cert.sh SUCCESS: Eve's mixed EC Cert Created
cert.sh: Importing Certificates ==============================
cert.sh: Import Bob's cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob.cert
cert.sh: #5404: Import Bob's cert into Alice's db - PASSED
cert.sh: Import Dave's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #5405: Import Dave's cert into Alice's DB - PASSED
cert.sh: Import Dave's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #5406: Import Dave's cert into Bob's DB - PASSED
cert.sh: Import Eve's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #5407: Import Eve's cert into Alice's DB - PASSED
cert.sh: Import Eve's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #5408: Import Eve's cert into Bob's DB - PASSED
cert.sh: Importing EC Certificates ==============================
cert.sh: Import Bob's EC cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob-ec.cert
cert.sh: #5409: Import Bob's EC cert into Alice's db - PASSED
cert.sh: Import Dave's EC cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #5410: Import Dave's EC cert into Alice's DB - PASSED
cert.sh: Import Dave's EC cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #5411: Import Dave's EC cert into Bob's DB - PASSED
cert.sh SUCCESS: SMIME passed
cert.sh: Creating FIPS 140 DSA Certificates ==============
cert.sh: Initializing FIPS PUB 140 Test Certificate's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips -f ../tests.fipspw
cert.sh: #5412: Initializing FIPS PUB 140 Test Certificate's Cert DB - PASSED
cert.sh: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5413: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) - PASSED
cert.sh: Enable FIPS mode on database -----------------------
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips -fips true 
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
FIPS mode enabled.
cert.sh: #5414: Enable FIPS mode on database for FIPS PUB 140 Test Certificate - PASSED
cert.sh: Generate Certificate for FIPS PUB 140 Test Certificate --------------------------
certutil -s "CN=FIPS PUB 140 Test Certificate, E=fips@bogus.com, O=BOGUS NSS, OU=FIPS PUB 140, L=Mountain View, ST=California, C=US" -S -n FIPS_PUB_140_Test_Certificate -x -t Cu,Cu,Cu -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips -f ../tests.fipspw -k dsa -v 600 -m 500 -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5415: Generate Certificate for FIPS PUB 140 Test Certificate - PASSED
cert.sh SUCCESS: FIPS passed
cert.sh: Creating Server CA Issued Certificate for 
             EC Curves Test Certificates ------------------------------------
cert.sh: Initializing EC Curve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw
cert.sh: #5416: Initializing EC Curve's Cert DB - PASSED
cert.sh: Loading root cert module to EC Curve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eccurves
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5417: Loading root cert module to EC Curve's Cert DB - PASSED
cert.sh: Import EC Root CA for EC Curves Test Certificates --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eccurves -i ../CA/TestCA-ec.ca.cert
cert.sh: #5418: Import EC Root CA for EC Curves Test Certificates - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp256 --------------------------
certutil -s "CN=Curve-nistp256, E=Curve-nistp256-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp256 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5419: Generate EC Cert Request for Curve-nistp256 - PASSED
cert.sh: Sign Curve-nistp256's EC Request --------------------------
certutil -C -c TestCA-ec -m 2001 -v 60 -d ../CA -i req -o Curve-nistp256-ec.cert -f ../tests.pw 
cert.sh: #5420: Sign Curve-nistp256's EC Request - PASSED
cert.sh: Import Curve-nistp256's EC Cert --------------------------
certutil -A -n Curve-nistp256-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -i Curve-nistp256-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5421: Import Curve-nistp256's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp384 --------------------------
certutil -s "CN=Curve-nistp384, E=Curve-nistp384-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp384 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5422: Generate EC Cert Request for Curve-nistp384 - PASSED
cert.sh: Sign Curve-nistp384's EC Request --------------------------
certutil -C -c TestCA-ec -m 2002 -v 60 -d ../CA -i req -o Curve-nistp384-ec.cert -f ../tests.pw 
cert.sh: #5423: Sign Curve-nistp384's EC Request - PASSED
cert.sh: Import Curve-nistp384's EC Cert --------------------------
certutil -A -n Curve-nistp384-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -i Curve-nistp384-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5424: Import Curve-nistp384's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp521 --------------------------
certutil -s "CN=Curve-nistp521, E=Curve-nistp521-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp521 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5425: Generate EC Cert Request for Curve-nistp521 - PASSED
cert.sh: Sign Curve-nistp521's EC Request --------------------------
certutil -C -c TestCA-ec -m 2003 -v 60 -d ../CA -i req -o Curve-nistp521-ec.cert -f ../tests.pw 
cert.sh: #5426: Sign Curve-nistp521's EC Request - PASSED
cert.sh: Import Curve-nistp521's EC Cert --------------------------
certutil -A -n Curve-nistp521-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -i Curve-nistp521-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5427: Import Curve-nistp521's EC Cert - PASSED
cert.sh: Initializing TestExt's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw
cert.sh: #5428: Initializing TestExt's Cert DB - PASSED
cert.sh: Loading root cert module to TestExt's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5429: Loading root cert module to TestExt's Cert DB - PASSED
cert.sh: Import Root CA for TestExt --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -i ../CA/TestCA.ca.cert
cert.sh: #5430: Import Root CA for TestExt - PASSED
cert.sh: Import DSA Root CA for TestExt --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -i ../CA/TestCA-dsa.ca.cert
cert.sh: #5431: Import DSA Root CA for TestExt - PASSED
cert.sh: Import EC Root CA for TestExt --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -i ../CA/TestCA-ec.ca.cert
cert.sh: #5432: Import EC Root CA for TestExt - PASSED
cert.sh: Generate Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5433: Generate Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's Request --------------------------
certutil -C -c TestCA -m 90 -v 60 -d ../CA -i req -o TestExt.cert -f ../tests.pw 
cert.sh: #5434: Sign TestExt's Request - PASSED
cert.sh: Import TestExt's Cert --------------------------
certutil -A -n TestExt -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5435: Import TestExt's Cert - PASSED
cert.sh SUCCESS: TestExt's Cert Created
cert.sh: Generate DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5436: Generate DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 90 -v 60 -d ../CA -i req -o TestExt-dsa.cert -f ../tests.pw 
cert.sh: #5437: Sign TestExt's DSA Request - PASSED
cert.sh: Import TestExt's DSA Cert --------------------------
certutil -A -n TestExt-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5438: Import TestExt's DSA Cert - PASSED
cert.sh SUCCESS: TestExt's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5439: Generate mixed DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20090 -v 60 -d ../CA -i req -o TestExt-dsamixed.cert -f ../tests.pw 
cert.sh: #5440: Sign TestExt's DSA Request with RSA - PASSED
cert.sh: Import TestExt's mixed DSA Cert --------------------------
certutil -A -n TestExt-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5441: Import TestExt's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestExt's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5442: Generate EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request --------------------------
certutil -C -c TestCA-ec -m 90 -v 60 -d ../CA -i req -o TestExt-ec.cert -f ../tests.pw 
cert.sh: #5443: Sign TestExt's EC Request - PASSED
cert.sh: Import TestExt's EC Cert --------------------------
certutil -A -n TestExt-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5444: Import TestExt's EC Cert - PASSED
cert.sh SUCCESS: TestExt's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5445: Generate mixed EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10090 -v 60 -d ../CA -i req -o TestExt-ecmixed.cert -f ../tests.pw 
cert.sh: #5446: Sign TestExt's EC Request with RSA - PASSED
cert.sh: Import TestExt's mixed EC Cert --------------------------
certutil -A -n TestExt-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5447: Import TestExt's mixed EC Cert - PASSED
cert.sh SUCCESS: TestExt's mixed EC Cert Created
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt1 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt1, E=TestExt1@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:cf:b3
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sun Aug 06 23:57:20 2017
            Not After : Mon Nov 06 23:57:20 2017
        Subject: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:fa:5d:81:d4:1b:c4:6c:90:28:64:01:fd:85:9c:1a:
                    2e:1d:81:aa:e3:82:37:1d:5e:50:d5:b1:3a:9c:fb:93:
                    de:77:3e:95:0d:c0:9d:9f:c5:9e:5e:fd:6e:1d:c7:a0:
                    e7:f7:bd:2c:ac:4c:b1:c6:fb:b5:e9:f7:b7:34:77:fb:
                    91:83:dd:d0:06:0b:2c:39:7e:b6:b0:dd:74:11:bb:80:
                    77:45:89:69:65:42:63:c8:8a:42:53:64:ac:98:89:8e:
                    c9:5b:11:92:cc:e4:0a:83:69:2a:04:d1:1b:f8:40:03:
                    ef:35:fe:fd:92:d9:45:42:38:6c:0d:af:aa:30:1a:0a:
                    5a:d3:b4:95:37:df:af:22:8f:2d:02:50:4e:47:ce:84:
                    77:bc:10:97:3a:ad:3c:9a:b2:e1:d7:3a:61:76:48:46:
                    dc:cc:01:d5:ec:2d:ff:0b:67:6a:17:fb:58:a7:65:04:
                    0e:7e:37:01:42:68:59:2a:93:cc:2b:c0:c3:a7:09:25:
                    66:ad:5c:66:60:2d:10:eb:01:d1:21:7d:38:f7:71:98:
                    26:ff:34:49:d8:7d:2e:52:ea:77:30:29:1a:08:13:a9:
                    8c:d7:3d:c5:1c:80:f7:90:c7:36:ed:3d:44:a1:26:81:
                    c6:c1:9d:8c:84:e6:94:ee:3f:61:0e:91:51:c3:1f:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        83:b7:4a:91:05:7e:36:a7:34:ad:c3:bc:71:ed:6d:51:
        82:64:5f:73:f2:13:24:97:f0:8f:2d:13:83:6a:13:18:
        21:4a:d7:af:c4:0d:ec:22:5c:e1:b6:f1:b8:a4:a6:ff:
        6d:6b:11:59:3c:94:96:3b:3e:e3:ce:14:ce:84:03:5d:
        21:9e:4a:40:15:83:42:0b:ff:63:f6:d2:a7:84:f3:7f:
        fe:73:b9:d6:40:05:dc:80:67:39:3a:0b:b8:c3:b6:1d:
        08:4d:44:89:63:34:1c:3d:e0:f4:4a:09:f8:bf:f6:fc:
        88:eb:f7:93:04:e4:df:d4:27:b8:ca:1b:2e:aa:99:50:
        21:93:09:0b:8b:11:73:21:1f:ff:a5:76:a9:cd:4b:61:
        a8:76:d4:c1:ea:02:32:4c:35:02:25:5f:f5:48:34:25:
        4f:4e:62:0e:10:e6:69:6d:fc:2b:4f:ca:39:0e:61:8f:
        7f:bb:9c:94:56:ec:71:cd:d1:d8:a4:04:2b:b2:db:32:
        4c:2f:4b:32:bd:99:4d:9d:4a:58:9c:4c:98:5b:70:ff:
        e4:35:a5:77:0d:04:61:d3:00:e0:94:0f:e0:f1:49:8c:
        06:20:04:43:73:f2:32:71:b5:4b:f0:a4:02:7d:cd:4e:
        0e:98:ec:74:ad:db:48:f3:eb:41:58:80:54:6a:f4:10
    Fingerprint (SHA-256):
        AD:19:80:27:01:37:C0:84:59:06:94:3F:BD:C7:CA:43:C7:53:55:D0:C1:B4:5B:1E:28:F1:57:3B:D1:65:90:54
    Fingerprint (SHA1):
        3F:1B:ED:65:6B:85:58:F0:C4:98:EB:0A:D0:93:0A:CB:9B:A7:0E:E6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5448: Certificate Key Usage Extension (1) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt2 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt2, E=TestExt2@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:cf:b4
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sun Aug 06 23:57:20 2017
            Not After : Mon Nov 06 23:57:20 2017
        Subject: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:60:3f:08:ac:ef:73:29:56:9d:7d:6d:2c:11:81:3e:
                    ba:59:18:a0:68:62:d7:1f:17:06:28:21:02:b2:bb:16:
                    58:c3:a0:91:74:7e:77:e3:ed:ef:e8:3f:c7:25:42:b8:
                    4c:6f:77:f9:a9:10:52:35:7c:e2:0f:ad:4b:e6:bc:ea:
                    59:44:4a:8f:00:b0:c8:06:c6:e2:1a:5b:55:a0:d0:da:
                    e0:d6:35:53:ed:30:33:9f:6a:8a:52:83:79:49:27:d8:
                    32:cb:df:4e:bc:8d:41:d4:db:f1:f7:5d:f6:b5:85:34:
                    e0:1a:ad:59:32:05:24:d2:45:1c:73:9b:b3:85:85:ea:
                    f9:3c:91:2c:e1:71:27:51:c0:43:23:e3:5c:4c:a1:b4:
                    45:c0:d0:69:7a:66:e5:d8:b4:32:da:c9:1c:23:1a:53:
                    33:fc:75:a2:87:f8:0e:13:b5:5b:99:3c:c4:2c:98:38:
                    ac:6e:4b:b9:84:7e:04:52:0c:dd:c5:f0:1c:40:e1:11:
                    fa:cf:d6:5b:66:a3:4b:9e:c2:a5:78:4d:6b:02:36:ff:
                    c3:33:cd:e1:36:87:a6:ea:03:3f:20:fa:9c:5b:78:26:
                    9b:b0:4c:27:cb:06:59:ec:31:7e:0f:1d:e9:83:72:f3:
                    e6:c4:67:63:06:b3:cd:12:54:32:3d:be:17:80:4b:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        48:e5:b9:5a:7d:ca:fb:fa:eb:bd:20:e3:1e:21:36:d5:
        9b:94:c6:14:20:72:9a:df:fd:c1:c9:08:56:d8:aa:87:
        9a:c1:24:3c:aa:b8:d2:c6:53:be:65:d6:6a:61:71:bc:
        70:a9:b4:9e:58:55:b1:0c:81:15:55:a4:9d:f9:d3:5c:
        83:cc:bd:fd:4a:29:69:f3:c8:c4:1f:d2:46:71:83:e7:
        b1:f8:10:79:5c:da:21:6b:81:ee:01:08:88:f8:08:75:
        3b:93:65:80:40:00:3e:9d:9f:56:66:1e:2f:7c:76:30:
        ff:ad:04:96:a5:e2:8a:1f:26:f3:20:08:54:b7:33:0c:
        cd:f5:2c:bf:7e:9a:c7:ec:64:80:46:dc:32:2a:58:89:
        c6:87:8a:5d:75:ca:45:f5:14:5e:d2:60:a3:68:3c:64:
        c8:81:c7:63:b6:44:88:04:35:b5:a9:e2:9f:2a:ba:a9:
        fa:d1:e0:eb:d6:6e:4f:c3:da:c8:fa:65:85:9a:e8:7e:
        58:69:82:73:fd:cd:76:5a:24:b6:69:19:be:1b:56:63:
        ba:4e:ab:28:fe:3a:0e:2b:38:22:ca:26:27:dd:79:fe:
        35:b3:dd:1d:f5:54:c9:29:f3:01:50:fa:a8:a3:98:c5:
        ed:0f:55:2b:55:94:d0:97:5e:fe:64:56:16:36:3c:85
    Fingerprint (SHA-256):
        2C:AD:7D:46:06:28:E1:B7:73:28:9E:E8:0E:FA:9D:32:3F:72:5C:60:1D:9F:77:B9:E4:1A:60:EB:E8:55:24:66
    Fingerprint (SHA1):
        A5:01:58:2F:23:36:53:1A:13:2E:D9:A5:4B:DA:79:CE:78:03:74:AE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5449: Certificate Key Usage Extension (2) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt3 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt3, E=TestExt3@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
y
-1
n
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:cf:b4
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sun Aug 06 23:57:20 2017
            Not After : Mon Nov 06 23:57:20 2017
        Subject: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:cb:62:eb:27:78:56:2c:4f:d6:54:b6:b1:88:ee:4a:
                    65:95:6e:17:6c:c0:4f:8b:8e:ec:7a:99:0f:25:28:32:
                    e9:9a:86:28:78:16:c7:84:9b:53:2c:a6:c8:48:5c:67:
                    21:5e:30:2c:52:bf:70:d5:08:02:2c:96:b6:5c:35:1d:
                    ed:20:20:74:a4:a7:c9:50:ef:9f:05:5d:dc:a5:70:8b:
                    85:73:f1:67:e4:05:15:9a:87:1b:7c:69:42:90:80:53:
                    3f:b3:4b:e2:26:6f:bc:d4:b5:fb:8e:81:91:bb:86:35:
                    85:83:ff:df:3f:31:02:b3:93:8a:65:54:61:a8:30:38:
                    d4:3e:97:c1:98:03:e0:06:55:82:2b:78:91:bc:26:1f:
                    5d:ef:f7:43:72:f8:a7:9c:a1:61:32:6d:be:1d:b1:ac:
                    6d:08:1c:6d:c5:70:f2:ca:66:aa:a8:10:52:9d:0c:b8:
                    03:47:5d:33:b8:85:3f:ee:da:9c:e8:22:50:b8:36:11:
                    63:7d:6d:1b:7f:0c:0b:0e:db:ea:9e:1d:47:31:90:ba:
                    f4:0c:12:dc:e1:9d:da:56:9d:b4:6c:b0:0f:0d:e8:f7:
                    48:17:15:b3:6b:8c:f0:19:85:f3:c5:4c:2a:5b:57:7f:
                    a7:02:53:8b:b8:e4:1e:71:3f:72:77:61:fa:09:24:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        13:cb:20:1a:01:05:3d:37:42:9f:37:e5:b5:35:11:cf:
        a8:ac:81:3f:75:4c:22:c1:57:f6:aa:2c:38:78:2b:63:
        7f:5d:c2:17:d2:00:22:12:40:b5:32:83:cc:84:1a:fe:
        b7:74:0f:51:6e:cf:7b:52:56:b7:5f:1a:ba:03:65:6d:
        dd:fa:61:b7:60:d5:ac:a7:d8:a3:0f:93:1e:55:c9:22:
        f4:10:80:ec:a3:bc:01:b4:60:87:e2:b4:44:c7:84:e0:
        24:2d:36:89:86:bc:df:54:e0:2d:a6:b1:97:65:3b:2f:
        8a:69:b2:e3:81:71:9b:4e:a6:a2:c4:8e:42:ba:29:1d:
        69:07:cc:7c:08:37:2f:00:34:63:bc:7f:d0:4f:f7:89:
        eb:a3:8c:6f:f4:0e:bb:d5:e6:a4:4d:c6:e5:87:40:57:
        b6:e6:a3:63:ab:0d:d4:f3:10:2c:e4:37:89:7f:19:b6:
        3a:7c:a8:8e:37:31:cd:42:90:3f:12:f0:43:dd:9c:62:
        90:70:89:d4:35:95:4a:22:25:d6:01:ac:36:10:9e:d5:
        51:0f:41:07:8d:71:d5:4a:51:1e:99:d3:7d:31:8b:7d:
        b6:b4:36:ef:63:21:f8:96:e6:ce:8f:b3:58:97:87:55:
        de:c0:5d:ec:ec:1e:d5:5d:3b:9d:12:45:bd:01:57:39
    Fingerprint (SHA-256):
        B7:5C:FF:4D:34:CC:1D:F8:59:30:D5:96:94:69:45:A8:AE:2E:68:9D:C3:CC:92:EA:A4:61:5A:1B:D8:51:DF:C6
    Fingerprint (SHA1):
        19:1D:5C:F5:AA:97:2A:DB:23:3D:00:21:C4:15:25:BD:EB:71:B6:5F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5450: Certificate Basic Constraints Extension (3) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt4 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt4, E=TestExt4@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
n
-1
y
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt4
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:cf:b4
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sun Aug 06 23:57:20 2017
            Not After : Mon Nov 06 23:57:20 2017
        Subject: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:28:62:d7:29:67:7e:f9:05:74:bc:d8:58:ea:26:3b:
                    8d:0d:24:8c:7f:42:52:1a:2e:ee:b9:83:21:a8:c0:d3:
                    f4:fe:44:bf:8e:b0:14:97:24:02:eb:d3:38:11:5e:55:
                    6f:60:ef:a1:a1:96:b9:c9:38:01:0a:f7:30:46:1f:42:
                    fd:cb:12:65:93:10:42:67:04:42:16:ce:e7:53:4d:9e:
                    8b:9f:7b:0c:f4:17:34:72:d2:f8:3f:2c:35:1d:69:bf:
                    51:ea:b5:0f:02:ab:27:81:e0:e0:99:8f:65:d9:d3:d0:
                    ca:a9:46:42:88:7c:d1:c6:e8:79:52:bd:99:79:30:49:
                    59:32:bc:63:be:bc:22:8f:c2:91:0a:98:58:1c:9a:fc:
                    29:65:6d:4b:9d:0c:91:ef:74:d1:16:95:87:aa:27:84:
                    ee:58:9b:5a:58:d1:ec:c0:26:5b:9e:6d:9e:6c:74:a5:
                    3d:68:a4:ae:b8:a6:bd:88:02:5f:f9:68:48:de:cf:85:
                    31:e3:51:33:a5:6a:f1:80:04:a9:a2:86:cb:97:b5:85:
                    70:67:1e:0c:c6:2c:be:4b:a7:d0:44:c4:a8:fd:15:ec:
                    c7:19:90:fd:63:01:80:5d:a9:5d:0f:17:8a:94:e8:94:
                    72:a9:43:0b:1b:3e:50:26:dd:6d:c3:18:87:7f:b5:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is not a CA.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:97:75:ec:88:df:43:4c:c9:db:13:38:91:c8:86:f4:
        2c:6c:3f:bf:40:55:e7:23:fa:a6:22:81:96:45:b2:14:
        29:53:df:5c:91:6d:e5:7a:83:14:aa:0e:69:ff:f5:08:
        36:69:98:d9:d2:7a:80:4e:50:af:22:3b:e5:e1:ae:06:
        23:60:a9:98:50:4d:c9:d9:9a:2c:61:4b:f5:a5:4d:34:
        1a:a9:be:74:ed:52:33:68:cb:dc:f6:de:9a:c5:70:7b:
        cd:12:29:42:3a:42:62:c1:72:e0:9a:39:f0:13:12:6e:
        14:14:d8:27:8d:b9:35:50:df:95:43:88:9f:a2:0e:cf:
        46:5f:d8:a5:2f:34:35:da:53:40:22:54:a5:dc:93:15:
        88:87:a4:5b:71:ba:c0:78:b2:b6:d3:15:6b:42:b1:bb:
        c6:b7:ef:36:69:60:98:d4:3f:0f:bc:a7:62:b2:fc:be:
        18:19:2b:e4:dc:f6:28:3b:6d:cf:da:e8:42:7f:e3:fd:
        6c:4c:84:4a:30:4a:ad:1d:5e:68:97:09:a2:a2:8c:0c:
        e6:9c:02:55:52:01:ea:2d:b5:35:4a:75:10:bc:41:9b:
        52:e2:3e:bd:a3:26:9b:34:ce:c7:bb:b8:3f:7b:bb:dd:
        85:ba:ca:ef:cd:ee:c3:ac:f7:e8:b8:34:1e:e5:f1:4b
    Fingerprint (SHA-256):
        52:9E:B1:A5:4D:81:0A:5B:CF:DA:3B:19:14:B9:8A:9F:6D:A2:D4:DB:E1:4D:B7:FB:EF:A1:73:A9:6A:14:0B:13
    Fingerprint (SHA1):
        63:E3:B3:83:55:FE:8E:1C:F8:91:8C:2C:50:D9:05:F7:F9:6F:4F:5C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5451: Certificate Basic Constraints Extension (4) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt5 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt5, E=TestExt5@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
y
12341235123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:cf:b5
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sun Aug 06 23:57:20 2017
            Not After : Mon Nov 06 23:57:20 2017
        Subject: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:90:55:42:36:fa:9b:5d:47:e5:7c:02:e0:78:d4:15:
                    7e:c0:cd:3c:b6:84:a2:08:fa:7d:7c:cb:91:47:c8:b8:
                    5c:61:55:7d:2a:6c:29:db:49:27:f3:32:a3:17:5e:e6:
                    0b:b0:c9:ff:05:99:db:9c:c1:40:9c:2a:32:37:d4:5c:
                    f4:96:f6:f1:d9:e6:07:36:13:d6:56:6f:3b:23:bd:64:
                    df:97:c8:36:86:34:19:98:64:d2:4f:ad:f9:d5:c0:77:
                    d6:79:2f:7b:04:ae:80:53:00:ac:db:b8:26:67:fc:e1:
                    c8:29:5e:65:34:1d:fa:9e:72:36:a0:75:ae:0c:f4:cb:
                    e9:ef:cf:14:7c:be:72:82:7f:f3:23:61:f3:9d:62:ba:
                    62:19:cf:3b:3e:b1:c4:ba:c1:15:a0:d3:cc:d3:9f:9b:
                    3c:e9:77:c6:d5:1f:16:71:d5:b3:b4:74:b6:98:a5:a4:
                    fc:75:2f:66:be:97:5c:6c:9a:db:3e:74:0b:8d:a9:fb:
                    6f:44:d0:71:14:0c:ea:4c:ec:1b:5e:71:89:9d:14:00:
                    7f:46:59:3a:75:76:76:6b:fb:4c:b3:51:ad:0c:d7:16:
                    7d:3f:b3:03:a0:97:a4:21:9b:38:01:ad:c9:28:bf:1c:
                    e8:9f:82:69:72:fe:e6:66:63:55:35:4e:45:99:88:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Key ID:
                12341235123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:35:ea:49:1d:d8:0d:d5:00:2f:80:f4:0c:c5:ed:06:
        08:51:76:d0:c6:c7:e8:47:73:8f:bd:76:53:88:6a:14:
        98:6b:a4:dd:e8:13:38:59:52:a1:7a:63:71:83:54:7b:
        9a:14:3e:93:3a:35:37:78:42:16:b1:06:b1:84:91:f7:
        6c:8d:2a:80:1a:aa:83:0d:b1:47:e4:31:35:a0:b0:6c:
        3c:f1:e1:f8:0e:d6:bd:28:f1:df:b1:5a:40:72:b2:fc:
        23:f4:b6:2d:37:aa:b9:6e:dc:35:c0:89:77:da:ba:03:
        2b:5e:4b:93:11:fb:69:6f:69:75:e3:cc:d3:23:ce:b1:
        66:9d:91:50:54:a1:5f:b5:a3:58:06:d7:ed:70:04:43:
        de:f3:ad:5b:c9:ed:6d:63:24:d2:bb:d7:5b:fa:70:ad:
        a0:5b:b7:42:1a:7e:8d:b9:fe:14:c4:6c:ef:e7:5c:c4:
        02:5a:ed:43:01:65:38:d8:06:2b:f6:22:05:8c:7a:c2:
        f7:c3:cb:d0:50:43:84:f1:5c:64:d0:70:8f:81:fa:fc:
        30:bc:3b:1c:e4:f6:3d:fb:cc:2a:63:0b:1d:86:29:ff:
        c1:f8:a7:28:64:e0:a2:d6:20:b3:de:91:22:b0:55:6c:
        5e:98:44:5a:92:3b:37:c8:f5:de:8f:cd:a4:81:f0:24
    Fingerprint (SHA-256):
        42:34:8F:D0:25:8F:01:0C:10:79:A6:BD:C0:71:ED:1A:52:AE:A4:45:EA:75:DF:C0:65:BA:14:45:ED:02:F4:64
    Fingerprint (SHA1):
        1E:C2:60:8D:8D:EA:8D:B2:AD:B7:93:CA:BF:C6:D1:30:57:3F:1D:E9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5452: Certificate Authority Key Identifier Extension (5) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt6 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt6, E=TestExt6@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
y
3
test.com
214123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:cf:b5
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sun Aug 06 23:57:21 2017
            Not After : Mon Nov 06 23:57:21 2017
        Subject: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    99:ef:3e:4d:38:64:9e:eb:31:ea:d1:77:67:48:1f:01:
                    d5:2c:9d:50:91:b5:7e:4b:bc:7f:38:04:cb:b7:c7:b0:
                    5b:ed:2d:b7:76:c3:62:e5:49:10:96:96:ef:a4:3b:dc:
                    f8:f1:ac:db:8a:4f:15:c5:94:f4:2d:ef:d7:a4:03:aa:
                    d3:7b:bd:08:b8:7e:8b:8b:7e:7e:d6:32:74:d7:36:73:
                    d0:e6:5b:fc:4a:9e:2e:27:de:3b:54:b5:a2:57:ba:c4:
                    50:c1:ee:20:93:93:14:1b:6b:1b:ff:28:2b:36:e0:25:
                    0f:8b:67:7c:85:7d:1c:20:7c:81:d5:76:cc:f4:4d:c1:
                    a0:8e:27:06:4c:3f:23:83:74:19:93:32:c5:a8:df:5a:
                    5e:75:d1:c6:6d:2f:1d:4b:c5:1d:17:19:b9:4b:f6:24:
                    d0:aa:1a:e7:84:d4:c6:48:c2:35:96:39:3b:3e:fc:19:
                    24:f2:41:d5:cf:b7:be:6c:1a:0a:5d:d5:df:7a:bb:ea:
                    48:c1:31:0f:e7:46:7e:ee:fe:25:88:bf:4f:d6:69:83:
                    fa:8c:ca:5b:69:11:ab:66:d6:b5:94:37:8f:2d:12:4b:
                    36:5c:e5:8c:78:c4:9a:f4:b2:65:fa:64:36:d8:ca:d9:
                    1e:89:33:7f:d4:1c:d4:01:27:db:3a:ca:d4:8e:57:d1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Issuer: 
                DNS name: "test.com"
            Serial Number:
                214123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        81:5a:b2:e6:6b:6e:47:29:9c:ca:cd:ab:b1:5e:6c:b5:
        b0:f4:68:47:c9:1a:52:a6:34:5c:a0:d4:22:f2:2d:2d:
        4a:72:cd:2f:a0:a9:59:e6:fc:0d:1c:1e:54:42:42:64:
        b8:25:d3:3a:57:af:01:18:4a:17:81:78:e5:81:82:da:
        97:a7:a9:2f:91:7c:11:8c:b7:89:87:24:04:da:de:31:
        bf:23:a6:ad:a7:82:15:5f:b8:f7:9d:b9:32:a8:3e:33:
        d5:22:ff:12:af:01:a0:10:6c:1a:c7:d4:5f:23:02:f8:
        70:4e:39:68:79:ee:9f:89:45:03:66:37:bc:1f:ba:d0:
        80:4d:b7:bb:1f:0e:72:3f:e5:23:1c:2f:33:2c:c5:3f:
        70:2f:65:50:82:1b:cf:34:38:35:5b:af:ca:4f:d2:15:
        c4:dd:71:0a:55:8f:fc:4b:08:0a:5a:c5:7b:5e:a6:7b:
        89:a7:c1:86:f5:df:c7:9c:42:ae:a5:b7:34:f5:00:c4:
        d7:85:7b:82:ef:0a:6c:7e:53:06:98:88:4c:c6:81:ab:
        db:f7:2f:62:9e:af:01:54:30:99:8e:b3:60:ce:9e:63:
        ac:65:a4:ac:f3:04:d7:75:92:19:49:e9:7a:c6:46:54:
        d2:5f:56:c2:0c:22:7f:8e:d0:01:5f:60:0c:45:e6:64
    Fingerprint (SHA-256):
        DE:11:35:E2:06:D3:EB:72:DD:FE:D0:93:84:1A:AD:31:C1:AA:CF:A3:36:D1:CA:90:69:3B:5A:E4:93:45:41:0F
    Fingerprint (SHA1):
        1D:0A:8A:51:42:22:C2:7D:75:78:E2:36:A4:A5:67:49:8E:1F:92:D3
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5453: Certificate Authority Key Identifier Extension (6) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt7 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt7, E=TestExt7@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
1
2
rfc822@name.tld
3
test.com
8
1.2.3.4
9
OID.0.2.213
10
0
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:cf:b6
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sun Aug 06 23:57:21 2017
            Not After : Mon Nov 06 23:57:21 2017
        Subject: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:f2:eb:cc:c2:3d:6b:5d:19:b9:47:f5:a3:ef:cf:6a:
                    72:62:09:97:72:16:f7:09:d5:3c:1b:01:c3:9f:6e:b7:
                    82:d7:e4:18:41:ff:4f:f2:e2:68:fc:b4:e0:7d:27:03:
                    e0:62:40:82:f2:ac:11:0a:de:85:ee:50:ed:9f:5c:83:
                    ec:57:9f:24:3b:f9:58:b6:51:44:10:50:ea:dd:30:70:
                    af:ab:93:80:56:02:f9:4f:4b:b7:69:8c:de:6c:fa:91:
                    23:59:5f:5c:f5:7e:96:9b:9c:c4:57:f0:b2:ac:23:04:
                    0a:4d:ab:09:09:60:4f:9d:68:92:37:d6:99:bd:4e:61:
                    df:a2:d9:ab:30:ad:6a:d5:c1:6a:f8:af:3c:4d:00:e9:
                    e6:f1:19:15:99:98:e3:4b:bf:b8:d3:1d:1e:1f:53:d3:
                    2e:ef:ac:db:dc:90:5a:db:2e:ca:db:58:52:bc:c9:60:
                    52:fb:01:f7:d6:8f:52:ee:48:ba:f8:2b:4d:0f:7d:e6:
                    3c:68:e8:f5:36:bb:d0:ca:89:f3:fe:ae:52:50:f4:e6:
                    83:c3:6c:11:27:30:02:2c:be:28:31:38:9a:d7:3a:05:
                    ed:60:2a:f8:28:8a:b2:59:75:bf:d8:fe:b1:c6:2d:41:
                    22:25:e5:7a:f9:71:21:ae:66:f3:46:bc:c2:01:54:4b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RFC822 Name: "rfc822@name.tld"
                DNS name: "test.com"
                IP Address:
                    87:07:31:2e:32:2e:33:2e:34
                Registered ID: OID.2.955.79.73.68.46.48.46.50.46.50.49.51
                Reasons:
                    80
                    (7 least significant bits unused)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        af:c8:ca:67:ec:c2:76:5d:bd:d0:74:03:db:bb:65:41:
        ed:0d:18:e7:c0:50:24:46:52:a3:08:14:38:6d:72:b0:
        1b:55:44:ad:3b:5f:94:68:46:1f:2e:71:6b:c9:22:cd:
        77:1e:fc:07:ca:62:68:ef:35:8c:eb:b1:e8:f5:dc:07:
        60:ee:f8:2c:40:06:59:e1:e0:72:8d:c4:d1:fb:6f:1a:
        27:82:a6:cc:08:e8:31:ca:af:d3:44:fd:d4:e4:4e:4b:
        49:93:1a:cb:4d:d2:f1:77:51:bc:39:e0:df:de:6e:88:
        4e:e9:9c:54:2f:1c:d5:72:e0:0c:a5:49:7e:b2:ff:aa:
        ed:08:51:57:f5:f8:a9:8a:71:4f:31:76:3f:51:25:ce:
        4d:fa:3d:7a:92:81:21:70:dc:aa:75:35:87:61:dd:2c:
        99:c0:cf:00:3b:8b:64:31:36:78:dc:09:fc:21:9a:bb:
        b5:5e:0a:7f:2c:80:37:bc:bd:7f:bf:6b:f0:5a:bc:00:
        d5:22:68:ec:d5:b3:0b:3c:0d:8e:5a:98:d8:04:0c:7d:
        3b:24:14:8b:3a:36:fd:66:de:64:d3:e8:b8:21:9e:dc:
        0d:77:bb:42:9f:d5:1a:e0:db:ae:36:8b:b7:c4:d4:32:
        bb:83:32:b4:05:b6:64:2b:77:42:be:3e:be:2f:d4:26
    Fingerprint (SHA-256):
        E1:81:FB:93:19:FA:C0:B1:A2:23:D3:23:A3:56:EC:7F:EE:90:EA:ED:59:EE:30:98:96:C3:E4:F5:65:C4:6D:0E
    Fingerprint (SHA1):
        1E:42:01:3D:16:2C:4E:EC:F1:13:D5:BA:6A:81:9F:61:0F:2D:04:9B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5454: CRL Distribution Points Extension (7) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt8 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt8, E=TestExt8@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
2
SN=asdfsdf
4
3
test.com
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > Enter the relative name: 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:cf:b6
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sun Aug 06 23:57:21 2017
            Not After : Mon Nov 06 23:57:21 2017
        Subject: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:4a:05:0d:d9:8f:c5:9e:4e:19:d4:04:43:aa:1e:00:
                    34:b7:ab:2c:03:e3:2b:27:51:e5:f9:50:e6:57:f5:27:
                    18:fa:20:e3:11:e3:78:35:bd:52:14:53:a6:a4:38:7b:
                    89:4d:15:1b:8f:1c:00:c9:e4:b3:2c:8e:13:59:a4:25:
                    ce:f0:05:c6:19:37:e4:5b:d7:04:9c:13:b5:b5:61:ec:
                    4b:13:15:89:ec:1a:74:17:26:e1:7f:fa:d6:f6:84:9e:
                    96:9a:a7:78:a5:f8:a4:14:34:66:77:ff:54:3f:50:9f:
                    52:5d:7f:f0:8e:89:1f:53:19:6d:0d:4d:23:39:5c:5f:
                    96:ba:11:21:a0:b2:70:73:25:f3:65:60:93:b6:02:f8:
                    9c:3e:e4:69:bf:65:bf:24:21:ed:75:dd:76:f7:3b:50:
                    85:dc:36:8b:47:0f:14:1b:35:d5:4c:67:e5:15:d0:96:
                    d3:c2:e6:14:0c:97:a3:91:a7:c4:10:0b:de:8b:2f:07:
                    b6:9b:17:63:52:79:42:49:f1:b0:b9:dd:99:45:89:65:
                    48:58:ad:ad:ef:8e:aa:54:30:27:61:42:3b:83:86:97:
                    24:2d:e3:82:3c:04:ca:82:e9:a3:c8:f2:f9:d0:2f:d4:
                    36:f6:f4:0c:0f:7f:cc:24:b9:f5:06:8d:d2:6f:dd:75
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RDN: "SN=asdfsdf"
                Reasons:
                    08
                    (7 least significant bits unused)
                CRL issuer: 
                    DNS name: "test.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:99:b5:0a:88:87:da:91:c6:0f:70:90:2e:49:64:1a:
        f7:bd:e7:a9:b3:9d:89:91:16:25:ed:6e:97:a6:8a:83:
        90:89:e7:d2:e8:b5:44:86:72:bc:09:ad:fa:81:c0:38:
        86:63:d0:bd:18:f3:c9:6a:6e:78:a7:6a:01:e5:f8:ef:
        fd:ab:7f:9e:33:a9:86:17:d0:19:79:60:29:07:bb:f4:
        d3:8b:ca:4e:74:03:6d:a7:97:62:5e:61:13:bc:ae:f0:
        27:c3:f1:63:7f:c8:06:c7:5c:58:fd:fc:8f:93:67:e6:
        cc:59:4c:2b:69:b9:ee:e9:6a:4e:7a:2d:c0:e7:24:fa:
        86:51:31:cd:a9:94:60:f4:24:d8:5f:95:87:c7:06:a6:
        5b:8e:74:5b:a6:f0:e6:7e:09:b9:0b:94:4b:09:b8:a6:
        e1:ca:b4:de:2c:05:34:c6:3d:51:e6:f4:d4:13:72:99:
        fc:7f:e7:57:0e:24:4c:51:d4:f2:16:e7:21:36:f6:b7:
        35:f5:e0:0f:b1:62:18:2c:49:ce:ba:40:2e:ab:60:00:
        d7:28:fb:f8:78:e8:de:b6:69:59:0b:0a:f4:07:b5:ec:
        00:a2:60:c6:30:a4:85:49:04:8e:58:44:87:5f:f5:ea:
        b0:5e:2e:c3:79:46:c1:fa:ad:a5:ec:6d:18:a3:23:98
    Fingerprint (SHA-256):
        6D:E9:79:F3:72:13:4E:67:2B:CE:5E:E1:3E:0C:39:16:66:C9:93:8B:66:C1:08:96:FC:3B:82:23:C6:F6:2B:F9
    Fingerprint (SHA1):
        D4:52:39:7B:53:88:62:29:0E:DE:67:10:E9:CC:2B:E0:A7:E2:05:FB
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5455: CRL Distribution Points Extension (8) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt9 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt9, E=TestExt9@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -5 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
0
1
2
10
n
Generating key.  This may take a few moments...
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt9
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:cf:b6
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sun Aug 06 23:57:21 2017
            Not After : Mon Nov 06 23:57:21 2017
        Subject: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ee:72:98:47:33:1d:b1:34:7c:a0:9e:c4:3f:7f:ec:3f:
                    a8:d1:db:73:42:5b:86:a9:ff:16:9f:9b:dc:09:29:43:
                    ad:10:bf:b3:10:ed:23:68:cb:6a:39:c8:b5:b7:4e:1e:
                    25:77:17:27:c3:11:e6:86:58:56:7e:98:33:eb:0e:aa:
                    06:75:6a:22:dd:a9:96:18:96:e9:33:e0:14:d9:3e:e1:
                    ea:d3:21:fa:d7:b2:1d:97:f0:74:97:a8:9f:60:e5:47:
                    40:e9:b5:85:5e:1f:30:76:ef:aa:6f:b7:74:4c:75:f2:
                    5e:fc:8d:ad:42:3d:1a:16:56:67:1f:3a:54:0f:66:c1:
                    18:26:aa:bf:12:ea:7a:74:73:c8:dc:29:14:a1:b0:75:
                    d8:38:22:c5:0d:82:6e:ef:b9:7b:7e:6e:f6:61:2d:2e:
                    3c:b9:1b:c4:7f:f9:5c:30:0f:8e:c7:10:81:3c:06:cf:
                    4b:35:5f:a9:f8:d8:ec:51:65:e7:e1:77:d2:92:d4:7a:
                    6b:65:15:23:05:70:64:aa:15:4f:38:7e:97:e0:d5:47:
                    21:0f:95:30:00:a4:2f:d9:8e:f4:d9:b3:9f:7c:4a:65:
                    75:cf:7b:63:8b:94:be:95:9f:d8:b3:a3:b6:0b:49:d5:
                    52:b3:a2:60:a4:e0:95:31:3a:ba:e0:db:2c:35:a1:21
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL Client,SSL Server,S/MIME>
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        aa:63:ba:43:3e:8f:02:27:8c:ba:ad:b0:ad:48:11:18:
        d6:b4:20:6c:21:68:7a:19:a5:52:24:2e:50:b8:ba:35:
        e3:05:cc:33:2d:f6:d4:f1:25:1b:b4:3e:bf:10:a7:49:
        bb:f2:36:4a:d6:30:75:a1:bf:ca:6e:d1:95:81:6d:96:
        16:50:58:e9:9f:5f:02:3d:ac:53:75:eb:c1:3d:41:f7:
        a0:82:c0:1a:ea:c6:46:3f:df:f6:da:5c:ea:95:10:05:
        d4:7c:f1:be:04:22:a3:10:db:6c:f2:53:0b:c4:02:93:
        36:26:de:1a:7c:27:0c:1d:19:2c:ad:7c:05:59:f9:62:
        32:df:df:80:3c:d1:f9:fc:72:bd:e5:34:d8:37:46:7b:
        86:29:9d:6f:ec:58:a0:89:96:e5:2b:0a:59:c7:2b:45:
        cc:f3:c5:50:b7:1a:dc:b8:ef:e3:34:bd:68:81:b0:1f:
        fe:f8:78:c7:f3:2d:c6:bd:48:56:bf:b3:8f:b5:1c:83:
        b3:74:8a:95:3c:0d:e8:90:78:7d:6c:b1:c5:7f:d4:5e:
        06:67:2d:77:5c:9a:12:01:88:ff:22:59:a8:8c:8b:e0:
        f0:8f:16:71:b7:50:54:da:f0:9b:7b:ef:96:aa:d3:78:
        23:18:61:8c:30:a6:34:eb:30:40:8a:97:f3:5b:78:d2
    Fingerprint (SHA-256):
        02:18:C2:FC:DB:C4:0E:68:98:F5:EA:3D:57:2E:2C:4F:92:10:B8:A0:F1:5B:EE:3D:87:73:89:BD:34:3A:81:CB
    Fingerprint (SHA1):
        6F:FD:5F:55:BD:5A:E9:C6:29:BF:C2:E5:06:47:93:FC:7F:B9:AD:A5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5456: Certificate Type Extension (9) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt10 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt10, E=TestExt10@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -6 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt10
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:cf:b7
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Sun Aug 06 23:57:22 2017
            Not After : Mon Nov 06 23:57:22 2017
        Subject: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:a5:20:f4:36:d9:99:a8:77:60:ca:0f:c7:9d:78:50:
                    a4:a8:13:f8:bc:df:24:08:84:22:fb:e9:34:c3:fc:b5:
                    6c:d6:ff:71:b6:6e:ea:ed:44:89:90:1d:1c:72:a1:93:
                    94:4d:ed:ff:a6:5f:70:da:d1:ab:a0:00:9c:d5:20:51:
                    88:2b:67:60:57:1b:53:85:e5:f6:c0:65:35:7c:41:d9:
                    a0:1d:93:03:4b:04:58:b6:cf:e6:a2:18:aa:b3:55:13:
                    4b:d4:de:ec:b1:d7:7d:4b:bd:17:6a:62:ab:7c:e5:d2:
                    19:d1:52:a4:f5:b5:34:ac:d9:f0:4c:6f:0d:1e:b3:37:
                    0b:57:65:6b:cb:5a:3e:46:30:57:09:6f:f6:34:c7:a0:
                    c3:b1:8a:c8:2d:a3:ef:17:2a:6d:6f:bb:66:00:47:d3:
                    35:57:0e:29:8e:18:a6:8c:f7:b3:cc:9a:e4:d3:9f:a8:
                    94:2f:dc:d0:2e:ac:84:85:66:25:f6:f5:90:95:12:15:
                    18:16:81:51:36:15:4d:06:bc:98:09:1a:c9:14:80:12:
                    fe:cf:b0:e4:fb:81:73:fb:5e:58:c8:b3:c0:95:84:39:
                    19:31:e4:8a:d8:61:d3:fd:b9:47:41:24:ac:c1:bf:04:
                    9b:ea:83:a7:cc:b8:e0:e7:1f:f4:3e:1b:bd:d3:99:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Extended Key Usage
            Critical: True
                TLS Web Server Authentication Certificate
                TLS Web Client Authentication Certificate
                Code Signing Certificate
                E-Mail Protection Certificate
                Time Stamping Certifcate
                OCSP Responder Certificate
                Strong Crypto Export Approved
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        11:8f:f0:b8:91:12:c9:b0:6d:47:34:6a:28:61:ad:cf:
        31:0a:a3:29:08:c3:db:12:a1:59:f7:a5:6f:a7:7b:bf:
        86:63:37:07:cf:cc:27:99:18:03:85:35:77:64:17:24:
        3e:cc:b0:c2:32:ea:0a:80:0b:26:74:68:f5:4e:aa:fa:
        88:06:f3:fd:1c:53:17:34:e6:22:27:4b:50:68:fd:c9:
        28:16:a2:3a:60:8b:52:bc:6c:cc:fc:ec:b7:a7:2b:1e:
        10:42:82:c7:45:19:19:9e:71:ec:62:6c:53:3c:33:f7:
        a2:7f:d6:75:0e:f2:a4:04:70:61:a8:29:4c:57:36:09:
        7f:c9:08:0d:0c:75:2f:87:7e:f9:15:30:3d:85:8e:dd:
        37:fa:07:2f:0d:c2:ca:43:b4:86:a6:db:98:6f:50:c9:
        9c:61:6a:2b:08:27:f1:5d:5b:d1:20:1e:c9:23:34:1b:
        80:eb:88:83:01:a2:1e:ce:0b:d2:25:77:88:a2:b2:46:
        f9:da:90:5b:02:d4:e2:62:21:0a:40:05:39:60:85:31:
        99:ac:d8:6a:c6:d8:5c:d3:55:4a:00:fa:46:67:34:c9:
        89:c2:14:85:94:dc:0d:1f:28:37:1c:b4:f5:3a:22:d8:
        b6:52:02:1a:8d:8f:d5:9a:f1:44:88:26:79:e9:db:26
    Fingerprint (SHA-256):
        0D:3D:D8:95:7B:6D:E2:9E:FF:CB:43:7D:11:F8:8C:57:55:B6:3B:1A:4E:F6:95:0F:E4:03:AA:EC:2B:F1:F5:CA
    Fingerprint (SHA1):
        A4:37:A2:1E:39:BA:92:A1:19:CB:23:26:68:05:0D:76:4B:1F:C4:2F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5457: Extended Key Usage Extension (10) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt11 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt11
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:cf:b7
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Sun Aug 06 23:57:22 2017
            Not After : Mon Nov 06 23:57:22 2017
        Subject: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:2c:ad:2a:01:2b:19:08:64:bb:73:30:4f:7a:60:72:
                    1a:97:59:10:ec:18:3c:01:5c:28:e5:b0:4b:13:17:c4:
                    27:7b:b9:a6:c7:ab:9f:81:d3:06:54:18:d6:09:b2:67:
                    25:7a:5e:6c:0f:41:d0:29:d6:90:65:a2:30:7d:79:28:
                    36:33:ca:9f:f8:5b:7e:91:a9:5e:70:39:49:ce:78:b2:
                    65:50:42:92:4c:07:0f:dd:d9:85:de:db:86:4f:52:32:
                    15:da:b6:14:53:65:0a:72:97:f4:bf:49:c7:18:22:d3:
                    ce:08:41:6a:96:9c:94:ba:de:16:b8:af:5a:ab:f0:92:
                    6f:23:6e:7c:74:b3:5e:3e:23:0c:fc:a7:0f:b6:53:e6:
                    84:d4:62:c8:ed:91:0b:f7:5d:8c:16:7f:a0:c3:e9:c8:
                    cf:53:af:28:d8:95:bb:9f:a8:3d:d8:b4:f0:cb:cb:cf:
                    f4:1a:13:78:56:1e:31:49:59:d6:65:fd:c0:24:e8:6e:
                    d3:42:7a:ef:4d:00:b7:49:f9:b3:4b:b1:a9:2f:07:65:
                    6a:bb:98:2c:11:cb:f5:3e:80:f5:fa:7b:8a:39:3a:9f:
                    45:22:f0:3d:b8:77:a2:c0:da:e7:1c:62:80:4f:03:01:
                    53:27:73:66:9d:8c:02:5e:46:c0:35:7b:88:f8:24:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:b1:b4:3c:c0:64:2d:e7:b4:35:8f:76:49:57:0c:8b:
        42:a2:82:aa:de:29:7e:f7:4b:d1:93:26:cf:0b:d9:22:
        5d:83:27:28:ec:61:b3:20:28:0b:fc:be:96:7e:d1:2c:
        07:40:70:89:7b:66:ae:80:6e:00:c9:1b:5e:66:96:40:
        52:4e:9d:48:6c:9a:f0:14:23:a4:b5:0c:a6:8f:e6:ec:
        58:23:be:73:18:de:62:0f:bb:d3:12:14:49:f0:60:b7:
        69:d2:fb:69:b7:0b:30:3d:40:fc:dd:b5:98:d7:a5:54:
        ef:ce:ca:5d:bb:8e:cc:55:d6:a1:93:6e:70:f9:61:52:
        7f:60:f7:f6:85:77:ba:77:f7:60:5a:92:6e:01:62:0a:
        a9:c1:26:b7:d3:d4:cf:96:04:1b:f6:63:f0:23:76:22:
        5e:09:bb:e6:b6:95:4e:02:19:19:db:ee:e9:c8:21:25:
        79:91:f8:2d:fa:c4:2f:f0:21:7c:0c:72:56:e9:bf:a8:
        0a:29:0f:12:e3:54:20:1f:00:0c:d3:50:96:c0:0b:f8:
        da:96:f3:b8:79:63:0f:55:b6:21:0e:0a:04:f3:eb:67:
        d8:38:65:eb:25:a2:b9:ab:d4:a4:30:af:8b:5d:97:d4:
        3c:2b:85:f3:e3:e1:56:2e:2a:2b:ed:ca:c0:f1:e9:b6
    Fingerprint (SHA-256):
        2C:0E:3F:54:33:2B:2E:C0:A3:FB:93:ED:5B:51:B7:3C:2F:F7:AB:43:3C:EE:AB:60:93:CA:78:31:54:F4:AC:93
    Fingerprint (SHA1):
        B9:2B:EB:65:1D:47:79:9D:D2:84:2A:4A:C4:1E:BE:61:82:4B:2E:F1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5458: Certificate Key Usage Extension (11) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #5459: create cert with invalid SAN parameter (12) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com,dns:www.example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #5460: create cert with invalid SAN parameter (13) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN dns:example.com,dns:www.example.com
Generating key.  This may take a few moments...
cert.sh: #5461: create cert with valid SAN parameter (14) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:cf:b8
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Sun Aug 06 23:57:22 2017
            Not After : Mon Nov 06 23:57:22 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:65:76:81:e5:46:10:01:c9:c2:ca:7f:74:ac:f3:92:
                    7f:ac:23:cb:ca:26:7b:0c:19:dd:26:ce:b3:8a:35:a0:
                    3b:47:a8:87:f0:74:31:fc:a2:b3:82:03:2b:84:cf:db:
                    63:f1:d9:3d:2a:54:e4:6f:7f:b1:2a:8b:24:b5:3f:41:
                    af:21:3c:eb:23:f7:c6:b6:4c:38:ab:f5:17:0e:ba:d9:
                    9b:76:0b:3f:21:74:2f:1a:06:44:50:85:d8:4e:16:18:
                    d5:9a:37:f1:43:32:57:5e:46:8d:49:9c:69:37:0b:34:
                    9a:7f:d1:98:f9:1c:88:d2:3f:02:71:5b:ef:50:2e:96:
                    99:fc:c7:36:26:5f:63:e1:5b:e2:d1:c2:bf:74:de:53:
                    a0:fc:f8:5a:6e:5d:54:42:e4:43:d9:54:13:67:7b:fe:
                    33:67:dc:fd:21:23:53:9d:4c:12:9d:b0:8a:21:4d:86:
                    b9:01:2d:d8:6f:f4:96:60:54:57:9a:f3:2d:02:48:4b:
                    17:eb:37:71:67:d2:0b:12:84:53:84:71:8d:2a:db:97:
                    c6:06:25:dc:0e:3c:83:ed:90:e1:2c:93:ab:05:b3:4f:
                    77:79:6d:e3:8a:f8:66:33:1b:98:98:d9:56:74:24:fd:
                    1d:08:a2:d1:cd:d7:46:b0:7e:68:9e:60:07:2a:58:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7e:4f:d9:68:f5:fe:fa:25:f7:de:67:60:8d:15:cb:9d:
        18:29:e3:c0:d9:37:70:55:b3:d4:35:f2:7a:cd:20:61:
        45:16:99:20:61:54:67:06:35:41:d7:17:7e:50:ee:06:
        51:86:31:5e:17:9a:da:72:79:38:f4:56:93:98:1a:d1:
        98:a0:8f:90:bb:3b:f9:5d:0a:d4:82:73:eb:87:59:66:
        e5:9e:bc:89:83:bd:21:54:10:e7:06:c1:f7:3e:43:b9:
        e5:c9:d6:1d:9e:87:58:e6:d0:5a:79:c7:21:8d:71:4f:
        35:81:5a:13:15:49:9f:9b:5f:30:d8:d3:e0:e7:ac:a8:
        19:07:3c:38:c8:2e:43:3d:93:f9:d8:17:06:cb:9a:f2:
        de:89:c1:3e:eb:80:20:29:ba:73:f1:e5:5d:41:db:cc:
        84:5f:b8:c6:0c:e9:d3:5d:e5:3b:c9:e9:95:ad:bd:00:
        b3:b8:50:4a:86:0a:d2:d8:80:38:cd:16:9c:76:6d:18:
        34:91:f9:24:83:fa:77:88:fd:66:43:99:c9:ec:9d:d6:
        fc:d6:63:25:c0:8c:76:14:a1:13:88:58:41:d3:25:f9:
        f0:e2:1e:da:28:f0:ac:36:ad:f5:12:07:61:60:e1:f2:
        58:d4:d8:9c:1a:e0:fe:24:b0:36:11:ec:5a:9b:fc:ca
    Fingerprint (SHA-256):
        25:BD:74:9D:E3:AC:2E:65:B1:D3:DC:D9:3D:E1:B7:AF:29:6C:96:01:E4:22:63:1F:8F:24:50:A5:F1:2D:67:87
    Fingerprint (SHA1):
        56:E9:14:62:6E:4E:99:DE:F2:F9:6C:92:05:F3:95:3E:69:1A:35:78
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5462: create cert with valid SAN parameter (15) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN --dump-ext-val 2.5.29.17
writing output to /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
cert.sh: #5463: dump extension 2.5.29.17 to file /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der (16) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #5464: create cert with valid SAN parameter (17) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #5465: expect failure to list cert, because we deleted it (18) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der: error 0: Success
cert.sh: #5466: create cert with invalid generic ext parameter (19) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der: error 0: Success
cert.sh: #5467: create cert with invalid generic ext parameter (20) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der: error 0: Success
cert.sh: #5468: create cert with invalid generic ext parameter (21) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric 2.5.29.17:not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
Generating key.  This may take a few moments...
cert.sh: #5469: create cert with valid generic ext parameter (22) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:cf:b9
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Sun Aug 06 23:57:23 2017
            Not After : Mon Nov 06 23:57:23 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:4d:35:71:9a:cf:03:8a:81:33:eb:f8:c4:79:1b:bc:
                    0b:51:93:ff:f8:f7:5e:b2:d1:37:c6:d4:98:a4:e7:54:
                    74:7a:d5:a8:d9:64:6c:28:36:19:69:4b:19:0f:56:e8:
                    a9:25:c9:8c:f7:ae:ab:27:ed:35:96:18:11:a7:2a:6b:
                    53:6f:d6:bb:f8:99:fe:42:ef:40:20:e7:0c:b2:e5:f3:
                    1c:75:75:05:9c:5b:56:53:6d:45:78:e4:bb:02:66:85:
                    4a:1a:7c:1d:67:23:70:d5:3d:fb:d9:11:6d:4d:89:7d:
                    df:18:b5:e3:54:24:be:63:1d:38:eb:a7:95:6d:7e:eb:
                    d6:4f:34:d8:2f:7d:9f:5a:0f:c7:28:6d:60:6b:12:2a:
                    19:71:84:d6:a6:72:7d:97:93:67:fb:f7:b5:1a:87:51:
                    86:7b:ca:0e:24:e5:39:ff:4f:03:29:dd:96:46:16:12:
                    12:88:cf:9c:e2:bb:09:b2:22:a5:0e:d7:b2:b5:5b:82:
                    06:33:88:76:bb:6b:4a:06:9b:d0:8f:1a:7e:8d:43:1c:
                    5c:6d:49:5c:70:4e:9e:be:bf:b7:40:4a:d8:70:91:a1:
                    54:a8:cb:09:ca:c8:40:27:19:f2:ef:ac:3a:a9:7e:d7:
                    17:c8:6c:e5:9a:b4:68:96:ae:0b:8a:2e:5c:ca:08:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:d6:a0:a3:74:d6:a5:d0:86:89:33:35:e3:ac:d7:aa:
        59:f0:87:8a:32:f5:a4:ca:dd:19:05:20:92:07:3b:3f:
        62:11:e2:ee:af:7d:c8:10:a8:d8:48:ba:cd:59:95:e8:
        24:a6:40:2e:05:ad:eb:e0:f4:66:24:41:e9:89:d6:45:
        5d:e4:99:38:ca:be:5e:2d:85:a5:d4:35:af:65:59:68:
        82:f7:48:64:24:14:83:60:69:f5:ae:3f:a2:a8:33:5b:
        01:3e:e0:e9:5f:50:e3:49:95:9a:b1:cd:63:d8:68:56:
        58:14:31:0b:91:a0:a6:92:fc:3a:70:28:07:cd:9e:8d:
        be:9f:c1:18:9b:34:3a:59:1a:fc:45:cb:f7:84:2d:38:
        f8:78:91:61:db:8c:14:4a:fd:8d:7d:c3:4a:6d:b1:bd:
        52:1f:4e:91:5e:ac:9f:6f:3a:f6:0e:60:fb:f1:8c:0a:
        8c:8b:ed:30:33:67:e0:a6:0c:c9:68:5c:ff:1d:3d:07:
        dc:ea:77:16:09:e6:ba:96:07:74:a3:6f:7d:49:b8:35:
        04:5d:e2:f3:77:b5:13:b8:e9:d5:98:d1:5b:b4:3d:cc:
        e3:f9:0f:06:1c:7a:d0:e4:8c:f2:bb:9d:b7:67:4f:d0:
        64:90:13:02:5c:f3:d0:05:4a:88:0c:e5:37:5c:e3:83
    Fingerprint (SHA-256):
        A4:AA:60:D2:0A:F4:B7:14:44:7E:CE:BB:46:66:BA:1E:72:45:19:64:21:FA:19:55:43:C0:6D:9C:7C:A3:BA:C5
    Fingerprint (SHA1):
        2E:1D:F0:08:31:68:B1:41:C5:C9:C5:CB:0F:3B:10:F1:4F:61:ED:22
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5470: create cert with valid generic ext parameter (23) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #5471: create cert with valid generic ext parameter (24) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #5472: expect failure to list cert, because we deleted it (25) - PASSED
cert.sh: Create A Password Test Cert  ==============
cert.sh: Create A Password Test Ca  --------
cert.sh: Creating a CA Certificate PasswordCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dbpass
cert.sh: Creating CA Cert DB --------------------------
certutil -s "CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dbpass -f ../tests.pw
cert.sh: #5473: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dbpass
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5474: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert PasswordCA  --------------------------
certutil -s "CN=NSS Password Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dbpass -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5475: Creating CA Cert PasswordCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n PasswordCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dbpass -o root.cert
cert.sh: #5476: Exporting Root Cert - PASSED
cert.sh: Changing password on Password Test Cert's Cert DB --------------------------
certutil -W -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dbpass -f ../tests.pw -@ ../tests.fipspw
Password changed successfully.
cert.sh: #5477: Changing password on Password Test Cert's Cert DB - PASSED
cert.sh: Generate Certificate for Password Test Cert with new password --------------------------
certutil -s "CN=Password Test Cert, E=password@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCert -c PasswordCA -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dbpass -f ../tests.fipspw -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5478: Generate Certificate for Password Test Cert with new password - PASSED
cert.sh SUCCESS: PASSWORD passed
cert.sh: Verify Certificate for Password Test Cert with new password --------------------------
certutil -V -n PasswordCert -u S -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dbpass -f ../tests.fipspw
certutil: certificate is valid
cert.sh: #5479: Verify Certificate for Password Test Cert with new password - PASSED
cert.sh: Creating Distrusted Certificate
cert.sh: Initializing Distrusted's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
cert.sh: #5480: Initializing Distrusted's Cert DB - PASSED
cert.sh: Loading root cert module to Distrusted's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5481: Loading root cert module to Distrusted's Cert DB - PASSED
cert.sh: Import Root CA for Distrusted --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -i ../CA/TestCA.ca.cert
cert.sh: #5482: Import Root CA for Distrusted - PASSED
cert.sh: Import DSA Root CA for Distrusted --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -i ../CA/TestCA-dsa.ca.cert
cert.sh: #5483: Import DSA Root CA for Distrusted - PASSED
cert.sh: Import EC Root CA for Distrusted --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -i ../CA/TestCA-ec.ca.cert
cert.sh: #5484: Import EC Root CA for Distrusted - PASSED
cert.sh: Generate Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5485: Generate Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's Request --------------------------
certutil -C -c TestCA -m 2000 -v 60 -d ../CA -i req -o Distrusted.cert -f ../tests.pw 
cert.sh: #5486: Sign Distrusted's Request - PASSED
cert.sh: Import Distrusted's Cert --------------------------
certutil -A -n Distrusted -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5487: Import Distrusted's Cert - PASSED
cert.sh SUCCESS: Distrusted's Cert Created
cert.sh: Generate DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5488: Generate DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 2000 -v 60 -d ../CA -i req -o Distrusted-dsa.cert -f ../tests.pw 
cert.sh: #5489: Sign Distrusted's DSA Request - PASSED
cert.sh: Import Distrusted's DSA Cert --------------------------
certutil -A -n Distrusted-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5490: Import Distrusted's DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5491: Generate mixed DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 22000 -v 60 -d ../CA -i req -o Distrusted-dsamixed.cert -f ../tests.pw 
cert.sh: #5492: Sign Distrusted's DSA Request with RSA - PASSED
cert.sh: Import Distrusted's mixed DSA Cert --------------------------
certutil -A -n Distrusted-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5493: Import Distrusted's mixed DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5494: Generate EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request --------------------------
certutil -C -c TestCA-ec -m 2000 -v 60 -d ../CA -i req -o Distrusted-ec.cert -f ../tests.pw 
cert.sh: #5495: Sign Distrusted's EC Request - PASSED
cert.sh: Import Distrusted's EC Cert --------------------------
certutil -A -n Distrusted-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5496: Import Distrusted's EC Cert - PASSED
cert.sh SUCCESS: Distrusted's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5497: Generate mixed EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request with RSA --------------------------
certutil -C -c TestCA -m 12000 -v 60 -d ../CA -i req -o Distrusted-ecmixed.cert -f ../tests.pw 
cert.sh: #5498: Sign Distrusted's EC Request with RSA - PASSED
cert.sh: Import Distrusted's mixed EC Cert --------------------------
certutil -A -n Distrusted-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5499: Import Distrusted's mixed EC Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed EC Cert Created
cert.sh: Mark CERT as unstrusted --------------------------
certutil -M -n Distrusted -t p,p,p -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
cert.sh: #5500: Mark CERT as unstrusted - PASSED
cert.sh: Creating Distrusted Intermediate
cert.sh: Creating a CA Certificate DistrustedCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA
cert.sh: Creating CA Cert DistrustedCA  --------------------------
certutil -s "CN=DistrustedCA, E=DistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n DistrustedCA -t ,, -v 600 -c TestCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2010
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Is this a critical extension [y/N]?
cert.sh: #5501: Creating CA Cert DistrustedCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n DistrustedCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -o root.cert
cert.sh: #5502: Exporting Root Cert - PASSED
cert.sh: Import Distrusted Intermediate --------------------------
certutil -A -n DistrustedCA -t p,p,p -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -i ../CA/DistrustedCA.ca.cert
cert.sh: #5503: Import Distrusted Intermediate - PASSED
cert.sh: Generate Cert Request for Leaf Chained to Distrusted CA --------------------------
certutil -s "CN=LeafChainedToDistrustedCA, E=LeafChainedToDistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5504: Generate Cert Request for Leaf Chained to Distrusted CA - PASSED
cp: './req' and '/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA/req' are the same file
cert.sh: Sign LeafChainedToDistrustedCA's Request --------------------------
certutil -C -c DistrustedCA -m 100 -v 60 -d ../CA -i req -o LeafChainedToDistrustedCA.cert -f ../tests.pw
cert.sh: #5505: Sign LeafChainedToDistrustedCA's Request - PASSED
cert.sh: Import LeafChainedToDistrustedCA's Cert  -t u,u,u --------------------------
certutil -A -n LeafChainedToDistrustedCA -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i LeafChainedToDistrustedCA.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5506: Import LeafChainedToDistrustedCA's Cert  -t u,u,u - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Server --------------------------
certutil -V -n LeafChainedToDistrustedCA -u V -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #5507: Verify LeafChainedToDistrustedCA Cert for SSL Server - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Client --------------------------
certutil -V -n LeafChainedToDistrustedCA -u C -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #5508: Verify LeafChainedToDistrustedCA Cert for SSL Client - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u S -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #5509: Verify LeafChainedToDistrustedCA Cert for Email signer - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email recipient --------------------------
certutil -V -n LeafChainedToDistrustedCA -u R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #5510: Verify LeafChainedToDistrustedCA Cert for Email recipient - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for OCSP responder --------------------------
certutil -V -n LeafChainedToDistrustedCA -u O -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #5511: Verify LeafChainedToDistrustedCA Cert for OCSP responder - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Object Signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u J -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #5512: Verify LeafChainedToDistrustedCA Cert for Object Signer - PASSED
cert.sh: Verify Distrusted Cert for SSL Server --------------------------
certutil -V -n Distrusted -u V -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #5513: Verify Distrusted Cert for SSL Server - PASSED
cert.sh: Verify Distrusted Cert for SSL Client --------------------------
certutil -V -n Distrusted -u C -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #5514: Verify Distrusted Cert for SSL Client - PASSED
cert.sh: Verify Distrusted Cert for Email signer --------------------------
certutil -V -n Distrusted -u S -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #5515: Verify Distrusted Cert for Email signer - PASSED
cert.sh: Verify Distrusted Cert for Email recipient --------------------------
certutil -V -n Distrusted -u R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #5516: Verify Distrusted Cert for Email recipient - PASSED
cert.sh: Verify Distrusted Cert for OCSP responder --------------------------
certutil -V -n Distrusted -u O -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #5517: Verify Distrusted Cert for OCSP responder - PASSED
cert.sh: Verify Distrusted Cert for Object Signer --------------------------
certutil -V -n Distrusted -u J -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #5518: Verify Distrusted Cert for Object Signer - PASSED
cert.sh: OCSP response creation selftest
cert.sh: perform selftest --------------------------
ocspresp /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA serverCA chain-1-serverCA -f ../tests.pw
cert.sh: #5519: perform selftest - PASSED
cert.sh: Creating Client CA Issued Certificates Range 40 - 52 ===
cert.sh: Generate Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5520: Generate Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o TestUser40.cert -f ../tests.pw 
cert.sh: #5521: Sign TestUser40's Request - PASSED
cert.sh: Import TestUser40's Cert --------------------------
certutil -A -n TestUser40 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5522: Import TestUser40's Cert - PASSED
cert.sh SUCCESS: TestUser40's Cert Created
cert.sh: Generate DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5523: Generate DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o TestUser40-dsa.cert -f ../tests.pw 
cert.sh: #5524: Sign TestUser40's DSA Request - PASSED
cert.sh: Import TestUser40's DSA Cert --------------------------
certutil -A -n TestUser40-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5525: Import TestUser40's DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5526: Generate mixed DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o TestUser40-dsamixed.cert -f ../tests.pw 
cert.sh: #5527: Sign TestUser40's DSA Request with RSA - PASSED
cert.sh: Import TestUser40's mixed DSA Cert --------------------------
certutil -A -n TestUser40-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5528: Import TestUser40's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5529: Generate EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o TestUser40-ec.cert -f ../tests.pw 
cert.sh: #5530: Sign TestUser40's EC Request - PASSED
cert.sh: Import TestUser40's EC Cert --------------------------
certutil -A -n TestUser40-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5531: Import TestUser40's EC Cert - PASSED
cert.sh SUCCESS: TestUser40's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5532: Generate mixed EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o TestUser40-ecmixed.cert -f ../tests.pw 
cert.sh: #5533: Sign TestUser40's EC Request with RSA - PASSED
cert.sh: Import TestUser40's mixed EC Cert --------------------------
certutil -A -n TestUser40-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5534: Import TestUser40's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5535: Generate Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's Request --------------------------
certutil -C -c TestCA -m 41 -v 60 -d ../CA -i req -o TestUser41.cert -f ../tests.pw 
cert.sh: #5536: Sign TestUser41's Request - PASSED
cert.sh: Import TestUser41's Cert --------------------------
certutil -A -n TestUser41 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5537: Import TestUser41's Cert - PASSED
cert.sh SUCCESS: TestUser41's Cert Created
cert.sh: Generate DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5538: Generate DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 41 -v 60 -d ../CA -i req -o TestUser41-dsa.cert -f ../tests.pw 
cert.sh: #5539: Sign TestUser41's DSA Request - PASSED
cert.sh: Import TestUser41's DSA Cert --------------------------
certutil -A -n TestUser41-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5540: Import TestUser41's DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5541: Generate mixed DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20041 -v 60 -d ../CA -i req -o TestUser41-dsamixed.cert -f ../tests.pw 
cert.sh: #5542: Sign TestUser41's DSA Request with RSA - PASSED
cert.sh: Import TestUser41's mixed DSA Cert --------------------------
certutil -A -n TestUser41-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5543: Import TestUser41's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5544: Generate EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request --------------------------
certutil -C -c TestCA-ec -m 41 -v 60 -d ../CA -i req -o TestUser41-ec.cert -f ../tests.pw 
cert.sh: #5545: Sign TestUser41's EC Request - PASSED
cert.sh: Import TestUser41's EC Cert --------------------------
certutil -A -n TestUser41-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5546: Import TestUser41's EC Cert - PASSED
cert.sh SUCCESS: TestUser41's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5547: Generate mixed EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10041 -v 60 -d ../CA -i req -o TestUser41-ecmixed.cert -f ../tests.pw 
cert.sh: #5548: Sign TestUser41's EC Request with RSA - PASSED
cert.sh: Import TestUser41's mixed EC Cert --------------------------
certutil -A -n TestUser41-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5549: Import TestUser41's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5550: Generate Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's Request --------------------------
certutil -C -c TestCA -m 42 -v 60 -d ../CA -i req -o TestUser42.cert -f ../tests.pw 
cert.sh: #5551: Sign TestUser42's Request - PASSED
cert.sh: Import TestUser42's Cert --------------------------
certutil -A -n TestUser42 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5552: Import TestUser42's Cert - PASSED
cert.sh SUCCESS: TestUser42's Cert Created
cert.sh: Generate DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5553: Generate DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 42 -v 60 -d ../CA -i req -o TestUser42-dsa.cert -f ../tests.pw 
cert.sh: #5554: Sign TestUser42's DSA Request - PASSED
cert.sh: Import TestUser42's DSA Cert --------------------------
certutil -A -n TestUser42-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5555: Import TestUser42's DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5556: Generate mixed DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20042 -v 60 -d ../CA -i req -o TestUser42-dsamixed.cert -f ../tests.pw 
cert.sh: #5557: Sign TestUser42's DSA Request with RSA - PASSED
cert.sh: Import TestUser42's mixed DSA Cert --------------------------
certutil -A -n TestUser42-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5558: Import TestUser42's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5559: Generate EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request --------------------------
certutil -C -c TestCA-ec -m 42 -v 60 -d ../CA -i req -o TestUser42-ec.cert -f ../tests.pw 
cert.sh: #5560: Sign TestUser42's EC Request - PASSED
cert.sh: Import TestUser42's EC Cert --------------------------
certutil -A -n TestUser42-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5561: Import TestUser42's EC Cert - PASSED
cert.sh SUCCESS: TestUser42's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5562: Generate mixed EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10042 -v 60 -d ../CA -i req -o TestUser42-ecmixed.cert -f ../tests.pw 
cert.sh: #5563: Sign TestUser42's EC Request with RSA - PASSED
cert.sh: Import TestUser42's mixed EC Cert --------------------------
certutil -A -n TestUser42-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5564: Import TestUser42's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5565: Generate Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's Request --------------------------
certutil -C -c TestCA -m 43 -v 60 -d ../CA -i req -o TestUser43.cert -f ../tests.pw 
cert.sh: #5566: Sign TestUser43's Request - PASSED
cert.sh: Import TestUser43's Cert --------------------------
certutil -A -n TestUser43 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5567: Import TestUser43's Cert - PASSED
cert.sh SUCCESS: TestUser43's Cert Created
cert.sh: Generate DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5568: Generate DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 43 -v 60 -d ../CA -i req -o TestUser43-dsa.cert -f ../tests.pw 
cert.sh: #5569: Sign TestUser43's DSA Request - PASSED
cert.sh: Import TestUser43's DSA Cert --------------------------
certutil -A -n TestUser43-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5570: Import TestUser43's DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5571: Generate mixed DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20043 -v 60 -d ../CA -i req -o TestUser43-dsamixed.cert -f ../tests.pw 
cert.sh: #5572: Sign TestUser43's DSA Request with RSA - PASSED
cert.sh: Import TestUser43's mixed DSA Cert --------------------------
certutil -A -n TestUser43-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5573: Import TestUser43's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5574: Generate EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request --------------------------
certutil -C -c TestCA-ec -m 43 -v 60 -d ../CA -i req -o TestUser43-ec.cert -f ../tests.pw 
cert.sh: #5575: Sign TestUser43's EC Request - PASSED
cert.sh: Import TestUser43's EC Cert --------------------------
certutil -A -n TestUser43-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5576: Import TestUser43's EC Cert - PASSED
cert.sh SUCCESS: TestUser43's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5577: Generate mixed EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10043 -v 60 -d ../CA -i req -o TestUser43-ecmixed.cert -f ../tests.pw 
cert.sh: #5578: Sign TestUser43's EC Request with RSA - PASSED
cert.sh: Import TestUser43's mixed EC Cert --------------------------
certutil -A -n TestUser43-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5579: Import TestUser43's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5580: Generate Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's Request --------------------------
certutil -C -c TestCA -m 44 -v 60 -d ../CA -i req -o TestUser44.cert -f ../tests.pw 
cert.sh: #5581: Sign TestUser44's Request - PASSED
cert.sh: Import TestUser44's Cert --------------------------
certutil -A -n TestUser44 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5582: Import TestUser44's Cert - PASSED
cert.sh SUCCESS: TestUser44's Cert Created
cert.sh: Generate DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5583: Generate DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 44 -v 60 -d ../CA -i req -o TestUser44-dsa.cert -f ../tests.pw 
cert.sh: #5584: Sign TestUser44's DSA Request - PASSED
cert.sh: Import TestUser44's DSA Cert --------------------------
certutil -A -n TestUser44-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5585: Import TestUser44's DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5586: Generate mixed DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20044 -v 60 -d ../CA -i req -o TestUser44-dsamixed.cert -f ../tests.pw 
cert.sh: #5587: Sign TestUser44's DSA Request with RSA - PASSED
cert.sh: Import TestUser44's mixed DSA Cert --------------------------
certutil -A -n TestUser44-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5588: Import TestUser44's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5589: Generate EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request --------------------------
certutil -C -c TestCA-ec -m 44 -v 60 -d ../CA -i req -o TestUser44-ec.cert -f ../tests.pw 
cert.sh: #5590: Sign TestUser44's EC Request - PASSED
cert.sh: Import TestUser44's EC Cert --------------------------
certutil -A -n TestUser44-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5591: Import TestUser44's EC Cert - PASSED
cert.sh SUCCESS: TestUser44's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5592: Generate mixed EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10044 -v 60 -d ../CA -i req -o TestUser44-ecmixed.cert -f ../tests.pw 
cert.sh: #5593: Sign TestUser44's EC Request with RSA - PASSED
cert.sh: Import TestUser44's mixed EC Cert --------------------------
certutil -A -n TestUser44-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5594: Import TestUser44's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5595: Generate Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's Request --------------------------
certutil -C -c TestCA -m 45 -v 60 -d ../CA -i req -o TestUser45.cert -f ../tests.pw 
cert.sh: #5596: Sign TestUser45's Request - PASSED
cert.sh: Import TestUser45's Cert --------------------------
certutil -A -n TestUser45 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5597: Import TestUser45's Cert - PASSED
cert.sh SUCCESS: TestUser45's Cert Created
cert.sh: Generate DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5598: Generate DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 45 -v 60 -d ../CA -i req -o TestUser45-dsa.cert -f ../tests.pw 
cert.sh: #5599: Sign TestUser45's DSA Request - PASSED
cert.sh: Import TestUser45's DSA Cert --------------------------
certutil -A -n TestUser45-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5600: Import TestUser45's DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5601: Generate mixed DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20045 -v 60 -d ../CA -i req -o TestUser45-dsamixed.cert -f ../tests.pw 
cert.sh: #5602: Sign TestUser45's DSA Request with RSA - PASSED
cert.sh: Import TestUser45's mixed DSA Cert --------------------------
certutil -A -n TestUser45-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5603: Import TestUser45's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5604: Generate EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request --------------------------
certutil -C -c TestCA-ec -m 45 -v 60 -d ../CA -i req -o TestUser45-ec.cert -f ../tests.pw 
cert.sh: #5605: Sign TestUser45's EC Request - PASSED
cert.sh: Import TestUser45's EC Cert --------------------------
certutil -A -n TestUser45-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5606: Import TestUser45's EC Cert - PASSED
cert.sh SUCCESS: TestUser45's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5607: Generate mixed EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10045 -v 60 -d ../CA -i req -o TestUser45-ecmixed.cert -f ../tests.pw 
cert.sh: #5608: Sign TestUser45's EC Request with RSA - PASSED
cert.sh: Import TestUser45's mixed EC Cert --------------------------
certutil -A -n TestUser45-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5609: Import TestUser45's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5610: Generate Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's Request --------------------------
certutil -C -c TestCA -m 46 -v 60 -d ../CA -i req -o TestUser46.cert -f ../tests.pw 
cert.sh: #5611: Sign TestUser46's Request - PASSED
cert.sh: Import TestUser46's Cert --------------------------
certutil -A -n TestUser46 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5612: Import TestUser46's Cert - PASSED
cert.sh SUCCESS: TestUser46's Cert Created
cert.sh: Generate DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5613: Generate DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 46 -v 60 -d ../CA -i req -o TestUser46-dsa.cert -f ../tests.pw 
cert.sh: #5614: Sign TestUser46's DSA Request - PASSED
cert.sh: Import TestUser46's DSA Cert --------------------------
certutil -A -n TestUser46-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5615: Import TestUser46's DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5616: Generate mixed DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20046 -v 60 -d ../CA -i req -o TestUser46-dsamixed.cert -f ../tests.pw 
cert.sh: #5617: Sign TestUser46's DSA Request with RSA - PASSED
cert.sh: Import TestUser46's mixed DSA Cert --------------------------
certutil -A -n TestUser46-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5618: Import TestUser46's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5619: Generate EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request --------------------------
certutil -C -c TestCA-ec -m 46 -v 60 -d ../CA -i req -o TestUser46-ec.cert -f ../tests.pw 
cert.sh: #5620: Sign TestUser46's EC Request - PASSED
cert.sh: Import TestUser46's EC Cert --------------------------
certutil -A -n TestUser46-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5621: Import TestUser46's EC Cert - PASSED
cert.sh SUCCESS: TestUser46's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5622: Generate mixed EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10046 -v 60 -d ../CA -i req -o TestUser46-ecmixed.cert -f ../tests.pw 
cert.sh: #5623: Sign TestUser46's EC Request with RSA - PASSED
cert.sh: Import TestUser46's mixed EC Cert --------------------------
certutil -A -n TestUser46-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5624: Import TestUser46's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5625: Generate Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's Request --------------------------
certutil -C -c TestCA -m 47 -v 60 -d ../CA -i req -o TestUser47.cert -f ../tests.pw 
cert.sh: #5626: Sign TestUser47's Request - PASSED
cert.sh: Import TestUser47's Cert --------------------------
certutil -A -n TestUser47 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5627: Import TestUser47's Cert - PASSED
cert.sh SUCCESS: TestUser47's Cert Created
cert.sh: Generate DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5628: Generate DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 47 -v 60 -d ../CA -i req -o TestUser47-dsa.cert -f ../tests.pw 
cert.sh: #5629: Sign TestUser47's DSA Request - PASSED
cert.sh: Import TestUser47's DSA Cert --------------------------
certutil -A -n TestUser47-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5630: Import TestUser47's DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5631: Generate mixed DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20047 -v 60 -d ../CA -i req -o TestUser47-dsamixed.cert -f ../tests.pw 
cert.sh: #5632: Sign TestUser47's DSA Request with RSA - PASSED
cert.sh: Import TestUser47's mixed DSA Cert --------------------------
certutil -A -n TestUser47-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5633: Import TestUser47's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5634: Generate EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request --------------------------
certutil -C -c TestCA-ec -m 47 -v 60 -d ../CA -i req -o TestUser47-ec.cert -f ../tests.pw 
cert.sh: #5635: Sign TestUser47's EC Request - PASSED
cert.sh: Import TestUser47's EC Cert --------------------------
certutil -A -n TestUser47-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5636: Import TestUser47's EC Cert - PASSED
cert.sh SUCCESS: TestUser47's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5637: Generate mixed EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10047 -v 60 -d ../CA -i req -o TestUser47-ecmixed.cert -f ../tests.pw 
cert.sh: #5638: Sign TestUser47's EC Request with RSA - PASSED
cert.sh: Import TestUser47's mixed EC Cert --------------------------
certutil -A -n TestUser47-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5639: Import TestUser47's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5640: Generate Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's Request --------------------------
certutil -C -c TestCA -m 48 -v 60 -d ../CA -i req -o TestUser48.cert -f ../tests.pw 
cert.sh: #5641: Sign TestUser48's Request - PASSED
cert.sh: Import TestUser48's Cert --------------------------
certutil -A -n TestUser48 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5642: Import TestUser48's Cert - PASSED
cert.sh SUCCESS: TestUser48's Cert Created
cert.sh: Generate DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5643: Generate DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 48 -v 60 -d ../CA -i req -o TestUser48-dsa.cert -f ../tests.pw 
cert.sh: #5644: Sign TestUser48's DSA Request - PASSED
cert.sh: Import TestUser48's DSA Cert --------------------------
certutil -A -n TestUser48-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5645: Import TestUser48's DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5646: Generate mixed DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20048 -v 60 -d ../CA -i req -o TestUser48-dsamixed.cert -f ../tests.pw 
cert.sh: #5647: Sign TestUser48's DSA Request with RSA - PASSED
cert.sh: Import TestUser48's mixed DSA Cert --------------------------
certutil -A -n TestUser48-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5648: Import TestUser48's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5649: Generate EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request --------------------------
certutil -C -c TestCA-ec -m 48 -v 60 -d ../CA -i req -o TestUser48-ec.cert -f ../tests.pw 
cert.sh: #5650: Sign TestUser48's EC Request - PASSED
cert.sh: Import TestUser48's EC Cert --------------------------
certutil -A -n TestUser48-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5651: Import TestUser48's EC Cert - PASSED
cert.sh SUCCESS: TestUser48's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5652: Generate mixed EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10048 -v 60 -d ../CA -i req -o TestUser48-ecmixed.cert -f ../tests.pw 
cert.sh: #5653: Sign TestUser48's EC Request with RSA - PASSED
cert.sh: Import TestUser48's mixed EC Cert --------------------------
certutil -A -n TestUser48-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5654: Import TestUser48's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5655: Generate Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's Request --------------------------
certutil -C -c TestCA -m 49 -v 60 -d ../CA -i req -o TestUser49.cert -f ../tests.pw 
cert.sh: #5656: Sign TestUser49's Request - PASSED
cert.sh: Import TestUser49's Cert --------------------------
certutil -A -n TestUser49 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5657: Import TestUser49's Cert - PASSED
cert.sh SUCCESS: TestUser49's Cert Created
cert.sh: Generate DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5658: Generate DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 49 -v 60 -d ../CA -i req -o TestUser49-dsa.cert -f ../tests.pw 
cert.sh: #5659: Sign TestUser49's DSA Request - PASSED
cert.sh: Import TestUser49's DSA Cert --------------------------
certutil -A -n TestUser49-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5660: Import TestUser49's DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5661: Generate mixed DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20049 -v 60 -d ../CA -i req -o TestUser49-dsamixed.cert -f ../tests.pw 
cert.sh: #5662: Sign TestUser49's DSA Request with RSA - PASSED
cert.sh: Import TestUser49's mixed DSA Cert --------------------------
certutil -A -n TestUser49-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5663: Import TestUser49's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5664: Generate EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request --------------------------
certutil -C -c TestCA-ec -m 49 -v 60 -d ../CA -i req -o TestUser49-ec.cert -f ../tests.pw 
cert.sh: #5665: Sign TestUser49's EC Request - PASSED
cert.sh: Import TestUser49's EC Cert --------------------------
certutil -A -n TestUser49-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5666: Import TestUser49's EC Cert - PASSED
cert.sh SUCCESS: TestUser49's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5667: Generate mixed EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10049 -v 60 -d ../CA -i req -o TestUser49-ecmixed.cert -f ../tests.pw 
cert.sh: #5668: Sign TestUser49's EC Request with RSA - PASSED
cert.sh: Import TestUser49's mixed EC Cert --------------------------
certutil -A -n TestUser49-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5669: Import TestUser49's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5670: Generate Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o TestUser50.cert -f ../tests.pw 
cert.sh: #5671: Sign TestUser50's Request - PASSED
cert.sh: Import TestUser50's Cert --------------------------
certutil -A -n TestUser50 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5672: Import TestUser50's Cert - PASSED
cert.sh SUCCESS: TestUser50's Cert Created
cert.sh: Generate DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5673: Generate DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o TestUser50-dsa.cert -f ../tests.pw 
cert.sh: #5674: Sign TestUser50's DSA Request - PASSED
cert.sh: Import TestUser50's DSA Cert --------------------------
certutil -A -n TestUser50-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5675: Import TestUser50's DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5676: Generate mixed DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o TestUser50-dsamixed.cert -f ../tests.pw 
cert.sh: #5677: Sign TestUser50's DSA Request with RSA - PASSED
cert.sh: Import TestUser50's mixed DSA Cert --------------------------
certutil -A -n TestUser50-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5678: Import TestUser50's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5679: Generate EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o TestUser50-ec.cert -f ../tests.pw 
cert.sh: #5680: Sign TestUser50's EC Request - PASSED
cert.sh: Import TestUser50's EC Cert --------------------------
certutil -A -n TestUser50-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5681: Import TestUser50's EC Cert - PASSED
cert.sh SUCCESS: TestUser50's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5682: Generate mixed EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o TestUser50-ecmixed.cert -f ../tests.pw 
cert.sh: #5683: Sign TestUser50's EC Request with RSA - PASSED
cert.sh: Import TestUser50's mixed EC Cert --------------------------
certutil -A -n TestUser50-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5684: Import TestUser50's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5685: Generate Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's Request --------------------------
certutil -C -c TestCA -m 51 -v 60 -d ../CA -i req -o TestUser51.cert -f ../tests.pw 
cert.sh: #5686: Sign TestUser51's Request - PASSED
cert.sh: Import TestUser51's Cert --------------------------
certutil -A -n TestUser51 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5687: Import TestUser51's Cert - PASSED
cert.sh SUCCESS: TestUser51's Cert Created
cert.sh: Generate DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5688: Generate DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 51 -v 60 -d ../CA -i req -o TestUser51-dsa.cert -f ../tests.pw 
cert.sh: #5689: Sign TestUser51's DSA Request - PASSED
cert.sh: Import TestUser51's DSA Cert --------------------------
certutil -A -n TestUser51-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5690: Import TestUser51's DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5691: Generate mixed DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20051 -v 60 -d ../CA -i req -o TestUser51-dsamixed.cert -f ../tests.pw 
cert.sh: #5692: Sign TestUser51's DSA Request with RSA - PASSED
cert.sh: Import TestUser51's mixed DSA Cert --------------------------
certutil -A -n TestUser51-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5693: Import TestUser51's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5694: Generate EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request --------------------------
certutil -C -c TestCA-ec -m 51 -v 60 -d ../CA -i req -o TestUser51-ec.cert -f ../tests.pw 
cert.sh: #5695: Sign TestUser51's EC Request - PASSED
cert.sh: Import TestUser51's EC Cert --------------------------
certutil -A -n TestUser51-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5696: Import TestUser51's EC Cert - PASSED
cert.sh SUCCESS: TestUser51's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5697: Generate mixed EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10051 -v 60 -d ../CA -i req -o TestUser51-ecmixed.cert -f ../tests.pw 
cert.sh: #5698: Sign TestUser51's EC Request with RSA - PASSED
cert.sh: Import TestUser51's mixed EC Cert --------------------------
certutil -A -n TestUser51-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5699: Import TestUser51's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5700: Generate Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's Request --------------------------
certutil -C -c TestCA -m 52 -v 60 -d ../CA -i req -o TestUser52.cert -f ../tests.pw 
cert.sh: #5701: Sign TestUser52's Request - PASSED
cert.sh: Import TestUser52's Cert --------------------------
certutil -A -n TestUser52 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5702: Import TestUser52's Cert - PASSED
cert.sh SUCCESS: TestUser52's Cert Created
cert.sh: Generate DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5703: Generate DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 52 -v 60 -d ../CA -i req -o TestUser52-dsa.cert -f ../tests.pw 
cert.sh: #5704: Sign TestUser52's DSA Request - PASSED
cert.sh: Import TestUser52's DSA Cert --------------------------
certutil -A -n TestUser52-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5705: Import TestUser52's DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5706: Generate mixed DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20052 -v 60 -d ../CA -i req -o TestUser52-dsamixed.cert -f ../tests.pw 
cert.sh: #5707: Sign TestUser52's DSA Request with RSA - PASSED
cert.sh: Import TestUser52's mixed DSA Cert --------------------------
certutil -A -n TestUser52-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5708: Import TestUser52's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5709: Generate EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request --------------------------
certutil -C -c TestCA-ec -m 52 -v 60 -d ../CA -i req -o TestUser52-ec.cert -f ../tests.pw 
cert.sh: #5710: Sign TestUser52's EC Request - PASSED
cert.sh: Import TestUser52's EC Cert --------------------------
certutil -A -n TestUser52-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5711: Import TestUser52's EC Cert - PASSED
cert.sh SUCCESS: TestUser52's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5712: Generate mixed EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10052 -v 60 -d ../CA -i req -o TestUser52-ecmixed.cert -f ../tests.pw 
cert.sh: #5713: Sign TestUser52's EC Request with RSA - PASSED
cert.sh: Import TestUser52's mixed EC Cert --------------------------
certutil -A -n TestUser52-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5714: Import TestUser52's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed EC Cert Created
cert.sh: Creating CA CRL =====================================
cert.sh: Generating CRL for range 40-42 TestCA authority --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -G -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or
cert.sh: #5715: Generating CRL for range 40-42 TestCA authority - PASSED
cert.sh: Generating CRL (DSA) for range 40-42 TestCA-dsa authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -G -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or-dsa
cert.sh: #5716: Generating CRL (DSA) for range 40-42 TestCA-dsa authority - PASSED
cert.sh: Generating CRL (ECC) for range 40-42 TestCA-ec authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -G -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or-ec
cert.sh: #5717: Generating CRL (ECC) for range 40-42 TestCA-ec authority - PASSED
cert.sh: Modifying CA CRL by adding one more cert ============
cert.sh: Modify CRL by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or1 -i ../server/root.crl_40-42_or
cert.sh: #5718: Modify CRL by adding one more cert - PASSED
cert.sh: Modify CRL (DSA) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or1-dsa -i ../server/root.crl_40-42_or-dsa
cert.sh: #5719: Modify CRL (DSA) by adding one more cert - PASSED
cert.sh: Modify CRL (ECC) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or1-ec -i ../server/root.crl_40-42_or-ec
cert.sh: #5720: Modify CRL (ECC) by adding one more cert - PASSED
cert.sh: Modifying CA CRL by removing one cert ===============
cert.sh: Modify CRL by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #5721: Modify CRL by removing one cert - PASSED
cert.sh: Modify CRL (DSA) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #5722: Modify CRL (DSA) by removing one cert - PASSED
cert.sh: Modify CRL (ECC) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42-ec -i ../server/root.crl_40-42_or1-ec
cert.sh: #5723: Modify CRL (ECC) by removing one cert - PASSED
cert.sh: Creating CA CRL for groups 1 and 2  ===============
cert.sh: Creating CRL for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_43-48 -i ../server/root.crl_40-42
cert.sh: #5724: Creating CRL for groups 1 and 2 - PASSED
cert.sh: Creating CRL (ECC) for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_43-48-ec -i ../server/root.crl_40-42-ec
cert.sh: #5725: Creating CRL (ECC) for groups 1 and 2 - PASSED
cert.sh: Creating CA CRL for groups 1, 2 and 3  ===============
cert.sh: Creating CRL for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_49-52 -i ../server/root.crl_43-48
cert.sh: #5726: Creating CRL for groups 1, 2 and 3 - PASSED
cert.sh: Creating CRL (ECC) for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_49-52-ec -i ../server/root.crl_43-48-ec
cert.sh: #5727: Creating CRL (ECC) for groups 1, 2 and 3 - PASSED
cert.sh: Importing Server CA Issued CRL for certs  trough 52
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -D -n TestCA -f ../tests.pw -d ../server
crlutil: could not find TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #5728: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42 -n TestCA -f ../tests.pw -d ../server
cert.sh: #5729: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -D -n TestCA-ec -f ../tests.pw -d ../server
crlutil: could not find TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #5730: Importing CRL (ECC) for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42-ec -n TestCA-ec -f ../tests.pw -d ../server
cert.sh: #5731: Importing CRL (ECC) for groups 1 - PASSED
cert.sh SUCCESS: SSL CRL prep passed
cert.sh cert.sh: finished cert.sh
TIMESTAMP cert END: Sun Aug  6 23:57:40 UTC 2017
Running tests for tools
TIMESTAMP tools BEGIN: Sun Aug  6 23:57:40 UTC 2017
tools.sh: Tools Tests with ECC ===============================
tools.sh: Exporting Alice's email cert & key - default ciphers
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5732: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                25:38:5a:4a:57:43:0c:d0:c0:5c:1e:d9:c7:d1:3a:de
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5733: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5734: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's email EC cert & key---------------
pk12util -o Alice-ec.p12 -n "Alice-ec" -d ../alicedir -k ../tests.pw \
         -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5735: Exporting Alice's email EC cert & key (pk12util -o)  - PASSED
tools.sh: Importing Alice's email EC cert & key --------------
pk12util -i Alice-ec.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5736: Importing Alice's email EC cert & key (pk12util -i)  - PASSED
tools.sh: Listing Alice's pk12 EC file -----------------
pk12util -l Alice-ec.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice-ec
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                7a:a9:ee:44:88:c3:89:91:a7:07:7c:a6:8b:0c:0f:82
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: X9.62 ECDSA signature with SHA256
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Sun Aug 06 23:57:13 2017
            Not After : Sat Aug 06 23:57:13 2067
        Subject: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Califor
            nia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:23
            EC Public Key:
                PublicValue:
                    04:01:22:80:25:c4:ce:e4:f3:42:29:5f:67:37:87:dd:
                    46:77:c3:f7:2a:8e:bb:cd:ec:55:25:67:53:9f:19:9b:
                    fb:97:46:f1:e1:37:b1:ea:96:2f:1b:12:c8:f4:cd:94:
                    35:ad:34:19:91:15:5c:84:1e:c8:2a:0f:88:94:3c:e7:
                    9c:d5:f3:00:f1:05:82:8c:98:75:d1:52:63:09:bb:dc:
                    2a:57:60:8e:99:dc:77:14:f4:c1:8a:25:2e:a7:12:5d:
                    e6:f5:5c:d8:e9:a0:21:5c:1b:5f:8f:de:8f:e7:7e:1f:
                    23:aa:ee:e1:09:f5:a1:bf:db:3e:2f:7c:8c:7e:55:1e:
                    11:fd:8b:30:2a
                Curve: SECG elliptic curve secp521r1 (aka NIST P-521)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: X9.62 ECDSA signature with SHA256
    Signature:
        30:81:87:02:41:54:30:fe:eb:7b:ba:5c:3a:98:86:7c:
        70:c1:91:25:7a:50:22:2a:e5:31:bf:d5:6d:0b:e4:63:
        94:64:55:e3:6b:5d:f8:23:77:1b:fe:7d:74:f2:61:b9:
        27:ef:1f:06:78:49:ca:68:d5:63:b2:53:6f:82:e3:ea:
        37:73:85:62:ed:ed:02:42:01:4d:7a:1e:fd:1c:f4:00:
        31:33:8e:0f:7f:3f:56:6d:b1:66:1c:af:79:ca:1e:12:
        c5:20:4f:3b:4c:79:d8:82:ba:43:83:0d:05:f0:c9:ca:
        63:e9:e9:54:5b:30:95:30:5e:2c:b4:97:59:05:83:97:
        03:18:7d:29:f6:8a:41:85:ff:45
    Fingerprint (SHA-256):
        B6:1B:B7:52:BF:B3:BF:40:F1:9D:EE:BC:B9:7B:15:A4:B0:58:4A:1E:84:BE:9C:A6:1B:BF:F6:8B:2F:B3:71:CA
    Fingerprint (SHA1):
        AD:47:A0:22:D3:76:82:C2:24:27:9B:F5:DD:BB:7E:17:41:AF:FF:0C
    Friendly Name: TestCA-ec
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: X9.62 ECDSA signature with SHA256
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice-ec@bogus.com,O=BOGUS NSS,L=Mountain View,S
            T=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:22
            EC Public Key:
                PublicValue:
                    04:b9:43:67:ee:11:00:37:d7:9d:86:95:65:e5:8d:fc:
                    fa:50:e7:1b:0c:dc:92:4d:7a:56:b8:a5:ea:a8:ad:6a:
                    5d:f0:9e:e2:94:73:ad:2d:85:be:8d:37:e1:e0:72:72:
                    c5:3d:e7:7d:05:ec:12:4a:a4:41:f0:c1:ca:46:60:5c:
                    c1:32:db:42:d1:eb:36:6e:1d:20:0a:0d:9b:bb:41:e1:
                    18:4c:6e:59:64:12:d2:36:1a:92:df:15:42:19:86:d8:
                    af
                Curve: SECG elliptic curve secp384r1 (aka NIST P-384)
    Signature Algorithm: X9.62 ECDSA signature with SHA256
    Signature:
        30:81:87:02:42:01:b1:ce:02:01:8f:35:dd:8d:d0:66:
        56:c1:cd:b5:f2:24:72:a1:bd:b4:43:33:f7:8d:ca:90:
        f0:d3:8a:c1:97:08:f5:85:93:d0:1e:80:3b:2a:36:bc:
        1d:32:e3:9a:58:b1:80:9a:c0:a1:7e:60:9e:a6:4f:43:
        e0:c7:ed:9e:5f:1c:1e:02:41:05:4c:8f:53:62:ec:b2:
        da:de:76:ec:f2:d0:51:6c:dd:11:23:99:39:bf:e1:54:
        0a:97:32:ae:77:43:bb:51:96:d3:d8:3c:34:43:a1:3d:
        5d:51:ef:64:eb:54:40:15:b2:7e:aa:9f:c7:43:17:5a:
        2d:59:13:9a:45:76:12:7d:31:7a
    Fingerprint (SHA-256):
        BB:CA:92:8D:D5:ED:58:D8:D6:DE:AD:26:E0:F4:3A:47:0B:C8:21:AF:1B:1A:B0:E4:04:71:BD:D9:89:29:FE:86
    Fingerprint (SHA1):
        79:7E:B4:00:87:0C:AC:42:5A:28:DB:DE:20:B1:D4:56:0C:23:DC:97
    Friendly Name: Alice-ec
tools.sh: #5737: Listing Alice's pk12 EC file (pk12util -l)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5738: Exporting with [RC2-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                72:34:24:f3:90:ec:ed:5a:4a:ec:f8:96:a0:75:ad:b4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5739: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5740: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5741: Exporting with [RC2-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                38:57:f4:6c:a1:36:a2:31:fd:ca:80:b5:52:e5:63:c6
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5742: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5743: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5744: Exporting with [RC2-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                84:bd:68:27:81:da:8c:f5:3b:2e:50:b8:8d:15:dc:23
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5745: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5746: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5747: Exporting with [RC2-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                9d:a6:3f:83:bf:c1:35:24:d9:a5:23:17:af:c8:c2:51
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5748: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5749: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5750: Exporting with [RC2-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                16:90:b2:74:fa:0b:bb:26:21:a6:b3:1e:8d:74:e7:73
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5751: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5752: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5753: Exporting with [RC2-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                41:d0:2f:24:94:f5:be:b7:e8:13:b8:b1:70:61:29:f6
            Iteration Count: 2000 (0x7d0)
tools.sh: #5754: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5755: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5756: Exporting with [DES-EDE3-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ee:48:7c:6a:03:d9:ab:58:f8:8d:be:30:ea:85:cf:4d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5757: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5758: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5759: Exporting with [DES-EDE3-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                b6:df:5d:67:6f:63:e3:8a:55:37:5c:de:44:c7:63:dd
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5760: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5761: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5762: Exporting with [DES-EDE3-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                85:84:c1:c6:c7:f2:f8:9e:a1:b9:01:90:6f:5b:a4:7f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5763: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5764: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5765: Exporting with [DES-EDE3-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                5c:49:67:5e:d1:6a:78:0b:7f:de:11:4f:48:ac:31:62
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5766: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5767: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5768: Exporting with [DES-EDE3-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                c2:dd:b1:14:69:4a:f7:d3:38:80:6d:ad:92:83:b2:19
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5769: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5770: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5771: Exporting with [DES-EDE3-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                89:27:2a:fc:2b:c2:4a:ae:25:d9:68:aa:11:5d:3a:ef
            Iteration Count: 2000 (0x7d0)
tools.sh: #5772: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5773: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5774: Exporting with [AES-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        70:59:11:08:eb:2b:82:9f:ca:92:ea:5d:87:ed:e4:df
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:60:97:44:e1:a9:9b:c0:85:fd:71:48:1e:88:7a:
                    f5:1c
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5775: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5776: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5777: Exporting with [AES-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        33:60:7c:8a:4b:8e:aa:fd:6b:79:06:77:91:5f:82:d3
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:ce:a8:c3:c4:35:dc:94:d9:d1:08:ee:5c:0c:40:
                    ca:f7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5778: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5779: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5780: Exporting with [AES-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        59:97:1e:d3:c9:30:3f:72:4b:6d:9a:16:e4:2d:7e:7a
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:44:dc:eb:1a:fb:9a:aa:d8:c0:56:80:21:6b:2b:
                    da:26
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5781: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5782: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5783: Exporting with [AES-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        84:5d:9f:b8:da:b2:c8:2e:9c:ae:d1:f3:81:ea:2b:41
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:6a:91:54:e9:19:a3:48:5c:4e:1c:13:6a:06:ac:
                    fc:eb
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5784: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5785: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5786: Exporting with [AES-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        36:51:22:ff:a8:93:fe:bc:e8:a3:75:57:b2:0d:5e:7c
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:d7:22:86:1e:aa:16:ac:fa:db:0e:91:9e:80:01:
                    10:a9
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5787: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5788: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5789: Exporting with [AES-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        70:5e:4a:f1:7a:73:b3:35:b0:61:39:f7:a0:7a:5b:5f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:03:34:6c:42:5a:02:9c:76:61:8e:59:6f:57:00:
                    f2:ac
tools.sh: #5790: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5791: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5792: Exporting with [AES-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        76:ac:09:7c:f0:45:2e:cb:d9:26:b0:fc:e9:6c:8d:95
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:e5:dc:e7:7d:08:75:e8:8b:4c:95:95:d3:fd:dd:
                    49:08
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5793: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5794: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5795: Exporting with [AES-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        fb:03:86:a4:f2:c6:7e:9e:ae:57:c3:5a:c2:83:fe:9e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:aa:32:e8:14:fc:ba:a6:2f:11:95:c5:22:e8:af:
                    42:7c
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5796: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5797: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5798: Exporting with [AES-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f8:da:35:11:94:f5:11:ed:55:21:79:54:64:25:93:4d
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:85:40:9e:59:78:96:e1:61:2e:31:1a:21:ad:d5:
                    66:6b
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5799: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5800: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5801: Exporting with [AES-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        11:62:40:67:24:cc:52:da:aa:4e:31:31:36:fc:1b:b6
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:d7:45:d2:00:49:5c:93:cb:6c:e4:1c:56:cb:96:
                    33:53
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5802: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5803: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5804: Exporting with [AES-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        20:b3:72:60:96:34:55:a3:af:9a:70:8e:05:b7:44:04
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:15:98:28:0e:7c:15:d8:ed:08:95:7e:ce:c4:3c:
                    e0:e1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5805: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5806: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5807: Exporting with [AES-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        1a:c5:ad:37:3d:03:ea:c8:93:d3:14:7d:79:26:77:b7
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:10:a6:1b:6c:cc:11:f7:41:41:ba:74:b5:39:ed:
                    8f:b3
tools.sh: #5808: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5809: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5810: Exporting with [AES-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        46:71:a0:5a:57:6f:41:e9:c8:55:d1:d6:9e:78:46:a3
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:61:99:b8:a6:de:68:fb:29:66:60:3b:4a:bc:8e:
                    a9:24
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5811: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5812: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5813: Exporting with [AES-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f2:98:b5:d2:ca:9c:6a:83:dc:f1:20:5d:57:04:74:6a
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:48:f8:5b:c3:99:dd:a8:a3:47:c8:8e:74:15:19:
                    43:7a
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5814: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5815: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5816: Exporting with [AES-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        27:00:04:83:1b:05:82:60:64:61:74:33:fb:f5:5d:5e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:a2:4a:ba:85:45:c1:09:d2:30:57:0c:25:12:cf:
                    cb:09
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5817: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5818: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5819: Exporting with [AES-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        da:a1:50:77:0a:54:d6:7c:2b:d4:f6:d4:c9:33:e5:6a
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:1a:9a:bc:3a:b0:b2:84:77:fd:c0:04:10:71:37:
                    ec:6b
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5820: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5821: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5822: Exporting with [AES-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        17:17:06:75:21:18:49:ec:c1:6b:2f:62:12:8b:60:fa
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:4b:64:8a:e9:1f:b1:25:da:04:b2:05:aa:5e:02:
                    02:41
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5823: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5824: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5825: Exporting with [AES-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        2f:40:d1:c5:46:42:17:f2:e8:df:2e:74:42:5c:03:c2
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:e4:3e:9d:7c:1c:77:95:ae:da:e2:5a:62:f2:2d:
                    6d:cf
tools.sh: #5826: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5827: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5828: Exporting with [CAMELLIA-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f4:7a:e4:d4:22:8e:00:80:44:e9:74:e0:12:8c:b8:79
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:b2:fa:53:f3:a5:f3:d4:66:5a:55:00:f3:74:e4:
                    25:1c
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5829: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5830: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5831: Exporting with [CAMELLIA-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        84:a0:30:e8:3b:b5:e6:70:72:16:53:6a:82:43:83:1e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:23:9a:c1:f5:44:0e:42:48:3d:59:73:06:2b:97:
                    a9:b3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5832: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5833: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5834: Exporting with [CAMELLIA-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        66:1c:a4:bc:47:51:7c:f2:d6:4c:08:ab:00:2e:19:a4
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:dd:6d:ea:e3:64:33:d8:c4:37:3f:b8:e2:82:4f:
                    6c:8c
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5835: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5836: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5837: Exporting with [CAMELLIA-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e0:2d:5b:7e:83:25:92:48:56:0b:01:f0:c8:57:0e:a2
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:ff:05:b4:a7:68:a0:e8:52:cd:2d:03:fe:ad:e1:
                    af:96
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5838: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5839: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5840: Exporting with [CAMELLIA-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        1d:88:45:f1:df:2f:ba:b2:50:a6:8c:e9:0c:2a:1f:0c
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:33:29:76:51:07:ab:b5:4c:54:14:1e:38:03:a6:
                    40:32
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5841: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5842: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5843: Exporting with [CAMELLIA-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        6c:ec:9f:9f:9e:71:bc:2e:00:75:10:56:da:82:fb:98
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:a1:0e:10:e2:25:b7:f2:2a:0a:3a:fd:9c:60:44:
                    9f:44
tools.sh: #5844: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5845: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5846: Exporting with [CAMELLIA-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        64:90:60:3c:7b:15:20:25:44:12:bc:37:ef:55:6e:74
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:76:37:4d:40:da:84:cf:7c:3c:7b:d5:d5:d9:9c:
                    06:80
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5847: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5848: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5849: Exporting with [CAMELLIA-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        43:1e:9d:f0:d3:f5:64:bc:9e:ba:aa:6c:ad:7f:8f:8f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:67:f7:bf:ce:af:3b:d5:e6:8e:d4:30:d8:6b:25:
                    fd:b1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5850: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5851: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5852: Exporting with [CAMELLIA-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e3:78:d0:87:77:a7:b3:08:ca:e3:cc:0e:e9:90:49:22
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:57:65:6a:ed:d1:b9:6e:fc:b9:2f:0c:d7:3c:7c:
                    bc:71
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5853: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5854: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5855: Exporting with [CAMELLIA-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        68:cd:60:bc:91:21:02:f1:ba:51:66:f1:ec:3e:c2:fc
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:5d:4e:27:fd:27:b4:48:d2:fc:82:cd:57:65:a5:
                    7a:cf
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5856: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5857: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5858: Exporting with [CAMELLIA-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        d5:25:65:e1:1a:09:b7:f4:56:4b:30:1d:7c:ef:2d:67
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:07:75:42:91:85:7b:bb:77:85:79:9b:d3:7f:8c:
                    4d:58
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5859: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5860: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5861: Exporting with [CAMELLIA-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ec:45:b6:de:7d:9a:3f:88:a1:91:89:09:cf:40:98:0f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:1a:38:2d:55:ed:f9:2c:f0:a8:fb:4d:e5:09:0a:
                    f1:56
tools.sh: #5862: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5863: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5864: Exporting with [CAMELLIA-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        d7:14:c2:d7:15:ec:aa:48:57:cf:69:7c:ee:5b:c6:2d
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:1f:e2:ea:11:94:ae:0c:4c:3e:08:d8:5e:bd:ac:
                    12:d0
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5865: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5866: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5867: Exporting with [CAMELLIA-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        9e:16:5a:65:6e:4a:28:bb:dc:83:1d:9b:86:2f:f1:14
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:74:85:d5:6a:99:d3:31:20:e2:40:fe:c1:b0:18:
                    80:fe
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5868: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5869: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5870: Exporting with [CAMELLIA-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        1b:f8:7b:c5:3a:c8:31:ef:ff:4a:99:9c:99:74:f5:be
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:a2:7d:37:2d:a1:2f:73:b6:ca:3e:ae:1c:e7:35:
                    63:00
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5871: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5872: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5873: Exporting with [CAMELLIA-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f1:f8:34:0c:16:d1:57:98:10:81:80:c0:e7:29:f7:77
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:09:10:b3:0d:94:26:cc:21:e3:47:3a:08:bf:96:
                    ba:b5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5874: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5875: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5876: Exporting with [CAMELLIA-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        23:a6:63:74:50:11:2c:b1:af:cc:ee:1e:74:01:d8:a4
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:f1:9f:5c:9a:f1:87:24:de:5a:ed:94:e1:91:8f:
                    4e:8f
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5877: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5878: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5879: Exporting with [CAMELLIA-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        8f:86:1c:e6:e5:99:95:32:f4:2b:8e:ed:ae:60:ce:46
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:eb:88:82:27:56:95:78:11:d0:38:98:31:e7:0e:
                    33:c0
tools.sh: #5880: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5881: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5882: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                de:ec:5a:3a:8c:fb:0b:aa:94:83:6c:91:40:82:a0:4d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5883: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5884: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5885: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                8c:e4:bc:82:88:c8:dd:ca:bf:d1:61:7a:84:ff:b9:7c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5886: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5887: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5888: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                63:da:21:0f:2d:2e:d1:6c:41:72:c1:ae:3a:a2:98:0a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5889: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5890: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5891: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                81:cc:c9:2f:a5:03:54:35:d5:0b:37:50:0b:50:92:ee
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5892: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5893: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5894: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                a4:54:ff:2f:b2:f3:c9:50:93:53:0d:af:56:75:b7:db
            Iteration Count: 2000 (0x7d0)
tools.sh: #5895: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5896: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5897: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                6e:12:0c:01:a5:37:e7:c0:03:27:d2:82:52:44:15:23
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5898: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5899: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5900: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                49:40:2d:e5:ad:c6:7c:26:68:ef:62:36:72:3f:f0:4a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5901: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5902: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5903: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                bf:7e:54:5f:b1:f8:49:16:e5:18:f4:cb:ff:da:e7:bc
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5904: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5905: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5906: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                04:7b:e7:f2:e8:59:73:ab:ab:aa:47:9a:c9:f4:19:41
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5907: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5908: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5909: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                92:31:53:56:b2:66:30:f3:52:12:f4:c9:9e:20:f5:35
            Iteration Count: 2000 (0x7d0)
tools.sh: #5910: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5911: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5912: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                d1:20:6c:0c:3a:f9:ed:d1:c8:b9:2e:40:7c:38:05:18
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5913: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5914: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5915: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                2c:49:5c:76:98:99:cd:47:59:28:0e:8e:38:b3:77:df
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5916: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5917: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5918: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                f5:e9:7c:13:25:d9:19:de:2f:bb:d5:3a:a5:37:dc:23
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5919: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5920: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5921: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                88:bf:18:53:66:0f:52:68:8d:4c:16:22:84:b9:c6:fe
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5922: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5923: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5924: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                76:e9:6c:48:d6:d3:ac:53:f9:81:19:c6:e8:33:b8:f3
            Iteration Count: 2000 (0x7d0)
tools.sh: #5925: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5926: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5927: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                8b:9a:54:f7:c9:d2:28:af:00:13:44:23:66:87:50:72
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5928: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5929: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5930: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                49:a3:14:cb:70:4d:af:51:ff:22:cf:a0:93:18:d9:f5
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5931: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5932: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5933: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                1e:0f:dd:3a:4b:96:f2:11:56:a9:63:5d:0a:60:44:3c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5934: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5935: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5936: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                e1:04:7c:4f:1a:f5:03:20:de:05:eb:9c:b0:fe:3b:3f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5937: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5938: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:null]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5939: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                98:fc:5c:32:24:15:8c:fc:25:67:76:1c:d3:fd:2b:e7
            Iteration Count: 2000 (0x7d0)
tools.sh: #5940: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5941: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5942: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                11:81:00:e0:65:01:58:78:35:4a:72:a7:7f:bb:5c:7d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5943: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5944: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5945: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                a2:7b:4f:e4:26:0d:54:88:6a:c9:a7:ed:fb:2c:27:ae
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5946: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5947: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5948: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                54:ac:e1:30:cc:67:d3:c1:c8:57:be:73:a9:c7:65:cf
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5949: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5950: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5951: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                8a:69:a4:bb:7b:40:89:82:76:96:e8:a1:a6:81:53:fd
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5952: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5953: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5954: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d1:54:fb:46:fa:f1:ee:5d:40:95:88:cc:08:9a:e9:20
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5955: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5956: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5957: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                63:bc:17:7f:dd:24:b9:61:05:1f:05:15:e1:ee:33:18
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5958: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5959: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5960: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                7d:ab:eb:e2:2f:0a:17:8d:f4:43:3a:e0:ed:36:7e:8a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5961: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5962: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5963: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                e9:15:a0:d3:13:14:68:55:c5:ff:27:6a:67:f0:25:69
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5964: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5965: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5966: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                67:d8:39:44:b4:98:d3:b1:c8:8d:92:7f:59:2b:c2:1c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5967: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5968: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5969: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                72:f5:5d:4c:b3:32:18:90:f6:d0:bd:ed:a4:8b:76:46
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:12 2017
            Not After : Sat Aug 06 23:57:12 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:46:2d:d7:a1:80:e5:f7:ad:91:fe:ac:e2:e7:aa:18:
                    f2:3d:be:8e:3c:7c:4c:e9:a6:ff:6e:ed:8c:44:82:f5:
                    17:b6:3c:c8:4f:90:94:3a:dc:b4:ca:7e:83:18:48:19:
                    6d:fc:bb:c0:19:38:59:6d:a6:60:91:b0:c4:db:3c:33:
                    ac:0f:74:51:b3:e8:8f:99:e0:78:18:8b:41:05:d8:bd:
                    cb:a4:d0:9c:4d:2f:93:23:e8:49:e9:74:c1:4f:51:5c:
                    d9:6c:c1:53:d5:cc:89:9c:da:82:86:82:a4:9c:aa:77:
                    c7:85:23:ae:a1:9f:ba:a0:ab:64:e4:7a:cd:6d:6e:dd:
                    e2:be:4f:ce:d6:ef:05:a4:ab:a1:75:53:1f:b6:68:0d:
                    8a:21:40:a8:70:76:bc:dc:16:e6:8a:82:f8:4c:33:a7:
                    68:c8:7d:f5:67:dd:bb:fc:86:28:8c:51:2b:ac:12:c3:
                    cf:c5:5c:63:0a:ef:99:a6:39:70:2e:64:e7:6e:42:85:
                    e9:cc:40:f5:2c:b1:82:48:9d:a6:2a:f8:76:ef:22:1e:
                    30:31:bc:95:bc:fe:69:22:e3:ac:a2:da:30:1c:b8:47:
                    6d:88:e8:51:09:63:8f:8c:fe:56:79:8e:47:59:4a:88:
                    27:b0:35:b1:e1:cd:96:98:6c:de:23:86:de:8b:57:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:d7:e7:db:30:69:3d:47:aa:23:91:2b:e2:17:0c:8d:
        d8:be:86:df:34:1e:3d:3a:5e:26:b2:b7:33:08:1c:47:
        e8:53:e6:62:ea:42:ea:88:64:4d:39:bc:6f:f1:f6:48:
        5e:9d:c5:49:21:42:9f:04:13:1e:2c:e0:b1:3a:17:a5:
        3d:f0:e9:c8:7c:21:bd:64:71:7b:34:d5:bc:cf:65:86:
        17:10:39:26:39:5a:a5:8d:25:9f:ac:f7:27:b3:e3:24:
        13:a0:86:35:b4:6b:ba:e9:f9:9f:11:ae:3b:d3:df:bf:
        b2:9b:2c:b5:31:49:0f:60:a8:68:11:4c:9f:ce:85:67:
        8e:76:88:3b:8d:ff:c5:41:44:c3:c7:4e:3e:6f:01:6e:
        14:d9:c3:a2:6d:a8:a0:e1:47:98:0d:5c:8f:8e:da:ad:
        df:d3:ba:b2:0b:3c:0b:c5:d8:fa:5a:b4:4a:9c:61:c0:
        06:18:61:1f:d7:8c:38:45:37:34:91:01:a3:06:1e:0f:
        cd:e3:81:da:2a:25:4a:33:d5:9c:e1:91:69:76:c5:83:
        7e:c6:77:cb:d2:09:38:2d:ea:a0:69:80:66:2e:12:91:
        b5:4b:b2:87:06:ee:ac:aa:b4:37:5f:20:d7:40:67:f8:
        d3:19:45:7c:7e:fa:49:0a:54:ce:da:b4:33:51:dd:9c
    Fingerprint (SHA-256):
        58:F9:A2:61:86:1F:59:60:93:C8:96:FE:B2:68:5F:67:19:4C:A3:2B:9E:00:41:6D:34:CB:80:71:B3:4E:F7:DC
    Fingerprint (SHA1):
        3A:7C:08:42:19:25:15:84:57:00:42:F9:47:46:CD:3E:8C:C5:45:8C
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:57:17 2017
            Not After : Sat Aug 06 23:57:17 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:33:db:98:b5:c3:17:5a:ea:40:80:ab:f4:9f:3f:20:
                    b4:c5:89:9c:d4:8a:9c:6e:3d:fa:eb:23:7f:41:80:82:
                    94:79:e4:37:1d:75:bf:20:cd:92:9e:1f:d8:06:9a:db:
                    3e:73:5e:75:a6:3b:85:a4:74:b0:56:5b:c7:b8:c7:0a:
                    cc:07:94:50:7d:f5:ef:5c:2c:b3:e8:90:81:31:f9:70:
                    62:9b:0c:4f:62:ef:89:00:9e:8e:6d:16:cf:ea:4d:8a:
                    b2:16:e8:eb:d7:0b:24:26:90:f3:0c:5b:81:fe:d4:7b:
                    bd:b9:f2:30:25:ed:46:eb:74:ad:76:91:21:93:aa:3e:
                    62:8b:fa:1d:bc:4a:16:f5:48:0c:2e:e7:f3:87:bc:03:
                    21:c9:69:0f:fa:79:91:02:71:79:7c:b2:d4:2e:ef:47:
                    57:c3:d4:98:3d:be:fe:88:1d:51:cf:82:c4:f8:14:12:
                    0d:7c:6d:d4:b0:31:04:91:55:db:dc:12:5a:e5:17:74:
                    58:ba:64:c0:a8:94:35:3d:fb:15:96:15:fb:46:22:0e:
                    85:e3:b6:f5:c4:7e:8f:a3:7b:be:e1:49:ad:1b:ee:ab:
                    41:36:62:d5:da:79:15:0d:94:f9:1e:af:d3:50:9a:3c:
                    b0:e3:e6:0c:92:86:1d:32:68:22:4e:76:90:8b:f1:97
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:1f:70:20:57:ac:2d:65:39:a5:ce:66:06:74:9f:9e:
        da:7c:c3:ae:3c:ad:84:6c:88:0b:86:98:72:3e:68:51:
        99:ce:d1:25:ed:28:9b:30:16:46:17:2a:ea:5d:37:22:
        3f:5f:50:6e:73:5f:05:b2:c7:e1:f3:a9:12:d1:c9:87:
        fe:e3:05:18:71:e3:95:02:4d:9e:62:10:82:d0:e3:48:
        cf:3e:a7:d9:a7:e5:13:d3:cd:83:df:23:0a:0d:f8:37:
        5a:98:27:8f:11:dd:c1:d1:6c:cd:5c:70:a5:1b:4f:8f:
        19:e1:99:41:2a:48:3f:6d:e1:e2:d9:65:e6:4a:a8:da:
        35:06:48:7b:9d:1d:c0:26:05:df:0e:e6:81:a4:75:e2:
        38:81:95:17:56:42:af:f3:a1:c9:13:53:2e:af:db:aa:
        f9:05:42:ef:ce:2c:e1:88:88:4b:56:b7:aa:66:f7:4b:
        11:7d:fb:37:2f:7e:97:aa:bf:55:12:3e:7d:20:58:e6:
        dd:b5:b4:ba:f8:cf:19:17:98:05:32:65:d1:0c:0a:fc:
        3a:29:3e:d3:ea:9e:f9:3c:06:d2:ab:91:56:fd:5f:85:
        15:43:4e:81:9a:cf:34:2a:af:51:37:56:52:1a:39:cb:
        4f:ff:48:af:0a:09:f9:2b:a3:c7:04:2e:e5:28:e0:7d
    Fingerprint (SHA-256):
        C7:F1:95:ED:50:91:26:C3:F0:C1:8C:CF:40:D3:C1:44:27:B2:57:CB:4E:DF:40:D4:0B:F7:70:CD:49:B2:64:8D
    Fingerprint (SHA1):
        6C:92:72:56:6C:84:30:64:57:98:37:9A:51:47:3E:27:8A:65:75:F0
    Friendly Name: Alice
tools.sh: #5970: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5971: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c null
pk12util: Algorithm: "null": SEC_ERROR_INVALID_ALGORITHM: security library: invalid algorithm.
tools.sh: #5972: Exporting with [null:default] (pk12util -o)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5973: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Create objsign cert -------------------------------
signtool -G "objectsigner" -d ../tools/signdir -p "nss"
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit the browser before continuing this operation. Enter 
"y" to continue, or anything else to abort: 
Enter certificate information.  All fields are optional. Acceptable
characters are numbers, letters, spaces, and apostrophes.
certificate common name: organization: organization unit: state or province: country (must be exactly 2 characters): username: email address: generated public/private key pair
certificate request generated
certificate has been signed
certificate "objsigner" added to database
Exported certificate to x509.raw and x509.cacert.
tools.sh: #5974: Create objsign cert (signtool -G)  - PASSED
tools.sh: Signing a jar of files ----------------------------
signtool -Z nojs.jar -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
adding ../tools/html/sign.html to nojs.jar...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.jar...(deflated 28%)
Generating zigbert.sf file..
adding ../tools/html/META-INF/manifest.mf to nojs.jar...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.jar...(deflated 36%)
adding ../tools/html/META-INF/zigbert.rsa to nojs.jar...(deflated 33%)
tree "../tools/html" signed successfully
tools.sh: #5975: Signing a jar of files (signtool -Z)  - PASSED
tools.sh: Listing signed files in jar ----------------------
signtool -v nojs.jar -d ../tools/signdir -p nss -k objsigner
archive "nojs.jar" has passed crypto verification.
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
found a RSA signature file: META-INF/zigbert.rsa
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #5976: Listing signed files in jar (signtool -v)  - PASSED
tools.sh: Show who signed jar ------------------------------
signtool -w nojs.jar -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #5977: Show who signed jar (signtool -w)  - PASSED
tools.sh: Signing a xpi of files ----------------------------
signtool -Z nojs.xpi -X -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
--> signjs.html
Generating zigbert.sf file..
Creating XPI Compatible Archive 
adding ../tools/html/META-INF/zigbert.rsa to nojs.xpi...(deflated 33%)
--> sign.html
adding ../tools/html/sign.html to nojs.xpi...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.xpi...(deflated 28%)
adding ../tools/html/META-INF/manifest.mf to nojs.xpi...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.xpi...(deflated 36%)
tree "../tools/html" signed successfully
tools.sh: #5978: Signing a xpi of files (signtool -Z -X)  - PASSED
tools.sh: Listing signed files in xpi ----------------------
signtool -v nojs.xpi -d ../tools/signdir -p nss -k objsigner
archive "nojs.xpi" has passed crypto verification.
found a RSA signature file: META-INF/zigbert.rsa
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #5979: Listing signed files in xpi (signtool -v)  - PASSED
tools.sh: Show who signed xpi ------------------------------
signtool -w nojs.xpi -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #5980: Show who signed xpi (signtool -w)  - PASSED
TIMESTAMP tools END: Sun Aug  6 23:57:45 UTC 2017
Running tests for fips
TIMESTAMP fips BEGIN: Sun Aug  6 23:57:45 UTC 2017
fips.sh: FIPS 140 Compliance Tests ===============================
fips.sh: Verify this module is in FIPS mode  -----------------
modutil -dbdir ../fips -list
Listing of PKCS #11 Modules
-----------------------------------------------------------
  1. NSS Internal FIPS PKCS #11 Module
	 slots: 1 slot attached
	status: loaded
	 slot: NSS FIPS 140-2 User Private Key Services
	token: NSS FIPS 140-2 Certificate DB
  2. RootCerts
	library name: /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
	 slots: 1 slot attached
	status: loaded
	 slot: NSS Builtin Objects
	token: Builtin Object Token
-----------------------------------------------------------
FIPS mode enabled.
fips.sh: #5981: Verify this module is in FIPS mode (modutil -chkfips true) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #5982: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys -------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      2e0accfa2a4c5b8549dc9e7f501d1ea2b321b5f0   NSS FIPS 140-2 Certificate DB:FIPS_PUB_140_Test_Certificate
fips.sh: #5983: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Attempt to list FIPS module keys with incorrect password
certutil -d ../fips -K -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests.fipsbadpw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
Incorrect password/PIN entered.
certutil: could not authenticate to token NSS FIPS 140-2 Certificate DB.: SEC_ERROR_BAD_PASSWORD: The security password entered is incorrect.
fips.sh: #5984: Attempt to list FIPS module keys with incorrect password (certutil -K) . - PASSED
certutil -K returned 255
fips.sh: Validate the certificate --------------------------
certutil -d ../fips -V -n FIPS_PUB_140_Test_Certificate -u SR -e -f ../tests.fipspw
certutil: certificate is valid
fips.sh: #5985: Validate the certificate (certutil -V -e) . - PASSED
fips.sh: Export the certificate and key as a PKCS#12 file --
pk12util -d ../fips -o fips140.p12 -n FIPS_PUB_140_Test_Certificate -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 EXPORT SUCCESSFUL
fips.sh: #5986: Export the certificate and key as a PKCS#12 file (pk12util -o) . - PASSED
fips.sh: Export the certificate as a DER-encoded file ------
certutil -d ../fips -L -n FIPS_PUB_140_Test_Certificate -r -o fips140.crt
fips.sh: #5987: Export the certificate as a DER (certutil -L -r) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #5988: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Delete the certificate and key from the FIPS module
certutil -d ../fips -F -n FIPS_PUB_140_Test_Certificate -f ../tests.fipspw
fips.sh: #5989: Delete the certificate and key from the FIPS module (certutil -F) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #5990: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys.
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
certutil: no keys found
fips.sh: #5991: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #5992: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #5993: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      2e0accfa2a4c5b8549dc9e7f501d1ea2b321b5f0   FIPS_PUB_140_Test_Certificate
fips.sh: #5994: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Delete the certificate from the FIPS module
certutil -d ../fips -D -n FIPS_PUB_140_Test_Certificate
fips.sh: #5995: Delete the certificate from the FIPS module (certutil -D) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #5996: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #5997: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #5998: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      2e0accfa2a4c5b8549dc9e7f501d1ea2b321b5f0   FIPS_PUB_140_Test_Certificate
fips.sh: #5999: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Run PK11MODE in FIPSMODE  -----------------
pk11mode -d ../fips -p fips- -f ../tests.fipspw
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
**** Total number of TESTS ran in FIPS MODE is 106. ****
**** ALL TESTS PASSED ****
fips.sh: #6000: Run PK11MODE in FIPS mode (pk11mode) . - PASSED
fips.sh: Run PK11MODE in Non FIPSMODE  -----------------
pk11mode -d ../fips -p nonfips- -f ../tests.fipspw -n
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
**** Total number of TESTS ran in NON FIPS MODE is 104. ****
**** ALL TESTS PASSED ****
fips.sh: #6001: Run PK11MODE in Non FIPS mode (pk11mode -n) . - PASSED
mkdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest1.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
fips.sh: Detect mangled softoken--------------------------
mangling /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle/libsoftokn3.so
mangle -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle/libsoftokn3.so -o -8 -b 5
cp /usr/lib64/libsoftokn3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
Changing byte 0x0003fd70 (261488): from 00 (0) to 20 (32)
LD_LIBRARY_PATH=/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle dbtest -r -d ../fips
fips.sh: #6002: Init NSS with a corrupted library (dbtest -r) . - PASSED
fips.sh done
TIMESTAMP fips END: Sun Aug  6 23:57:52 UTC 2017
Running tests for ssl
TIMESTAMP ssl BEGIN: Sun Aug  6 23:57:52 UTC 2017
ssl.sh: SSL tests ===============================
ssl.sh: CRL SSL Client Tests   - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:52 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:52 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29426 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29426 found at Sun Aug  6 23:57:52 UTC 2017
selfserv_9009 with PID 29426 started at Sun Aug  6 23:57:52 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6003: TLS Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 29426 at Sun Aug  6 23:57:52 UTC 2017
kill -USR1 29426
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 29426 killed at Sun Aug  6 23:57:52 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:52 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:52 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29482 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29482 found at Sun Aug  6 23:57:52 UTC 2017
selfserv_9009 with PID 29482 started at Sun Aug  6 23:57:52 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6004: TLS Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 29482 at Sun Aug  6 23:57:52 UTC 2017
kill -USR1 29482
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 29482 killed at Sun Aug  6 23:57:52 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:52 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:52 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29538 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29538 found at Sun Aug  6 23:57:52 UTC 2017
selfserv_9009 with PID 29538 started at Sun Aug  6 23:57:52 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6005: TLS Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 29538 at Sun Aug  6 23:57:53 UTC 2017
kill -USR1 29538
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 29538 killed at Sun Aug  6 23:57:53 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:57:53 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29606 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29606 found at Sun Aug  6 23:57:53 UTC 2017
selfserv_9009 with PID 29606 started at Sun Aug  6 23:57:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6006: TLS Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 29606 at Sun Aug  6 23:57:53 UTC 2017
kill -USR1 29606
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 29606 killed at Sun Aug  6 23:57:53 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:57:53 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29662 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29662 found at Sun Aug  6 23:57:53 UTC 2017
selfserv_9009 with PID 29662 started at Sun Aug  6 23:57:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6007: TLS Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 29662 at Sun Aug  6 23:57:53 UTC 2017
kill -USR1 29662
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 29662 killed at Sun Aug  6 23:57:53 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:57:53 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29719 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29719 found at Sun Aug  6 23:57:53 UTC 2017
selfserv_9009 with PID 29719 started at Sun Aug  6 23:57:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6008: TLS Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 29719 at Sun Aug  6 23:57:53 UTC 2017
kill -USR1 29719
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 29719 killed at Sun Aug  6 23:57:53 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:53 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29787 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29787 found at Sun Aug  6 23:57:53 UTC 2017
selfserv_9009 with PID 29787 started at Sun Aug  6 23:57:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6009: TLS Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 29787 at Sun Aug  6 23:57:53 UTC 2017
kill -USR1 29787
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 29787 killed at Sun Aug  6 23:57:53 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:53 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29843 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29843 found at Sun Aug  6 23:57:53 UTC 2017
selfserv_9009 with PID 29843 started at Sun Aug  6 23:57:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6010: TLS Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 29843 at Sun Aug  6 23:57:53 UTC 2017
kill -USR1 29843
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 29843 killed at Sun Aug  6 23:57:53 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:53 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29899 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29899 found at Sun Aug  6 23:57:53 UTC 2017
selfserv_9009 with PID 29899 started at Sun Aug  6 23:57:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6011: TLS Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 29899 at Sun Aug  6 23:57:53 UTC 2017
kill -USR1 29899
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 29899 killed at Sun Aug  6 23:57:53 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:53 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29968 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29968 found at Sun Aug  6 23:57:53 UTC 2017
selfserv_9009 with PID 29968 started at Sun Aug  6 23:57:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6012: TLS Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 29968 at Sun Aug  6 23:57:53 UTC 2017
kill -USR1 29968
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 29968 killed at Sun Aug  6 23:57:53 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:53 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30024 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30024 found at Sun Aug  6 23:57:53 UTC 2017
selfserv_9009 with PID 30024 started at Sun Aug  6 23:57:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6013: TLS Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 30024 at Sun Aug  6 23:57:53 UTC 2017
kill -USR1 30024
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 30024 killed at Sun Aug  6 23:57:53 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:54 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30080 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30080 found at Sun Aug  6 23:57:54 UTC 2017
selfserv_9009 with PID 30080 started at Sun Aug  6 23:57:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6014: TLS Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 30080 at Sun Aug  6 23:57:54 UTC 2017
kill -USR1 30080
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 30080 killed at Sun Aug  6 23:57:54 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:57:54 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30148 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30148 found at Sun Aug  6 23:57:54 UTC 2017
selfserv_9009 with PID 30148 started at Sun Aug  6 23:57:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6015: TLS Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 30148 at Sun Aug  6 23:57:54 UTC 2017
kill -USR1 30148
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 30148 killed at Sun Aug  6 23:57:54 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:57:54 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30204 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30204 found at Sun Aug  6 23:57:54 UTC 2017
selfserv_9009 with PID 30204 started at Sun Aug  6 23:57:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6016: TLS Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 30204 at Sun Aug  6 23:57:54 UTC 2017
kill -USR1 30204
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 30204 killed at Sun Aug  6 23:57:54 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:57:54 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30260 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30260 found at Sun Aug  6 23:57:54 UTC 2017
selfserv_9009 with PID 30260 started at Sun Aug  6 23:57:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6017: TLS Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 30260 at Sun Aug  6 23:57:54 UTC 2017
kill -USR1 30260
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 30260 killed at Sun Aug  6 23:57:54 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:54 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30328 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30328 found at Sun Aug  6 23:57:54 UTC 2017
selfserv_9009 with PID 30328 started at Sun Aug  6 23:57:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6018: TLS Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 30328 at Sun Aug  6 23:57:54 UTC 2017
kill -USR1 30328
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 30328 killed at Sun Aug  6 23:57:54 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:54 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30384 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30384 found at Sun Aug  6 23:57:54 UTC 2017
selfserv_9009 with PID 30384 started at Sun Aug  6 23:57:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6019: TLS Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 30384 at Sun Aug  6 23:57:54 UTC 2017
kill -USR1 30384
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 30384 killed at Sun Aug  6 23:57:54 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:54 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30440 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30440 found at Sun Aug  6 23:57:54 UTC 2017
selfserv_9009 with PID 30440 started at Sun Aug  6 23:57:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6020: TLS Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 30440 at Sun Aug  6 23:57:54 UTC 2017
kill -USR1 30440
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 30440 killed at Sun Aug  6 23:57:54 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:54 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30508 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30508 found at Sun Aug  6 23:57:54 UTC 2017
selfserv_9009 with PID 30508 started at Sun Aug  6 23:57:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6021: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 30508 at Sun Aug  6 23:57:54 UTC 2017
kill -USR1 30508
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 30508 killed at Sun Aug  6 23:57:54 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:54 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30564 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30564 found at Sun Aug  6 23:57:54 UTC 2017
selfserv_9009 with PID 30564 started at Sun Aug  6 23:57:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6022: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 30564 at Sun Aug  6 23:57:54 UTC 2017
kill -USR1 30564
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 30564 killed at Sun Aug  6 23:57:54 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:54 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30620 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30620 found at Sun Aug  6 23:57:54 UTC 2017
selfserv_9009 with PID 30620 started at Sun Aug  6 23:57:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6023: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 30620 at Sun Aug  6 23:57:55 UTC 2017
kill -USR1 30620
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 30620 killed at Sun Aug  6 23:57:55 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:57:55 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30688 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30688 found at Sun Aug  6 23:57:55 UTC 2017
selfserv_9009 with PID 30688 started at Sun Aug  6 23:57:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6024: SSL3 Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 30688 at Sun Aug  6 23:57:55 UTC 2017
kill -USR1 30688
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 30688 killed at Sun Aug  6 23:57:55 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:57:55 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30744 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30744 found at Sun Aug  6 23:57:55 UTC 2017
selfserv_9009 with PID 30744 started at Sun Aug  6 23:57:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6025: SSL3 Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 30744 at Sun Aug  6 23:57:55 UTC 2017
kill -USR1 30744
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 30744 killed at Sun Aug  6 23:57:55 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:57:55 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30800 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30800 found at Sun Aug  6 23:57:55 UTC 2017
selfserv_9009 with PID 30800 started at Sun Aug  6 23:57:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6026: SSL3 Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 30800 at Sun Aug  6 23:57:55 UTC 2017
kill -USR1 30800
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 30800 killed at Sun Aug  6 23:57:55 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:55 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30868 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30868 found at Sun Aug  6 23:57:55 UTC 2017
selfserv_9009 with PID 30868 started at Sun Aug  6 23:57:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6027: SSL3 Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 30868 at Sun Aug  6 23:57:55 UTC 2017
kill -USR1 30868
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 30868 killed at Sun Aug  6 23:57:55 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:55 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30924 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30924 found at Sun Aug  6 23:57:55 UTC 2017
selfserv_9009 with PID 30924 started at Sun Aug  6 23:57:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6028: SSL3 Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 30924 at Sun Aug  6 23:57:55 UTC 2017
kill -USR1 30924
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 30924 killed at Sun Aug  6 23:57:55 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:55 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30980 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30980 found at Sun Aug  6 23:57:55 UTC 2017
selfserv_9009 with PID 30980 started at Sun Aug  6 23:57:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6029: SSL3 Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 30980 at Sun Aug  6 23:57:55 UTC 2017
kill -USR1 30980
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 30980 killed at Sun Aug  6 23:57:55 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:55 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31048 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31048 found at Sun Aug  6 23:57:55 UTC 2017
selfserv_9009 with PID 31048 started at Sun Aug  6 23:57:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6030: SSL3 Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 31048 at Sun Aug  6 23:57:55 UTC 2017
kill -USR1 31048
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31048 killed at Sun Aug  6 23:57:55 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:55 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31104 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31104 found at Sun Aug  6 23:57:55 UTC 2017
selfserv_9009 with PID 31104 started at Sun Aug  6 23:57:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6031: SSL3 Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 31104 at Sun Aug  6 23:57:55 UTC 2017
kill -USR1 31104
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31104 killed at Sun Aug  6 23:57:55 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:55 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31160 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31160 found at Sun Aug  6 23:57:55 UTC 2017
selfserv_9009 with PID 31160 started at Sun Aug  6 23:57:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6032: SSL3 Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 31160 at Sun Aug  6 23:57:55 UTC 2017
kill -USR1 31160
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31160 killed at Sun Aug  6 23:57:55 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:57:55 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31228 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31228 found at Sun Aug  6 23:57:55 UTC 2017
selfserv_9009 with PID 31228 started at Sun Aug  6 23:57:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6033: SSL3 Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 31228 at Sun Aug  6 23:57:55 UTC 2017
kill -USR1 31228
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31228 killed at Sun Aug  6 23:57:56 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:57:56 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:56 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31285 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31285 found at Sun Aug  6 23:57:56 UTC 2017
selfserv_9009 with PID 31285 started at Sun Aug  6 23:57:56 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6034: SSL3 Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 31285 at Sun Aug  6 23:57:56 UTC 2017
kill -USR1 31285
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31285 killed at Sun Aug  6 23:57:56 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:57:56 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:56 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31341 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31341 found at Sun Aug  6 23:57:56 UTC 2017
selfserv_9009 with PID 31341 started at Sun Aug  6 23:57:56 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6035: SSL3 Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 31341 at Sun Aug  6 23:57:56 UTC 2017
kill -USR1 31341
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31341 killed at Sun Aug  6 23:57:56 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:56 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:56 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31411 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31411 found at Sun Aug  6 23:57:56 UTC 2017
selfserv_9009 with PID 31411 started at Sun Aug  6 23:57:56 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6036: SSL3 Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 31411 at Sun Aug  6 23:57:56 UTC 2017
kill -USR1 31411
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31411 killed at Sun Aug  6 23:57:56 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:56 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:56 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31467 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31467 found at Sun Aug  6 23:57:56 UTC 2017
selfserv_9009 with PID 31467 started at Sun Aug  6 23:57:56 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6037: SSL3 Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 31467 at Sun Aug  6 23:57:56 UTC 2017
kill -USR1 31467
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31467 killed at Sun Aug  6 23:57:56 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:56 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:56 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31523 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31523 found at Sun Aug  6 23:57:56 UTC 2017
selfserv_9009 with PID 31523 started at Sun Aug  6 23:57:56 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6038: SSL3 Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 31523 at Sun Aug  6 23:57:56 UTC 2017
kill -USR1 31523
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31523 killed at Sun Aug  6 23:57:56 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:56 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:56 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31591 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31591 found at Sun Aug  6 23:57:56 UTC 2017
selfserv_9009 with PID 31591 started at Sun Aug  6 23:57:56 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6039: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 31591 at Sun Aug  6 23:57:56 UTC 2017
kill -USR1 31591
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31591 killed at Sun Aug  6 23:57:56 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:56 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:56 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31649 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31649 found at Sun Aug  6 23:57:56 UTC 2017
selfserv_9009 with PID 31649 started at Sun Aug  6 23:57:56 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6040: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 31649 at Sun Aug  6 23:57:56 UTC 2017
kill -USR1 31649
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31649 killed at Sun Aug  6 23:57:56 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:56 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:56 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31705 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31705 found at Sun Aug  6 23:57:56 UTC 2017
selfserv_9009 with PID 31705 started at Sun Aug  6 23:57:56 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6041: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 31705 at Sun Aug  6 23:57:57 UTC 2017
kill -USR1 31705
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31705 killed at Sun Aug  6 23:57:57 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:57:57 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:57 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31775 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31775 found at Sun Aug  6 23:57:57 UTC 2017
selfserv_9009 with PID 31775 started at Sun Aug  6 23:57:57 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6042: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 31775 at Sun Aug  6 23:57:57 UTC 2017
kill -USR1 31775
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31775 killed at Sun Aug  6 23:57:57 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:57:57 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:57 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31831 found at Sun Aug  6 23:57:57 UTC 2017
selfserv_9009 with PID 31831 started at Sun Aug  6 23:57:57 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6043: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 31831 at Sun Aug  6 23:57:57 UTC 2017
kill -USR1 31831
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31831 killed at Sun Aug  6 23:57:57 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:57:57 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:57 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31888 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31888 found at Sun Aug  6 23:57:57 UTC 2017
selfserv_9009 with PID 31888 started at Sun Aug  6 23:57:57 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6044: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 31888 at Sun Aug  6 23:57:57 UTC 2017
kill -USR1 31888
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31888 killed at Sun Aug  6 23:57:57 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:57 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:57 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31956 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31956 found at Sun Aug  6 23:57:57 UTC 2017
selfserv_9009 with PID 31956 started at Sun Aug  6 23:57:57 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6045: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 31956 at Sun Aug  6 23:57:57 UTC 2017
kill -USR1 31956
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31956 killed at Sun Aug  6 23:57:57 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:57 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:57 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32012 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32012 found at Sun Aug  6 23:57:57 UTC 2017
selfserv_9009 with PID 32012 started at Sun Aug  6 23:57:57 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6046: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 32012 at Sun Aug  6 23:57:57 UTC 2017
kill -USR1 32012
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 32012 killed at Sun Aug  6 23:57:57 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:57 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:57 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32068 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32068 found at Sun Aug  6 23:57:57 UTC 2017
selfserv_9009 with PID 32068 started at Sun Aug  6 23:57:57 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6047: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 32068 at Sun Aug  6 23:57:57 UTC 2017
kill -USR1 32068
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 32068 killed at Sun Aug  6 23:57:57 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:57 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:57 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32137 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32137 found at Sun Aug  6 23:57:57 UTC 2017
selfserv_9009 with PID 32137 started at Sun Aug  6 23:57:57 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6048: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 32137 at Sun Aug  6 23:57:57 UTC 2017
kill -USR1 32137
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 32137 killed at Sun Aug  6 23:57:57 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:57 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:57 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32193 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32193 found at Sun Aug  6 23:57:57 UTC 2017
selfserv_9009 with PID 32193 started at Sun Aug  6 23:57:57 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6049: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 32193 at Sun Aug  6 23:57:58 UTC 2017
kill -USR1 32193
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 32193 killed at Sun Aug  6 23:57:58 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:58 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:58 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32249 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32249 found at Sun Aug  6 23:57:58 UTC 2017
selfserv_9009 with PID 32249 started at Sun Aug  6 23:57:58 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6050: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 32249 at Sun Aug  6 23:57:58 UTC 2017
kill -USR1 32249
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 32249 killed at Sun Aug  6 23:57:58 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:57:58 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:58 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32317 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32317 found at Sun Aug  6 23:57:58 UTC 2017
selfserv_9009 with PID 32317 started at Sun Aug  6 23:57:58 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6051: TLS Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 32317 at Sun Aug  6 23:57:58 UTC 2017
kill -USR1 32317
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 32317 killed at Sun Aug  6 23:57:58 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:57:58 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:58 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32373 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32373 found at Sun Aug  6 23:57:58 UTC 2017
selfserv_9009 with PID 32373 started at Sun Aug  6 23:57:58 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6052: TLS Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 32373 at Sun Aug  6 23:57:58 UTC 2017
kill -USR1 32373
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 32373 killed at Sun Aug  6 23:57:58 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:57:58 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:58 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32429 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32429 found at Sun Aug  6 23:57:58 UTC 2017
selfserv_9009 with PID 32429 started at Sun Aug  6 23:57:58 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6053: TLS Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 32429 at Sun Aug  6 23:57:58 UTC 2017
kill -USR1 32429
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 32429 killed at Sun Aug  6 23:57:58 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:58 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:58 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32498 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32498 found at Sun Aug  6 23:57:58 UTC 2017
selfserv_9009 with PID 32498 started at Sun Aug  6 23:57:58 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6054: TLS Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 32498 at Sun Aug  6 23:57:58 UTC 2017
kill -USR1 32498
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 32498 killed at Sun Aug  6 23:57:58 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:58 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:58 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32554 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32554 found at Sun Aug  6 23:57:58 UTC 2017
selfserv_9009 with PID 32554 started at Sun Aug  6 23:57:58 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6055: TLS Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 32554 at Sun Aug  6 23:57:58 UTC 2017
kill -USR1 32554
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 32554 killed at Sun Aug  6 23:57:58 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:58 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:58 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32610 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32610 found at Sun Aug  6 23:57:58 UTC 2017
selfserv_9009 with PID 32610 started at Sun Aug  6 23:57:58 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6056: TLS Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 32610 at Sun Aug  6 23:57:58 UTC 2017
kill -USR1 32610
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 32610 killed at Sun Aug  6 23:57:58 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:58 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:58 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32678 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32678 found at Sun Aug  6 23:57:58 UTC 2017
selfserv_9009 with PID 32678 started at Sun Aug  6 23:57:58 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6057: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 32678 at Sun Aug  6 23:57:59 UTC 2017
kill -USR1 32678
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 32678 killed at Sun Aug  6 23:57:59 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:59 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:59 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32734 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32734 found at Sun Aug  6 23:57:59 UTC 2017
selfserv_9009 with PID 32734 started at Sun Aug  6 23:57:59 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6058: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 32734 at Sun Aug  6 23:57:59 UTC 2017
kill -USR1 32734
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 32734 killed at Sun Aug  6 23:57:59 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:59 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:59 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 322 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 322 found at Sun Aug  6 23:57:59 UTC 2017
selfserv_9009 with PID 322 started at Sun Aug  6 23:57:59 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6059: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 322 at Sun Aug  6 23:57:59 UTC 2017
kill -USR1 322
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 322 killed at Sun Aug  6 23:57:59 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:57:59 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:59 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 391 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 391 found at Sun Aug  6 23:57:59 UTC 2017
selfserv_9009 with PID 391 started at Sun Aug  6 23:57:59 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6060: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 391 at Sun Aug  6 23:57:59 UTC 2017
kill -USR1 391
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 391 killed at Sun Aug  6 23:57:59 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:57:59 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:59 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 447 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 447 found at Sun Aug  6 23:57:59 UTC 2017
selfserv_9009 with PID 447 started at Sun Aug  6 23:57:59 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6061: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 447 at Sun Aug  6 23:57:59 UTC 2017
kill -USR1 447
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 447 killed at Sun Aug  6 23:57:59 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:57:59 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:59 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 508 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 508 found at Sun Aug  6 23:57:59 UTC 2017
selfserv_9009 with PID 508 started at Sun Aug  6 23:57:59 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6062: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 508 at Sun Aug  6 23:57:59 UTC 2017
kill -USR1 508
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 508 killed at Sun Aug  6 23:57:59 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:59 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:59 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 579 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 579 found at Sun Aug  6 23:57:59 UTC 2017
selfserv_9009 with PID 579 started at Sun Aug  6 23:57:59 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6063: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 579 at Sun Aug  6 23:57:59 UTC 2017
kill -USR1 579
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 579 killed at Sun Aug  6 23:57:59 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:59 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:59 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 650 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 650 found at Sun Aug  6 23:57:59 UTC 2017
selfserv_9009 with PID 650 started at Sun Aug  6 23:57:59 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6064: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 650 at Sun Aug  6 23:57:59 UTC 2017
kill -USR1 650
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 650 killed at Sun Aug  6 23:57:59 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:57:59 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:57:59 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 706 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 706 found at Sun Aug  6 23:58:00 UTC 2017
selfserv_9009 with PID 706 started at Sun Aug  6 23:58:00 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6065: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 706 at Sun Aug  6 23:58:00 UTC 2017
kill -USR1 706
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 706 killed at Sun Aug  6 23:58:00 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:00 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:00 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 780 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 780 found at Sun Aug  6 23:58:00 UTC 2017
selfserv_9009 with PID 780 started at Sun Aug  6 23:58:00 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6066: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 780 at Sun Aug  6 23:58:00 UTC 2017
kill -USR1 780
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 780 killed at Sun Aug  6 23:58:00 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:00 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:00 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 838 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 838 found at Sun Aug  6 23:58:00 UTC 2017
selfserv_9009 with PID 838 started at Sun Aug  6 23:58:00 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6067: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 838 at Sun Aug  6 23:58:00 UTC 2017
kill -USR1 838
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 838 killed at Sun Aug  6 23:58:00 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:00 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:00 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 897 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 897 found at Sun Aug  6 23:58:00 UTC 2017
selfserv_9009 with PID 897 started at Sun Aug  6 23:58:00 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6068: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 897 at Sun Aug  6 23:58:00 UTC 2017
kill -USR1 897
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 897 killed at Sun Aug  6 23:58:00 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:00 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:00 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 976 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 976 found at Sun Aug  6 23:58:00 UTC 2017
selfserv_9009 with PID 976 started at Sun Aug  6 23:58:00 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6069: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 976 at Sun Aug  6 23:58:00 UTC 2017
kill -USR1 976
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 976 killed at Sun Aug  6 23:58:00 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:00 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:00 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1049 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1049 found at Sun Aug  6 23:58:00 UTC 2017
selfserv_9009 with PID 1049 started at Sun Aug  6 23:58:00 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6070: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 1049 at Sun Aug  6 23:58:00 UTC 2017
kill -USR1 1049
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 1049 killed at Sun Aug  6 23:58:00 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:00 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:00 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1125 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1125 found at Sun Aug  6 23:58:00 UTC 2017
selfserv_9009 with PID 1125 started at Sun Aug  6 23:58:00 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6071: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 1125 at Sun Aug  6 23:58:00 UTC 2017
kill -USR1 1125
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 1125 killed at Sun Aug  6 23:58:00 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:00 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:00 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1204 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1204 found at Sun Aug  6 23:58:00 UTC 2017
selfserv_9009 with PID 1204 started at Sun Aug  6 23:58:00 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6072: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 1204 at Sun Aug  6 23:58:01 UTC 2017
kill -USR1 1204
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 1204 killed at Sun Aug  6 23:58:01 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:01 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:01 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1262 found at Sun Aug  6 23:58:01 UTC 2017
selfserv_9009 with PID 1262 started at Sun Aug  6 23:58:01 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6073: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 1262 at Sun Aug  6 23:58:01 UTC 2017
kill -USR1 1262
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 1262 killed at Sun Aug  6 23:58:01 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:01 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:01 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1319 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1319 found at Sun Aug  6 23:58:01 UTC 2017
selfserv_9009 with PID 1319 started at Sun Aug  6 23:58:01 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6074: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 1319 at Sun Aug  6 23:58:01 UTC 2017
kill -USR1 1319
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 1319 killed at Sun Aug  6 23:58:01 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:01 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:01 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1387 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1387 found at Sun Aug  6 23:58:01 UTC 2017
selfserv_9009 with PID 1387 started at Sun Aug  6 23:58:01 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6075: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 1387 at Sun Aug  6 23:58:01 UTC 2017
kill -USR1 1387
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 1387 killed at Sun Aug  6 23:58:01 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:01 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:01 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1444 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1444 found at Sun Aug  6 23:58:01 UTC 2017
selfserv_9009 with PID 1444 started at Sun Aug  6 23:58:01 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6076: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 1444 at Sun Aug  6 23:58:01 UTC 2017
kill -USR1 1444
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 1444 killed at Sun Aug  6 23:58:01 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:01 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:01 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1500 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1500 found at Sun Aug  6 23:58:01 UTC 2017
selfserv_9009 with PID 1500 started at Sun Aug  6 23:58:01 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6077: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 1500 at Sun Aug  6 23:58:01 UTC 2017
kill -USR1 1500
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 1500 killed at Sun Aug  6 23:58:01 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:01 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:01 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1569 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1569 found at Sun Aug  6 23:58:01 UTC 2017
selfserv_9009 with PID 1569 started at Sun Aug  6 23:58:01 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6078: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 1569 at Sun Aug  6 23:58:01 UTC 2017
kill -USR1 1569
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 1569 killed at Sun Aug  6 23:58:01 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:01 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:01 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1625 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1625 found at Sun Aug  6 23:58:01 UTC 2017
selfserv_9009 with PID 1625 started at Sun Aug  6 23:58:01 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6079: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 1625 at Sun Aug  6 23:58:01 UTC 2017
kill -USR1 1625
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 1625 killed at Sun Aug  6 23:58:01 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:02 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:02 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1684 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1684 found at Sun Aug  6 23:58:02 UTC 2017
selfserv_9009 with PID 1684 started at Sun Aug  6 23:58:02 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6080: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 1684 at Sun Aug  6 23:58:02 UTC 2017
kill -USR1 1684
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 1684 killed at Sun Aug  6 23:58:02 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:02 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:02 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1767 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1767 found at Sun Aug  6 23:58:02 UTC 2017
selfserv_9009 with PID 1767 started at Sun Aug  6 23:58:02 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6081: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 1767 at Sun Aug  6 23:58:02 UTC 2017
kill -USR1 1767
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 1767 killed at Sun Aug  6 23:58:02 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:02 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:02 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1825 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1825 found at Sun Aug  6 23:58:02 UTC 2017
selfserv_9009 with PID 1825 started at Sun Aug  6 23:58:02 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6082: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 1825 at Sun Aug  6 23:58:02 UTC 2017
kill -USR1 1825
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 1825 killed at Sun Aug  6 23:58:02 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:02 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:02 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1890 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1890 found at Sun Aug  6 23:58:02 UTC 2017
selfserv_9009 with PID 1890 started at Sun Aug  6 23:58:02 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6083: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 1890 at Sun Aug  6 23:58:02 UTC 2017
kill -USR1 1890
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 1890 killed at Sun Aug  6 23:58:02 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:02 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:02 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1970 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1970 found at Sun Aug  6 23:58:02 UTC 2017
selfserv_9009 with PID 1970 started at Sun Aug  6 23:58:02 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6084: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 1970 at Sun Aug  6 23:58:02 UTC 2017
kill -USR1 1970
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 1970 killed at Sun Aug  6 23:58:02 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:02 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:02 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2026 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2026 found at Sun Aug  6 23:58:02 UTC 2017
selfserv_9009 with PID 2026 started at Sun Aug  6 23:58:02 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6085: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 2026 at Sun Aug  6 23:58:02 UTC 2017
kill -USR1 2026
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 2026 killed at Sun Aug  6 23:58:02 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:02 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:02 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2082 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2082 found at Sun Aug  6 23:58:02 UTC 2017
selfserv_9009 with PID 2082 started at Sun Aug  6 23:58:02 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6086: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 2082 at Sun Aug  6 23:58:02 UTC 2017
kill -USR1 2082
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 2082 killed at Sun Aug  6 23:58:02 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:02 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:02 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2150 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2150 found at Sun Aug  6 23:58:02 UTC 2017
selfserv_9009 with PID 2150 started at Sun Aug  6 23:58:02 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6087: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 2150 at Sun Aug  6 23:58:02 UTC 2017
kill -USR1 2150
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 2150 killed at Sun Aug  6 23:58:02 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:02 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:02 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2206 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2206 found at Sun Aug  6 23:58:02 UTC 2017
selfserv_9009 with PID 2206 started at Sun Aug  6 23:58:02 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6088: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 2206 at Sun Aug  6 23:58:02 UTC 2017
kill -USR1 2206
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 2206 killed at Sun Aug  6 23:58:02 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:02 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:02 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2262 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2262 found at Sun Aug  6 23:58:02 UTC 2017
selfserv_9009 with PID 2262 started at Sun Aug  6 23:58:02 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6089: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 2262 at Sun Aug  6 23:58:03 UTC 2017
kill -USR1 2262
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 2262 killed at Sun Aug  6 23:58:03 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:03 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2330 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2330 found at Sun Aug  6 23:58:03 UTC 2017
selfserv_9009 with PID 2330 started at Sun Aug  6 23:58:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6090: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 2330 at Sun Aug  6 23:58:03 UTC 2017
kill -USR1 2330
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 2330 killed at Sun Aug  6 23:58:03 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:03 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2386 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2386 found at Sun Aug  6 23:58:03 UTC 2017
selfserv_9009 with PID 2386 started at Sun Aug  6 23:58:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6091: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 2386 at Sun Aug  6 23:58:03 UTC 2017
kill -USR1 2386
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 2386 killed at Sun Aug  6 23:58:03 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:03 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2442 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2442 found at Sun Aug  6 23:58:03 UTC 2017
selfserv_9009 with PID 2442 started at Sun Aug  6 23:58:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6092: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 2442 at Sun Aug  6 23:58:03 UTC 2017
kill -USR1 2442
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 2442 killed at Sun Aug  6 23:58:03 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:03 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2519 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2519 found at Sun Aug  6 23:58:03 UTC 2017
selfserv_9009 with PID 2519 started at Sun Aug  6 23:58:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6093: TLS Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 2519 at Sun Aug  6 23:58:03 UTC 2017
kill -USR1 2519
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 2519 killed at Sun Aug  6 23:58:03 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:03 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2576 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2576 found at Sun Aug  6 23:58:03 UTC 2017
selfserv_9009 with PID 2576 started at Sun Aug  6 23:58:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6094: TLS Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 2576 at Sun Aug  6 23:58:03 UTC 2017
kill -USR1 2576
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 2576 killed at Sun Aug  6 23:58:03 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:03 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2634 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2634 found at Sun Aug  6 23:58:03 UTC 2017
selfserv_9009 with PID 2634 started at Sun Aug  6 23:58:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6095: TLS Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 2634 at Sun Aug  6 23:58:03 UTC 2017
kill -USR1 2634
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 2634 killed at Sun Aug  6 23:58:03 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:03 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2702 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2702 found at Sun Aug  6 23:58:03 UTC 2017
selfserv_9009 with PID 2702 started at Sun Aug  6 23:58:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6096: TLS Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 2702 at Sun Aug  6 23:58:03 UTC 2017
kill -USR1 2702
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 2702 killed at Sun Aug  6 23:58:03 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:03 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2758 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2758 found at Sun Aug  6 23:58:03 UTC 2017
selfserv_9009 with PID 2758 started at Sun Aug  6 23:58:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6097: TLS Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 2758 at Sun Aug  6 23:58:03 UTC 2017
kill -USR1 2758
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 2758 killed at Sun Aug  6 23:58:03 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:03 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2814 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2814 found at Sun Aug  6 23:58:03 UTC 2017
selfserv_9009 with PID 2814 started at Sun Aug  6 23:58:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6098: TLS Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 2814 at Sun Aug  6 23:58:04 UTC 2017
kill -USR1 2814
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 2814 killed at Sun Aug  6 23:58:04 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:04 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2882 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2882 found at Sun Aug  6 23:58:04 UTC 2017
selfserv_9009 with PID 2882 started at Sun Aug  6 23:58:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6099: TLS Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 2882 at Sun Aug  6 23:58:04 UTC 2017
kill -USR1 2882
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 2882 killed at Sun Aug  6 23:58:04 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:04 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2938 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2938 found at Sun Aug  6 23:58:04 UTC 2017
selfserv_9009 with PID 2938 started at Sun Aug  6 23:58:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6100: TLS Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 2938 at Sun Aug  6 23:58:04 UTC 2017
kill -USR1 2938
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 2938 killed at Sun Aug  6 23:58:04 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:04 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2994 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2994 found at Sun Aug  6 23:58:04 UTC 2017
selfserv_9009 with PID 2994 started at Sun Aug  6 23:58:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6101: TLS Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 2994 at Sun Aug  6 23:58:04 UTC 2017
kill -USR1 2994
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 2994 killed at Sun Aug  6 23:58:04 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:04 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3062 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3062 found at Sun Aug  6 23:58:04 UTC 2017
selfserv_9009 with PID 3062 started at Sun Aug  6 23:58:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6102: TLS Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 3062 at Sun Aug  6 23:58:04 UTC 2017
kill -USR1 3062
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 3062 killed at Sun Aug  6 23:58:04 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:04 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3118 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3118 found at Sun Aug  6 23:58:04 UTC 2017
selfserv_9009 with PID 3118 started at Sun Aug  6 23:58:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6103: TLS Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 3118 at Sun Aug  6 23:58:04 UTC 2017
kill -USR1 3118
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 3118 killed at Sun Aug  6 23:58:04 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:04 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3174 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3174 found at Sun Aug  6 23:58:04 UTC 2017
selfserv_9009 with PID 3174 started at Sun Aug  6 23:58:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6104: TLS Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 3174 at Sun Aug  6 23:58:04 UTC 2017
kill -USR1 3174
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 3174 killed at Sun Aug  6 23:58:04 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:04 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3242 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3242 found at Sun Aug  6 23:58:04 UTC 2017
selfserv_9009 with PID 3242 started at Sun Aug  6 23:58:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6105: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 3242 at Sun Aug  6 23:58:04 UTC 2017
kill -USR1 3242
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 3242 killed at Sun Aug  6 23:58:04 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:04 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3298 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3298 found at Sun Aug  6 23:58:04 UTC 2017
selfserv_9009 with PID 3298 started at Sun Aug  6 23:58:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6106: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 3298 at Sun Aug  6 23:58:04 UTC 2017
kill -USR1 3298
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 3298 killed at Sun Aug  6 23:58:04 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:05 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3354 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3354 found at Sun Aug  6 23:58:05 UTC 2017
selfserv_9009 with PID 3354 started at Sun Aug  6 23:58:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6107: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 3354 at Sun Aug  6 23:58:05 UTC 2017
kill -USR1 3354
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 3354 killed at Sun Aug  6 23:58:05 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:05 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3422 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3422 found at Sun Aug  6 23:58:05 UTC 2017
selfserv_9009 with PID 3422 started at Sun Aug  6 23:58:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6108: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 3422 at Sun Aug  6 23:58:05 UTC 2017
kill -USR1 3422
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 3422 killed at Sun Aug  6 23:58:05 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:05 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3479 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3479 found at Sun Aug  6 23:58:05 UTC 2017
selfserv_9009 with PID 3479 started at Sun Aug  6 23:58:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6109: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 3479 at Sun Aug  6 23:58:05 UTC 2017
kill -USR1 3479
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 3479 killed at Sun Aug  6 23:58:05 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:05 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3535 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3535 found at Sun Aug  6 23:58:05 UTC 2017
selfserv_9009 with PID 3535 started at Sun Aug  6 23:58:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6110: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 3535 at Sun Aug  6 23:58:05 UTC 2017
kill -USR1 3535
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 3535 killed at Sun Aug  6 23:58:05 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:05 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3604 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3604 found at Sun Aug  6 23:58:05 UTC 2017
selfserv_9009 with PID 3604 started at Sun Aug  6 23:58:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6111: SSL3 Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 3604 at Sun Aug  6 23:58:05 UTC 2017
kill -USR1 3604
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 3604 killed at Sun Aug  6 23:58:05 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:05 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3662 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3662 found at Sun Aug  6 23:58:05 UTC 2017
selfserv_9009 with PID 3662 started at Sun Aug  6 23:58:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6112: SSL3 Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 3662 at Sun Aug  6 23:58:05 UTC 2017
kill -USR1 3662
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 3662 killed at Sun Aug  6 23:58:05 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:05 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3718 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3718 found at Sun Aug  6 23:58:05 UTC 2017
selfserv_9009 with PID 3718 started at Sun Aug  6 23:58:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6113: SSL3 Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 3718 at Sun Aug  6 23:58:05 UTC 2017
kill -USR1 3718
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 3718 killed at Sun Aug  6 23:58:05 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:05 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3787 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3787 found at Sun Aug  6 23:58:05 UTC 2017
selfserv_9009 with PID 3787 started at Sun Aug  6 23:58:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6114: SSL3 Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 3787 at Sun Aug  6 23:58:05 UTC 2017
kill -USR1 3787
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 3787 killed at Sun Aug  6 23:58:05 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:05 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3843 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3843 found at Sun Aug  6 23:58:05 UTC 2017
selfserv_9009 with PID 3843 started at Sun Aug  6 23:58:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6115: SSL3 Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 3843 at Sun Aug  6 23:58:05 UTC 2017
kill -USR1 3843
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 3843 killed at Sun Aug  6 23:58:05 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:05 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3899 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3899 found at Sun Aug  6 23:58:05 UTC 2017
selfserv_9009 with PID 3899 started at Sun Aug  6 23:58:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6116: SSL3 Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 3899 at Sun Aug  6 23:58:06 UTC 2017
kill -USR1 3899
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 3899 killed at Sun Aug  6 23:58:06 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:06 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3967 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3967 found at Sun Aug  6 23:58:06 UTC 2017
selfserv_9009 with PID 3967 started at Sun Aug  6 23:58:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6117: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 3967 at Sun Aug  6 23:58:06 UTC 2017
kill -USR1 3967
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 3967 killed at Sun Aug  6 23:58:06 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:06 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4023 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4023 found at Sun Aug  6 23:58:06 UTC 2017
selfserv_9009 with PID 4023 started at Sun Aug  6 23:58:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6118: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 4023 at Sun Aug  6 23:58:06 UTC 2017
kill -USR1 4023
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4023 killed at Sun Aug  6 23:58:06 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:06 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4080 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4080 found at Sun Aug  6 23:58:06 UTC 2017
selfserv_9009 with PID 4080 started at Sun Aug  6 23:58:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6119: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 4080 at Sun Aug  6 23:58:06 UTC 2017
kill -USR1 4080
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4080 killed at Sun Aug  6 23:58:06 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:06 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4149 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4149 found at Sun Aug  6 23:58:06 UTC 2017
selfserv_9009 with PID 4149 started at Sun Aug  6 23:58:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6120: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 4149 at Sun Aug  6 23:58:06 UTC 2017
kill -USR1 4149
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4149 killed at Sun Aug  6 23:58:06 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:06 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4205 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4205 found at Sun Aug  6 23:58:06 UTC 2017
selfserv_9009 with PID 4205 started at Sun Aug  6 23:58:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6121: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 4205 at Sun Aug  6 23:58:06 UTC 2017
kill -USR1 4205
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4205 killed at Sun Aug  6 23:58:06 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:06 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4261 found at Sun Aug  6 23:58:06 UTC 2017
selfserv_9009 with PID 4261 started at Sun Aug  6 23:58:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6122: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 4261 at Sun Aug  6 23:58:06 UTC 2017
kill -USR1 4261
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4261 killed at Sun Aug  6 23:58:06 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:06 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4330 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4330 found at Sun Aug  6 23:58:06 UTC 2017
selfserv_9009 with PID 4330 started at Sun Aug  6 23:58:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6123: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 4330 at Sun Aug  6 23:58:06 UTC 2017
kill -USR1 4330
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4330 killed at Sun Aug  6 23:58:06 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:07 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4386 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4386 found at Sun Aug  6 23:58:07 UTC 2017
selfserv_9009 with PID 4386 started at Sun Aug  6 23:58:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6124: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 4386 at Sun Aug  6 23:58:07 UTC 2017
kill -USR1 4386
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4386 killed at Sun Aug  6 23:58:07 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:07 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4442 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4442 found at Sun Aug  6 23:58:07 UTC 2017
selfserv_9009 with PID 4442 started at Sun Aug  6 23:58:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6125: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 4442 at Sun Aug  6 23:58:07 UTC 2017
kill -USR1 4442
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4442 killed at Sun Aug  6 23:58:07 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:07 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4510 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4510 found at Sun Aug  6 23:58:07 UTC 2017
selfserv_9009 with PID 4510 started at Sun Aug  6 23:58:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6126: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 4510 at Sun Aug  6 23:58:07 UTC 2017
kill -USR1 4510
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4510 killed at Sun Aug  6 23:58:07 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:07 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4568 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4568 found at Sun Aug  6 23:58:07 UTC 2017
selfserv_9009 with PID 4568 started at Sun Aug  6 23:58:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6127: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 4568 at Sun Aug  6 23:58:07 UTC 2017
kill -USR1 4568
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4568 killed at Sun Aug  6 23:58:07 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:07 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4624 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4624 found at Sun Aug  6 23:58:07 UTC 2017
selfserv_9009 with PID 4624 started at Sun Aug  6 23:58:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6128: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 4624 at Sun Aug  6 23:58:07 UTC 2017
kill -USR1 4624
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4624 killed at Sun Aug  6 23:58:07 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:07 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4692 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4692 found at Sun Aug  6 23:58:07 UTC 2017
selfserv_9009 with PID 4692 started at Sun Aug  6 23:58:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6129: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 4692 at Sun Aug  6 23:58:07 UTC 2017
kill -USR1 4692
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4692 killed at Sun Aug  6 23:58:07 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:07 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4751 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4751 found at Sun Aug  6 23:58:07 UTC 2017
selfserv_9009 with PID 4751 started at Sun Aug  6 23:58:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6130: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 4751 at Sun Aug  6 23:58:07 UTC 2017
kill -USR1 4751
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4751 killed at Sun Aug  6 23:58:07 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:07 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4807 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4807 found at Sun Aug  6 23:58:07 UTC 2017
selfserv_9009 with PID 4807 started at Sun Aug  6 23:58:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6131: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 4807 at Sun Aug  6 23:58:08 UTC 2017
kill -USR1 4807
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4807 killed at Sun Aug  6 23:58:08 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:08 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4875 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4875 found at Sun Aug  6 23:58:08 UTC 2017
selfserv_9009 with PID 4875 started at Sun Aug  6 23:58:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6132: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 4875 at Sun Aug  6 23:58:08 UTC 2017
kill -USR1 4875
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4875 killed at Sun Aug  6 23:58:08 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:08 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4931 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4931 found at Sun Aug  6 23:58:08 UTC 2017
selfserv_9009 with PID 4931 started at Sun Aug  6 23:58:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6133: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 4931 at Sun Aug  6 23:58:08 UTC 2017
kill -USR1 4931
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4931 killed at Sun Aug  6 23:58:08 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:08 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4987 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4987 found at Sun Aug  6 23:58:08 UTC 2017
selfserv_9009 with PID 4987 started at Sun Aug  6 23:58:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6134: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 4987 at Sun Aug  6 23:58:08 UTC 2017
kill -USR1 4987
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4987 killed at Sun Aug  6 23:58:08 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:08 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5056 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5056 found at Sun Aug  6 23:58:08 UTC 2017
selfserv_9009 with PID 5056 started at Sun Aug  6 23:58:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6135: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 5056 at Sun Aug  6 23:58:08 UTC 2017
kill -USR1 5056
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 5056 killed at Sun Aug  6 23:58:08 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:08 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5112 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5112 found at Sun Aug  6 23:58:08 UTC 2017
selfserv_9009 with PID 5112 started at Sun Aug  6 23:58:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6136: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 5112 at Sun Aug  6 23:58:08 UTC 2017
kill -USR1 5112
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 5112 killed at Sun Aug  6 23:58:08 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:08 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5168 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5168 found at Sun Aug  6 23:58:08 UTC 2017
selfserv_9009 with PID 5168 started at Sun Aug  6 23:58:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6137: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 5168 at Sun Aug  6 23:58:08 UTC 2017
kill -USR1 5168
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 5168 killed at Sun Aug  6 23:58:08 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:08 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5236 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5236 found at Sun Aug  6 23:58:08 UTC 2017
selfserv_9009 with PID 5236 started at Sun Aug  6 23:58:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6138: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 5236 at Sun Aug  6 23:58:09 UTC 2017
kill -USR1 5236
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 5236 killed at Sun Aug  6 23:58:09 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:09 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5292 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5292 found at Sun Aug  6 23:58:09 UTC 2017
selfserv_9009 with PID 5292 started at Sun Aug  6 23:58:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6139: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 5292 at Sun Aug  6 23:58:09 UTC 2017
kill -USR1 5292
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 5292 killed at Sun Aug  6 23:58:09 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:09 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5348 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5348 found at Sun Aug  6 23:58:09 UTC 2017
selfserv_9009 with PID 5348 started at Sun Aug  6 23:58:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6140: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 5348 at Sun Aug  6 23:58:09 UTC 2017
kill -USR1 5348
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 5348 killed at Sun Aug  6 23:58:09 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:09 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5416 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5416 found at Sun Aug  6 23:58:09 UTC 2017
selfserv_9009 with PID 5416 started at Sun Aug  6 23:58:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6141: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 5416 at Sun Aug  6 23:58:09 UTC 2017
kill -USR1 5416
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 5416 killed at Sun Aug  6 23:58:09 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:09 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5472 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5472 found at Sun Aug  6 23:58:09 UTC 2017
selfserv_9009 with PID 5472 started at Sun Aug  6 23:58:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6142: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 5472 at Sun Aug  6 23:58:09 UTC 2017
kill -USR1 5472
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 5472 killed at Sun Aug  6 23:58:09 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:09 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5528 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5528 found at Sun Aug  6 23:58:09 UTC 2017
selfserv_9009 with PID 5528 started at Sun Aug  6 23:58:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6143: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 5528 at Sun Aug  6 23:58:09 UTC 2017
kill -USR1 5528
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 5528 killed at Sun Aug  6 23:58:09 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:09 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5596 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5596 found at Sun Aug  6 23:58:09 UTC 2017
selfserv_9009 with PID 5596 started at Sun Aug  6 23:58:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6144: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 5596 at Sun Aug  6 23:58:09 UTC 2017
kill -USR1 5596
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 5596 killed at Sun Aug  6 23:58:09 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:09 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5653 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5653 found at Sun Aug  6 23:58:09 UTC 2017
selfserv_9009 with PID 5653 started at Sun Aug  6 23:58:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6145: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 5653 at Sun Aug  6 23:58:09 UTC 2017
kill -USR1 5653
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 5653 killed at Sun Aug  6 23:58:09 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:09 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5709 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5709 found at Sun Aug  6 23:58:09 UTC 2017
selfserv_9009 with PID 5709 started at Sun Aug  6 23:58:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6146: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 5709 at Sun Aug  6 23:58:09 UTC 2017
kill -USR1 5709
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 5709 killed at Sun Aug  6 23:58:09 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:09 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5777 found at Sun Aug  6 23:58:10 UTC 2017
selfserv_9009 with PID 5777 started at Sun Aug  6 23:58:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6147: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 5777 at Sun Aug  6 23:58:10 UTC 2017
kill -USR1 5777
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 5777 killed at Sun Aug  6 23:58:10 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:10 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5833 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5833 found at Sun Aug  6 23:58:10 UTC 2017
selfserv_9009 with PID 5833 started at Sun Aug  6 23:58:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6148: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 5833 at Sun Aug  6 23:58:10 UTC 2017
kill -USR1 5833
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 5833 killed at Sun Aug  6 23:58:10 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Sun Aug  6 23:58:10 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5889 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5889 found at Sun Aug  6 23:58:10 UTC 2017
selfserv_9009 with PID 5889 started at Sun Aug  6 23:58:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6149: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 5889 at Sun Aug  6 23:58:10 UTC 2017
kill -USR1 5889
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 5889 killed at Sun Aug  6 23:58:10 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:10 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5957 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5957 found at Sun Aug  6 23:58:10 UTC 2017
selfserv_9009 with PID 5957 started at Sun Aug  6 23:58:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6150: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 5957 at Sun Aug  6 23:58:10 UTC 2017
kill -USR1 5957
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 5957 killed at Sun Aug  6 23:58:10 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:10 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6013 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6013 found at Sun Aug  6 23:58:10 UTC 2017
selfserv_9009 with PID 6013 started at Sun Aug  6 23:58:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6151: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 6013 at Sun Aug  6 23:58:10 UTC 2017
kill -USR1 6013
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 6013 killed at Sun Aug  6 23:58:10 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:10 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6070 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6070 found at Sun Aug  6 23:58:10 UTC 2017
selfserv_9009 with PID 6070 started at Sun Aug  6 23:58:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6152: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 6070 at Sun Aug  6 23:58:10 UTC 2017
kill -USR1 6070
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 6070 killed at Sun Aug  6 23:58:10 UTC 2017
ssl.sh: Cache CRL SSL Client Tests   - with ECC ===============================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/authin.tl.tmp
0
selfserv_9009 starting at Sun Aug  6 23:58:10 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:10 UTC 2017
selfserv_9009 with PID 6133 started at Sun Aug  6 23:58:10 UTC 2017
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:10 UTC 2017
ssl.sh: #6153: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:10 UTC 2017
ssl.sh: #6154: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:10 UTC 2017
ssl.sh: #6155: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:10 UTC 2017
ssl.sh: #6156: TLS Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:10 UTC 2017
ssl.sh: #6157: TLS Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:11 UTC 2017
ssl.sh: #6158: TLS Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:11 UTC 2017
ssl.sh: #6159: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:11 UTC 2017
ssl.sh: #6160: TLS Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:11 UTC 2017
ssl.sh: #6161: TLS Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:11 UTC 2017
ssl.sh: #6162: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:11 UTC 2017
ssl.sh: #6163: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:11 UTC 2017
ssl.sh: #6164: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:11 UTC 2017
ssl.sh: #6165: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:11 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6166: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:11 UTC 2017
ssl.sh: #6167: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:11 UTC 2017
ssl.sh: #6168: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:11 UTC 2017
ssl.sh: #6169: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:11 UTC 2017
ssl.sh: #6170: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:11 UTC 2017
ssl.sh: #6171: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:11 UTC 2017
ssl.sh: #6172: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:11 UTC 2017
ssl.sh: #6173: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:11 UTC 2017
ssl.sh: #6174: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:12 UTC 2017
ssl.sh: #6175: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:12 UTC 2017
ssl.sh: #6176: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:12 UTC 2017
ssl.sh: #6177: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:12 UTC 2017
ssl.sh: #6178: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:12 UTC 2017
ssl.sh: #6179: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:12 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6180: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:12 UTC 2017
ssl.sh: #6181: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:12 UTC 2017
ssl.sh: #6182: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:12 UTC 2017
ssl.sh: #6183: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:12 UTC 2017
ssl.sh: #6184: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:12 UTC 2017
ssl.sh: #6185: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:12 UTC 2017
ssl.sh: #6186: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:12 UTC 2017
ssl.sh: #6187: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:12 UTC 2017
ssl.sh: #6188: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:12 UTC 2017
ssl.sh: #6189: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:12 UTC 2017
ssl.sh: #6190: TLS Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:13 UTC 2017
ssl.sh: #6191: TLS Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:13 UTC 2017
ssl.sh: #6192: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6133 found at Sun Aug  6 23:58:13 UTC 2017
ssl.sh: #6193: TLS Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 6133 at Sun Aug  6 23:58:13 UTC 2017
kill -USR1 6133
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 6133 killed at Sun Aug  6 23:58:13 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:13 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:13 UTC 2017
selfserv_9009 with PID 7557 started at Sun Aug  6 23:58:13 UTC 2017
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:13 UTC 2017
ssl.sh: #6194: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:13 UTC 2017
ssl.sh: #6195: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:13 UTC 2017
ssl.sh: #6196: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:13 UTC 2017
ssl.sh: #6197: SSL3 Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:13 UTC 2017
ssl.sh: #6198: SSL3 Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:13 UTC 2017
ssl.sh: #6199: SSL3 Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:13 UTC 2017
ssl.sh: #6200: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:13 UTC 2017
ssl.sh: #6201: SSL3 Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:13 UTC 2017
ssl.sh: #6202: SSL3 Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:13 UTC 2017
ssl.sh: #6203: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:13 UTC 2017
ssl.sh: #6204: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:13 UTC 2017
ssl.sh: #6205: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:13 UTC 2017
ssl.sh: #6206: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:13 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6207: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:13 UTC 2017
ssl.sh: #6208: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:13 UTC 2017
ssl.sh: #6209: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:13 UTC 2017
ssl.sh: #6210: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:14 UTC 2017
ssl.sh: #6211: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:14 UTC 2017
ssl.sh: #6212: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:14 UTC 2017
ssl.sh: #6213: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:14 UTC 2017
ssl.sh: #6214: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:14 UTC 2017
ssl.sh: #6215: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:14 UTC 2017
ssl.sh: #6216: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:14 UTC 2017
ssl.sh: #6217: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:14 UTC 2017
ssl.sh: #6218: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:14 UTC 2017
ssl.sh: #6219: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:14 UTC 2017
ssl.sh: #6220: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:14 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6221: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:14 UTC 2017
ssl.sh: #6222: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:14 UTC 2017
ssl.sh: #6223: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:14 UTC 2017
ssl.sh: #6224: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:14 UTC 2017
ssl.sh: #6225: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:14 UTC 2017
ssl.sh: #6226: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:14 UTC 2017
ssl.sh: #6227: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:14 UTC 2017
ssl.sh: #6228: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:14 UTC 2017
ssl.sh: #6229: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:14 UTC 2017
ssl.sh: #6230: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:14 UTC 2017
ssl.sh: #6231: SSL3 Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:14 UTC 2017
ssl.sh: #6232: SSL3 Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:14 UTC 2017
ssl.sh: #6233: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7557 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7557 found at Sun Aug  6 23:58:15 UTC 2017
ssl.sh: #6234: SSL3 Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 7557 at Sun Aug  6 23:58:15 UTC 2017
kill -USR1 7557
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7557 killed at Sun Aug  6 23:58:15 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:15 UTC 2017
selfserv_9009 with PID 8984 started at Sun Aug  6 23:58:15 UTC 2017
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:15 UTC 2017
ssl.sh: #6235: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:15 UTC 2017
ssl.sh: #6236: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:15 UTC 2017
ssl.sh: #6237: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:15 UTC 2017
ssl.sh: #6238: TLS Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:15 UTC 2017
ssl.sh: #6239: TLS Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:15 UTC 2017
ssl.sh: #6240: TLS Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:15 UTC 2017
ssl.sh: #6241: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:15 UTC 2017
ssl.sh: #6242: TLS Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:15 UTC 2017
ssl.sh: #6243: TLS Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:15 UTC 2017
ssl.sh: #6244: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:15 UTC 2017
ssl.sh: #6245: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:15 UTC 2017
ssl.sh: #6246: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:16 UTC 2017
ssl.sh: #6247: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:16 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6248: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:16 UTC 2017
ssl.sh: #6249: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:16 UTC 2017
ssl.sh: #6250: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:16 UTC 2017
ssl.sh: #6251: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:16 UTC 2017
ssl.sh: #6252: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:16 UTC 2017
ssl.sh: #6253: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:16 UTC 2017
ssl.sh: #6254: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:16 UTC 2017
ssl.sh: #6255: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:16 UTC 2017
ssl.sh: #6256: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:16 UTC 2017
ssl.sh: #6257: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:16 UTC 2017
ssl.sh: #6258: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:16 UTC 2017
ssl.sh: #6259: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:16 UTC 2017
ssl.sh: #6260: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:16 UTC 2017
ssl.sh: #6261: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:17 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6262: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:17 UTC 2017
ssl.sh: #6263: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:17 UTC 2017
ssl.sh: #6264: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:17 UTC 2017
ssl.sh: #6265: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:17 UTC 2017
ssl.sh: #6266: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:17 UTC 2017
ssl.sh: #6267: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:17 UTC 2017
ssl.sh: #6268: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:17 UTC 2017
ssl.sh: #6269: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:17 UTC 2017
ssl.sh: #6270: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:17 UTC 2017
ssl.sh: #6271: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:17 UTC 2017
ssl.sh: #6272: TLS Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:17 UTC 2017
ssl.sh: #6273: TLS Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:17 UTC 2017
ssl.sh: #6274: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8984 found at Sun Aug  6 23:58:17 UTC 2017
ssl.sh: #6275: TLS Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 8984 at Sun Aug  6 23:58:17 UTC 2017
kill -USR1 8984
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 8984 killed at Sun Aug  6 23:58:17 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:17 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:17 UTC 2017
selfserv_9009 with PID 10413 started at Sun Aug  6 23:58:17 UTC 2017
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:17 UTC 2017
ssl.sh: #6276: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:18 UTC 2017
ssl.sh: #6277: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:18 UTC 2017
ssl.sh: #6278: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:18 UTC 2017
ssl.sh: #6279: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:18 UTC 2017
ssl.sh: #6280: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:18 UTC 2017
ssl.sh: #6281: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:18 UTC 2017
ssl.sh: #6282: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:18 UTC 2017
ssl.sh: #6283: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:18 UTC 2017
ssl.sh: #6284: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:18 UTC 2017
ssl.sh: #6285: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:18 UTC 2017
ssl.sh: #6286: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:18 UTC 2017
ssl.sh: #6287: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:18 UTC 2017
ssl.sh: #6288: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:18 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6289: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:18 UTC 2017
ssl.sh: #6290: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:18 UTC 2017
ssl.sh: #6291: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:18 UTC 2017
ssl.sh: #6292: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:18 UTC 2017
ssl.sh: #6293: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:18 UTC 2017
ssl.sh: #6294: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:19 UTC 2017
ssl.sh: #6295: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:19 UTC 2017
ssl.sh: #6296: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:19 UTC 2017
ssl.sh: #6297: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:19 UTC 2017
ssl.sh: #6298: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:19 UTC 2017
ssl.sh: #6299: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:19 UTC 2017
ssl.sh: #6300: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:19 UTC 2017
ssl.sh: #6301: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:19 UTC 2017
ssl.sh: #6302: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:19 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6303: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:19 UTC 2017
ssl.sh: #6304: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:19 UTC 2017
ssl.sh: #6305: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:19 UTC 2017
ssl.sh: #6306: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:19 UTC 2017
ssl.sh: #6307: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:19 UTC 2017
ssl.sh: #6308: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:19 UTC 2017
ssl.sh: #6309: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:19 UTC 2017
ssl.sh: #6310: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:19 UTC 2017
ssl.sh: #6311: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:19 UTC 2017
ssl.sh: #6312: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:19 UTC 2017
ssl.sh: #6313: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:20 UTC 2017
ssl.sh: #6314: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:20 UTC 2017
ssl.sh: #6315: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10413 found at Sun Aug  6 23:58:20 UTC 2017
ssl.sh: #6316: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 10413 at Sun Aug  6 23:58:20 UTC 2017
kill -USR1 10413
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 10413 killed at Sun Aug  6 23:58:20 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:20 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11840 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11840 found at Sun Aug  6 23:58:20 UTC 2017
selfserv_9009 with PID 11840 started at Sun Aug  6 23:58:20 UTC 2017
trying to kill selfserv_9009 with PID 11840 at Sun Aug  6 23:58:20 UTC 2017
kill -USR1 11840
./ssl.sh: line 197: 11840 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9009 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 11840 killed at Sun Aug  6 23:58:20 UTC 2017
selfserv_9009 starting at Sun Aug  6 23:58:20 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:20 UTC 2017
selfserv_9009 with PID 11883 started at Sun Aug  6 23:58:20 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:20 UTC 2017
ssl.sh: #6317: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:20 UTC 2017
ssl.sh: #6318: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:20 UTC 2017
ssl.sh: #6319: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:20 UTC 2017
ssl.sh: #6320: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:20 UTC 2017
ssl.sh: #6321: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:20 UTC 2017
ssl.sh: #6322: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:20 UTC 2017
ssl.sh: #6323: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:20 UTC 2017
ssl.sh: #6324: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:20 UTC 2017
ssl.sh: #6325: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:20 UTC 2017
ssl.sh: #6326: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:21 UTC 2017
ssl.sh: #6327: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:21 UTC 2017
ssl.sh: #6328: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:21 UTC 2017
ssl.sh: #6329: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:21 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6330: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:21 UTC 2017
ssl.sh: #6331: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:21 UTC 2017
ssl.sh: #6332: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:21 UTC 2017
ssl.sh: #6333: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:21 UTC 2017
ssl.sh: #6334: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:21 UTC 2017
ssl.sh: #6335: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:21 UTC 2017
ssl.sh: #6336: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:21 UTC 2017
ssl.sh: #6337: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:21 UTC 2017
ssl.sh: #6338: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:21 UTC 2017
ssl.sh: #6339: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:21 UTC 2017
ssl.sh: #6340: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:22 UTC 2017
ssl.sh: #6341: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:22 UTC 2017
ssl.sh: #6342: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:22 UTC 2017
ssl.sh: #6343: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:22 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6344: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:22 UTC 2017
ssl.sh: #6345: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:22 UTC 2017
ssl.sh: #6346: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:22 UTC 2017
ssl.sh: #6347: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:22 UTC 2017
ssl.sh: #6348: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:22 UTC 2017
ssl.sh: #6349: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:22 UTC 2017
ssl.sh: #6350: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:22 UTC 2017
ssl.sh: #6351: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:22 UTC 2017
ssl.sh: #6352: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:22 UTC 2017
ssl.sh: #6353: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:23 UTC 2017
ssl.sh: #6354: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:23 UTC 2017
ssl.sh: #6355: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:23 UTC 2017
ssl.sh: #6356: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11883 found at Sun Aug  6 23:58:23 UTC 2017
ssl.sh: #6357: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 11883 at Sun Aug  6 23:58:23 UTC 2017
kill -USR1 11883
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 11883 killed at Sun Aug  6 23:58:23 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:23 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:23 UTC 2017
selfserv_9009 with PID 13315 started at Sun Aug  6 23:58:23 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:23 UTC 2017
ssl.sh: #6358: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:23 UTC 2017
ssl.sh: #6359: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:23 UTC 2017
ssl.sh: #6360: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:23 UTC 2017
ssl.sh: #6361: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:23 UTC 2017
ssl.sh: #6362: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:23 UTC 2017
ssl.sh: #6363: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:23 UTC 2017
ssl.sh: #6364: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:23 UTC 2017
ssl.sh: #6365: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:23 UTC 2017
ssl.sh: #6366: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:24 UTC 2017
ssl.sh: #6367: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:24 UTC 2017
ssl.sh: #6368: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:24 UTC 2017
ssl.sh: #6369: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:24 UTC 2017
ssl.sh: #6370: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:24 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6371: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:24 UTC 2017
ssl.sh: #6372: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:24 UTC 2017
ssl.sh: #6373: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:24 UTC 2017
ssl.sh: #6374: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:24 UTC 2017
ssl.sh: #6375: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:24 UTC 2017
ssl.sh: #6376: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:24 UTC 2017
ssl.sh: #6377: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:24 UTC 2017
ssl.sh: #6378: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:24 UTC 2017
ssl.sh: #6379: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:24 UTC 2017
ssl.sh: #6380: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:25 UTC 2017
ssl.sh: #6381: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:25 UTC 2017
ssl.sh: #6382: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:25 UTC 2017
ssl.sh: #6383: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:25 UTC 2017
ssl.sh: #6384: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:25 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6385: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:25 UTC 2017
ssl.sh: #6386: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:25 UTC 2017
ssl.sh: #6387: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:25 UTC 2017
ssl.sh: #6388: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:25 UTC 2017
ssl.sh: #6389: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:25 UTC 2017
ssl.sh: #6390: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:25 UTC 2017
ssl.sh: #6391: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:25 UTC 2017
ssl.sh: #6392: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:25 UTC 2017
ssl.sh: #6393: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:26 UTC 2017
ssl.sh: #6394: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:26 UTC 2017
ssl.sh: #6395: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:26 UTC 2017
ssl.sh: #6396: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:26 UTC 2017
ssl.sh: #6397: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13315 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13315 found at Sun Aug  6 23:58:26 UTC 2017
ssl.sh: #6398: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 13315 at Sun Aug  6 23:58:26 UTC 2017
kill -USR1 13315
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 13315 killed at Sun Aug  6 23:58:26 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:26 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:26 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:26 UTC 2017
selfserv_9009 with PID 14745 started at Sun Aug  6 23:58:26 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:26 UTC 2017
ssl.sh: #6399: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:26 UTC 2017
ssl.sh: #6400: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:26 UTC 2017
ssl.sh: #6401: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:26 UTC 2017
ssl.sh: #6402: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:26 UTC 2017
ssl.sh: #6403: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:26 UTC 2017
ssl.sh: #6404: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:26 UTC 2017
ssl.sh: #6405: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:26 UTC 2017
ssl.sh: #6406: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:26 UTC 2017
ssl.sh: #6407: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:26 UTC 2017
ssl.sh: #6408: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:26 UTC 2017
ssl.sh: #6409: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:27 UTC 2017
ssl.sh: #6410: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:27 UTC 2017
ssl.sh: #6411: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:27 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6412: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:27 UTC 2017
ssl.sh: #6413: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:27 UTC 2017
ssl.sh: #6414: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:27 UTC 2017
ssl.sh: #6415: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:27 UTC 2017
ssl.sh: #6416: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:27 UTC 2017
ssl.sh: #6417: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:27 UTC 2017
ssl.sh: #6418: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:27 UTC 2017
ssl.sh: #6419: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:27 UTC 2017
ssl.sh: #6420: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:27 UTC 2017
ssl.sh: #6421: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:27 UTC 2017
ssl.sh: #6422: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:27 UTC 2017
ssl.sh: #6423: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:27 UTC 2017
ssl.sh: #6424: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:27 UTC 2017
ssl.sh: #6425: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:27 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6426: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:27 UTC 2017
ssl.sh: #6427: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:27 UTC 2017
ssl.sh: #6428: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:28 UTC 2017
ssl.sh: #6429: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:28 UTC 2017
ssl.sh: #6430: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:28 UTC 2017
ssl.sh: #6431: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:28 UTC 2017
ssl.sh: #6432: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:28 UTC 2017
ssl.sh: #6433: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:28 UTC 2017
ssl.sh: #6434: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:28 UTC 2017
ssl.sh: #6435: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:28 UTC 2017
ssl.sh: #6436: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:28 UTC 2017
ssl.sh: #6437: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:28 UTC 2017
ssl.sh: #6438: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14745 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14745 found at Sun Aug  6 23:58:28 UTC 2017
ssl.sh: #6439: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 14745 at Sun Aug  6 23:58:28 UTC 2017
kill -USR1 14745
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 14745 killed at Sun Aug  6 23:58:28 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:28 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:28 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:28 UTC 2017
selfserv_9009 with PID 16170 started at Sun Aug  6 23:58:28 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:28 UTC 2017
ssl.sh: #6440: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:28 UTC 2017
ssl.sh: #6441: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:28 UTC 2017
ssl.sh: #6442: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:28 UTC 2017
ssl.sh: #6443: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:29 UTC 2017
ssl.sh: #6444: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:29 UTC 2017
ssl.sh: #6445: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:29 UTC 2017
ssl.sh: #6446: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:29 UTC 2017
ssl.sh: #6447: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:29 UTC 2017
ssl.sh: #6448: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:29 UTC 2017
ssl.sh: #6449: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:29 UTC 2017
ssl.sh: #6450: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:29 UTC 2017
ssl.sh: #6451: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:29 UTC 2017
ssl.sh: #6452: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:29 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6453: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:29 UTC 2017
ssl.sh: #6454: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:29 UTC 2017
ssl.sh: #6455: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:29 UTC 2017
ssl.sh: #6456: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:30 UTC 2017
ssl.sh: #6457: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:30 UTC 2017
ssl.sh: #6458: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:30 UTC 2017
ssl.sh: #6459: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:30 UTC 2017
ssl.sh: #6460: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:30 UTC 2017
ssl.sh: #6461: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:30 UTC 2017
ssl.sh: #6462: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:30 UTC 2017
ssl.sh: #6463: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:30 UTC 2017
ssl.sh: #6464: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:30 UTC 2017
ssl.sh: #6465: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:30 UTC 2017
ssl.sh: #6466: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:30 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6467: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:30 UTC 2017
ssl.sh: #6468: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:31 UTC 2017
ssl.sh: #6469: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:31 UTC 2017
ssl.sh: #6470: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:31 UTC 2017
ssl.sh: #6471: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:31 UTC 2017
ssl.sh: #6472: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:31 UTC 2017
ssl.sh: #6473: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:31 UTC 2017
ssl.sh: #6474: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:31 UTC 2017
ssl.sh: #6475: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:31 UTC 2017
ssl.sh: #6476: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:31 UTC 2017
ssl.sh: #6477: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:31 UTC 2017
ssl.sh: #6478: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:31 UTC 2017
ssl.sh: #6479: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16170 found at Sun Aug  6 23:58:32 UTC 2017
ssl.sh: #6480: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 16170 at Sun Aug  6 23:58:32 UTC 2017
kill -USR1 16170
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 16170 killed at Sun Aug  6 23:58:32 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:32 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:32 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:32 UTC 2017
selfserv_9009 with PID 17595 started at Sun Aug  6 23:58:32 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:32 UTC 2017
ssl.sh: #6481: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:32 UTC 2017
ssl.sh: #6482: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:32 UTC 2017
ssl.sh: #6483: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:32 UTC 2017
ssl.sh: #6484: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:32 UTC 2017
ssl.sh: #6485: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:32 UTC 2017
ssl.sh: #6486: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:32 UTC 2017
ssl.sh: #6487: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:32 UTC 2017
ssl.sh: #6488: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:32 UTC 2017
ssl.sh: #6489: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:32 UTC 2017
ssl.sh: #6490: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:32 UTC 2017
ssl.sh: #6491: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:33 UTC 2017
ssl.sh: #6492: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:33 UTC 2017
ssl.sh: #6493: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:33 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6494: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:33 UTC 2017
ssl.sh: #6495: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:33 UTC 2017
ssl.sh: #6496: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:33 UTC 2017
ssl.sh: #6497: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:33 UTC 2017
ssl.sh: #6498: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:33 UTC 2017
ssl.sh: #6499: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:33 UTC 2017
ssl.sh: #6500: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:33 UTC 2017
ssl.sh: #6501: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:33 UTC 2017
ssl.sh: #6502: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:33 UTC 2017
ssl.sh: #6503: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:34 UTC 2017
ssl.sh: #6504: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:34 UTC 2017
ssl.sh: #6505: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:34 UTC 2017
ssl.sh: #6506: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:34 UTC 2017
ssl.sh: #6507: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:34 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6508: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:34 UTC 2017
ssl.sh: #6509: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:34 UTC 2017
ssl.sh: #6510: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:34 UTC 2017
ssl.sh: #6511: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:34 UTC 2017
ssl.sh: #6512: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:34 UTC 2017
ssl.sh: #6513: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:34 UTC 2017
ssl.sh: #6514: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:34 UTC 2017
ssl.sh: #6515: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:34 UTC 2017
ssl.sh: #6516: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:35 UTC 2017
ssl.sh: #6517: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:35 UTC 2017
ssl.sh: #6518: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:35 UTC 2017
ssl.sh: #6519: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:35 UTC 2017
ssl.sh: #6520: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17595 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17595 found at Sun Aug  6 23:58:35 UTC 2017
ssl.sh: #6521: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 17595 at Sun Aug  6 23:58:35 UTC 2017
kill -USR1 17595
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 17595 killed at Sun Aug  6 23:58:35 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:35 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:35 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:35 UTC 2017
selfserv_9009 with PID 19031 started at Sun Aug  6 23:58:35 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:35 UTC 2017
ssl.sh: #6522: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:35 UTC 2017
ssl.sh: #6523: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:35 UTC 2017
ssl.sh: #6524: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:35 UTC 2017
ssl.sh: #6525: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:35 UTC 2017
ssl.sh: #6526: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:35 UTC 2017
ssl.sh: #6527: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:35 UTC 2017
ssl.sh: #6528: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:35 UTC 2017
ssl.sh: #6529: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:36 UTC 2017
ssl.sh: #6530: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:36 UTC 2017
ssl.sh: #6531: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:36 UTC 2017
ssl.sh: #6532: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:36 UTC 2017
ssl.sh: #6533: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:36 UTC 2017
ssl.sh: #6534: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:36 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6535: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:36 UTC 2017
ssl.sh: #6536: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:36 UTC 2017
ssl.sh: #6537: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:36 UTC 2017
ssl.sh: #6538: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:36 UTC 2017
ssl.sh: #6539: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:36 UTC 2017
ssl.sh: #6540: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:36 UTC 2017
ssl.sh: #6541: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:36 UTC 2017
ssl.sh: #6542: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:36 UTC 2017
ssl.sh: #6543: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:36 UTC 2017
ssl.sh: #6544: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:36 UTC 2017
ssl.sh: #6545: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:37 UTC 2017
ssl.sh: #6546: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:37 UTC 2017
ssl.sh: #6547: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:37 UTC 2017
ssl.sh: #6548: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:37 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6549: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:37 UTC 2017
ssl.sh: #6550: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:37 UTC 2017
ssl.sh: #6551: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:37 UTC 2017
ssl.sh: #6552: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:37 UTC 2017
ssl.sh: #6553: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:37 UTC 2017
ssl.sh: #6554: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:37 UTC 2017
ssl.sh: #6555: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:37 UTC 2017
ssl.sh: #6556: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:37 UTC 2017
ssl.sh: #6557: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:37 UTC 2017
ssl.sh: #6558: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:37 UTC 2017
ssl.sh: #6559: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:37 UTC 2017
ssl.sh: #6560: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:37 UTC 2017
ssl.sh: #6561: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19031 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19031 found at Sun Aug  6 23:58:38 UTC 2017
ssl.sh: #6562: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 19031 at Sun Aug  6 23:58:38 UTC 2017
kill -USR1 19031
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 19031 killed at Sun Aug  6 23:58:38 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:38 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:38 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20460 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20460 found at Sun Aug  6 23:58:38 UTC 2017
selfserv_9009 with PID 20460 started at Sun Aug  6 23:58:38 UTC 2017
trying to kill selfserv_9009 with PID 20460 at Sun Aug  6 23:58:38 UTC 2017
kill -USR1 20460
./ssl.sh: line 197: 20460 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9009 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20460 killed at Sun Aug  6 23:58:38 UTC 2017
selfserv_9009 starting at Sun Aug  6 23:58:38 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:38 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:38 UTC 2017
selfserv_9009 with PID 20502 started at Sun Aug  6 23:58:38 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:38 UTC 2017
ssl.sh: #6563: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:38 UTC 2017
ssl.sh: #6564: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:38 UTC 2017
ssl.sh: #6565: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:38 UTC 2017
ssl.sh: #6566: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:38 UTC 2017
ssl.sh: #6567: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:38 UTC 2017
ssl.sh: #6568: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:38 UTC 2017
ssl.sh: #6569: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:38 UTC 2017
ssl.sh: #6570: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:38 UTC 2017
ssl.sh: #6571: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:38 UTC 2017
ssl.sh: #6572: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:38 UTC 2017
ssl.sh: #6573: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:39 UTC 2017
ssl.sh: #6574: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:39 UTC 2017
ssl.sh: #6575: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:39 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6576: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:39 UTC 2017
ssl.sh: #6577: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:39 UTC 2017
ssl.sh: #6578: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:39 UTC 2017
ssl.sh: #6579: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:39 UTC 2017
ssl.sh: #6580: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:39 UTC 2017
ssl.sh: #6581: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:39 UTC 2017
ssl.sh: #6582: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:39 UTC 2017
ssl.sh: #6583: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:39 UTC 2017
ssl.sh: #6584: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:39 UTC 2017
ssl.sh: #6585: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:39 UTC 2017
ssl.sh: #6586: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:39 UTC 2017
ssl.sh: #6587: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:40 UTC 2017
ssl.sh: #6588: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:40 UTC 2017
ssl.sh: #6589: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:40 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6590: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:40 UTC 2017
ssl.sh: #6591: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:40 UTC 2017
ssl.sh: #6592: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:40 UTC 2017
ssl.sh: #6593: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:40 UTC 2017
ssl.sh: #6594: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:40 UTC 2017
ssl.sh: #6595: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:40 UTC 2017
ssl.sh: #6596: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:40 UTC 2017
ssl.sh: #6597: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:40 UTC 2017
ssl.sh: #6598: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:40 UTC 2017
ssl.sh: #6599: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:40 UTC 2017
ssl.sh: #6600: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:40 UTC 2017
ssl.sh: #6601: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:41 UTC 2017
ssl.sh: #6602: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20502 found at Sun Aug  6 23:58:41 UTC 2017
ssl.sh: #6603: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 20502 at Sun Aug  6 23:58:41 UTC 2017
kill -USR1 20502
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20502 killed at Sun Aug  6 23:58:41 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:41 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:41 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:41 UTC 2017
selfserv_9009 with PID 21927 started at Sun Aug  6 23:58:41 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:41 UTC 2017
ssl.sh: #6604: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:41 UTC 2017
ssl.sh: #6605: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:41 UTC 2017
ssl.sh: #6606: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:41 UTC 2017
ssl.sh: #6607: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:41 UTC 2017
ssl.sh: #6608: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:41 UTC 2017
ssl.sh: #6609: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:41 UTC 2017
ssl.sh: #6610: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:41 UTC 2017
ssl.sh: #6611: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:41 UTC 2017
ssl.sh: #6612: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:41 UTC 2017
ssl.sh: #6613: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:42 UTC 2017
ssl.sh: #6614: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:42 UTC 2017
ssl.sh: #6615: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:42 UTC 2017
ssl.sh: #6616: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:42 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6617: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:42 UTC 2017
ssl.sh: #6618: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:42 UTC 2017
ssl.sh: #6619: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:42 UTC 2017
ssl.sh: #6620: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:42 UTC 2017
ssl.sh: #6621: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:42 UTC 2017
ssl.sh: #6622: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:42 UTC 2017
ssl.sh: #6623: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:42 UTC 2017
ssl.sh: #6624: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:42 UTC 2017
ssl.sh: #6625: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:42 UTC 2017
ssl.sh: #6626: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:42 UTC 2017
ssl.sh: #6627: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:43 UTC 2017
ssl.sh: #6628: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:43 UTC 2017
ssl.sh: #6629: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:43 UTC 2017
ssl.sh: #6630: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:43 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6631: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:43 UTC 2017
ssl.sh: #6632: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:43 UTC 2017
ssl.sh: #6633: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:43 UTC 2017
ssl.sh: #6634: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:43 UTC 2017
ssl.sh: #6635: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:43 UTC 2017
ssl.sh: #6636: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:43 UTC 2017
ssl.sh: #6637: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:43 UTC 2017
ssl.sh: #6638: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:43 UTC 2017
ssl.sh: #6639: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:43 UTC 2017
ssl.sh: #6640: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:44 UTC 2017
ssl.sh: #6641: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:44 UTC 2017
ssl.sh: #6642: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:44 UTC 2017
ssl.sh: #6643: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21927 found at Sun Aug  6 23:58:44 UTC 2017
ssl.sh: #6644: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 21927 at Sun Aug  6 23:58:44 UTC 2017
kill -USR1 21927
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21927 killed at Sun Aug  6 23:58:44 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:44 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:44 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:44 UTC 2017
selfserv_9009 with PID 23355 started at Sun Aug  6 23:58:44 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:44 UTC 2017
ssl.sh: #6645: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:44 UTC 2017
ssl.sh: #6646: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:44 UTC 2017
ssl.sh: #6647: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:44 UTC 2017
ssl.sh: #6648: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:44 UTC 2017
ssl.sh: #6649: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:44 UTC 2017
ssl.sh: #6650: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:44 UTC 2017
ssl.sh: #6651: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:44 UTC 2017
ssl.sh: #6652: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:44 UTC 2017
ssl.sh: #6653: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:44 UTC 2017
ssl.sh: #6654: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:44 UTC 2017
ssl.sh: #6655: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:44 UTC 2017
ssl.sh: #6656: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:44 UTC 2017
ssl.sh: #6657: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:45 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6658: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:45 UTC 2017
ssl.sh: #6659: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:45 UTC 2017
ssl.sh: #6660: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:45 UTC 2017
ssl.sh: #6661: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:45 UTC 2017
ssl.sh: #6662: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:45 UTC 2017
ssl.sh: #6663: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:45 UTC 2017
ssl.sh: #6664: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:45 UTC 2017
ssl.sh: #6665: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:45 UTC 2017
ssl.sh: #6666: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:45 UTC 2017
ssl.sh: #6667: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:45 UTC 2017
ssl.sh: #6668: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:45 UTC 2017
ssl.sh: #6669: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:45 UTC 2017
ssl.sh: #6670: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:45 UTC 2017
ssl.sh: #6671: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:45 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6672: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:45 UTC 2017
ssl.sh: #6673: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:45 UTC 2017
ssl.sh: #6674: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:45 UTC 2017
ssl.sh: #6675: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:46 UTC 2017
ssl.sh: #6676: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:46 UTC 2017
ssl.sh: #6677: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:46 UTC 2017
ssl.sh: #6678: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:46 UTC 2017
ssl.sh: #6679: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:46 UTC 2017
ssl.sh: #6680: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:46 UTC 2017
ssl.sh: #6681: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:46 UTC 2017
ssl.sh: #6682: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:46 UTC 2017
ssl.sh: #6683: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:46 UTC 2017
ssl.sh: #6684: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23355 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23355 found at Sun Aug  6 23:58:46 UTC 2017
ssl.sh: #6685: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 23355 at Sun Aug  6 23:58:46 UTC 2017
kill -USR1 23355
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23355 killed at Sun Aug  6 23:58:46 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:46 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:46 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:46 UTC 2017
selfserv_9009 with PID 24782 started at Sun Aug  6 23:58:46 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:46 UTC 2017
ssl.sh: #6686: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:46 UTC 2017
ssl.sh: #6687: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:46 UTC 2017
ssl.sh: #6688: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:46 UTC 2017
ssl.sh: #6689: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:46 UTC 2017
ssl.sh: #6690: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:47 UTC 2017
ssl.sh: #6691: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:47 UTC 2017
ssl.sh: #6692: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:47 UTC 2017
ssl.sh: #6693: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:47 UTC 2017
ssl.sh: #6694: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:47 UTC 2017
ssl.sh: #6695: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:47 UTC 2017
ssl.sh: #6696: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:47 UTC 2017
ssl.sh: #6697: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:47 UTC 2017
ssl.sh: #6698: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:47 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6699: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:47 UTC 2017
ssl.sh: #6700: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:47 UTC 2017
ssl.sh: #6701: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:47 UTC 2017
ssl.sh: #6702: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:48 UTC 2017
ssl.sh: #6703: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:48 UTC 2017
ssl.sh: #6704: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:48 UTC 2017
ssl.sh: #6705: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:48 UTC 2017
ssl.sh: #6706: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:48 UTC 2017
ssl.sh: #6707: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:48 UTC 2017
ssl.sh: #6708: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:48 UTC 2017
ssl.sh: #6709: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:48 UTC 2017
ssl.sh: #6710: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:48 UTC 2017
ssl.sh: #6711: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:48 UTC 2017
ssl.sh: #6712: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:48 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6713: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:48 UTC 2017
ssl.sh: #6714: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:49 UTC 2017
ssl.sh: #6715: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:49 UTC 2017
ssl.sh: #6716: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:49 UTC 2017
ssl.sh: #6717: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:49 UTC 2017
ssl.sh: #6718: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:49 UTC 2017
ssl.sh: #6719: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:49 UTC 2017
ssl.sh: #6720: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:49 UTC 2017
ssl.sh: #6721: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:49 UTC 2017
ssl.sh: #6722: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:49 UTC 2017
ssl.sh: #6723: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:49 UTC 2017
ssl.sh: #6724: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:49 UTC 2017
ssl.sh: #6725: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24782 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24782 found at Sun Aug  6 23:58:49 UTC 2017
ssl.sh: #6726: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 24782 at Sun Aug  6 23:58:49 UTC 2017
kill -USR1 24782
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24782 killed at Sun Aug  6 23:58:49 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:49 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:49 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:49 UTC 2017
selfserv_9009 with PID 26207 started at Sun Aug  6 23:58:49 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:50 UTC 2017
ssl.sh: #6727: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:50 UTC 2017
ssl.sh: #6728: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:50 UTC 2017
ssl.sh: #6729: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:50 UTC 2017
ssl.sh: #6730: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:50 UTC 2017
ssl.sh: #6731: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:50 UTC 2017
ssl.sh: #6732: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:50 UTC 2017
ssl.sh: #6733: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:50 UTC 2017
ssl.sh: #6734: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:50 UTC 2017
ssl.sh: #6735: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:50 UTC 2017
ssl.sh: #6736: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:50 UTC 2017
ssl.sh: #6737: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:50 UTC 2017
ssl.sh: #6738: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:51 UTC 2017
ssl.sh: #6739: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:51 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6740: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:51 UTC 2017
ssl.sh: #6741: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:51 UTC 2017
ssl.sh: #6742: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:51 UTC 2017
ssl.sh: #6743: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:51 UTC 2017
ssl.sh: #6744: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:51 UTC 2017
ssl.sh: #6745: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:51 UTC 2017
ssl.sh: #6746: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:51 UTC 2017
ssl.sh: #6747: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:51 UTC 2017
ssl.sh: #6748: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:51 UTC 2017
ssl.sh: #6749: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:51 UTC 2017
ssl.sh: #6750: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:52 UTC 2017
ssl.sh: #6751: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:52 UTC 2017
ssl.sh: #6752: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:52 UTC 2017
ssl.sh: #6753: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:52 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6754: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:52 UTC 2017
ssl.sh: #6755: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:52 UTC 2017
ssl.sh: #6756: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:52 UTC 2017
ssl.sh: #6757: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:52 UTC 2017
ssl.sh: #6758: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:52 UTC 2017
ssl.sh: #6759: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:52 UTC 2017
ssl.sh: #6760: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:52 UTC 2017
ssl.sh: #6761: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:52 UTC 2017
ssl.sh: #6762: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:52 UTC 2017
ssl.sh: #6763: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:53 UTC 2017
ssl.sh: #6764: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:53 UTC 2017
ssl.sh: #6765: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:53 UTC 2017
ssl.sh: #6766: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26207 found at Sun Aug  6 23:58:53 UTC 2017
ssl.sh: #6767: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 26207 at Sun Aug  6 23:58:53 UTC 2017
kill -USR1 26207
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26207 killed at Sun Aug  6 23:58:53 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:53 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:53 UTC 2017
selfserv_9009 with PID 27630 started at Sun Aug  6 23:58:53 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:53 UTC 2017
ssl.sh: #6768: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:53 UTC 2017
ssl.sh: #6769: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:53 UTC 2017
ssl.sh: #6770: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:53 UTC 2017
ssl.sh: #6771: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:53 UTC 2017
ssl.sh: #6772: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:53 UTC 2017
ssl.sh: #6773: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:53 UTC 2017
ssl.sh: #6774: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:53 UTC 2017
ssl.sh: #6775: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:53 UTC 2017
ssl.sh: #6776: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:53 UTC 2017
ssl.sh: #6777: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:54 UTC 2017
ssl.sh: #6778: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:54 UTC 2017
ssl.sh: #6779: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:54 UTC 2017
ssl.sh: #6780: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:54 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6781: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:54 UTC 2017
ssl.sh: #6782: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:54 UTC 2017
ssl.sh: #6783: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:54 UTC 2017
ssl.sh: #6784: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:54 UTC 2017
ssl.sh: #6785: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:54 UTC 2017
ssl.sh: #6786: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:54 UTC 2017
ssl.sh: #6787: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:54 UTC 2017
ssl.sh: #6788: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:54 UTC 2017
ssl.sh: #6789: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:54 UTC 2017
ssl.sh: #6790: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:54 UTC 2017
ssl.sh: #6791: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:54 UTC 2017
ssl.sh: #6792: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:55 UTC 2017
ssl.sh: #6793: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:55 UTC 2017
ssl.sh: #6794: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:55 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6795: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:55 UTC 2017
ssl.sh: #6796: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:55 UTC 2017
ssl.sh: #6797: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:55 UTC 2017
ssl.sh: #6798: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:55 UTC 2017
ssl.sh: #6799: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:55 UTC 2017
ssl.sh: #6800: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:55 UTC 2017
ssl.sh: #6801: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:55 UTC 2017
ssl.sh: #6802: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:55 UTC 2017
ssl.sh: #6803: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:55 UTC 2017
ssl.sh: #6804: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:55 UTC 2017
ssl.sh: #6805: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:55 UTC 2017
ssl.sh: #6806: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:55 UTC 2017
ssl.sh: #6807: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27630 found at Sun Aug  6 23:58:55 UTC 2017
ssl.sh: #6808: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 27630 at Sun Aug  6 23:58:55 UTC 2017
kill -USR1 27630
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27630 killed at Sun Aug  6 23:58:55 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Sun Aug  6 23:58:55 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Sun Aug  6 23:58:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29057 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29057 found at Sun Aug  6 23:58:55 UTC 2017
selfserv_9009 with PID 29057 started at Sun Aug  6 23:58:55 UTC 2017
trying to kill selfserv_9009 with PID 29057 at Sun Aug  6 23:58:55 UTC 2017
kill -USR1 29057
./ssl.sh: line 197: 29057 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9009 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 29057 killed at Sun Aug  6 23:58:55 UTC 2017
TIMESTAMP ssl END: Sun Aug  6 23:58:55 UTC 2017
Running tests for ocsp
TIMESTAMP ocsp BEGIN: Sun Aug  6 23:58:55 UTC 2017
ocsp.sh: OCSP tests ===============================
TIMESTAMP ocsp END: Sun Aug  6 23:58:55 UTC 2017
Running tests for pkits
TIMESTAMP pkits BEGIN: Sun Aug  6 23:58:55 UTC 2017
pkits.sh: PKITS data directory not defined, skipping.
TIMESTAMP pkits END: Sun Aug  6 23:58:56 UTC 2017
Running tests for chains
TIMESTAMP chains BEGIN: Sun Aug  6 23:58:56 UTC 2017
chains.sh: Certificate Chains Tests ===============================
chains.sh: Creating DB OCSPRootDB
certutil -N -d OCSPRootDB -f OCSPRootDB/dbpasswd
chains.sh: #6809: OCSPD: Creating DB OCSPRootDB  - PASSED
chains.sh: Creating Root CA OCSPRoot
certutil -s "CN=OCSPRoot ROOT CA, O=OCSPRoot, C=US" -S -n OCSPRoot  -t CTu,CTu,CTu -v 600 -x -d OCSPRootDB -1 -2 -5 -f OCSPRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806235857 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6810: OCSPD: Creating Root CA OCSPRoot  - PASSED
chains.sh: Exporting Root CA OCSPRoot.der
certutil -L -d OCSPRootDB -r -n OCSPRoot -o OCSPRoot.der
chains.sh: #6811: OCSPD: Exporting Root CA OCSPRoot.der  - PASSED
chains.sh: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPRootDB -o OCSPRoot.p12 -n OCSPRoot -k OCSPRootDB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #6812: OCSPD: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database  - PASSED
chains.sh: Creating DB OCSPCA1DB
certutil -N -d OCSPCA1DB -f OCSPCA1DB/dbpasswd
chains.sh: #6813: OCSPD: Creating DB OCSPCA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA1Req.der
certutil -s "CN=OCSPCA1 Intermediate, O=OCSPCA1, C=US"  -R -2 -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPCA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6814: OCSPD: Creating Intermediate certifiate request OCSPCA1Req.der  - PASSED
chains.sh: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA1Req.der -o OCSPCA1OCSPRoot.der -f OCSPRootDB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9019/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6815: OCSPD: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database
certutil -A -n OCSPCA1 -t u,u,u -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -i OCSPCA1OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6816: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database  - PASSED
chains.sh: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA1DB -o OCSPCA1.p12 -n OCSPCA1 -k OCSPCA1DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #6817: OCSPD: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database  - PASSED
chains.sh: Creating DB OCSPCA2DB
certutil -N -d OCSPCA2DB -f OCSPCA2DB/dbpasswd
chains.sh: #6818: OCSPD: Creating DB OCSPCA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA2Req.der
certutil -s "CN=OCSPCA2 Intermediate, O=OCSPCA2, C=US"  -R -2 -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPCA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6819: OCSPD: Creating Intermediate certifiate request OCSPCA2Req.der  - PASSED
chains.sh: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA2Req.der -o OCSPCA2OCSPRoot.der -f OCSPRootDB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9019/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6820: OCSPD: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database
certutil -A -n OCSPCA2 -t u,u,u -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -i OCSPCA2OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6821: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database  - PASSED
chains.sh: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA2DB -o OCSPCA2.p12 -n OCSPCA2 -k OCSPCA2DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #6822: OCSPD: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database  - PASSED
chains.sh: Creating DB OCSPCA3DB
certutil -N -d OCSPCA3DB -f OCSPCA3DB/dbpasswd
chains.sh: #6823: OCSPD: Creating DB OCSPCA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA3Req.der
certutil -s "CN=OCSPCA3 Intermediate, O=OCSPCA3, C=US"  -R -2 -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPCA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6824: OCSPD: Creating Intermediate certifiate request OCSPCA3Req.der  - PASSED
chains.sh: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA3Req.der -o OCSPCA3OCSPRoot.der -f OCSPRootDB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9020
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6825: OCSPD: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database
certutil -A -n OCSPCA3 -t u,u,u -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -i OCSPCA3OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6826: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database  - PASSED
chains.sh: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA3DB -o OCSPCA3.p12 -n OCSPCA3 -k OCSPCA3DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #6827: OCSPD: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database  - PASSED
chains.sh: Creating DB OCSPEE11DB
certutil -N -d OCSPEE11DB -f OCSPEE11DB/dbpasswd
chains.sh: #6828: OCSPD: Creating DB OCSPEE11DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE11Req.der
certutil -s "CN=OCSPEE11 EE, O=OCSPEE11, C=US"  -R  -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6829: OCSPD: Creating EE certifiate request OCSPEE11Req.der  - PASSED
chains.sh: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE11Req.der -o OCSPEE11OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9019/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6830: OCSPD: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database
certutil -A -n OCSPEE11 -t u,u,u -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -i OCSPEE11OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6831: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database  - PASSED
chains.sh: Creating DB OCSPEE12DB
certutil -N -d OCSPEE12DB -f OCSPEE12DB/dbpasswd
chains.sh: #6832: OCSPD: Creating DB OCSPEE12DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE12Req.der
certutil -s "CN=OCSPEE12 EE, O=OCSPEE12, C=US"  -R  -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6833: OCSPD: Creating EE certifiate request OCSPEE12Req.der  - PASSED
chains.sh: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE12Req.der -o OCSPEE12OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9019/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6834: OCSPD: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database
certutil -A -n OCSPEE12 -t u,u,u -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -i OCSPEE12OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6835: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database  - PASSED
chains.sh: Creating DB OCSPEE13DB
certutil -N -d OCSPEE13DB -f OCSPEE13DB/dbpasswd
chains.sh: #6836: OCSPD: Creating DB OCSPEE13DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE13Req.der
certutil -s "CN=OCSPEE13 EE, O=OCSPEE13, C=US"  -R  -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6837: OCSPD: Creating EE certifiate request OCSPEE13Req.der  - PASSED
chains.sh: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE13Req.der -o OCSPEE13OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9019/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6838: OCSPD: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database
certutil -A -n OCSPEE13 -t u,u,u -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -i OCSPEE13OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6839: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database  - PASSED
chains.sh: Creating DB OCSPEE14DB
certutil -N -d OCSPEE14DB -f OCSPEE14DB/dbpasswd
chains.sh: #6840: OCSPD: Creating DB OCSPEE14DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE14Req.der
certutil -s "CN=OCSPEE14 EE, O=OCSPEE14, C=US"  -R  -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE14Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6841: OCSPD: Creating EE certifiate request OCSPEE14Req.der  - PASSED
chains.sh: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE14Req.der -o OCSPEE14OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 4   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9019/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6842: OCSPD: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database
certutil -A -n OCSPEE14 -t u,u,u -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -i OCSPEE14OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6843: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database  - PASSED
chains.sh: Creating DB OCSPEE15DB
certutil -N -d OCSPEE15DB -f OCSPEE15DB/dbpasswd
chains.sh: #6844: OCSPD: Creating DB OCSPEE15DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE15Req.der
certutil -s "CN=OCSPEE15 EE, O=OCSPEE15, C=US"  -R  -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE15Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6845: OCSPD: Creating EE certifiate request OCSPEE15Req.der  - PASSED
chains.sh: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE15Req.der -o OCSPEE15OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 5   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9020
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6846: OCSPD: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database
certutil -A -n OCSPEE15 -t u,u,u -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -i OCSPEE15OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6847: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database  - PASSED
chains.sh: Creating DB OCSPEE21DB
certutil -N -d OCSPEE21DB -f OCSPEE21DB/dbpasswd
chains.sh: #6848: OCSPD: Creating DB OCSPEE21DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE21Req.der
certutil -s "CN=OCSPEE21 EE, O=OCSPEE21, C=US"  -R  -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6849: OCSPD: Creating EE certifiate request OCSPEE21Req.der  - PASSED
chains.sh: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE21Req.der -o OCSPEE21OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9019/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6850: OCSPD: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database
certutil -A -n OCSPEE21 -t u,u,u -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -i OCSPEE21OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6851: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database  - PASSED
chains.sh: Creating DB OCSPEE22DB
certutil -N -d OCSPEE22DB -f OCSPEE22DB/dbpasswd
chains.sh: #6852: OCSPD: Creating DB OCSPEE22DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE22Req.der
certutil -s "CN=OCSPEE22 EE, O=OCSPEE22, C=US"  -R  -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE22Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6853: OCSPD: Creating EE certifiate request OCSPEE22Req.der  - PASSED
chains.sh: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE22Req.der -o OCSPEE22OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9019/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6854: OCSPD: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database
certutil -A -n OCSPEE22 -t u,u,u -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -i OCSPEE22OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6855: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database  - PASSED
chains.sh: Creating DB OCSPEE23DB
certutil -N -d OCSPEE23DB -f OCSPEE23DB/dbpasswd
chains.sh: #6856: OCSPD: Creating DB OCSPEE23DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE23Req.der
certutil -s "CN=OCSPEE23 EE, O=OCSPEE23, C=US"  -R  -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE23Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6857: OCSPD: Creating EE certifiate request OCSPEE23Req.der  - PASSED
chains.sh: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE23Req.der -o OCSPEE23OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9020
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6858: OCSPD: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database
certutil -A -n OCSPEE23 -t u,u,u -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -i OCSPEE23OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6859: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database  - PASSED
chains.sh: Creating DB OCSPEE31DB
certutil -N -d OCSPEE31DB -f OCSPEE31DB/dbpasswd
chains.sh: #6860: OCSPD: Creating DB OCSPEE31DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE31Req.der
certutil -s "CN=OCSPEE31 EE, O=OCSPEE31, C=US"  -R  -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE31Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6861: OCSPD: Creating EE certifiate request OCSPEE31Req.der  - PASSED
chains.sh: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE31Req.der -o OCSPEE31OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9019/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6862: OCSPD: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database
certutil -A -n OCSPEE31 -t u,u,u -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -i OCSPEE31OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6863: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database  - PASSED
chains.sh: Creating DB OCSPEE32DB
certutil -N -d OCSPEE32DB -f OCSPEE32DB/dbpasswd
chains.sh: #6864: OCSPD: Creating DB OCSPEE32DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE32Req.der
certutil -s "CN=OCSPEE32 EE, O=OCSPEE32, C=US"  -R  -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE32Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6865: OCSPD: Creating EE certifiate request OCSPEE32Req.der  - PASSED
chains.sh: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE32Req.der -o OCSPEE32OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9019/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6866: OCSPD: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database
certutil -A -n OCSPEE32 -t u,u,u -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -i OCSPEE32OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6867: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database  - PASSED
chains.sh: Creating DB OCSPEE33DB
certutil -N -d OCSPEE33DB -f OCSPEE33DB/dbpasswd
chains.sh: #6868: OCSPD: Creating DB OCSPEE33DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE33Req.der
certutil -s "CN=OCSPEE33 EE, O=OCSPEE33, C=US"  -R  -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE33Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6869: OCSPD: Creating EE certifiate request OCSPEE33Req.der  - PASSED
chains.sh: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE33Req.der -o OCSPEE33OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9020
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6870: OCSPD: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database
certutil -A -n OCSPEE33 -t u,u,u -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -i OCSPEE33OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6871: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database  - PASSED
chains.sh: Create CRL for OCSPRootDB
crlutil -G -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170806235858Z
nextupdate=20180806235858Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Sun Aug 06 23:58:58 2017
    Next Update: Mon Aug 06 23:58:58 2018
    CRL Extensions:
chains.sh: #6872: OCSPD: Create CRL for OCSPRootDB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPRoot
crlutil -M -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170806235859Z
addcert 2 20170806235859Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Sun Aug 06 23:58:59 2017
    Next Update: Mon Aug 06 23:58:58 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sun Aug 06 23:58:59 2017
    CRL Extensions:
chains.sh: #6873: OCSPD: Revoking certificate with SN 2 issued by OCSPRoot  - PASSED
chains.sh: Create CRL for OCSPCA1DB
crlutil -G -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170806235859Z
nextupdate=20180806235859Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Sun Aug 06 23:58:59 2017
    Next Update: Mon Aug 06 23:58:59 2018
    CRL Extensions:
chains.sh: #6874: OCSPD: Create CRL for OCSPCA1DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170806235900Z
addcert 2 20170806235900Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Sun Aug 06 23:59:00 2017
    Next Update: Mon Aug 06 23:58:59 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sun Aug 06 23:59:00 2017
    CRL Extensions:
chains.sh: #6875: OCSPD: Revoking certificate with SN 2 issued by OCSPCA1  - PASSED
chains.sh: Revoking certificate with SN 4 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170806235901Z
addcert 4 20170806235901Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Sun Aug 06 23:59:01 2017
    Next Update: Mon Aug 06 23:58:59 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sun Aug 06 23:59:00 2017
    Entry 2 (0x2):
        Serial Number: 4 (0x4)
        Revocation Date: Sun Aug 06 23:59:01 2017
    CRL Extensions:
chains.sh: #6876: OCSPD: Revoking certificate with SN 4 issued by OCSPCA1  - PASSED
chains.sh: Create CRL for OCSPCA2DB
crlutil -G -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170806235901Z
nextupdate=20180806235901Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Sun Aug 06 23:59:01 2017
    Next Update: Mon Aug 06 23:59:01 2018
    CRL Extensions:
chains.sh: #6877: OCSPD: Create CRL for OCSPCA2DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170806235902Z
addcert 2 20170806235902Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Sun Aug 06 23:59:02 2017
    Next Update: Mon Aug 06 23:59:01 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sun Aug 06 23:59:02 2017
    CRL Extensions:
chains.sh: #6878: OCSPD: Revoking certificate with SN 2 issued by OCSPCA2  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170806235903Z
addcert 3 20170806235903Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Sun Aug 06 23:59:03 2017
    Next Update: Mon Aug 06 23:59:01 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sun Aug 06 23:59:02 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Sun Aug 06 23:59:03 2017
    CRL Extensions:
chains.sh: #6879: OCSPD: Revoking certificate with SN 3 issued by OCSPCA2  - PASSED
chains.sh: Create CRL for OCSPCA3DB
crlutil -G -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170806235903Z
nextupdate=20180806235903Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Sun Aug 06 23:59:03 2017
    Next Update: Mon Aug 06 23:59:03 2018
    CRL Extensions:
chains.sh: #6880: OCSPD: Create CRL for OCSPCA3DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170806235904Z
addcert 2 20170806235904Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Sun Aug 06 23:59:04 2017
    Next Update: Mon Aug 06 23:59:03 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sun Aug 06 23:59:04 2017
    CRL Extensions:
chains.sh: #6881: OCSPD: Revoking certificate with SN 2 issued by OCSPCA3  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170806235905Z
addcert 3 20170806235905Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Sun Aug 06 23:59:05 2017
    Next Update: Mon Aug 06 23:59:03 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sun Aug 06 23:59:04 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Sun Aug 06 23:59:05 2017
    CRL Extensions:
chains.sh: #6882: OCSPD: Revoking certificate with SN 3 issued by OCSPCA3  - PASSED
chains.sh: Creating DB ServerDB
certutil -N -d ServerDB -f ServerDB/dbpasswd
chains.sh: #6883: OCSPD: Creating DB ServerDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ServerDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.der
chains.sh: #6884: OCSPD: Importing certificate OCSPRoot.der to ServerDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ServerDB database
crlutil -I -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.crl
chains.sh: #6885: OCSPD: Importing CRL OCSPRoot.crl to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPRoot.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPRoot.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #6886: OCSPD: Importing p12 key OCSPRoot.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA1.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA1.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #6887: OCSPD: Importing p12 key OCSPCA1.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA2.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA2.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #6888: OCSPD: Importing p12 key OCSPCA2.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA3.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA3.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #6889: OCSPD: Importing p12 key OCSPCA3.p12 to ServerDB database  - PASSED
chains.sh: Creating DB ClientDB
certutil -N -d ClientDB -f ClientDB/dbpasswd
chains.sh: #6890: OCSPD: Creating DB ClientDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ClientDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.der
chains.sh: #6891: OCSPD: Importing certificate OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ClientDB database
crlutil -I -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.crl
chains.sh: #6892: OCSPD: Importing CRL OCSPRoot.crl to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA1OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA1OCSPRoot.der
chains.sh: #6893: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA2OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA2OCSPRoot.der
chains.sh: #6894: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA3OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA3OCSPRoot.der
chains.sh: #6895: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE11OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE11OCSPCA1.der
chains.sh: #6896: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE12OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE12OCSPCA1.der
chains.sh: #6897: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE13OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE13OCSPCA1.der
chains.sh: #6898: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE14OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE14OCSPCA1.der
chains.sh: #6899: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE15OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE15OCSPCA1.der
chains.sh: #6900: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE21OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE21OCSPCA2.der
chains.sh: #6901: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE22OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE22OCSPCA2.der
chains.sh: #6902: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE23OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE23OCSPCA2.der
chains.sh: #6903: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE31OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE31OCSPCA3.der
chains.sh: #6904: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE32OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE32OCSPCA3.der
chains.sh: #6905: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE33OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE33OCSPCA3.der
chains.sh: #6906: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database  - PASSED
httpserv starting at Sun Aug  6 23:59:05 UTC 2017
httpserv -D -p 9019  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA3.crl \
         -O get -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/aiahttp/http_pid.8843  &
trying to connect to httpserv at Sun Aug  6 23:59:05 UTC 2017
tstclnt -p 9019 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9019 (address=::1)
tstclnt: exiting with return code 0
kill -0 30511 >/dev/null 2>/dev/null
httpserv with PID 30511 found at Sun Aug  6 23:59:05 UTC 2017
httpserv with PID 30511 started at Sun Aug  6 23:59:05 UTC 2017
tstclnt -h localhost.localdomain -p 9019 -q -t 20
chains.sh: #6907: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235857 (0x300e2ed1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Sun Aug 06 23:58:56 2017
            Not After : Sat Aug 06 23:58:56 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:52:92:0e:ba:15:84:76:4d:38:4a:a6:81:9b:2d:d3:
                    68:7b:b7:8e:3b:ee:8e:d9:b0:6d:3f:42:75:89:71:77:
                    75:65:58:0c:79:59:12:11:ad:27:ea:55:b1:11:0b:7f:
                    fc:10:1e:14:98:75:27:c1:18:9f:6f:9c:41:bc:bc:82:
                    fd:1e:1c:d3:4e:7c:01:ca:de:58:92:d6:f3:38:5e:5f:
                    9d:0b:3b:56:d1:f1:c8:84:cf:d0:c7:67:67:a6:e5:f8:
                    51:63:83:72:64:7d:ed:19:90:98:97:1b:93:63:17:6a:
                    3b:ac:07:62:cd:31:1c:46:17:96:0e:ff:06:17:b4:0b:
                    a8:5d:86:76:1d:0a:d9:2c:c4:29:08:5f:5d:56:67:8c:
                    a6:03:02:16:bc:d8:62:be:28:b5:31:7b:9b:db:ce:9e:
                    d7:d1:9a:3c:67:b6:ea:45:28:5d:03:1b:98:5f:ea:fd:
                    67:a5:d0:b5:68:52:09:75:90:1c:62:2c:eb:34:7a:03:
                    b3:6b:11:aa:2d:9d:c9:ad:b1:24:d3:78:c7:03:25:a7:
                    25:c3:93:1a:63:f9:54:1c:c1:f0:4d:bd:fb:a6:ba:34:
                    9c:e0:6e:59:cf:a2:9e:9d:24:a6:30:c0:80:e4:d2:5f:
                    35:cc:95:f3:43:d7:77:3e:7d:b4:88:f1:9b:cb:08:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        69:c7:1e:be:f7:7b:42:31:60:fb:f4:02:fe:3e:58:00:
        9f:93:81:fe:96:05:5a:c4:d6:2e:c7:98:3e:9f:02:c3:
        c6:49:26:86:80:72:78:95:ae:93:34:6e:4d:bb:8f:b7:
        b0:5e:4d:af:4f:24:10:78:cf:47:38:a2:a4:26:d9:63:
        0c:c1:5f:97:b4:7b:3c:29:88:31:d5:4e:e7:d1:88:2e:
        b1:3a:77:39:35:28:d9:b4:5b:ad:92:fb:cf:3f:12:c0:
        10:71:e6:47:03:01:8e:6c:1b:06:fc:24:c9:25:47:4d:
        6d:8a:19:f1:ad:d8:48:9d:eb:6a:41:fe:51:b4:73:1c:
        fc:6c:86:a9:64:ee:4e:1d:79:c0:51:a5:40:67:72:53:
        b8:44:19:7e:c0:3b:27:4c:b6:9e:fe:42:cd:cc:88:d1:
        19:23:ce:5f:4b:6a:66:ba:32:8d:d1:cb:61:67:f4:a7:
        de:4a:62:13:bd:e5:47:5e:bc:95:37:eb:5f:8a:a1:ab:
        0e:01:e9:5b:94:8e:0d:bd:f2:75:59:a7:f8:b6:77:b4:
        50:f1:f8:3d:aa:4e:d3:54:00:b1:c4:a1:71:c3:e7:b5:
        cf:ec:0c:bb:f9:d5:6c:94:ac:68:41:0b:b3:a9:d2:b7:
        b0:b4:e8:0d:c3:6e:e3:0e:bf:fc:73:e7:a3:5c:ea:67
    Fingerprint (SHA-256):
        74:E1:7D:2F:67:B9:99:C5:53:28:4A:EE:D7:53:59:43:1A:E7:89:35:44:26:13:7A:BC:EE:B0:0D:99:2E:9E:A4
    Fingerprint (SHA1):
        DA:53:C6:F3:F6:7D:9D:95:AB:15:BC:DF:E8:EA:4E:39:E8:4A:C4:F5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6908: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #6909: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #6910: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 30511 at Sun Aug  6 23:59:06 UTC 2017
kill -USR1 30511
httpserv: normal termination
httpserv -b -p 9019 2>/dev/null;
httpserv with PID 30511 killed at Sun Aug  6 23:59:06 UTC 2017
httpserv starting at Sun Aug  6 23:59:06 UTC 2017
httpserv -D -p 9019  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA3.crl \
         -O post -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/aiahttp/http_pid.8843  &
trying to connect to httpserv at Sun Aug  6 23:59:06 UTC 2017
tstclnt -p 9019 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9019 (address=::1)
tstclnt: exiting with return code 0
kill -0 30680 >/dev/null 2>/dev/null
httpserv with PID 30680 found at Sun Aug  6 23:59:06 UTC 2017
httpserv with PID 30680 started at Sun Aug  6 23:59:06 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6911: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6912: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6913: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
tstclnt -h localhost.localdomain -p 9019 -q -t 20
chains.sh: #6914: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235857 (0x300e2ed1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Sun Aug 06 23:58:56 2017
            Not After : Sat Aug 06 23:58:56 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:52:92:0e:ba:15:84:76:4d:38:4a:a6:81:9b:2d:d3:
                    68:7b:b7:8e:3b:ee:8e:d9:b0:6d:3f:42:75:89:71:77:
                    75:65:58:0c:79:59:12:11:ad:27:ea:55:b1:11:0b:7f:
                    fc:10:1e:14:98:75:27:c1:18:9f:6f:9c:41:bc:bc:82:
                    fd:1e:1c:d3:4e:7c:01:ca:de:58:92:d6:f3:38:5e:5f:
                    9d:0b:3b:56:d1:f1:c8:84:cf:d0:c7:67:67:a6:e5:f8:
                    51:63:83:72:64:7d:ed:19:90:98:97:1b:93:63:17:6a:
                    3b:ac:07:62:cd:31:1c:46:17:96:0e:ff:06:17:b4:0b:
                    a8:5d:86:76:1d:0a:d9:2c:c4:29:08:5f:5d:56:67:8c:
                    a6:03:02:16:bc:d8:62:be:28:b5:31:7b:9b:db:ce:9e:
                    d7:d1:9a:3c:67:b6:ea:45:28:5d:03:1b:98:5f:ea:fd:
                    67:a5:d0:b5:68:52:09:75:90:1c:62:2c:eb:34:7a:03:
                    b3:6b:11:aa:2d:9d:c9:ad:b1:24:d3:78:c7:03:25:a7:
                    25:c3:93:1a:63:f9:54:1c:c1:f0:4d:bd:fb:a6:ba:34:
                    9c:e0:6e:59:cf:a2:9e:9d:24:a6:30:c0:80:e4:d2:5f:
                    35:cc:95:f3:43:d7:77:3e:7d:b4:88:f1:9b:cb:08:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        69:c7:1e:be:f7:7b:42:31:60:fb:f4:02:fe:3e:58:00:
        9f:93:81:fe:96:05:5a:c4:d6:2e:c7:98:3e:9f:02:c3:
        c6:49:26:86:80:72:78:95:ae:93:34:6e:4d:bb:8f:b7:
        b0:5e:4d:af:4f:24:10:78:cf:47:38:a2:a4:26:d9:63:
        0c:c1:5f:97:b4:7b:3c:29:88:31:d5:4e:e7:d1:88:2e:
        b1:3a:77:39:35:28:d9:b4:5b:ad:92:fb:cf:3f:12:c0:
        10:71:e6:47:03:01:8e:6c:1b:06:fc:24:c9:25:47:4d:
        6d:8a:19:f1:ad:d8:48:9d:eb:6a:41:fe:51:b4:73:1c:
        fc:6c:86:a9:64:ee:4e:1d:79:c0:51:a5:40:67:72:53:
        b8:44:19:7e:c0:3b:27:4c:b6:9e:fe:42:cd:cc:88:d1:
        19:23:ce:5f:4b:6a:66:ba:32:8d:d1:cb:61:67:f4:a7:
        de:4a:62:13:bd:e5:47:5e:bc:95:37:eb:5f:8a:a1:ab:
        0e:01:e9:5b:94:8e:0d:bd:f2:75:59:a7:f8:b6:77:b4:
        50:f1:f8:3d:aa:4e:d3:54:00:b1:c4:a1:71:c3:e7:b5:
        cf:ec:0c:bb:f9:d5:6c:94:ac:68:41:0b:b3:a9:d2:b7:
        b0:b4:e8:0d:c3:6e:e3:0e:bf:fc:73:e7:a3:5c:ea:67
    Fingerprint (SHA-256):
        74:E1:7D:2F:67:B9:99:C5:53:28:4A:EE:D7:53:59:43:1A:E7:89:35:44:26:13:7A:BC:EE:B0:0D:99:2E:9E:A4
    Fingerprint (SHA1):
        DA:53:C6:F3:F6:7D:9D:95:AB:15:BC:DF:E8:EA:4E:39:E8:4A:C4:F5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6915: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #6916: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #6917: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 30680 at Sun Aug  6 23:59:06 UTC 2017
kill -USR1 30680
httpserv: normal termination
httpserv -b -p 9019 2>/dev/null;
httpserv with PID 30680 killed at Sun Aug  6 23:59:06 UTC 2017
httpserv starting at Sun Aug  6 23:59:06 UTC 2017
httpserv -D -p 9019  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA3.crl \
         -O random -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/aiahttp/http_pid.8843  &
trying to connect to httpserv at Sun Aug  6 23:59:06 UTC 2017
tstclnt -p 9019 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9019 (address=::1)
tstclnt: exiting with return code 0
kill -0 30927 >/dev/null 2>/dev/null
httpserv with PID 30927 found at Sun Aug  6 23:59:06 UTC 2017
httpserv with PID 30927 started at Sun Aug  6 23:59:06 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6918: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #6919: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806235858 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6920: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #6921: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #6922: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806235859 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6923: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #6924: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #6925: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6926: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 806235860 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6927: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6928: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 806235861 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6929: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6930: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #6931: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #6932: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6933: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 806235862   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6934: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6935: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6936: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #6937: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #6938: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235859 (0x300e2ed3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:06 2017
            Not After : Sat Aug 06 23:59:06 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:b9:d0:44:b8:0c:1d:2f:fa:73:51:28:e2:d0:ed:1a:
                    b7:1c:1f:3a:43:d0:a1:74:62:9f:c6:a3:f5:2e:c7:23:
                    e1:e4:7d:6a:08:e6:48:eb:8d:e7:1d:24:66:69:ea:45:
                    fb:91:04:3e:9b:b4:a2:1f:5e:fe:6a:38:7b:f9:fd:16:
                    34:ff:4d:68:e9:48:a1:b6:18:2b:26:71:28:e5:45:6f:
                    46:b3:be:11:ae:3b:09:ac:2f:b5:b9:d7:3e:53:17:98:
                    8f:fd:ba:ac:2b:cd:0b:20:20:f3:d0:f0:d4:10:e2:c2:
                    24:b1:26:0a:9d:5b:57:d6:4e:df:00:ad:b5:5e:fc:ed:
                    3f:4c:18:b7:93:c6:7f:c7:bf:fa:b0:69:18:57:96:c8:
                    5f:92:09:34:ec:25:e9:ab:52:37:43:31:61:57:a2:f2:
                    41:3e:d5:37:14:c6:a2:df:ed:82:5e:4d:98:00:0a:84:
                    ce:15:a5:84:57:b5:2b:b0:2c:d1:3e:5a:3c:b0:89:18:
                    64:1e:b4:fe:2b:07:cb:63:14:fb:b4:85:b5:ef:24:68:
                    64:96:08:bc:61:95:7f:d5:85:1c:70:d5:4c:e7:c0:8a:
                    25:b9:1d:8c:f2:50:c7:20:5e:93:d8:28:61:80:f6:c7:
                    d6:df:8d:73:b8:3f:8c:07:23:77:0a:93:b8:c2:9a:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:26:f8:08:d2:52:df:0a:d9:68:21:63:d1:b5:d2:c4:
        35:1d:db:91:6e:25:a7:9e:d5:66:97:f8:c7:6d:ee:53:
        39:38:cc:bf:b9:50:6f:2c:eb:92:1e:b0:fa:83:b9:70:
        38:d2:fb:1d:f8:7b:15:72:6b:60:e0:5b:9d:d7:d6:9f:
        41:42:de:f5:28:d8:97:12:cf:5e:d4:6c:b9:d4:a9:cb:
        6e:d3:ec:a5:ec:1c:b1:9b:a6:a7:3e:f8:c6:38:b2:ba:
        be:7f:45:32:da:5b:da:46:ea:f7:7a:ab:5f:df:f2:ef:
        24:19:48:17:7c:86:d2:76:19:c1:2a:11:b2:91:75:12:
        b2:b9:45:d3:b6:0b:2a:50:24:31:48:ca:ba:7a:83:bd:
        37:50:ec:01:61:c5:0f:8b:2f:f6:2b:e6:a1:83:f1:e3:
        4d:49:09:2d:f8:ad:72:e4:11:a3:2f:c3:9f:ca:9b:53:
        d8:7e:19:0b:8c:f2:80:62:83:e4:35:0b:be:7e:4b:27:
        2a:dc:96:80:91:78:70:4b:53:6c:62:c8:28:07:c7:26:
        aa:50:f7:58:11:87:e5:e7:96:11:ab:e4:7b:8f:0b:c3:
        d9:97:9f:24:af:af:ef:64:50:8b:1e:0c:3c:d1:39:c9:
        6b:f5:86:7d:23:80:e9:a0:b0:9b:a1:0f:7a:db:7c:f7
    Fingerprint (SHA-256):
        94:42:A8:5B:3D:43:51:73:86:BC:60:3E:EC:86:3A:E5:F2:EA:14:1C:0D:7A:EB:A7:7B:13:10:27:F9:FF:EF:F6
    Fingerprint (SHA1):
        8E:AD:BF:58:9B:6A:BC:0E:4C:46:87:F4:9D:8D:E9:59:E1:AB:2E:09
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6939: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235858 (0x300e2ed2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:06 2017
            Not After : Sat Aug 06 23:59:06 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:29:88:a5:7f:ac:40:18:06:26:a4:e5:4a:5f:76:98:
                    1d:10:c7:34:94:d9:27:4b:03:7c:ef:7a:10:49:cf:c3:
                    57:16:39:6f:7e:16:95:7a:85:df:22:59:8d:e6:3e:63:
                    47:53:7d:ee:5a:c1:3c:8a:21:57:b9:62:a3:fe:19:df:
                    04:39:ff:b4:76:67:a7:a1:39:d6:90:5b:96:3f:dd:b7:
                    7e:33:54:47:43:04:a7:29:6a:de:71:4b:e8:d4:ae:33:
                    6c:24:7d:ce:45:97:87:b3:3f:e3:e7:ed:d9:ff:cd:0b:
                    a8:01:87:a4:c5:37:7b:c3:4d:d3:d3:2a:a7:de:2a:55:
                    48:89:4d:1e:26:d8:f3:a7:b4:03:9b:72:43:44:3d:8f:
                    89:86:c2:bc:03:6e:37:bf:f0:ee:e9:61:0c:c4:8c:fd:
                    66:a3:c7:4c:32:f0:e9:3d:69:89:4b:20:68:1c:87:e4:
                    78:6e:c1:41:57:cd:7c:ef:3e:8e:34:ee:ef:ce:13:92:
                    02:8d:45:06:75:1c:9a:f8:1a:fd:d1:a2:73:e0:ad:37:
                    af:75:c1:44:61:4c:95:b2:81:a2:55:14:2d:db:be:22:
                    bc:ed:b7:60:b0:99:dc:f6:de:88:33:55:c8:3c:d4:03:
                    e7:1f:43:5b:a2:82:ed:4d:a3:60:a5:db:e4:74:7d:0b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ca:8c:cf:25:67:bf:e1:49:27:67:b4:39:5a:c2:0a:8c:
        97:2c:75:36:54:f4:31:45:3d:00:17:87:5d:fc:97:97:
        5c:c7:f5:1b:0d:da:80:61:66:6e:51:6c:ad:c9:03:6d:
        7c:ab:c5:65:b8:10:46:b6:34:ef:2d:26:cf:50:56:fd:
        9e:60:8c:f3:45:16:fd:23:6d:7b:6c:5f:9c:81:71:d8:
        42:05:95:1a:54:82:16:52:58:a7:4b:fc:55:17:ec:08:
        3e:3b:db:40:e7:8a:19:30:a3:18:7d:98:79:27:76:2f:
        76:44:1e:90:89:ff:d1:0b:12:c2:95:cb:d2:1a:8d:5e:
        28:d0:33:3d:29:e6:8d:a3:ce:a4:c0:3b:f0:ce:e9:ab:
        61:79:d5:9c:79:34:37:28:89:98:c1:92:e7:c7:df:1e:
        71:ac:81:df:9a:d7:cd:bf:a6:90:49:1a:b0:53:f5:f7:
        6b:76:aa:b1:d2:94:d5:d7:b5:f9:02:d9:1b:bb:1e:5d:
        66:00:31:27:4f:23:b1:83:40:36:a6:ce:fb:5e:12:02:
        43:f6:d4:00:fd:61:0b:be:02:f8:79:cd:d2:2e:2b:9d:
        42:bb:d4:70:f9:e7:72:cd:67:aa:45:6d:f6:fe:4f:a5:
        06:cf:ab:a0:23:fd:3a:b5:e9:1c:ea:ed:42:95:5e:7b
    Fingerprint (SHA-256):
        44:16:5D:74:E0:3D:AF:3E:BF:8D:B4:41:2B:B6:DE:EE:6A:5B:53:65:41:A8:BE:8F:06:C1:15:17:12:73:8A:9B
    Fingerprint (SHA1):
        82:22:C8:52:69:F1:22:A4:10:37:65:31:CD:32:A3:99:26:F6:97:B5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6940: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6941: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #6942: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #6943: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235858 (0x300e2ed2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:06 2017
            Not After : Sat Aug 06 23:59:06 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:29:88:a5:7f:ac:40:18:06:26:a4:e5:4a:5f:76:98:
                    1d:10:c7:34:94:d9:27:4b:03:7c:ef:7a:10:49:cf:c3:
                    57:16:39:6f:7e:16:95:7a:85:df:22:59:8d:e6:3e:63:
                    47:53:7d:ee:5a:c1:3c:8a:21:57:b9:62:a3:fe:19:df:
                    04:39:ff:b4:76:67:a7:a1:39:d6:90:5b:96:3f:dd:b7:
                    7e:33:54:47:43:04:a7:29:6a:de:71:4b:e8:d4:ae:33:
                    6c:24:7d:ce:45:97:87:b3:3f:e3:e7:ed:d9:ff:cd:0b:
                    a8:01:87:a4:c5:37:7b:c3:4d:d3:d3:2a:a7:de:2a:55:
                    48:89:4d:1e:26:d8:f3:a7:b4:03:9b:72:43:44:3d:8f:
                    89:86:c2:bc:03:6e:37:bf:f0:ee:e9:61:0c:c4:8c:fd:
                    66:a3:c7:4c:32:f0:e9:3d:69:89:4b:20:68:1c:87:e4:
                    78:6e:c1:41:57:cd:7c:ef:3e:8e:34:ee:ef:ce:13:92:
                    02:8d:45:06:75:1c:9a:f8:1a:fd:d1:a2:73:e0:ad:37:
                    af:75:c1:44:61:4c:95:b2:81:a2:55:14:2d:db:be:22:
                    bc:ed:b7:60:b0:99:dc:f6:de:88:33:55:c8:3c:d4:03:
                    e7:1f:43:5b:a2:82:ed:4d:a3:60:a5:db:e4:74:7d:0b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ca:8c:cf:25:67:bf:e1:49:27:67:b4:39:5a:c2:0a:8c:
        97:2c:75:36:54:f4:31:45:3d:00:17:87:5d:fc:97:97:
        5c:c7:f5:1b:0d:da:80:61:66:6e:51:6c:ad:c9:03:6d:
        7c:ab:c5:65:b8:10:46:b6:34:ef:2d:26:cf:50:56:fd:
        9e:60:8c:f3:45:16:fd:23:6d:7b:6c:5f:9c:81:71:d8:
        42:05:95:1a:54:82:16:52:58:a7:4b:fc:55:17:ec:08:
        3e:3b:db:40:e7:8a:19:30:a3:18:7d:98:79:27:76:2f:
        76:44:1e:90:89:ff:d1:0b:12:c2:95:cb:d2:1a:8d:5e:
        28:d0:33:3d:29:e6:8d:a3:ce:a4:c0:3b:f0:ce:e9:ab:
        61:79:d5:9c:79:34:37:28:89:98:c1:92:e7:c7:df:1e:
        71:ac:81:df:9a:d7:cd:bf:a6:90:49:1a:b0:53:f5:f7:
        6b:76:aa:b1:d2:94:d5:d7:b5:f9:02:d9:1b:bb:1e:5d:
        66:00:31:27:4f:23:b1:83:40:36:a6:ce:fb:5e:12:02:
        43:f6:d4:00:fd:61:0b:be:02:f8:79:cd:d2:2e:2b:9d:
        42:bb:d4:70:f9:e7:72:cd:67:aa:45:6d:f6:fe:4f:a5:
        06:cf:ab:a0:23:fd:3a:b5:e9:1c:ea:ed:42:95:5e:7b
    Fingerprint (SHA-256):
        44:16:5D:74:E0:3D:AF:3E:BF:8D:B4:41:2B:B6:DE:EE:6A:5B:53:65:41:A8:BE:8F:06:C1:15:17:12:73:8A:9B
    Fingerprint (SHA1):
        82:22:C8:52:69:F1:22:A4:10:37:65:31:CD:32:A3:99:26:F6:97:B5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6944: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235859 (0x300e2ed3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:06 2017
            Not After : Sat Aug 06 23:59:06 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:b9:d0:44:b8:0c:1d:2f:fa:73:51:28:e2:d0:ed:1a:
                    b7:1c:1f:3a:43:d0:a1:74:62:9f:c6:a3:f5:2e:c7:23:
                    e1:e4:7d:6a:08:e6:48:eb:8d:e7:1d:24:66:69:ea:45:
                    fb:91:04:3e:9b:b4:a2:1f:5e:fe:6a:38:7b:f9:fd:16:
                    34:ff:4d:68:e9:48:a1:b6:18:2b:26:71:28:e5:45:6f:
                    46:b3:be:11:ae:3b:09:ac:2f:b5:b9:d7:3e:53:17:98:
                    8f:fd:ba:ac:2b:cd:0b:20:20:f3:d0:f0:d4:10:e2:c2:
                    24:b1:26:0a:9d:5b:57:d6:4e:df:00:ad:b5:5e:fc:ed:
                    3f:4c:18:b7:93:c6:7f:c7:bf:fa:b0:69:18:57:96:c8:
                    5f:92:09:34:ec:25:e9:ab:52:37:43:31:61:57:a2:f2:
                    41:3e:d5:37:14:c6:a2:df:ed:82:5e:4d:98:00:0a:84:
                    ce:15:a5:84:57:b5:2b:b0:2c:d1:3e:5a:3c:b0:89:18:
                    64:1e:b4:fe:2b:07:cb:63:14:fb:b4:85:b5:ef:24:68:
                    64:96:08:bc:61:95:7f:d5:85:1c:70:d5:4c:e7:c0:8a:
                    25:b9:1d:8c:f2:50:c7:20:5e:93:d8:28:61:80:f6:c7:
                    d6:df:8d:73:b8:3f:8c:07:23:77:0a:93:b8:c2:9a:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:26:f8:08:d2:52:df:0a:d9:68:21:63:d1:b5:d2:c4:
        35:1d:db:91:6e:25:a7:9e:d5:66:97:f8:c7:6d:ee:53:
        39:38:cc:bf:b9:50:6f:2c:eb:92:1e:b0:fa:83:b9:70:
        38:d2:fb:1d:f8:7b:15:72:6b:60:e0:5b:9d:d7:d6:9f:
        41:42:de:f5:28:d8:97:12:cf:5e:d4:6c:b9:d4:a9:cb:
        6e:d3:ec:a5:ec:1c:b1:9b:a6:a7:3e:f8:c6:38:b2:ba:
        be:7f:45:32:da:5b:da:46:ea:f7:7a:ab:5f:df:f2:ef:
        24:19:48:17:7c:86:d2:76:19:c1:2a:11:b2:91:75:12:
        b2:b9:45:d3:b6:0b:2a:50:24:31:48:ca:ba:7a:83:bd:
        37:50:ec:01:61:c5:0f:8b:2f:f6:2b:e6:a1:83:f1:e3:
        4d:49:09:2d:f8:ad:72:e4:11:a3:2f:c3:9f:ca:9b:53:
        d8:7e:19:0b:8c:f2:80:62:83:e4:35:0b:be:7e:4b:27:
        2a:dc:96:80:91:78:70:4b:53:6c:62:c8:28:07:c7:26:
        aa:50:f7:58:11:87:e5:e7:96:11:ab:e4:7b:8f:0b:c3:
        d9:97:9f:24:af:af:ef:64:50:8b:1e:0c:3c:d1:39:c9:
        6b:f5:86:7d:23:80:e9:a0:b0:9b:a1:0f:7a:db:7c:f7
    Fingerprint (SHA-256):
        94:42:A8:5B:3D:43:51:73:86:BC:60:3E:EC:86:3A:E5:F2:EA:14:1C:0D:7A:EB:A7:7B:13:10:27:F9:FF:EF:F6
    Fingerprint (SHA1):
        8E:AD:BF:58:9B:6A:BC:0E:4C:46:87:F4:9D:8D:E9:59:E1:AB:2E:09
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6945: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #6946: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #6947: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #6948: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6949: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6950: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235859 (0x300e2ed3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:06 2017
            Not After : Sat Aug 06 23:59:06 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:b9:d0:44:b8:0c:1d:2f:fa:73:51:28:e2:d0:ed:1a:
                    b7:1c:1f:3a:43:d0:a1:74:62:9f:c6:a3:f5:2e:c7:23:
                    e1:e4:7d:6a:08:e6:48:eb:8d:e7:1d:24:66:69:ea:45:
                    fb:91:04:3e:9b:b4:a2:1f:5e:fe:6a:38:7b:f9:fd:16:
                    34:ff:4d:68:e9:48:a1:b6:18:2b:26:71:28:e5:45:6f:
                    46:b3:be:11:ae:3b:09:ac:2f:b5:b9:d7:3e:53:17:98:
                    8f:fd:ba:ac:2b:cd:0b:20:20:f3:d0:f0:d4:10:e2:c2:
                    24:b1:26:0a:9d:5b:57:d6:4e:df:00:ad:b5:5e:fc:ed:
                    3f:4c:18:b7:93:c6:7f:c7:bf:fa:b0:69:18:57:96:c8:
                    5f:92:09:34:ec:25:e9:ab:52:37:43:31:61:57:a2:f2:
                    41:3e:d5:37:14:c6:a2:df:ed:82:5e:4d:98:00:0a:84:
                    ce:15:a5:84:57:b5:2b:b0:2c:d1:3e:5a:3c:b0:89:18:
                    64:1e:b4:fe:2b:07:cb:63:14:fb:b4:85:b5:ef:24:68:
                    64:96:08:bc:61:95:7f:d5:85:1c:70:d5:4c:e7:c0:8a:
                    25:b9:1d:8c:f2:50:c7:20:5e:93:d8:28:61:80:f6:c7:
                    d6:df:8d:73:b8:3f:8c:07:23:77:0a:93:b8:c2:9a:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:26:f8:08:d2:52:df:0a:d9:68:21:63:d1:b5:d2:c4:
        35:1d:db:91:6e:25:a7:9e:d5:66:97:f8:c7:6d:ee:53:
        39:38:cc:bf:b9:50:6f:2c:eb:92:1e:b0:fa:83:b9:70:
        38:d2:fb:1d:f8:7b:15:72:6b:60:e0:5b:9d:d7:d6:9f:
        41:42:de:f5:28:d8:97:12:cf:5e:d4:6c:b9:d4:a9:cb:
        6e:d3:ec:a5:ec:1c:b1:9b:a6:a7:3e:f8:c6:38:b2:ba:
        be:7f:45:32:da:5b:da:46:ea:f7:7a:ab:5f:df:f2:ef:
        24:19:48:17:7c:86:d2:76:19:c1:2a:11:b2:91:75:12:
        b2:b9:45:d3:b6:0b:2a:50:24:31:48:ca:ba:7a:83:bd:
        37:50:ec:01:61:c5:0f:8b:2f:f6:2b:e6:a1:83:f1:e3:
        4d:49:09:2d:f8:ad:72:e4:11:a3:2f:c3:9f:ca:9b:53:
        d8:7e:19:0b:8c:f2:80:62:83:e4:35:0b:be:7e:4b:27:
        2a:dc:96:80:91:78:70:4b:53:6c:62:c8:28:07:c7:26:
        aa:50:f7:58:11:87:e5:e7:96:11:ab:e4:7b:8f:0b:c3:
        d9:97:9f:24:af:af:ef:64:50:8b:1e:0c:3c:d1:39:c9:
        6b:f5:86:7d:23:80:e9:a0:b0:9b:a1:0f:7a:db:7c:f7
    Fingerprint (SHA-256):
        94:42:A8:5B:3D:43:51:73:86:BC:60:3E:EC:86:3A:E5:F2:EA:14:1C:0D:7A:EB:A7:7B:13:10:27:F9:FF:EF:F6
    Fingerprint (SHA1):
        8E:AD:BF:58:9B:6A:BC:0E:4C:46:87:F4:9D:8D:E9:59:E1:AB:2E:09
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6951: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235859 (0x300e2ed3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:06 2017
            Not After : Sat Aug 06 23:59:06 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:b9:d0:44:b8:0c:1d:2f:fa:73:51:28:e2:d0:ed:1a:
                    b7:1c:1f:3a:43:d0:a1:74:62:9f:c6:a3:f5:2e:c7:23:
                    e1:e4:7d:6a:08:e6:48:eb:8d:e7:1d:24:66:69:ea:45:
                    fb:91:04:3e:9b:b4:a2:1f:5e:fe:6a:38:7b:f9:fd:16:
                    34:ff:4d:68:e9:48:a1:b6:18:2b:26:71:28:e5:45:6f:
                    46:b3:be:11:ae:3b:09:ac:2f:b5:b9:d7:3e:53:17:98:
                    8f:fd:ba:ac:2b:cd:0b:20:20:f3:d0:f0:d4:10:e2:c2:
                    24:b1:26:0a:9d:5b:57:d6:4e:df:00:ad:b5:5e:fc:ed:
                    3f:4c:18:b7:93:c6:7f:c7:bf:fa:b0:69:18:57:96:c8:
                    5f:92:09:34:ec:25:e9:ab:52:37:43:31:61:57:a2:f2:
                    41:3e:d5:37:14:c6:a2:df:ed:82:5e:4d:98:00:0a:84:
                    ce:15:a5:84:57:b5:2b:b0:2c:d1:3e:5a:3c:b0:89:18:
                    64:1e:b4:fe:2b:07:cb:63:14:fb:b4:85:b5:ef:24:68:
                    64:96:08:bc:61:95:7f:d5:85:1c:70:d5:4c:e7:c0:8a:
                    25:b9:1d:8c:f2:50:c7:20:5e:93:d8:28:61:80:f6:c7:
                    d6:df:8d:73:b8:3f:8c:07:23:77:0a:93:b8:c2:9a:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:26:f8:08:d2:52:df:0a:d9:68:21:63:d1:b5:d2:c4:
        35:1d:db:91:6e:25:a7:9e:d5:66:97:f8:c7:6d:ee:53:
        39:38:cc:bf:b9:50:6f:2c:eb:92:1e:b0:fa:83:b9:70:
        38:d2:fb:1d:f8:7b:15:72:6b:60:e0:5b:9d:d7:d6:9f:
        41:42:de:f5:28:d8:97:12:cf:5e:d4:6c:b9:d4:a9:cb:
        6e:d3:ec:a5:ec:1c:b1:9b:a6:a7:3e:f8:c6:38:b2:ba:
        be:7f:45:32:da:5b:da:46:ea:f7:7a:ab:5f:df:f2:ef:
        24:19:48:17:7c:86:d2:76:19:c1:2a:11:b2:91:75:12:
        b2:b9:45:d3:b6:0b:2a:50:24:31:48:ca:ba:7a:83:bd:
        37:50:ec:01:61:c5:0f:8b:2f:f6:2b:e6:a1:83:f1:e3:
        4d:49:09:2d:f8:ad:72:e4:11:a3:2f:c3:9f:ca:9b:53:
        d8:7e:19:0b:8c:f2:80:62:83:e4:35:0b:be:7e:4b:27:
        2a:dc:96:80:91:78:70:4b:53:6c:62:c8:28:07:c7:26:
        aa:50:f7:58:11:87:e5:e7:96:11:ab:e4:7b:8f:0b:c3:
        d9:97:9f:24:af:af:ef:64:50:8b:1e:0c:3c:d1:39:c9:
        6b:f5:86:7d:23:80:e9:a0:b0:9b:a1:0f:7a:db:7c:f7
    Fingerprint (SHA-256):
        94:42:A8:5B:3D:43:51:73:86:BC:60:3E:EC:86:3A:E5:F2:EA:14:1C:0D:7A:EB:A7:7B:13:10:27:F9:FF:EF:F6
    Fingerprint (SHA1):
        8E:AD:BF:58:9B:6A:BC:0E:4C:46:87:F4:9D:8D:E9:59:E1:AB:2E:09
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6952: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #6953: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #6954: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #6955: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #6956: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #6957: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235858 (0x300e2ed2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:06 2017
            Not After : Sat Aug 06 23:59:06 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:29:88:a5:7f:ac:40:18:06:26:a4:e5:4a:5f:76:98:
                    1d:10:c7:34:94:d9:27:4b:03:7c:ef:7a:10:49:cf:c3:
                    57:16:39:6f:7e:16:95:7a:85:df:22:59:8d:e6:3e:63:
                    47:53:7d:ee:5a:c1:3c:8a:21:57:b9:62:a3:fe:19:df:
                    04:39:ff:b4:76:67:a7:a1:39:d6:90:5b:96:3f:dd:b7:
                    7e:33:54:47:43:04:a7:29:6a:de:71:4b:e8:d4:ae:33:
                    6c:24:7d:ce:45:97:87:b3:3f:e3:e7:ed:d9:ff:cd:0b:
                    a8:01:87:a4:c5:37:7b:c3:4d:d3:d3:2a:a7:de:2a:55:
                    48:89:4d:1e:26:d8:f3:a7:b4:03:9b:72:43:44:3d:8f:
                    89:86:c2:bc:03:6e:37:bf:f0:ee:e9:61:0c:c4:8c:fd:
                    66:a3:c7:4c:32:f0:e9:3d:69:89:4b:20:68:1c:87:e4:
                    78:6e:c1:41:57:cd:7c:ef:3e:8e:34:ee:ef:ce:13:92:
                    02:8d:45:06:75:1c:9a:f8:1a:fd:d1:a2:73:e0:ad:37:
                    af:75:c1:44:61:4c:95:b2:81:a2:55:14:2d:db:be:22:
                    bc:ed:b7:60:b0:99:dc:f6:de:88:33:55:c8:3c:d4:03:
                    e7:1f:43:5b:a2:82:ed:4d:a3:60:a5:db:e4:74:7d:0b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ca:8c:cf:25:67:bf:e1:49:27:67:b4:39:5a:c2:0a:8c:
        97:2c:75:36:54:f4:31:45:3d:00:17:87:5d:fc:97:97:
        5c:c7:f5:1b:0d:da:80:61:66:6e:51:6c:ad:c9:03:6d:
        7c:ab:c5:65:b8:10:46:b6:34:ef:2d:26:cf:50:56:fd:
        9e:60:8c:f3:45:16:fd:23:6d:7b:6c:5f:9c:81:71:d8:
        42:05:95:1a:54:82:16:52:58:a7:4b:fc:55:17:ec:08:
        3e:3b:db:40:e7:8a:19:30:a3:18:7d:98:79:27:76:2f:
        76:44:1e:90:89:ff:d1:0b:12:c2:95:cb:d2:1a:8d:5e:
        28:d0:33:3d:29:e6:8d:a3:ce:a4:c0:3b:f0:ce:e9:ab:
        61:79:d5:9c:79:34:37:28:89:98:c1:92:e7:c7:df:1e:
        71:ac:81:df:9a:d7:cd:bf:a6:90:49:1a:b0:53:f5:f7:
        6b:76:aa:b1:d2:94:d5:d7:b5:f9:02:d9:1b:bb:1e:5d:
        66:00:31:27:4f:23:b1:83:40:36:a6:ce:fb:5e:12:02:
        43:f6:d4:00:fd:61:0b:be:02:f8:79:cd:d2:2e:2b:9d:
        42:bb:d4:70:f9:e7:72:cd:67:aa:45:6d:f6:fe:4f:a5:
        06:cf:ab:a0:23:fd:3a:b5:e9:1c:ea:ed:42:95:5e:7b
    Fingerprint (SHA-256):
        44:16:5D:74:E0:3D:AF:3E:BF:8D:B4:41:2B:B6:DE:EE:6A:5B:53:65:41:A8:BE:8F:06:C1:15:17:12:73:8A:9B
    Fingerprint (SHA1):
        82:22:C8:52:69:F1:22:A4:10:37:65:31:CD:32:A3:99:26:F6:97:B5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6958: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235858 (0x300e2ed2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:06 2017
            Not After : Sat Aug 06 23:59:06 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:29:88:a5:7f:ac:40:18:06:26:a4:e5:4a:5f:76:98:
                    1d:10:c7:34:94:d9:27:4b:03:7c:ef:7a:10:49:cf:c3:
                    57:16:39:6f:7e:16:95:7a:85:df:22:59:8d:e6:3e:63:
                    47:53:7d:ee:5a:c1:3c:8a:21:57:b9:62:a3:fe:19:df:
                    04:39:ff:b4:76:67:a7:a1:39:d6:90:5b:96:3f:dd:b7:
                    7e:33:54:47:43:04:a7:29:6a:de:71:4b:e8:d4:ae:33:
                    6c:24:7d:ce:45:97:87:b3:3f:e3:e7:ed:d9:ff:cd:0b:
                    a8:01:87:a4:c5:37:7b:c3:4d:d3:d3:2a:a7:de:2a:55:
                    48:89:4d:1e:26:d8:f3:a7:b4:03:9b:72:43:44:3d:8f:
                    89:86:c2:bc:03:6e:37:bf:f0:ee:e9:61:0c:c4:8c:fd:
                    66:a3:c7:4c:32:f0:e9:3d:69:89:4b:20:68:1c:87:e4:
                    78:6e:c1:41:57:cd:7c:ef:3e:8e:34:ee:ef:ce:13:92:
                    02:8d:45:06:75:1c:9a:f8:1a:fd:d1:a2:73:e0:ad:37:
                    af:75:c1:44:61:4c:95:b2:81:a2:55:14:2d:db:be:22:
                    bc:ed:b7:60:b0:99:dc:f6:de:88:33:55:c8:3c:d4:03:
                    e7:1f:43:5b:a2:82:ed:4d:a3:60:a5:db:e4:74:7d:0b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ca:8c:cf:25:67:bf:e1:49:27:67:b4:39:5a:c2:0a:8c:
        97:2c:75:36:54:f4:31:45:3d:00:17:87:5d:fc:97:97:
        5c:c7:f5:1b:0d:da:80:61:66:6e:51:6c:ad:c9:03:6d:
        7c:ab:c5:65:b8:10:46:b6:34:ef:2d:26:cf:50:56:fd:
        9e:60:8c:f3:45:16:fd:23:6d:7b:6c:5f:9c:81:71:d8:
        42:05:95:1a:54:82:16:52:58:a7:4b:fc:55:17:ec:08:
        3e:3b:db:40:e7:8a:19:30:a3:18:7d:98:79:27:76:2f:
        76:44:1e:90:89:ff:d1:0b:12:c2:95:cb:d2:1a:8d:5e:
        28:d0:33:3d:29:e6:8d:a3:ce:a4:c0:3b:f0:ce:e9:ab:
        61:79:d5:9c:79:34:37:28:89:98:c1:92:e7:c7:df:1e:
        71:ac:81:df:9a:d7:cd:bf:a6:90:49:1a:b0:53:f5:f7:
        6b:76:aa:b1:d2:94:d5:d7:b5:f9:02:d9:1b:bb:1e:5d:
        66:00:31:27:4f:23:b1:83:40:36:a6:ce:fb:5e:12:02:
        43:f6:d4:00:fd:61:0b:be:02:f8:79:cd:d2:2e:2b:9d:
        42:bb:d4:70:f9:e7:72:cd:67:aa:45:6d:f6:fe:4f:a5:
        06:cf:ab:a0:23:fd:3a:b5:e9:1c:ea:ed:42:95:5e:7b
    Fingerprint (SHA-256):
        44:16:5D:74:E0:3D:AF:3E:BF:8D:B4:41:2B:B6:DE:EE:6A:5B:53:65:41:A8:BE:8F:06:C1:15:17:12:73:8A:9B
    Fingerprint (SHA1):
        82:22:C8:52:69:F1:22:A4:10:37:65:31:CD:32:A3:99:26:F6:97:B5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6959: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #6960: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806235863 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6961: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #6962: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #6963: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806235864 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6964: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #6965: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #6966: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806235865 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6967: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #6968: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #6969: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806235866 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6970: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #6971: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #6972: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806235867 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6973: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #6974: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #6975: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806235868 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6976: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #6977: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #6978: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806235869 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6979: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #6980: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #6981: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806235870 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6982: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #6983: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #6984: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806235871 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6985: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #6986: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #6987: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6988: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 806235872 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6989: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6990: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 806235873 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6991: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6992: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 806235874 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6993: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6994: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #6995: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #6996: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6997: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 806235875 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6998: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6999: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 806235876 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7000: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7001: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 806235877 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7002: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7003: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #7004: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #7005: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7006: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 806235878 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7007: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7008: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 806235879 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7009: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7010: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 806235880 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7011: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7012: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #7013: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #7014: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7015: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 806235881 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7016: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7017: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 806235882 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7018: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7019: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 806235883 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7020: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7021: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #7022: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7023: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7024: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 806235884   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7025: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7026: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7027: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7028: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 806235885   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7029: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7030: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235863 (0x300e2ed7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:07 2017
            Not After : Sat Aug 06 23:59:07 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:fc:d1:db:7c:62:00:05:3f:26:2a:fe:f2:9b:e2:8a:
                    fa:61:f9:a1:a7:0e:38:10:a8:e1:8f:64:a0:12:b8:10:
                    50:11:be:dc:04:19:66:95:f8:a6:78:64:c2:6b:0f:0e:
                    2c:08:37:aa:58:4c:79:a2:03:ef:e6:69:0f:17:8e:33:
                    fc:dc:04:6b:db:46:a9:5f:b9:fb:0e:89:2c:aa:16:64:
                    71:b4:15:9d:14:7c:ec:c5:c5:5c:60:99:73:79:c2:f9:
                    ed:de:9f:b0:66:bb:d0:ad:e1:05:2e:d0:c4:98:03:5e:
                    98:61:e8:a8:b3:86:4c:8a:c4:72:66:ac:c9:a6:d2:99:
                    0d:bb:1b:43:56:8d:2b:ea:df:52:b1:11:4a:f2:c0:e8:
                    d6:5a:1d:01:22:63:df:b6:ba:6b:95:55:f7:8e:36:18:
                    82:96:44:e9:64:92:e6:5a:23:d2:f8:0f:e2:a6:8d:a4:
                    52:98:22:ca:f3:e6:5d:5a:1c:af:50:51:73:e0:c0:bd:
                    2e:f2:7c:4b:1e:a9:24:33:45:23:65:0b:54:db:df:e8:
                    ed:9a:dc:68:ed:63:1b:ca:dd:46:c7:ff:d5:a8:ae:2d:
                    86:c1:78:ae:43:68:d9:d7:14:9f:ae:ee:c9:c1:ca:5d:
                    98:1d:99:11:8d:6f:7d:02:c2:81:ae:a4:76:b8:e0:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:3f:ad:bc:70:e0:a0:28:3e:8e:8b:fc:a7:b4:d9:e0:
        80:d6:5d:cc:7b:ba:71:54:f5:1f:ba:92:5b:60:3b:bf:
        3e:a5:69:2f:15:82:50:d6:e7:6e:cc:09:19:0a:38:46:
        5f:f9:fc:3e:6b:0a:c5:b3:bf:7c:05:fc:b5:21:f3:63:
        a8:ab:d6:3a:96:df:9a:f8:94:e9:59:3b:69:b6:d4:15:
        dd:80:49:d4:7f:76:57:7d:d1:d6:58:b1:bb:46:c8:71:
        ef:8e:44:c6:e3:d8:b2:f6:13:6c:bf:f7:cf:30:4c:22:
        0a:9b:f2:45:29:f4:a2:27:a0:94:8b:8e:88:ae:e3:28:
        f4:7e:e8:74:b0:c9:72:34:41:3b:71:72:98:01:3c:f9:
        50:14:52:50:53:e4:b6:cb:ee:a0:d3:5f:28:17:43:a9:
        28:60:79:6a:81:b4:85:e8:30:85:17:67:de:bf:3c:94:
        63:ce:73:9b:bc:72:a0:37:2a:b2:be:0c:5c:49:2a:07:
        fe:7a:34:30:33:ae:24:39:a9:43:76:5f:b9:69:c1:ea:
        87:c1:b6:66:f1:24:b8:d6:b8:d9:12:5d:a5:21:b9:e9:
        ed:34:0b:ee:b8:b7:60:d6:fe:98:c2:20:8d:3b:93:34:
        b7:7d:38:29:16:fa:8f:93:d0:95:c1:40:99:a9:6c:6e
    Fingerprint (SHA-256):
        5C:7B:71:9C:3B:DC:02:04:D5:6C:6F:DE:BE:71:99:7E:F3:F0:21:64:75:1E:3A:6F:E1:98:8A:C2:C7:DD:48:F3
    Fingerprint (SHA1):
        52:95:EB:40:A1:49:D5:38:96:63:0A:A6:34:53:DC:B5:43:55:D0:B5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #7031: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235864 (0x300e2ed8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:07 2017
            Not After : Sat Aug 06 23:59:07 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:6b:ac:eb:f6:c3:ef:84:96:3b:c0:75:08:26:2a:ef:
                    50:0c:a7:32:ee:b0:06:52:ed:bb:76:ed:9e:1d:47:23:
                    2c:7d:6a:57:93:55:ad:a7:1c:0e:72:ba:db:af:f1:b5:
                    50:eb:b1:41:f7:04:70:29:af:ba:86:15:a5:e3:eb:4f:
                    de:69:3f:30:9b:f3:c0:7b:0a:21:5e:f5:e5:ab:40:aa:
                    6e:2a:d2:57:c8:8d:7e:8d:aa:14:7c:eb:14:c1:67:3f:
                    e6:3b:48:23:a6:e7:ee:4b:52:61:a0:40:0f:fa:38:f4:
                    9d:39:40:ed:34:52:f1:19:84:a6:af:6d:91:e7:fa:29:
                    0e:d5:da:1e:b0:ad:ad:90:18:71:b9:0c:db:8a:3e:46:
                    73:d2:52:36:08:60:1e:d8:b1:05:31:fe:d8:d7:af:6b:
                    e7:7d:c1:a2:67:53:a1:ed:23:89:21:fc:87:a0:79:2d:
                    51:2c:14:d9:b5:6b:4e:fc:ff:42:0f:87:88:6d:ea:08:
                    ec:88:9f:75:a0:8e:f4:ad:94:65:3b:e5:ed:f3:4b:4a:
                    7c:22:9f:78:e5:24:07:81:0c:2b:7c:39:81:0f:b5:ed:
                    2a:89:d1:52:4d:59:bc:49:47:f4:0f:5a:34:2e:f1:05:
                    ca:bf:79:65:95:30:a8:3d:ed:6b:7c:53:c9:b3:75:97
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:b5:86:54:48:82:19:87:ba:97:52:9b:08:f9:fd:52:
        90:99:1b:91:36:54:dd:3a:d1:21:b3:2b:71:49:e8:86:
        05:2b:8b:48:5f:1f:28:e5:f9:d1:fc:7a:82:5d:d1:ec:
        a1:82:7d:f4:17:af:6f:4d:7f:ef:46:a7:d6:cb:a8:54:
        b9:82:66:65:38:1a:86:fa:be:83:79:92:91:53:1f:d7:
        bd:8b:d7:23:4c:be:89:58:02:1a:b9:05:2a:15:d7:d6:
        66:5b:93:61:b3:12:99:f1:ee:5f:63:71:62:44:a4:10:
        ac:1c:c7:a6:21:2b:1e:14:3e:54:7d:dd:15:0e:e0:4b:
        e7:a8:96:b9:b7:1b:cb:4e:96:1c:ef:4a:5f:52:62:88:
        83:45:11:b9:4b:a9:ca:56:2a:17:45:92:c2:83:75:5c:
        db:77:0d:ce:6a:3a:96:b4:cb:95:7b:1d:3e:21:c8:a1:
        85:b1:73:a1:b7:3c:60:54:8b:cb:47:bb:7f:82:2d:d3:
        25:23:d8:0c:c7:d5:81:0e:7d:4e:de:12:a1:c4:56:3e:
        74:82:d4:17:65:75:07:0f:78:c0:b8:24:6f:3d:1b:fa:
        86:d3:9a:48:2e:46:9c:31:7a:39:34:bb:18:7e:d7:90:
        a6:30:e6:0d:6f:20:98:c5:eb:b4:b9:13:b8:ed:ba:25
    Fingerprint (SHA-256):
        78:27:6E:5B:A0:A3:64:43:4F:2A:06:E7:94:8C:21:B4:3B:8C:1E:21:7E:C0:26:A4:94:FB:C5:E1:67:8D:74:08
    Fingerprint (SHA1):
        3A:02:C4:F6:26:AA:41:2B:41:A8:A1:B2:9F:9F:7B:8E:C7:6D:18:62
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #7032: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235865 (0x300e2ed9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:08 2017
            Not After : Sat Aug 06 23:59:08 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:25:ca:56:9d:19:4d:02:0f:c6:7e:3b:9a:de:9f:d6:
                    a0:1c:dd:e8:00:8c:94:2d:b3:d8:0b:99:03:b8:83:53:
                    52:7b:f6:25:4f:6b:2f:44:49:67:8d:aa:49:03:c2:61:
                    47:50:23:5b:59:28:41:fb:4d:2a:0f:f6:ed:2e:e3:68:
                    d7:06:c8:12:ef:ac:a2:ff:ed:db:95:54:a0:c3:fc:f3:
                    7c:b0:6a:34:f3:da:6c:b2:33:44:5c:3f:e9:a0:d8:43:
                    58:63:52:f9:d7:44:9f:38:a7:21:85:85:ce:b4:15:a5:
                    34:f7:78:02:8d:a2:26:d6:bf:19:3f:b1:2c:0e:ed:7b:
                    c0:b6:8b:a6:f8:4b:fc:f1:e1:67:cf:0f:83:15:e3:b2:
                    c9:0c:4a:61:3b:b5:53:20:67:42:96:6a:9f:6f:bf:58:
                    1d:20:5b:ac:c8:c1:98:2e:40:73:52:fc:aa:46:8c:ab:
                    5d:4d:77:fc:f8:89:f9:9f:44:6a:a3:fb:00:62:3f:6f:
                    f6:f4:72:21:0f:bd:e0:f9:ad:ee:49:32:a8:cd:1c:e0:
                    a9:b7:3f:59:ba:37:4d:be:92:71:0d:41:00:c4:4b:e7:
                    5e:49:15:83:71:10:59:21:37:b8:62:1f:d3:f4:b4:b7:
                    c4:62:ad:07:35:a9:18:78:88:27:43:6c:7e:99:06:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5f:7a:56:5d:98:ce:a2:f4:16:01:3c:b3:59:98:e9:85:
        46:dc:eb:ef:2b:94:5b:2a:d1:7d:50:58:38:a1:fe:fa:
        58:2b:d4:35:50:39:3c:d5:2a:85:33:58:fc:56:6e:38:
        73:b3:12:05:54:98:e7:52:47:a5:d3:cf:21:2b:e1:1c:
        02:e8:69:31:49:bb:48:55:47:f0:12:32:30:03:1e:6b:
        10:ff:b2:99:cf:60:fa:f1:62:7c:b9:f6:7e:2f:c3:c9:
        a1:49:a9:5c:39:ae:09:b7:0b:11:e0:9a:c3:a0:78:1f:
        0a:84:06:a4:f1:8a:8c:07:4c:37:15:7d:51:b5:5b:b5:
        d5:52:8d:d8:4a:fb:c7:e4:99:8e:59:24:cb:22:44:0a:
        70:a3:7e:a2:21:2b:8b:3b:8c:6c:0e:86:eb:25:bc:80:
        c4:c6:6c:91:da:b3:41:03:ca:21:1d:d6:b2:20:04:80:
        16:21:9b:a1:28:ec:93:c7:72:37:9c:53:c0:04:d7:bb:
        6e:a3:3e:4b:63:6b:d0:e4:9f:9c:47:9e:4f:ea:64:0b:
        fc:80:8a:16:14:bb:20:6e:bd:0a:9d:97:cb:12:6c:e5:
        9a:ea:5d:5e:f3:6d:8b:97:cc:9d:3b:bf:06:1c:e3:24:
        73:05:cc:4a:9a:b8:fb:83:ab:f3:33:d5:aa:9d:ea:ac
    Fingerprint (SHA-256):
        16:2F:DA:FF:0D:A5:0E:2B:91:C6:45:FF:D4:3E:03:1A:4B:96:E8:6A:AC:22:39:B5:29:69:CC:9B:28:6F:10:1A
    Fingerprint (SHA1):
        6D:B7:3F:FB:5E:35:84:86:36:EA:A2:B1:F9:03:8D:C4:0F:2B:29:35
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #7033: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235866 (0x300e2eda)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:08 2017
            Not After : Sat Aug 06 23:59:08 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:63:ac:62:4a:f9:ff:b5:fc:18:31:f7:db:3b:87:d1:
                    8c:cd:97:42:a3:16:f3:e0:b2:7b:0b:8c:e0:6f:b5:2b:
                    a9:79:e6:92:ae:75:6f:87:44:1c:24:ba:9a:2b:c6:55:
                    23:eb:28:c8:ef:d8:4b:c9:bf:e5:74:e9:00:38:da:23:
                    a6:28:3b:62:53:38:b7:20:01:42:fd:9d:1b:78:1b:89:
                    67:7a:36:83:ef:7e:09:eb:b7:27:c7:32:25:20:07:3f:
                    49:d9:1e:9d:b0:94:be:8b:96:03:83:67:b0:50:a6:89:
                    c1:e6:05:bf:07:cd:c1:37:08:3e:ed:f9:45:dc:db:b0:
                    3f:3c:51:6f:ee:33:22:db:9b:93:7f:3f:20:03:4e:4f:
                    29:e6:1f:b2:92:fd:81:e8:04:f3:fe:b3:b2:6c:87:32:
                    ce:e8:4c:6e:28:fe:0d:58:e4:45:26:a2:12:b0:be:bc:
                    48:29:f1:63:9c:4a:34:45:59:a8:1a:52:eb:f7:a2:b7:
                    4b:e5:c5:01:6d:04:e9:d6:b6:76:8f:5b:14:fe:72:8b:
                    bb:6e:f4:b0:6c:14:73:ff:5c:95:68:28:bc:cb:78:8a:
                    2a:e2:64:64:90:2b:15:ca:62:9c:ca:ee:4e:ea:cd:8b:
                    ec:53:fe:c3:e1:0c:c2:a3:60:98:38:99:45:5f:38:8b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        05:0f:d7:ba:aa:be:2b:e2:56:3f:64:b1:1b:53:a4:30:
        31:8c:b8:05:9a:2c:ac:21:5d:4c:0d:71:3e:f1:6b:cf:
        e3:5e:f6:25:5a:54:a4:b9:82:0c:d3:4d:af:85:54:09:
        2d:78:6e:0a:05:80:5c:5c:9e:f7:30:ff:c9:0a:f5:b3:
        01:53:3d:78:44:01:dc:5d:d9:ae:da:6c:a6:ad:d2:ee:
        c4:a6:06:94:e6:08:b9:e1:c9:7e:a6:31:83:e1:60:50:
        48:bd:0c:01:06:75:c7:4f:67:c2:29:52:fe:3a:e5:5d:
        2c:60:db:cf:09:37:0b:93:46:bc:60:8d:39:bf:10:f5:
        81:0c:fd:2a:0f:ec:e7:65:49:16:77:6b:df:e9:f1:d4:
        12:2b:c5:aa:1e:42:06:01:94:30:f0:ec:01:b3:f9:83:
        cd:0c:bd:ec:12:0c:ec:07:a2:7b:3f:96:cb:bb:ed:c8:
        b9:38:00:fe:e2:4b:bf:53:9a:40:c8:47:fe:df:4c:b6:
        a7:76:d1:2b:43:7c:12:4c:6f:78:71:95:95:4b:e0:09:
        66:5a:86:41:ea:64:4f:c9:91:3f:a7:99:f4:56:8c:f8:
        dc:2c:01:73:71:f0:60:f3:c1:4a:73:ff:46:74:64:5f:
        fd:dd:45:c7:ab:e1:2f:79:7d:27:67:47:d5:72:c2:c0
    Fingerprint (SHA-256):
        77:06:C7:B2:F5:B0:6D:8E:7B:46:17:85:D3:7F:A3:51:D6:28:24:9A:35:8D:C9:8C:41:DB:2D:69:DE:59:0F:FC
    Fingerprint (SHA1):
        9A:63:7E:3E:6B:08:E2:36:BC:29:B0:E2:42:3C:59:82:D1:88:7D:2A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #7034: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235867 (0x300e2edb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:08 2017
            Not After : Sat Aug 06 23:59:08 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:5e:d1:0b:06:00:33:6e:0c:91:78:94:85:2f:49:e7:
                    9b:f2:c5:c2:18:9e:29:ab:0d:07:0a:2b:a1:0f:0f:cd:
                    b5:ab:d0:d2:d8:2d:8d:6d:c5:30:6a:31:1a:d9:17:02:
                    0a:25:7d:ad:be:01:20:2c:10:fd:ca:7b:4c:1c:0a:79:
                    3b:77:07:a9:d2:b7:85:1f:be:eb:0a:3e:79:f7:8b:a9:
                    e7:e4:f3:3b:2b:54:b1:63:e8:da:a2:2a:49:77:75:4f:
                    bb:af:4b:94:d7:e8:ae:56:b4:d8:c5:9c:de:29:2d:7b:
                    ae:fd:c0:68:31:0a:e1:b7:90:9a:cd:7a:74:7d:04:5d:
                    e1:b7:74:48:33:f4:73:02:07:51:18:66:08:3e:4a:f6:
                    7d:ab:22:d0:97:37:0b:4d:aa:9a:fb:a4:73:a4:a4:f5:
                    96:36:64:5d:ca:68:aa:59:1f:e0:21:e4:7b:d8:83:d2:
                    e3:16:8a:ec:15:8b:38:86:3c:49:d4:36:12:17:aa:41:
                    cf:f2:ca:1c:69:a8:42:57:20:3e:99:d6:ed:f0:1f:06:
                    30:bf:3e:86:ba:0d:e6:d5:51:4d:44:12:c1:b5:27:9b:
                    1f:f5:a7:0d:4d:79:d6:10:99:a0:4d:12:3e:35:e9:41:
                    a5:aa:b7:81:11:68:d4:0c:ed:70:f4:e1:45:52:7c:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        28:e4:d6:1a:d4:36:91:68:c3:cb:8b:b2:3e:82:e2:f7:
        64:ae:68:aa:52:45:90:6c:f6:60:18:e5:d3:5c:41:14:
        6f:ce:63:e7:95:4f:00:ad:f8:11:ed:83:cc:c0:8a:12:
        4b:3d:6e:5c:05:1f:34:a7:1b:c2:fa:e4:5a:74:92:23:
        5f:1f:14:18:94:57:5e:9a:7d:87:70:8d:24:7d:18:1d:
        39:1a:de:e2:6f:f7:51:61:53:24:d3:52:10:fa:81:eb:
        3d:92:46:51:7e:1f:3b:5e:36:4f:0f:11:84:38:f9:d3:
        5c:90:56:fc:fd:bd:b2:a2:49:e7:9a:26:53:48:1d:d4:
        98:02:04:68:cc:e7:ca:1d:71:97:2f:6d:17:41:93:cb:
        46:2e:42:32:33:3b:c7:9f:c2:26:99:e9:bc:66:4b:03:
        ec:44:c4:1f:af:66:b3:68:bf:0b:82:8f:6f:ce:3f:4e:
        eb:5b:1e:69:95:b3:20:90:a6:62:8b:43:e8:19:46:a9:
        44:16:19:7a:2b:cb:76:94:33:91:70:61:e6:69:47:57:
        f1:1d:1e:0b:ce:0a:24:e0:2d:f3:22:7e:a7:a3:4e:fa:
        41:af:16:3b:3d:26:ad:ea:2d:f4:0e:d5:79:e8:e5:c1:
        84:33:ef:3f:32:67:c7:8a:f9:34:87:1c:70:be:3e:41
    Fingerprint (SHA-256):
        43:95:EC:85:F9:C1:22:D5:ED:A1:B2:28:62:A2:B7:CC:91:95:F5:BF:EF:84:AF:F4:62:56:54:EB:8B:34:A9:93
    Fingerprint (SHA1):
        75:97:F4:1D:0A:7A:A6:29:9D:F4:70:59:49:B7:E9:19:F7:A2:1A:5D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #7035: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235868 (0x300e2edc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:08 2017
            Not After : Sat Aug 06 23:59:08 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:f9:91:c6:4b:e4:42:58:18:06:00:01:7e:86:6b:f8:
                    0a:26:7b:f4:21:9d:88:18:88:92:20:8b:4b:fb:d8:83:
                    e3:bf:1d:22:7f:44:93:13:a0:b6:d9:f5:3d:22:f1:7e:
                    70:62:ef:19:5d:d9:1b:be:df:64:a5:4c:e7:42:6a:7f:
                    83:7b:ec:aa:1f:a0:0f:d6:27:9e:82:4a:c1:cf:19:0f:
                    81:ab:98:67:45:4d:42:cf:c2:93:24:6e:d1:93:fb:79:
                    d4:ad:e0:ad:bd:36:08:fe:04:b9:48:e1:17:56:a0:fc:
                    47:8e:a2:a1:23:70:ea:a5:56:5c:aa:87:b7:b4:93:2c:
                    df:be:bb:4d:50:f3:6b:a9:2e:88:25:34:ce:98:bb:c6:
                    9d:57:51:4a:2c:b2:fb:ed:ca:69:ad:14:de:1b:59:01:
                    ea:e3:c5:36:ee:06:79:7a:1a:1c:01:40:0f:f9:39:2c:
                    46:35:99:25:73:d7:0a:68:2e:96:14:7e:18:79:12:15:
                    68:7f:93:9b:34:ca:fc:e1:4c:8e:91:0a:09:b5:01:b1:
                    b7:a0:1f:9d:a9:c4:f3:c1:83:a3:ff:12:dc:4b:9b:57:
                    3a:09:b1:ce:6e:00:4b:a4:62:8d:d1:9e:31:23:a4:67:
                    71:5c:8c:52:38:c9:b7:b8:91:28:91:74:aa:42:ef:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        47:14:b0:56:84:40:a6:9f:e6:d1:75:02:04:0b:cd:74:
        75:9a:6b:2e:b9:25:e5:1f:72:61:72:60:32:ec:0e:a1:
        e2:1a:a8:b1:7a:47:3d:e0:f4:aa:99:52:b9:f7:94:e6:
        45:e9:66:63:39:aa:b5:e3:d8:21:58:4b:11:58:15:66:
        3b:6c:9b:3f:8b:fc:49:1c:bb:5c:dd:1b:22:2d:34:5a:
        30:94:fc:f5:48:a1:f1:1e:78:65:a0:ff:4c:46:ec:f1:
        66:d7:e8:93:38:e6:03:3b:1c:ae:3b:6c:a5:49:0c:d8:
        4d:2b:13:7e:60:98:0c:f8:29:1c:e2:0b:88:c8:a2:7e:
        1d:18:5c:e2:4c:84:15:09:57:1e:07:f5:d7:6d:13:51:
        1f:c9:24:55:7b:02:dd:56:51:47:7f:96:bf:ea:4c:65:
        f4:55:52:6c:1a:92:b3:33:77:2b:9f:7e:8c:e3:b5:fe:
        f0:62:59:fd:02:78:57:c3:23:10:b4:7d:b4:e1:bf:ed:
        2e:44:09:7e:4a:b1:0e:64:61:63:e7:de:a7:85:de:32:
        e7:e4:af:c5:61:98:9e:82:2e:aa:5a:f2:c8:c3:83:64:
        bb:2e:ad:aa:cb:f2:7c:ac:cd:4e:f5:f8:43:0e:20:a7:
        28:90:32:ca:ff:43:93:07:5f:27:d3:3d:2b:61:0b:c1
    Fingerprint (SHA-256):
        C9:8D:1D:46:E6:69:1E:29:BF:8E:9D:55:C3:86:01:F3:CF:BB:04:C7:B1:DA:DA:48:A3:65:91:E8:22:ED:58:C7
    Fingerprint (SHA1):
        24:00:A1:AC:C4:88:BB:C2:16:F7:57:7E:54:58:5F:4F:EB:F6:4F:04
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #7036: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235869 (0x300e2edd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:09 2017
            Not After : Sat Aug 06 23:59:09 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:22:a7:4e:e3:e4:5a:bc:fd:6a:47:a7:82:43:f0:25:
                    d7:81:04:81:1d:69:be:32:51:00:c7:29:24:f3:b2:bd:
                    f7:42:be:04:1f:e0:de:6a:65:7b:55:cb:fd:5b:bc:cd:
                    43:d6:a4:67:42:d7:fa:25:5d:a7:8f:57:7c:59:0a:6f:
                    0e:4f:8c:e9:25:98:a9:01:7f:c8:f6:50:33:00:c6:d9:
                    90:17:bf:00:12:67:5b:cf:4e:d5:bd:e2:c2:cd:39:6c:
                    52:88:a3:f1:d9:f5:2d:b8:9f:50:b6:18:f6:51:10:f5:
                    44:73:56:8d:41:00:35:9c:e6:59:e8:e4:c1:37:b2:9c:
                    0f:74:23:ae:c4:ee:a6:dc:68:ea:7b:98:c2:6a:59:bf:
                    80:51:09:7c:0e:e9:73:e5:56:18:69:40:ed:7e:a6:b7:
                    96:35:4a:ed:91:f6:54:47:63:ec:40:46:24:4c:da:a4:
                    69:0d:66:c7:41:75:38:cb:99:e9:f9:1e:38:21:b7:70:
                    ec:59:c8:47:c3:d1:dc:24:ab:20:38:1f:f8:8f:4c:88:
                    f5:67:6a:70:c0:23:21:48:40:c0:a9:bc:30:e8:ae:67:
                    06:ab:2c:61:c7:31:2a:46:91:be:fb:e6:71:a3:17:c7:
                    51:4d:d6:9c:be:7b:c6:21:63:17:e2:67:2a:c1:a2:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1e:76:c3:d1:07:90:ec:4a:bd:ef:64:de:93:9f:0e:3a:
        bf:d9:ac:10:a2:8e:56:4b:18:8e:c4:7d:ec:02:de:70:
        77:05:9f:39:a4:7e:d0:f1:57:d9:6c:bb:2d:e7:c7:43:
        9c:dc:79:79:63:e9:78:10:2a:1e:8f:d3:9c:62:b7:2b:
        7b:4b:c8:b9:6f:d9:50:31:24:15:58:5d:1d:d6:4b:89:
        88:d1:41:65:72:99:03:13:06:84:99:6e:5d:df:95:89:
        60:09:b6:8d:c3:15:d4:a6:17:87:c0:2a:9d:8f:fc:b2:
        ea:ba:86:d2:8c:49:6a:55:70:45:60:55:6b:aa:e1:1d:
        eb:2b:fc:76:9c:cc:01:bf:67:9e:35:a9:54:e9:07:95:
        be:4e:06:25:5a:b2:78:a2:1d:70:d6:bb:56:4a:2c:e7:
        79:dc:19:f1:51:9e:53:d7:0c:9b:d7:37:d6:de:c7:47:
        69:18:65:cf:66:04:2b:d5:a2:3d:b4:59:85:4c:00:4e:
        53:f6:20:91:c3:93:0a:74:e6:3e:57:61:1b:f6:7f:ab:
        d9:49:d8:20:fc:37:4e:40:e7:a9:4b:7b:99:7b:ae:60:
        ff:a6:4f:e2:13:6b:fc:0c:aa:95:1f:df:5d:4b:6d:71:
        41:e4:b5:fc:01:c8:17:59:93:0e:90:33:09:25:fb:65
    Fingerprint (SHA-256):
        D1:84:5E:AC:7F:A0:4A:BD:84:60:B3:82:B4:DF:E8:6B:D8:49:04:A4:F1:23:FF:EF:80:C1:42:49:B1:FE:D5:06
    Fingerprint (SHA1):
        D9:F9:79:10:E2:6A:D8:D0:2E:CE:E9:96:F9:F9:7B:BD:D7:CE:91:C6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #7037: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235870 (0x300e2ede)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:09 2017
            Not After : Sat Aug 06 23:59:09 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:da:7a:05:bb:67:f9:71:c0:e6:a2:8b:02:0c:ef:50:
                    de:ac:cd:93:49:15:95:ee:97:55:7d:90:0b:93:9d:e2:
                    07:d4:e2:71:37:8a:7a:42:f2:d0:69:d1:8d:1d:2d:a3:
                    1b:47:bf:4b:9a:31:27:03:ee:26:90:d5:bb:ab:3d:33:
                    ca:ae:1d:8b:99:0f:3f:b2:e2:2a:38:10:f6:43:22:13:
                    54:89:14:35:0b:50:53:1e:ce:c0:93:d3:03:b1:0f:71:
                    48:79:fe:b9:20:bb:77:7f:43:ab:f1:63:70:57:9f:7d:
                    2a:bf:f6:bd:0e:33:ee:e5:b3:08:0d:7a:ef:3f:41:af:
                    8f:7d:9b:34:17:ba:03:ff:13:9e:fc:1d:b3:b0:f8:38:
                    e8:03:fa:55:23:e9:89:30:c1:55:70:68:5a:4d:76:d0:
                    40:ae:77:05:cf:05:a7:5f:f2:16:fd:43:b7:0e:df:1b:
                    2b:bf:e2:0d:1b:b5:84:34:d2:5e:84:1a:57:b0:87:6a:
                    97:08:94:1a:12:63:17:74:5d:51:0a:9f:aa:5a:ea:17:
                    f0:59:66:6a:91:68:95:07:bc:5a:c2:78:cc:04:24:0e:
                    64:c7:90:96:fd:0c:4b:9d:4d:fd:b9:91:2d:fb:64:cd:
                    f9:86:91:6e:15:56:a2:40:f2:f8:2a:03:d5:b9:7d:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:76:70:27:c1:d0:67:c0:3d:ba:ba:8d:23:93:a8:2e:
        90:c2:fe:d0:7b:83:74:e5:7c:71:d5:b6:3b:5d:72:af:
        35:fe:6b:22:36:3a:5c:53:09:89:d0:6b:b2:cd:5c:1f:
        59:f9:91:3c:6d:41:22:f3:31:a7:15:60:35:90:6e:46:
        cb:1e:ce:6f:04:76:2d:23:9b:9c:4f:ca:64:af:05:32:
        89:a4:e7:f9:16:5f:16:ab:e2:44:11:ec:a5:e8:f5:8b:
        db:c0:0a:d3:c4:4f:91:81:35:61:6c:f1:91:33:c0:da:
        be:d6:02:cd:4e:76:28:58:bb:4e:8a:87:1d:e4:10:90:
        f5:c5:c6:03:c7:7e:5f:15:72:0f:3f:e5:4f:fb:2e:0e:
        16:df:28:9f:ad:8b:81:4f:d0:e4:89:ec:c9:d7:0e:ec:
        0f:6b:e9:1e:92:e8:0b:a9:fb:05:63:34:d8:53:75:6b:
        e5:a4:cd:12:17:55:0e:a2:f8:9e:b5:c2:ab:e5:21:22:
        6f:18:a0:ce:e6:e1:b0:e7:f2:5d:f5:ac:e7:84:8d:b0:
        de:a1:65:fe:58:e0:0c:fa:b9:e9:ba:bf:b1:43:2c:89:
        61:63:65:e5:b4:fe:7a:44:d1:c8:3d:62:79:df:f9:a6:
        6a:3c:4b:d7:c4:3d:d2:79:c8:11:cc:34:f5:b4:e8:fb
    Fingerprint (SHA-256):
        DC:C8:52:9C:E1:9B:00:A2:EE:EB:0C:8A:25:0A:99:24:72:4F:CC:1B:57:1A:26:E8:9A:C2:05:C3:EC:27:66:32
    Fingerprint (SHA1):
        15:86:9F:81:E0:7A:98:C4:F3:68:61:65:E8:FA:97:86:C7:1E:5A:AF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #7038: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235871 (0x300e2edf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:09 2017
            Not After : Sat Aug 06 23:59:09 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    af:95:91:a3:96:05:c1:43:3d:05:aa:3d:8b:4f:c4:d5:
                    19:64:0a:45:27:79:1c:b9:68:e7:4e:65:a9:e8:d5:e6:
                    67:ca:0a:4c:af:3f:8a:19:49:cc:43:96:13:18:cc:99:
                    06:1d:88:ca:61:57:01:2f:6f:02:39:9c:75:6d:8d:bd:
                    9d:5f:b8:27:cd:ea:c4:bd:e7:37:58:88:f4:75:39:3a:
                    f2:db:b3:a2:55:cc:75:b0:ec:db:a1:d1:87:1c:ae:21:
                    e3:ce:c0:86:7f:c5:b0:ea:56:b7:db:e8:45:54:18:a1:
                    1f:10:53:38:86:7f:e2:8f:c5:84:e8:d1:18:e3:87:ef:
                    76:92:3d:b8:dd:9e:0a:0c:3c:33:2a:9b:d9:b1:f1:32:
                    dc:34:52:2b:1b:9d:fe:41:e1:2c:6e:e6:ba:30:a0:6c:
                    e7:57:dd:82:97:51:16:7e:b1:a5:8e:4e:6a:3a:f5:d9:
                    d4:c8:58:e5:4a:5a:fb:a9:35:15:7a:66:49:1f:2b:71:
                    cd:9c:34:60:a4:44:e9:31:fd:33:6b:fb:ae:77:ca:fc:
                    ab:c8:a5:b5:4e:de:44:a3:58:0b:00:3d:dd:74:9f:af:
                    3f:79:c0:69:22:e9:b7:94:61:df:57:8e:7a:6b:1c:65:
                    35:f5:fb:a7:de:6a:e9:f8:de:35:71:0e:f0:81:e3:07
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8c:e1:14:e1:93:53:81:b3:df:58:0e:73:d3:83:69:e1:
        ae:18:f2:c3:08:e2:f6:48:0a:20:98:59:3d:c0:6c:b7:
        9c:fa:2c:eb:57:fd:6d:fa:ca:41:20:e6:50:38:0a:54:
        ce:fc:36:00:71:6a:31:77:e9:40:84:a2:18:68:08:de:
        5b:dd:0a:0d:ed:f7:42:ce:a4:20:85:dc:38:95:d3:cc:
        42:9c:f8:d6:ac:da:a4:2d:e5:55:00:d8:d3:37:c9:10:
        94:fe:33:fe:a2:49:d6:6f:83:e7:05:6f:cb:2d:8a:e4:
        6b:5c:67:09:65:b6:b0:5a:99:b5:b4:a7:33:78:d2:af:
        bf:fc:73:4d:0e:ac:58:c8:2b:46:f8:b5:9d:43:ae:e3:
        aa:bd:67:b4:27:b4:7c:19:fd:4c:b4:8b:96:60:55:8b:
        e6:d5:0a:d8:e5:d7:3c:4b:b3:53:90:a3:4d:37:f0:30:
        56:6c:84:2c:b8:4c:31:33:84:64:bf:7b:c7:cf:09:ec:
        64:0b:29:ba:3d:dd:73:be:8b:d8:84:15:c0:db:45:b5:
        aa:9e:96:02:ec:12:dd:d0:d2:79:e7:c7:38:c0:47:4f:
        72:4e:8e:1a:77:3c:d0:63:5a:2d:ca:15:32:8c:d8:d5:
        0f:24:6b:c9:86:bf:dc:be:87:ca:89:70:ae:09:d4:ef
    Fingerprint (SHA-256):
        9E:28:61:57:59:DD:72:85:8A:28:FA:90:64:F8:C1:F1:53:9F:7D:3B:7F:2F:B5:58:EE:36:DA:14:6C:B0:C4:86
    Fingerprint (SHA1):
        C5:29:B8:C4:A4:76:BB:B9:01:11:D0:13:25:36:67:F5:D4:95:1B:CE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #7039: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7040: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806235886 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7041: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7042: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7043: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7044: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 806235887   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7045: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7046: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7047: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7048: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 806235888   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7049: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7050: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7051: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7052: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 806235889   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7053: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7054: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7055: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235886 (0x300e2eee)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:11 2017
            Not After : Sat Aug 06 23:59:11 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:7c:ef:cd:ab:80:a2:c1:ed:a4:d0:ee:7e:31:3f:c2:
                    95:25:39:2a:0f:6d:fc:46:0d:af:e4:fe:69:22:f6:98:
                    8c:b9:50:17:8c:a8:a4:16:c4:30:7f:29:9a:b4:d1:84:
                    69:d8:d7:e9:5b:db:d1:0d:51:65:73:df:61:69:b8:e0:
                    ed:f9:f5:3a:67:59:01:9c:65:66:1e:4c:95:cd:fe:e9:
                    f7:4b:4b:e1:b1:23:2e:86:d7:3a:fe:fe:5a:69:f8:51:
                    7c:09:69:27:59:9b:9f:5e:46:3a:a6:a3:a2:46:f8:d0:
                    a6:94:1c:8d:d8:b7:96:40:fc:d5:f0:43:5f:a6:e7:f8:
                    58:79:a7:62:1a:ae:77:a7:00:71:72:da:30:cf:a5:77:
                    13:dc:83:0a:53:67:bf:3f:d0:00:9e:4e:0f:c9:98:44:
                    16:5c:1d:be:33:db:c0:52:a1:70:c6:9c:d2:48:43:26:
                    00:0f:db:62:b0:d9:66:3d:0c:4d:1c:ef:87:93:a1:09:
                    d2:24:f9:04:c2:e2:bf:06:6c:0d:0a:3f:00:ac:78:a6:
                    b0:a9:36:07:40:ef:a8:f2:88:7e:ed:86:01:20:a3:eb:
                    dc:1d:be:c4:58:6b:4b:6f:3b:2d:49:70:9c:c6:41:9a:
                    dd:84:3a:9e:80:b6:86:91:c1:32:e3:c7:51:f7:bb:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:a5:d7:f2:8a:d4:82:f1:b0:01:4a:c8:91:af:e1:66:
        d7:29:fa:a3:1c:2f:65:85:14:62:fc:6f:3c:eb:61:06:
        69:8f:78:fa:47:1d:df:23:01:22:36:5c:7d:55:53:aa:
        6b:38:de:3d:7f:62:b3:9b:82:5c:ee:5a:35:52:cd:7b:
        33:bf:97:f1:24:6a:51:39:4a:36:78:e6:d8:5e:c1:58:
        80:48:e1:46:00:b4:d6:fe:e1:1b:07:c8:9d:8c:f6:c8:
        9d:89:b3:1b:f6:a2:43:e8:42:f4:4f:62:14:d2:a3:b0:
        14:54:e1:af:d9:e4:a2:b1:42:51:63:e8:db:88:c2:07:
        3a:08:23:09:79:49:33:40:16:4e:20:67:02:93:86:6f:
        cc:38:0d:3e:05:ff:a8:84:b1:df:52:ff:5d:d8:e1:cb:
        66:6e:28:2a:39:c0:af:69:88:6a:e4:82:3d:a0:3e:c5:
        85:7b:51:43:c2:25:68:45:79:b1:19:7a:2a:7d:58:02:
        2a:c7:36:40:2a:a9:12:bd:29:a1:e9:3a:9e:7c:e2:72:
        ae:64:48:21:39:c0:52:1d:cf:50:b7:bd:5f:02:04:87:
        19:5f:17:f9:08:be:5a:72:e1:cd:0e:26:f5:3c:71:1c:
        f4:54:6d:f2:fe:ad:6e:05:ca:25:00:f7:49:53:8b:17
    Fingerprint (SHA-256):
        7B:D1:60:A4:0B:0E:7A:43:83:CD:3F:D9:54:3E:65:D4:64:F4:99:4A:4C:76:81:44:D5:27:FC:D8:C3:CA:35:F9
    Fingerprint (SHA1):
        04:B8:E2:87:42:09:8D:61:2C:13:E4:76:A6:1E:9E:D5:08:F7:77:5E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7056: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7057: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235887 (0x300e2eef)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:11 2017
            Not After : Sat Aug 06 23:59:11 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    94:62:06:cd:6d:43:dd:da:d6:8c:f1:99:e5:32:e1:97:
                    3e:bb:40:67:7b:99:e5:8a:b5:54:32:11:d0:0d:d3:33:
                    04:92:f0:18:63:a3:ef:bb:55:2f:b1:71:0f:42:a2:f7:
                    c3:a8:9b:03:b1:f0:48:68:cf:c1:da:d2:41:52:67:73:
                    e7:16:d0:59:2d:14:21:0d:e2:c6:4a:dd:f1:fb:a9:bf:
                    f8:95:db:61:c4:80:4c:7d:46:9a:c6:a7:5a:b4:3b:51:
                    20:d7:97:8c:a7:d4:aa:c1:5a:63:c0:59:d9:b4:14:2c:
                    07:3d:40:76:81:69:b2:a2:53:ed:bb:1f:db:ca:06:71:
                    24:ae:47:f4:d5:a4:ce:f9:7f:31:f8:da:dd:51:39:6e:
                    ba:ac:4d:5f:65:a1:78:59:53:ae:c9:3d:51:bb:57:fa:
                    68:0b:f3:6b:60:1b:9a:63:62:10:5c:ca:e4:9f:3b:c0:
                    12:d1:10:4a:28:b7:0b:51:db:ce:9c:98:38:92:30:7e:
                    63:b8:6c:7c:4d:c0:fe:db:c3:f5:55:ee:30:0a:0c:5c:
                    d1:91:94:ca:b7:dd:fc:2e:f7:d6:62:6b:75:e1:53:dc:
                    b6:9d:75:75:06:c3:2b:7a:e9:9c:f3:39:c1:a5:ea:2f:
                    e9:99:6b:4b:65:53:b0:0f:bd:2b:84:00:0e:7c:16:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:06:e2:4b:e7:b1:4f:e6:7c:1c:0c:4e:a7:af:68:80:
        5c:70:dc:fe:48:9d:f7:32:d7:ea:ae:de:b8:8b:3e:85:
        f8:45:f4:5d:21:fe:0d:75:41:11:ca:3e:3b:b6:63:86:
        20:b0:98:dd:58:c0:3d:fc:f9:c5:56:32:52:40:17:01:
        f3:be:74:f9:5a:9f:1c:02:c6:76:42:af:c3:b5:ad:c1:
        be:3b:a3:d2:c6:d1:09:3d:bc:d8:9f:f5:22:16:53:16:
        ab:d8:c5:73:75:1f:7c:e8:21:a6:04:de:eb:3d:c5:89:
        f8:86:eb:cd:45:d9:8b:0f:89:93:02:0d:8f:f0:2f:e2:
        61:b7:7d:f5:09:6b:2c:f7:96:f4:f1:e2:79:a7:61:64:
        66:3a:56:73:bb:1f:fc:66:1b:48:bc:4c:30:a6:55:1a:
        38:2e:c6:f1:b0:26:28:bd:29:1a:b7:fa:38:9a:6e:94:
        ec:5c:ca:1c:8c:25:b6:ab:8a:9b:36:3f:6b:27:f3:bd:
        f1:e3:ec:e8:9f:f8:cb:a6:05:68:15:e1:3c:4c:9f:ac:
        f7:21:95:8c:ba:3c:77:7b:06:1b:2f:64:c4:02:fb:e4:
        12:a6:c7:4f:5f:92:34:a2:3a:51:14:c3:80:4c:be:67:
        6e:d7:fd:5f:78:c8:8f:3a:4a:45:8b:c6:14:36:ad:84
    Fingerprint (SHA-256):
        D5:F7:34:9A:35:40:D5:B7:AE:9D:87:65:12:96:0F:EC:D6:09:2A:82:54:65:41:98:AA:D7:7E:1D:51:2E:2B:80
    Fingerprint (SHA1):
        55:A7:D1:85:F3:D7:C2:B7:DC:BB:89:87:D5:1D:D9:85:2B:91:F4:D8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7058: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7059: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235888 (0x300e2ef0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:12 2017
            Not After : Sat Aug 06 23:59:12 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:1c:83:7f:2b:0e:b4:fe:56:35:fd:d2:5d:0c:b4:f5:
                    1d:a1:46:0a:29:88:14:63:25:87:05:bc:72:27:31:a1:
                    79:ca:1b:cd:07:2a:22:29:af:4b:35:9e:5f:63:0d:e9:
                    69:52:d6:7e:f9:66:47:8b:8f:77:d9:21:c0:46:b2:28:
                    47:bc:4c:b9:b9:b5:35:7c:00:78:5a:39:a6:22:41:e3:
                    0a:ae:89:6e:10:17:ea:38:c8:24:dc:e6:3d:7f:79:54:
                    e0:2c:e9:bf:33:c4:d4:6e:2d:ac:dc:01:40:90:07:91:
                    2f:e8:5b:0c:92:e9:6d:04:a6:d9:f3:7a:29:ea:42:28:
                    93:61:55:29:1b:40:e1:1f:e3:a7:07:ad:09:de:26:6a:
                    74:34:5a:0b:8f:12:f1:ab:38:e6:3f:c2:e0:1d:4c:b1:
                    e2:8c:a8:3a:b9:23:0a:d5:c3:cf:93:b4:6f:e0:7b:43:
                    52:50:69:fa:98:d1:70:fe:75:fa:10:0f:b6:25:9b:d6:
                    7d:f6:fb:e1:20:5c:01:2f:51:0c:c8:00:86:7e:9b:68:
                    05:1c:fc:7c:d9:75:db:d7:53:19:11:86:bd:40:b2:39:
                    5f:46:5b:74:73:da:86:c8:32:7c:3d:1e:46:ab:ab:4e:
                    17:3a:52:aa:aa:54:4d:34:7b:2b:dc:f4:00:5a:f3:0f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        05:e7:cd:e7:1b:17:81:0d:d4:2c:f7:c6:48:45:7a:54:
        29:3a:2d:2d:d4:74:91:fb:8e:f1:85:7c:69:b9:23:5e:
        05:4e:96:30:c6:e8:ce:38:71:57:f2:27:99:07:50:97:
        dc:60:e8:51:4c:5c:62:24:72:56:8e:a3:10:37:e2:f7:
        a0:ab:ec:4b:1d:7b:69:c6:b9:9f:1f:fe:4a:33:47:45:
        93:f2:63:64:41:2d:ef:3d:c1:ea:1a:e3:5e:8e:f8:97:
        94:f3:cd:01:69:1d:6a:7a:1b:fb:5e:91:1a:7f:68:e3:
        7a:8e:4e:49:93:f5:c6:43:a7:1e:7f:13:ea:ef:b8:66:
        64:78:7e:11:8a:ea:45:c8:3a:64:49:16:4d:c8:b8:a5:
        84:a8:42:df:3f:46:9a:22:e2:5f:ac:9d:99:84:f6:59:
        5a:be:d4:5e:5c:e9:30:02:ce:5f:52:4d:a1:bd:82:b3:
        de:d3:54:d5:cb:c9:da:b9:56:e1:a4:ba:58:3c:7b:03:
        f8:02:fe:fe:92:7c:1b:67:99:9f:92:2d:47:e6:93:7e:
        cc:2c:9d:ae:c1:12:44:89:39:87:78:6b:0f:4b:db:ff:
        2e:7a:bc:76:c0:b9:79:26:67:3b:51:a1:51:22:e4:a7:
        a0:ed:34:6f:6d:a4:68:39:94:1a:60:84:0a:88:58:e1
    Fingerprint (SHA-256):
        45:31:CA:C7:A4:7A:E5:66:CD:60:4D:4D:2A:D6:D4:A6:61:91:18:11:D9:D7:90:E9:C1:FF:DB:61:CF:E8:4E:17
    Fingerprint (SHA1):
        C4:9C:4C:2E:E0:16:43:62:89:71:5B:5F:ED:F1:B2:46:B2:B0:CD:A6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #7060: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7061: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7062: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #7063: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7064: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235886 (0x300e2eee)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:11 2017
            Not After : Sat Aug 06 23:59:11 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:7c:ef:cd:ab:80:a2:c1:ed:a4:d0:ee:7e:31:3f:c2:
                    95:25:39:2a:0f:6d:fc:46:0d:af:e4:fe:69:22:f6:98:
                    8c:b9:50:17:8c:a8:a4:16:c4:30:7f:29:9a:b4:d1:84:
                    69:d8:d7:e9:5b:db:d1:0d:51:65:73:df:61:69:b8:e0:
                    ed:f9:f5:3a:67:59:01:9c:65:66:1e:4c:95:cd:fe:e9:
                    f7:4b:4b:e1:b1:23:2e:86:d7:3a:fe:fe:5a:69:f8:51:
                    7c:09:69:27:59:9b:9f:5e:46:3a:a6:a3:a2:46:f8:d0:
                    a6:94:1c:8d:d8:b7:96:40:fc:d5:f0:43:5f:a6:e7:f8:
                    58:79:a7:62:1a:ae:77:a7:00:71:72:da:30:cf:a5:77:
                    13:dc:83:0a:53:67:bf:3f:d0:00:9e:4e:0f:c9:98:44:
                    16:5c:1d:be:33:db:c0:52:a1:70:c6:9c:d2:48:43:26:
                    00:0f:db:62:b0:d9:66:3d:0c:4d:1c:ef:87:93:a1:09:
                    d2:24:f9:04:c2:e2:bf:06:6c:0d:0a:3f:00:ac:78:a6:
                    b0:a9:36:07:40:ef:a8:f2:88:7e:ed:86:01:20:a3:eb:
                    dc:1d:be:c4:58:6b:4b:6f:3b:2d:49:70:9c:c6:41:9a:
                    dd:84:3a:9e:80:b6:86:91:c1:32:e3:c7:51:f7:bb:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:a5:d7:f2:8a:d4:82:f1:b0:01:4a:c8:91:af:e1:66:
        d7:29:fa:a3:1c:2f:65:85:14:62:fc:6f:3c:eb:61:06:
        69:8f:78:fa:47:1d:df:23:01:22:36:5c:7d:55:53:aa:
        6b:38:de:3d:7f:62:b3:9b:82:5c:ee:5a:35:52:cd:7b:
        33:bf:97:f1:24:6a:51:39:4a:36:78:e6:d8:5e:c1:58:
        80:48:e1:46:00:b4:d6:fe:e1:1b:07:c8:9d:8c:f6:c8:
        9d:89:b3:1b:f6:a2:43:e8:42:f4:4f:62:14:d2:a3:b0:
        14:54:e1:af:d9:e4:a2:b1:42:51:63:e8:db:88:c2:07:
        3a:08:23:09:79:49:33:40:16:4e:20:67:02:93:86:6f:
        cc:38:0d:3e:05:ff:a8:84:b1:df:52:ff:5d:d8:e1:cb:
        66:6e:28:2a:39:c0:af:69:88:6a:e4:82:3d:a0:3e:c5:
        85:7b:51:43:c2:25:68:45:79:b1:19:7a:2a:7d:58:02:
        2a:c7:36:40:2a:a9:12:bd:29:a1:e9:3a:9e:7c:e2:72:
        ae:64:48:21:39:c0:52:1d:cf:50:b7:bd:5f:02:04:87:
        19:5f:17:f9:08:be:5a:72:e1:cd:0e:26:f5:3c:71:1c:
        f4:54:6d:f2:fe:ad:6e:05:ca:25:00:f7:49:53:8b:17
    Fingerprint (SHA-256):
        7B:D1:60:A4:0B:0E:7A:43:83:CD:3F:D9:54:3E:65:D4:64:F4:99:4A:4C:76:81:44:D5:27:FC:D8:C3:CA:35:F9
    Fingerprint (SHA1):
        04:B8:E2:87:42:09:8D:61:2C:13:E4:76:A6:1E:9E:D5:08:F7:77:5E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7065: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7066: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235887 (0x300e2eef)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:11 2017
            Not After : Sat Aug 06 23:59:11 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    94:62:06:cd:6d:43:dd:da:d6:8c:f1:99:e5:32:e1:97:
                    3e:bb:40:67:7b:99:e5:8a:b5:54:32:11:d0:0d:d3:33:
                    04:92:f0:18:63:a3:ef:bb:55:2f:b1:71:0f:42:a2:f7:
                    c3:a8:9b:03:b1:f0:48:68:cf:c1:da:d2:41:52:67:73:
                    e7:16:d0:59:2d:14:21:0d:e2:c6:4a:dd:f1:fb:a9:bf:
                    f8:95:db:61:c4:80:4c:7d:46:9a:c6:a7:5a:b4:3b:51:
                    20:d7:97:8c:a7:d4:aa:c1:5a:63:c0:59:d9:b4:14:2c:
                    07:3d:40:76:81:69:b2:a2:53:ed:bb:1f:db:ca:06:71:
                    24:ae:47:f4:d5:a4:ce:f9:7f:31:f8:da:dd:51:39:6e:
                    ba:ac:4d:5f:65:a1:78:59:53:ae:c9:3d:51:bb:57:fa:
                    68:0b:f3:6b:60:1b:9a:63:62:10:5c:ca:e4:9f:3b:c0:
                    12:d1:10:4a:28:b7:0b:51:db:ce:9c:98:38:92:30:7e:
                    63:b8:6c:7c:4d:c0:fe:db:c3:f5:55:ee:30:0a:0c:5c:
                    d1:91:94:ca:b7:dd:fc:2e:f7:d6:62:6b:75:e1:53:dc:
                    b6:9d:75:75:06:c3:2b:7a:e9:9c:f3:39:c1:a5:ea:2f:
                    e9:99:6b:4b:65:53:b0:0f:bd:2b:84:00:0e:7c:16:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:06:e2:4b:e7:b1:4f:e6:7c:1c:0c:4e:a7:af:68:80:
        5c:70:dc:fe:48:9d:f7:32:d7:ea:ae:de:b8:8b:3e:85:
        f8:45:f4:5d:21:fe:0d:75:41:11:ca:3e:3b:b6:63:86:
        20:b0:98:dd:58:c0:3d:fc:f9:c5:56:32:52:40:17:01:
        f3:be:74:f9:5a:9f:1c:02:c6:76:42:af:c3:b5:ad:c1:
        be:3b:a3:d2:c6:d1:09:3d:bc:d8:9f:f5:22:16:53:16:
        ab:d8:c5:73:75:1f:7c:e8:21:a6:04:de:eb:3d:c5:89:
        f8:86:eb:cd:45:d9:8b:0f:89:93:02:0d:8f:f0:2f:e2:
        61:b7:7d:f5:09:6b:2c:f7:96:f4:f1:e2:79:a7:61:64:
        66:3a:56:73:bb:1f:fc:66:1b:48:bc:4c:30:a6:55:1a:
        38:2e:c6:f1:b0:26:28:bd:29:1a:b7:fa:38:9a:6e:94:
        ec:5c:ca:1c:8c:25:b6:ab:8a:9b:36:3f:6b:27:f3:bd:
        f1:e3:ec:e8:9f:f8:cb:a6:05:68:15:e1:3c:4c:9f:ac:
        f7:21:95:8c:ba:3c:77:7b:06:1b:2f:64:c4:02:fb:e4:
        12:a6:c7:4f:5f:92:34:a2:3a:51:14:c3:80:4c:be:67:
        6e:d7:fd:5f:78:c8:8f:3a:4a:45:8b:c6:14:36:ad:84
    Fingerprint (SHA-256):
        D5:F7:34:9A:35:40:D5:B7:AE:9D:87:65:12:96:0F:EC:D6:09:2A:82:54:65:41:98:AA:D7:7E:1D:51:2E:2B:80
    Fingerprint (SHA1):
        55:A7:D1:85:F3:D7:C2:B7:DC:BB:89:87:D5:1D:D9:85:2B:91:F4:D8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7067: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7068: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235888 (0x300e2ef0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:12 2017
            Not After : Sat Aug 06 23:59:12 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:1c:83:7f:2b:0e:b4:fe:56:35:fd:d2:5d:0c:b4:f5:
                    1d:a1:46:0a:29:88:14:63:25:87:05:bc:72:27:31:a1:
                    79:ca:1b:cd:07:2a:22:29:af:4b:35:9e:5f:63:0d:e9:
                    69:52:d6:7e:f9:66:47:8b:8f:77:d9:21:c0:46:b2:28:
                    47:bc:4c:b9:b9:b5:35:7c:00:78:5a:39:a6:22:41:e3:
                    0a:ae:89:6e:10:17:ea:38:c8:24:dc:e6:3d:7f:79:54:
                    e0:2c:e9:bf:33:c4:d4:6e:2d:ac:dc:01:40:90:07:91:
                    2f:e8:5b:0c:92:e9:6d:04:a6:d9:f3:7a:29:ea:42:28:
                    93:61:55:29:1b:40:e1:1f:e3:a7:07:ad:09:de:26:6a:
                    74:34:5a:0b:8f:12:f1:ab:38:e6:3f:c2:e0:1d:4c:b1:
                    e2:8c:a8:3a:b9:23:0a:d5:c3:cf:93:b4:6f:e0:7b:43:
                    52:50:69:fa:98:d1:70:fe:75:fa:10:0f:b6:25:9b:d6:
                    7d:f6:fb:e1:20:5c:01:2f:51:0c:c8:00:86:7e:9b:68:
                    05:1c:fc:7c:d9:75:db:d7:53:19:11:86:bd:40:b2:39:
                    5f:46:5b:74:73:da:86:c8:32:7c:3d:1e:46:ab:ab:4e:
                    17:3a:52:aa:aa:54:4d:34:7b:2b:dc:f4:00:5a:f3:0f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        05:e7:cd:e7:1b:17:81:0d:d4:2c:f7:c6:48:45:7a:54:
        29:3a:2d:2d:d4:74:91:fb:8e:f1:85:7c:69:b9:23:5e:
        05:4e:96:30:c6:e8:ce:38:71:57:f2:27:99:07:50:97:
        dc:60:e8:51:4c:5c:62:24:72:56:8e:a3:10:37:e2:f7:
        a0:ab:ec:4b:1d:7b:69:c6:b9:9f:1f:fe:4a:33:47:45:
        93:f2:63:64:41:2d:ef:3d:c1:ea:1a:e3:5e:8e:f8:97:
        94:f3:cd:01:69:1d:6a:7a:1b:fb:5e:91:1a:7f:68:e3:
        7a:8e:4e:49:93:f5:c6:43:a7:1e:7f:13:ea:ef:b8:66:
        64:78:7e:11:8a:ea:45:c8:3a:64:49:16:4d:c8:b8:a5:
        84:a8:42:df:3f:46:9a:22:e2:5f:ac:9d:99:84:f6:59:
        5a:be:d4:5e:5c:e9:30:02:ce:5f:52:4d:a1:bd:82:b3:
        de:d3:54:d5:cb:c9:da:b9:56:e1:a4:ba:58:3c:7b:03:
        f8:02:fe:fe:92:7c:1b:67:99:9f:92:2d:47:e6:93:7e:
        cc:2c:9d:ae:c1:12:44:89:39:87:78:6b:0f:4b:db:ff:
        2e:7a:bc:76:c0:b9:79:26:67:3b:51:a1:51:22:e4:a7:
        a0:ed:34:6f:6d:a4:68:39:94:1a:60:84:0a:88:58:e1
    Fingerprint (SHA-256):
        45:31:CA:C7:A4:7A:E5:66:CD:60:4D:4D:2A:D6:D4:A6:61:91:18:11:D9:D7:90:E9:C1:FF:DB:61:CF:E8:4E:17
    Fingerprint (SHA1):
        C4:9C:4C:2E:E0:16:43:62:89:71:5B:5F:ED:F1:B2:46:B2:B0:CD:A6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #7069: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7070: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7071: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806235890 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7072: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7073: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7074: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7075: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 806235891   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7076: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7077: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7078: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7079: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 806235892   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7080: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7081: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #7082: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7083: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 806235893   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7084: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7085: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #7086: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7087: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 806235894   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7088: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7089: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7090: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235890 (0x300e2ef2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:13 2017
            Not After : Sat Aug 06 23:59:13 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:70:58:99:74:af:6e:55:12:6c:af:43:40:51:3e:4b:
                    27:ac:bc:fb:b1:d4:bd:10:f1:e6:5c:c8:f0:ec:04:57:
                    fd:15:74:ef:2a:8b:e1:1d:a1:bf:6d:d8:37:b4:21:c2:
                    51:c0:a7:9e:c8:2f:8f:c2:dd:b5:d7:6b:9f:bc:8e:20:
                    ae:df:68:5d:00:38:7a:cb:0b:46:80:e4:c0:08:ca:8b:
                    3b:c7:e1:70:ba:1f:76:2b:18:64:49:58:e6:83:4c:89:
                    6b:a9:94:eb:54:4d:11:a2:1a:8f:0c:13:db:c3:33:d4:
                    f8:fd:f5:7a:10:69:96:be:6f:63:41:e1:55:9a:41:1e:
                    25:b7:ed:ab:71:db:75:cf:8f:a5:1f:ae:b6:ba:78:c2:
                    4d:f3:da:ce:a5:3c:39:f2:cb:8e:a7:fb:7a:76:a7:32:
                    f5:0e:ff:66:c7:4c:95:a2:30:dc:cb:69:2f:b2:0e:64:
                    f6:ba:f6:f2:d9:6b:32:e4:e6:6a:04:18:a2:ba:9f:e4:
                    64:ac:e5:66:d9:fc:8d:99:dc:08:5a:df:ec:31:92:19:
                    7c:5b:a9:e0:a6:25:99:2a:aa:ff:22:55:7f:c5:2b:1a:
                    39:e0:d8:37:e8:85:fe:f0:fa:8e:4c:c1:ad:aa:28:af:
                    d8:04:e4:09:d7:fa:54:4d:58:72:b1:79:63:bb:63:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:b7:86:4f:60:f2:42:03:9e:45:32:32:48:b2:82:41:
        46:7a:df:59:5b:ee:84:34:f2:88:78:44:7e:cb:74:6a:
        70:97:ec:2b:3f:27:6f:2c:53:a7:ab:31:b1:01:06:05:
        67:fa:76:2e:e4:74:61:a3:be:c0:d2:e2:31:4d:38:69:
        e6:23:3e:6b:27:da:7e:af:74:a6:df:a6:a8:41:ff:52:
        05:35:a9:48:60:a8:f6:ff:fc:d8:11:6a:6c:d6:77:1c:
        80:df:7e:ec:d2:ec:d0:b2:87:61:88:9c:f4:f1:9c:57:
        e7:5f:01:39:bf:04:9f:c3:d2:28:cc:7b:b9:3f:8e:41:
        54:61:89:f4:6a:8f:1e:6e:30:ce:37:24:15:87:94:e6:
        37:3f:b2:3d:be:75:1b:18:ac:e3:8f:88:a0:59:cd:68:
        4e:f9:65:49:fb:44:8f:28:ac:c7:69:82:30:ad:03:53:
        d7:3b:4e:63:7b:9f:c4:88:69:a5:2d:5e:7b:33:88:4a:
        47:38:eb:d4:a3:6c:22:92:44:50:1d:ec:8f:88:71:8d:
        70:aa:26:dd:dd:2e:d4:8e:60:59:0e:1b:cb:20:0b:6e:
        0b:11:e2:2b:64:2d:d8:40:d9:6f:0c:60:25:0a:04:6b:
        cb:46:2c:03:ad:81:93:f2:d1:22:a4:35:24:bb:62:bf
    Fingerprint (SHA-256):
        44:BE:78:E2:14:F5:DF:DB:8C:C1:02:67:89:6E:52:2C:1E:DE:94:9C:07:F4:16:E5:0E:82:26:57:08:0C:4D:34
    Fingerprint (SHA1):
        B6:92:6B:97:CE:F4:02:53:E6:E6:2A:8D:69:C3:59:22:1C:1B:EE:48
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7091: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7092: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235891 (0x300e2ef3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:13 2017
            Not After : Sat Aug 06 23:59:13 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:0b:f6:06:be:02:08:b8:cb:92:7b:3d:bb:23:a5:0e:
                    cf:4b:2f:e9:ba:b4:78:31:09:f0:9d:e2:2d:b1:72:37:
                    00:97:7e:27:c2:1e:67:38:be:34:b3:1d:c5:ef:2f:a0:
                    9a:0a:25:80:ad:6b:fa:df:99:13:79:26:81:59:b7:f6:
                    22:e0:d6:cc:e7:87:70:b3:de:5a:e3:29:5a:27:cf:02:
                    86:ab:56:57:76:3e:8a:00:af:10:68:7b:bb:1f:be:be:
                    b4:1f:f2:99:f8:32:1e:d1:ec:88:66:95:61:a9:9c:72:
                    5a:29:10:03:30:1c:34:0b:de:61:63:a4:0a:61:ef:df:
                    24:11:63:63:f2:2d:94:93:bf:1c:b9:d4:72:7b:c1:3c:
                    09:34:99:03:e1:19:ae:45:9d:7b:a9:3c:66:a0:d1:bd:
                    88:f1:2b:7c:cd:7e:2b:c9:3c:0c:22:5d:56:f4:04:43:
                    b9:44:8c:8b:ac:f6:39:6b:b0:d2:72:59:fb:19:78:56:
                    f5:fb:99:02:de:c7:6e:35:b1:f8:aa:bb:f1:80:ad:31:
                    42:13:f5:6a:bf:19:44:a7:96:fc:b6:53:d5:2e:74:de:
                    b6:bf:90:1b:da:99:54:11:aa:b2:e5:51:38:79:d0:ae:
                    21:ea:da:fb:3f:8b:29:b7:6d:bd:04:dc:dd:8d:b9:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        14:96:30:33:6a:82:75:1e:06:05:d5:a7:99:5c:63:ee:
        5f:ec:e9:95:40:c6:3d:52:a7:a7:e6:c7:3a:c5:9e:6e:
        71:cc:6c:c5:94:af:1f:c0:40:89:d1:82:28:19:88:4e:
        2a:52:e4:22:17:cc:2f:c8:2a:40:2a:ac:7d:a9:3a:ad:
        99:09:df:53:1e:35:27:1e:0e:83:1c:c7:9a:09:f1:bf:
        9d:ab:25:b8:00:c6:72:88:f0:db:09:29:49:76:88:90:
        97:f7:2f:19:ec:2a:7e:ab:97:4e:d7:c3:1b:40:33:84:
        1d:b3:8b:d4:56:54:8a:d2:4e:ac:89:e4:53:dc:c3:13:
        e1:80:cc:7c:a4:8c:d5:31:f0:48:dc:22:a0:13:1e:a7:
        27:13:8b:f6:57:bb:22:95:cb:c7:3a:d4:90:d3:25:bc:
        39:3b:60:0e:0d:ac:47:f7:cc:a9:c9:53:13:60:e6:9b:
        fb:07:71:8d:9c:17:cf:64:94:d9:5c:a5:88:7e:05:4e:
        c3:b9:2b:07:13:f4:4d:40:39:78:36:f6:8e:23:e7:7b:
        3b:d7:74:02:f4:8f:fa:ff:b4:55:d6:a1:11:eb:f3:22:
        ac:2b:92:aa:af:2c:84:e8:60:2c:b8:22:6c:12:62:b5:
        46:69:38:dd:4e:6e:11:68:c4:b6:ea:2d:2b:a4:b5:e1
    Fingerprint (SHA-256):
        17:C4:2A:59:27:6F:BB:00:E9:94:41:DD:33:4D:DB:9D:C4:D5:F7:9A:30:B0:36:69:4B:AA:0B:4C:74:AE:C1:E8
    Fingerprint (SHA1):
        2C:14:84:51:DD:FB:D5:C9:29:4E:D9:7A:BC:FE:EB:0D:0C:D6:AA:FC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7093: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7094: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235892 (0x300e2ef4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:13 2017
            Not After : Sat Aug 06 23:59:13 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fa:24:4b:3c:38:33:61:d1:93:d9:15:ef:88:6b:49:a7:
                    88:2c:89:ca:5d:0a:2a:e5:b7:07:1e:e2:47:a1:3a:8e:
                    4e:dc:f5:01:70:5b:83:40:df:20:4b:1a:7c:05:78:91:
                    96:bc:5d:0d:6b:16:8f:fd:62:a1:58:ca:aa:4c:f4:50:
                    e3:6d:dc:78:7c:f5:ae:c7:4f:72:0d:f9:19:e1:f7:ee:
                    62:6c:ac:80:28:5e:13:75:e5:e4:0b:14:a4:b2:30:81:
                    b8:72:08:57:15:9e:ca:c6:b5:48:1a:dd:fc:8e:1d:e3:
                    5e:1f:9a:c6:30:b1:9f:7d:23:8b:8f:ce:06:27:73:89:
                    78:2d:d1:fb:87:62:8a:59:f3:5b:c1:e2:aa:dc:3e:ee:
                    c2:d3:c4:6d:e5:c2:e3:c1:62:58:f2:06:48:e2:7a:3d:
                    d5:f5:4b:32:8a:b8:a8:3a:d3:18:79:7f:27:33:7b:fe:
                    6d:36:0e:ea:03:de:45:99:5b:e0:40:c4:9e:7f:df:8c:
                    b0:b8:0f:13:20:47:8f:52:d8:ed:c7:ac:6c:90:e9:09:
                    0e:84:78:e7:87:6f:b3:c2:20:8d:e4:c9:99:65:75:52:
                    11:c3:8e:27:9d:74:8d:29:f1:f6:13:8d:4b:9c:d5:21:
                    fa:98:2d:9b:86:7a:96:17:ea:66:ed:93:6b:e7:fe:35
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        36:ce:a1:8c:41:d3:b2:26:c5:6e:e3:53:ec:38:2d:c9:
        ca:28:e9:19:df:5c:57:02:81:e3:15:01:02:19:34:e0:
        22:56:1f:37:1b:3c:55:02:b0:65:00:a9:5f:ae:bb:da:
        8b:3f:80:f3:dd:68:2d:fe:39:da:33:18:1a:34:5c:6b:
        28:7b:16:c5:07:6c:32:22:00:46:80:ea:18:44:fa:e7:
        1e:dd:61:8b:f1:bf:36:b7:7a:1d:40:2e:02:c1:32:5e:
        64:25:23:68:37:56:ba:d0:e9:e5:3d:2e:ba:5a:ca:7e:
        d5:8f:5e:1f:65:d3:93:81:f8:2e:a0:f1:8e:c8:f8:f3:
        b4:12:e7:36:b0:4a:19:36:d7:4e:4e:ea:10:89:ba:8c:
        be:40:ab:0d:34:0f:35:7c:8f:23:90:72:69:59:83:5c:
        a3:62:3a:95:af:f7:7a:f1:21:c7:27:48:d8:8d:32:83:
        08:aa:b2:3b:28:9b:00:75:eb:4f:9c:5d:c2:b3:45:a6:
        41:49:f3:cd:b2:f1:a2:1e:66:a1:78:11:8f:c4:8d:fe:
        56:ef:3f:8b:48:95:5f:46:e8:3b:2f:2f:9d:b4:62:4c:
        56:0c:a0:20:5d:d7:67:fc:42:26:2b:cb:86:68:0d:6d:
        25:e2:da:45:fb:52:dd:d8:f5:e1:6e:01:33:b0:72:df
    Fingerprint (SHA-256):
        F8:80:7B:09:C6:1B:BA:26:7E:4B:DC:62:F3:5B:29:4D:23:1C:85:F8:26:4E:95:95:13:6E:35:87:58:A4:7F:CA
    Fingerprint (SHA1):
        62:43:79:C5:8C:85:AF:8C:32:56:2A:00:6E:7B:D8:8E:03:FE:31:99
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7095: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7096: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7097: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #7098: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7099: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235890 (0x300e2ef2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:13 2017
            Not After : Sat Aug 06 23:59:13 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:70:58:99:74:af:6e:55:12:6c:af:43:40:51:3e:4b:
                    27:ac:bc:fb:b1:d4:bd:10:f1:e6:5c:c8:f0:ec:04:57:
                    fd:15:74:ef:2a:8b:e1:1d:a1:bf:6d:d8:37:b4:21:c2:
                    51:c0:a7:9e:c8:2f:8f:c2:dd:b5:d7:6b:9f:bc:8e:20:
                    ae:df:68:5d:00:38:7a:cb:0b:46:80:e4:c0:08:ca:8b:
                    3b:c7:e1:70:ba:1f:76:2b:18:64:49:58:e6:83:4c:89:
                    6b:a9:94:eb:54:4d:11:a2:1a:8f:0c:13:db:c3:33:d4:
                    f8:fd:f5:7a:10:69:96:be:6f:63:41:e1:55:9a:41:1e:
                    25:b7:ed:ab:71:db:75:cf:8f:a5:1f:ae:b6:ba:78:c2:
                    4d:f3:da:ce:a5:3c:39:f2:cb:8e:a7:fb:7a:76:a7:32:
                    f5:0e:ff:66:c7:4c:95:a2:30:dc:cb:69:2f:b2:0e:64:
                    f6:ba:f6:f2:d9:6b:32:e4:e6:6a:04:18:a2:ba:9f:e4:
                    64:ac:e5:66:d9:fc:8d:99:dc:08:5a:df:ec:31:92:19:
                    7c:5b:a9:e0:a6:25:99:2a:aa:ff:22:55:7f:c5:2b:1a:
                    39:e0:d8:37:e8:85:fe:f0:fa:8e:4c:c1:ad:aa:28:af:
                    d8:04:e4:09:d7:fa:54:4d:58:72:b1:79:63:bb:63:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:b7:86:4f:60:f2:42:03:9e:45:32:32:48:b2:82:41:
        46:7a:df:59:5b:ee:84:34:f2:88:78:44:7e:cb:74:6a:
        70:97:ec:2b:3f:27:6f:2c:53:a7:ab:31:b1:01:06:05:
        67:fa:76:2e:e4:74:61:a3:be:c0:d2:e2:31:4d:38:69:
        e6:23:3e:6b:27:da:7e:af:74:a6:df:a6:a8:41:ff:52:
        05:35:a9:48:60:a8:f6:ff:fc:d8:11:6a:6c:d6:77:1c:
        80:df:7e:ec:d2:ec:d0:b2:87:61:88:9c:f4:f1:9c:57:
        e7:5f:01:39:bf:04:9f:c3:d2:28:cc:7b:b9:3f:8e:41:
        54:61:89:f4:6a:8f:1e:6e:30:ce:37:24:15:87:94:e6:
        37:3f:b2:3d:be:75:1b:18:ac:e3:8f:88:a0:59:cd:68:
        4e:f9:65:49:fb:44:8f:28:ac:c7:69:82:30:ad:03:53:
        d7:3b:4e:63:7b:9f:c4:88:69:a5:2d:5e:7b:33:88:4a:
        47:38:eb:d4:a3:6c:22:92:44:50:1d:ec:8f:88:71:8d:
        70:aa:26:dd:dd:2e:d4:8e:60:59:0e:1b:cb:20:0b:6e:
        0b:11:e2:2b:64:2d:d8:40:d9:6f:0c:60:25:0a:04:6b:
        cb:46:2c:03:ad:81:93:f2:d1:22:a4:35:24:bb:62:bf
    Fingerprint (SHA-256):
        44:BE:78:E2:14:F5:DF:DB:8C:C1:02:67:89:6E:52:2C:1E:DE:94:9C:07:F4:16:E5:0E:82:26:57:08:0C:4D:34
    Fingerprint (SHA1):
        B6:92:6B:97:CE:F4:02:53:E6:E6:2A:8D:69:C3:59:22:1C:1B:EE:48
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7100: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7101: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235891 (0x300e2ef3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:13 2017
            Not After : Sat Aug 06 23:59:13 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:0b:f6:06:be:02:08:b8:cb:92:7b:3d:bb:23:a5:0e:
                    cf:4b:2f:e9:ba:b4:78:31:09:f0:9d:e2:2d:b1:72:37:
                    00:97:7e:27:c2:1e:67:38:be:34:b3:1d:c5:ef:2f:a0:
                    9a:0a:25:80:ad:6b:fa:df:99:13:79:26:81:59:b7:f6:
                    22:e0:d6:cc:e7:87:70:b3:de:5a:e3:29:5a:27:cf:02:
                    86:ab:56:57:76:3e:8a:00:af:10:68:7b:bb:1f:be:be:
                    b4:1f:f2:99:f8:32:1e:d1:ec:88:66:95:61:a9:9c:72:
                    5a:29:10:03:30:1c:34:0b:de:61:63:a4:0a:61:ef:df:
                    24:11:63:63:f2:2d:94:93:bf:1c:b9:d4:72:7b:c1:3c:
                    09:34:99:03:e1:19:ae:45:9d:7b:a9:3c:66:a0:d1:bd:
                    88:f1:2b:7c:cd:7e:2b:c9:3c:0c:22:5d:56:f4:04:43:
                    b9:44:8c:8b:ac:f6:39:6b:b0:d2:72:59:fb:19:78:56:
                    f5:fb:99:02:de:c7:6e:35:b1:f8:aa:bb:f1:80:ad:31:
                    42:13:f5:6a:bf:19:44:a7:96:fc:b6:53:d5:2e:74:de:
                    b6:bf:90:1b:da:99:54:11:aa:b2:e5:51:38:79:d0:ae:
                    21:ea:da:fb:3f:8b:29:b7:6d:bd:04:dc:dd:8d:b9:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        14:96:30:33:6a:82:75:1e:06:05:d5:a7:99:5c:63:ee:
        5f:ec:e9:95:40:c6:3d:52:a7:a7:e6:c7:3a:c5:9e:6e:
        71:cc:6c:c5:94:af:1f:c0:40:89:d1:82:28:19:88:4e:
        2a:52:e4:22:17:cc:2f:c8:2a:40:2a:ac:7d:a9:3a:ad:
        99:09:df:53:1e:35:27:1e:0e:83:1c:c7:9a:09:f1:bf:
        9d:ab:25:b8:00:c6:72:88:f0:db:09:29:49:76:88:90:
        97:f7:2f:19:ec:2a:7e:ab:97:4e:d7:c3:1b:40:33:84:
        1d:b3:8b:d4:56:54:8a:d2:4e:ac:89:e4:53:dc:c3:13:
        e1:80:cc:7c:a4:8c:d5:31:f0:48:dc:22:a0:13:1e:a7:
        27:13:8b:f6:57:bb:22:95:cb:c7:3a:d4:90:d3:25:bc:
        39:3b:60:0e:0d:ac:47:f7:cc:a9:c9:53:13:60:e6:9b:
        fb:07:71:8d:9c:17:cf:64:94:d9:5c:a5:88:7e:05:4e:
        c3:b9:2b:07:13:f4:4d:40:39:78:36:f6:8e:23:e7:7b:
        3b:d7:74:02:f4:8f:fa:ff:b4:55:d6:a1:11:eb:f3:22:
        ac:2b:92:aa:af:2c:84:e8:60:2c:b8:22:6c:12:62:b5:
        46:69:38:dd:4e:6e:11:68:c4:b6:ea:2d:2b:a4:b5:e1
    Fingerprint (SHA-256):
        17:C4:2A:59:27:6F:BB:00:E9:94:41:DD:33:4D:DB:9D:C4:D5:F7:9A:30:B0:36:69:4B:AA:0B:4C:74:AE:C1:E8
    Fingerprint (SHA1):
        2C:14:84:51:DD:FB:D5:C9:29:4E:D9:7A:BC:FE:EB:0D:0C:D6:AA:FC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7102: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7103: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235892 (0x300e2ef4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:13 2017
            Not After : Sat Aug 06 23:59:13 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fa:24:4b:3c:38:33:61:d1:93:d9:15:ef:88:6b:49:a7:
                    88:2c:89:ca:5d:0a:2a:e5:b7:07:1e:e2:47:a1:3a:8e:
                    4e:dc:f5:01:70:5b:83:40:df:20:4b:1a:7c:05:78:91:
                    96:bc:5d:0d:6b:16:8f:fd:62:a1:58:ca:aa:4c:f4:50:
                    e3:6d:dc:78:7c:f5:ae:c7:4f:72:0d:f9:19:e1:f7:ee:
                    62:6c:ac:80:28:5e:13:75:e5:e4:0b:14:a4:b2:30:81:
                    b8:72:08:57:15:9e:ca:c6:b5:48:1a:dd:fc:8e:1d:e3:
                    5e:1f:9a:c6:30:b1:9f:7d:23:8b:8f:ce:06:27:73:89:
                    78:2d:d1:fb:87:62:8a:59:f3:5b:c1:e2:aa:dc:3e:ee:
                    c2:d3:c4:6d:e5:c2:e3:c1:62:58:f2:06:48:e2:7a:3d:
                    d5:f5:4b:32:8a:b8:a8:3a:d3:18:79:7f:27:33:7b:fe:
                    6d:36:0e:ea:03:de:45:99:5b:e0:40:c4:9e:7f:df:8c:
                    b0:b8:0f:13:20:47:8f:52:d8:ed:c7:ac:6c:90:e9:09:
                    0e:84:78:e7:87:6f:b3:c2:20:8d:e4:c9:99:65:75:52:
                    11:c3:8e:27:9d:74:8d:29:f1:f6:13:8d:4b:9c:d5:21:
                    fa:98:2d:9b:86:7a:96:17:ea:66:ed:93:6b:e7:fe:35
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        36:ce:a1:8c:41:d3:b2:26:c5:6e:e3:53:ec:38:2d:c9:
        ca:28:e9:19:df:5c:57:02:81:e3:15:01:02:19:34:e0:
        22:56:1f:37:1b:3c:55:02:b0:65:00:a9:5f:ae:bb:da:
        8b:3f:80:f3:dd:68:2d:fe:39:da:33:18:1a:34:5c:6b:
        28:7b:16:c5:07:6c:32:22:00:46:80:ea:18:44:fa:e7:
        1e:dd:61:8b:f1:bf:36:b7:7a:1d:40:2e:02:c1:32:5e:
        64:25:23:68:37:56:ba:d0:e9:e5:3d:2e:ba:5a:ca:7e:
        d5:8f:5e:1f:65:d3:93:81:f8:2e:a0:f1:8e:c8:f8:f3:
        b4:12:e7:36:b0:4a:19:36:d7:4e:4e:ea:10:89:ba:8c:
        be:40:ab:0d:34:0f:35:7c:8f:23:90:72:69:59:83:5c:
        a3:62:3a:95:af:f7:7a:f1:21:c7:27:48:d8:8d:32:83:
        08:aa:b2:3b:28:9b:00:75:eb:4f:9c:5d:c2:b3:45:a6:
        41:49:f3:cd:b2:f1:a2:1e:66:a1:78:11:8f:c4:8d:fe:
        56:ef:3f:8b:48:95:5f:46:e8:3b:2f:2f:9d:b4:62:4c:
        56:0c:a0:20:5d:d7:67:fc:42:26:2b:cb:86:68:0d:6d:
        25:e2:da:45:fb:52:dd:d8:f5:e1:6e:01:33:b0:72:df
    Fingerprint (SHA-256):
        F8:80:7B:09:C6:1B:BA:26:7E:4B:DC:62:F3:5B:29:4D:23:1C:85:F8:26:4E:95:95:13:6E:35:87:58:A4:7F:CA
    Fingerprint (SHA1):
        62:43:79:C5:8C:85:AF:8C:32:56:2A:00:6E:7B:D8:8E:03:FE:31:99
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7104: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7105: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235890 (0x300e2ef2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:13 2017
            Not After : Sat Aug 06 23:59:13 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:70:58:99:74:af:6e:55:12:6c:af:43:40:51:3e:4b:
                    27:ac:bc:fb:b1:d4:bd:10:f1:e6:5c:c8:f0:ec:04:57:
                    fd:15:74:ef:2a:8b:e1:1d:a1:bf:6d:d8:37:b4:21:c2:
                    51:c0:a7:9e:c8:2f:8f:c2:dd:b5:d7:6b:9f:bc:8e:20:
                    ae:df:68:5d:00:38:7a:cb:0b:46:80:e4:c0:08:ca:8b:
                    3b:c7:e1:70:ba:1f:76:2b:18:64:49:58:e6:83:4c:89:
                    6b:a9:94:eb:54:4d:11:a2:1a:8f:0c:13:db:c3:33:d4:
                    f8:fd:f5:7a:10:69:96:be:6f:63:41:e1:55:9a:41:1e:
                    25:b7:ed:ab:71:db:75:cf:8f:a5:1f:ae:b6:ba:78:c2:
                    4d:f3:da:ce:a5:3c:39:f2:cb:8e:a7:fb:7a:76:a7:32:
                    f5:0e:ff:66:c7:4c:95:a2:30:dc:cb:69:2f:b2:0e:64:
                    f6:ba:f6:f2:d9:6b:32:e4:e6:6a:04:18:a2:ba:9f:e4:
                    64:ac:e5:66:d9:fc:8d:99:dc:08:5a:df:ec:31:92:19:
                    7c:5b:a9:e0:a6:25:99:2a:aa:ff:22:55:7f:c5:2b:1a:
                    39:e0:d8:37:e8:85:fe:f0:fa:8e:4c:c1:ad:aa:28:af:
                    d8:04:e4:09:d7:fa:54:4d:58:72:b1:79:63:bb:63:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:b7:86:4f:60:f2:42:03:9e:45:32:32:48:b2:82:41:
        46:7a:df:59:5b:ee:84:34:f2:88:78:44:7e:cb:74:6a:
        70:97:ec:2b:3f:27:6f:2c:53:a7:ab:31:b1:01:06:05:
        67:fa:76:2e:e4:74:61:a3:be:c0:d2:e2:31:4d:38:69:
        e6:23:3e:6b:27:da:7e:af:74:a6:df:a6:a8:41:ff:52:
        05:35:a9:48:60:a8:f6:ff:fc:d8:11:6a:6c:d6:77:1c:
        80:df:7e:ec:d2:ec:d0:b2:87:61:88:9c:f4:f1:9c:57:
        e7:5f:01:39:bf:04:9f:c3:d2:28:cc:7b:b9:3f:8e:41:
        54:61:89:f4:6a:8f:1e:6e:30:ce:37:24:15:87:94:e6:
        37:3f:b2:3d:be:75:1b:18:ac:e3:8f:88:a0:59:cd:68:
        4e:f9:65:49:fb:44:8f:28:ac:c7:69:82:30:ad:03:53:
        d7:3b:4e:63:7b:9f:c4:88:69:a5:2d:5e:7b:33:88:4a:
        47:38:eb:d4:a3:6c:22:92:44:50:1d:ec:8f:88:71:8d:
        70:aa:26:dd:dd:2e:d4:8e:60:59:0e:1b:cb:20:0b:6e:
        0b:11:e2:2b:64:2d:d8:40:d9:6f:0c:60:25:0a:04:6b:
        cb:46:2c:03:ad:81:93:f2:d1:22:a4:35:24:bb:62:bf
    Fingerprint (SHA-256):
        44:BE:78:E2:14:F5:DF:DB:8C:C1:02:67:89:6E:52:2C:1E:DE:94:9C:07:F4:16:E5:0E:82:26:57:08:0C:4D:34
    Fingerprint (SHA1):
        B6:92:6B:97:CE:F4:02:53:E6:E6:2A:8D:69:C3:59:22:1C:1B:EE:48
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7106: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235890 (0x300e2ef2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:13 2017
            Not After : Sat Aug 06 23:59:13 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:70:58:99:74:af:6e:55:12:6c:af:43:40:51:3e:4b:
                    27:ac:bc:fb:b1:d4:bd:10:f1:e6:5c:c8:f0:ec:04:57:
                    fd:15:74:ef:2a:8b:e1:1d:a1:bf:6d:d8:37:b4:21:c2:
                    51:c0:a7:9e:c8:2f:8f:c2:dd:b5:d7:6b:9f:bc:8e:20:
                    ae:df:68:5d:00:38:7a:cb:0b:46:80:e4:c0:08:ca:8b:
                    3b:c7:e1:70:ba:1f:76:2b:18:64:49:58:e6:83:4c:89:
                    6b:a9:94:eb:54:4d:11:a2:1a:8f:0c:13:db:c3:33:d4:
                    f8:fd:f5:7a:10:69:96:be:6f:63:41:e1:55:9a:41:1e:
                    25:b7:ed:ab:71:db:75:cf:8f:a5:1f:ae:b6:ba:78:c2:
                    4d:f3:da:ce:a5:3c:39:f2:cb:8e:a7:fb:7a:76:a7:32:
                    f5:0e:ff:66:c7:4c:95:a2:30:dc:cb:69:2f:b2:0e:64:
                    f6:ba:f6:f2:d9:6b:32:e4:e6:6a:04:18:a2:ba:9f:e4:
                    64:ac:e5:66:d9:fc:8d:99:dc:08:5a:df:ec:31:92:19:
                    7c:5b:a9:e0:a6:25:99:2a:aa:ff:22:55:7f:c5:2b:1a:
                    39:e0:d8:37:e8:85:fe:f0:fa:8e:4c:c1:ad:aa:28:af:
                    d8:04:e4:09:d7:fa:54:4d:58:72:b1:79:63:bb:63:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:b7:86:4f:60:f2:42:03:9e:45:32:32:48:b2:82:41:
        46:7a:df:59:5b:ee:84:34:f2:88:78:44:7e:cb:74:6a:
        70:97:ec:2b:3f:27:6f:2c:53:a7:ab:31:b1:01:06:05:
        67:fa:76:2e:e4:74:61:a3:be:c0:d2:e2:31:4d:38:69:
        e6:23:3e:6b:27:da:7e:af:74:a6:df:a6:a8:41:ff:52:
        05:35:a9:48:60:a8:f6:ff:fc:d8:11:6a:6c:d6:77:1c:
        80:df:7e:ec:d2:ec:d0:b2:87:61:88:9c:f4:f1:9c:57:
        e7:5f:01:39:bf:04:9f:c3:d2:28:cc:7b:b9:3f:8e:41:
        54:61:89:f4:6a:8f:1e:6e:30:ce:37:24:15:87:94:e6:
        37:3f:b2:3d:be:75:1b:18:ac:e3:8f:88:a0:59:cd:68:
        4e:f9:65:49:fb:44:8f:28:ac:c7:69:82:30:ad:03:53:
        d7:3b:4e:63:7b:9f:c4:88:69:a5:2d:5e:7b:33:88:4a:
        47:38:eb:d4:a3:6c:22:92:44:50:1d:ec:8f:88:71:8d:
        70:aa:26:dd:dd:2e:d4:8e:60:59:0e:1b:cb:20:0b:6e:
        0b:11:e2:2b:64:2d:d8:40:d9:6f:0c:60:25:0a:04:6b:
        cb:46:2c:03:ad:81:93:f2:d1:22:a4:35:24:bb:62:bf
    Fingerprint (SHA-256):
        44:BE:78:E2:14:F5:DF:DB:8C:C1:02:67:89:6E:52:2C:1E:DE:94:9C:07:F4:16:E5:0E:82:26:57:08:0C:4D:34
    Fingerprint (SHA1):
        B6:92:6B:97:CE:F4:02:53:E6:E6:2A:8D:69:C3:59:22:1C:1B:EE:48
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7107: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235891 (0x300e2ef3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:13 2017
            Not After : Sat Aug 06 23:59:13 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:0b:f6:06:be:02:08:b8:cb:92:7b:3d:bb:23:a5:0e:
                    cf:4b:2f:e9:ba:b4:78:31:09:f0:9d:e2:2d:b1:72:37:
                    00:97:7e:27:c2:1e:67:38:be:34:b3:1d:c5:ef:2f:a0:
                    9a:0a:25:80:ad:6b:fa:df:99:13:79:26:81:59:b7:f6:
                    22:e0:d6:cc:e7:87:70:b3:de:5a:e3:29:5a:27:cf:02:
                    86:ab:56:57:76:3e:8a:00:af:10:68:7b:bb:1f:be:be:
                    b4:1f:f2:99:f8:32:1e:d1:ec:88:66:95:61:a9:9c:72:
                    5a:29:10:03:30:1c:34:0b:de:61:63:a4:0a:61:ef:df:
                    24:11:63:63:f2:2d:94:93:bf:1c:b9:d4:72:7b:c1:3c:
                    09:34:99:03:e1:19:ae:45:9d:7b:a9:3c:66:a0:d1:bd:
                    88:f1:2b:7c:cd:7e:2b:c9:3c:0c:22:5d:56:f4:04:43:
                    b9:44:8c:8b:ac:f6:39:6b:b0:d2:72:59:fb:19:78:56:
                    f5:fb:99:02:de:c7:6e:35:b1:f8:aa:bb:f1:80:ad:31:
                    42:13:f5:6a:bf:19:44:a7:96:fc:b6:53:d5:2e:74:de:
                    b6:bf:90:1b:da:99:54:11:aa:b2:e5:51:38:79:d0:ae:
                    21:ea:da:fb:3f:8b:29:b7:6d:bd:04:dc:dd:8d:b9:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        14:96:30:33:6a:82:75:1e:06:05:d5:a7:99:5c:63:ee:
        5f:ec:e9:95:40:c6:3d:52:a7:a7:e6:c7:3a:c5:9e:6e:
        71:cc:6c:c5:94:af:1f:c0:40:89:d1:82:28:19:88:4e:
        2a:52:e4:22:17:cc:2f:c8:2a:40:2a:ac:7d:a9:3a:ad:
        99:09:df:53:1e:35:27:1e:0e:83:1c:c7:9a:09:f1:bf:
        9d:ab:25:b8:00:c6:72:88:f0:db:09:29:49:76:88:90:
        97:f7:2f:19:ec:2a:7e:ab:97:4e:d7:c3:1b:40:33:84:
        1d:b3:8b:d4:56:54:8a:d2:4e:ac:89:e4:53:dc:c3:13:
        e1:80:cc:7c:a4:8c:d5:31:f0:48:dc:22:a0:13:1e:a7:
        27:13:8b:f6:57:bb:22:95:cb:c7:3a:d4:90:d3:25:bc:
        39:3b:60:0e:0d:ac:47:f7:cc:a9:c9:53:13:60:e6:9b:
        fb:07:71:8d:9c:17:cf:64:94:d9:5c:a5:88:7e:05:4e:
        c3:b9:2b:07:13:f4:4d:40:39:78:36:f6:8e:23:e7:7b:
        3b:d7:74:02:f4:8f:fa:ff:b4:55:d6:a1:11:eb:f3:22:
        ac:2b:92:aa:af:2c:84:e8:60:2c:b8:22:6c:12:62:b5:
        46:69:38:dd:4e:6e:11:68:c4:b6:ea:2d:2b:a4:b5:e1
    Fingerprint (SHA-256):
        17:C4:2A:59:27:6F:BB:00:E9:94:41:DD:33:4D:DB:9D:C4:D5:F7:9A:30:B0:36:69:4B:AA:0B:4C:74:AE:C1:E8
    Fingerprint (SHA1):
        2C:14:84:51:DD:FB:D5:C9:29:4E:D9:7A:BC:FE:EB:0D:0C:D6:AA:FC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7108: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235891 (0x300e2ef3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:13 2017
            Not After : Sat Aug 06 23:59:13 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:0b:f6:06:be:02:08:b8:cb:92:7b:3d:bb:23:a5:0e:
                    cf:4b:2f:e9:ba:b4:78:31:09:f0:9d:e2:2d:b1:72:37:
                    00:97:7e:27:c2:1e:67:38:be:34:b3:1d:c5:ef:2f:a0:
                    9a:0a:25:80:ad:6b:fa:df:99:13:79:26:81:59:b7:f6:
                    22:e0:d6:cc:e7:87:70:b3:de:5a:e3:29:5a:27:cf:02:
                    86:ab:56:57:76:3e:8a:00:af:10:68:7b:bb:1f:be:be:
                    b4:1f:f2:99:f8:32:1e:d1:ec:88:66:95:61:a9:9c:72:
                    5a:29:10:03:30:1c:34:0b:de:61:63:a4:0a:61:ef:df:
                    24:11:63:63:f2:2d:94:93:bf:1c:b9:d4:72:7b:c1:3c:
                    09:34:99:03:e1:19:ae:45:9d:7b:a9:3c:66:a0:d1:bd:
                    88:f1:2b:7c:cd:7e:2b:c9:3c:0c:22:5d:56:f4:04:43:
                    b9:44:8c:8b:ac:f6:39:6b:b0:d2:72:59:fb:19:78:56:
                    f5:fb:99:02:de:c7:6e:35:b1:f8:aa:bb:f1:80:ad:31:
                    42:13:f5:6a:bf:19:44:a7:96:fc:b6:53:d5:2e:74:de:
                    b6:bf:90:1b:da:99:54:11:aa:b2:e5:51:38:79:d0:ae:
                    21:ea:da:fb:3f:8b:29:b7:6d:bd:04:dc:dd:8d:b9:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        14:96:30:33:6a:82:75:1e:06:05:d5:a7:99:5c:63:ee:
        5f:ec:e9:95:40:c6:3d:52:a7:a7:e6:c7:3a:c5:9e:6e:
        71:cc:6c:c5:94:af:1f:c0:40:89:d1:82:28:19:88:4e:
        2a:52:e4:22:17:cc:2f:c8:2a:40:2a:ac:7d:a9:3a:ad:
        99:09:df:53:1e:35:27:1e:0e:83:1c:c7:9a:09:f1:bf:
        9d:ab:25:b8:00:c6:72:88:f0:db:09:29:49:76:88:90:
        97:f7:2f:19:ec:2a:7e:ab:97:4e:d7:c3:1b:40:33:84:
        1d:b3:8b:d4:56:54:8a:d2:4e:ac:89:e4:53:dc:c3:13:
        e1:80:cc:7c:a4:8c:d5:31:f0:48:dc:22:a0:13:1e:a7:
        27:13:8b:f6:57:bb:22:95:cb:c7:3a:d4:90:d3:25:bc:
        39:3b:60:0e:0d:ac:47:f7:cc:a9:c9:53:13:60:e6:9b:
        fb:07:71:8d:9c:17:cf:64:94:d9:5c:a5:88:7e:05:4e:
        c3:b9:2b:07:13:f4:4d:40:39:78:36:f6:8e:23:e7:7b:
        3b:d7:74:02:f4:8f:fa:ff:b4:55:d6:a1:11:eb:f3:22:
        ac:2b:92:aa:af:2c:84:e8:60:2c:b8:22:6c:12:62:b5:
        46:69:38:dd:4e:6e:11:68:c4:b6:ea:2d:2b:a4:b5:e1
    Fingerprint (SHA-256):
        17:C4:2A:59:27:6F:BB:00:E9:94:41:DD:33:4D:DB:9D:C4:D5:F7:9A:30:B0:36:69:4B:AA:0B:4C:74:AE:C1:E8
    Fingerprint (SHA1):
        2C:14:84:51:DD:FB:D5:C9:29:4E:D9:7A:BC:FE:EB:0D:0C:D6:AA:FC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7109: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235892 (0x300e2ef4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:13 2017
            Not After : Sat Aug 06 23:59:13 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fa:24:4b:3c:38:33:61:d1:93:d9:15:ef:88:6b:49:a7:
                    88:2c:89:ca:5d:0a:2a:e5:b7:07:1e:e2:47:a1:3a:8e:
                    4e:dc:f5:01:70:5b:83:40:df:20:4b:1a:7c:05:78:91:
                    96:bc:5d:0d:6b:16:8f:fd:62:a1:58:ca:aa:4c:f4:50:
                    e3:6d:dc:78:7c:f5:ae:c7:4f:72:0d:f9:19:e1:f7:ee:
                    62:6c:ac:80:28:5e:13:75:e5:e4:0b:14:a4:b2:30:81:
                    b8:72:08:57:15:9e:ca:c6:b5:48:1a:dd:fc:8e:1d:e3:
                    5e:1f:9a:c6:30:b1:9f:7d:23:8b:8f:ce:06:27:73:89:
                    78:2d:d1:fb:87:62:8a:59:f3:5b:c1:e2:aa:dc:3e:ee:
                    c2:d3:c4:6d:e5:c2:e3:c1:62:58:f2:06:48:e2:7a:3d:
                    d5:f5:4b:32:8a:b8:a8:3a:d3:18:79:7f:27:33:7b:fe:
                    6d:36:0e:ea:03:de:45:99:5b:e0:40:c4:9e:7f:df:8c:
                    b0:b8:0f:13:20:47:8f:52:d8:ed:c7:ac:6c:90:e9:09:
                    0e:84:78:e7:87:6f:b3:c2:20:8d:e4:c9:99:65:75:52:
                    11:c3:8e:27:9d:74:8d:29:f1:f6:13:8d:4b:9c:d5:21:
                    fa:98:2d:9b:86:7a:96:17:ea:66:ed:93:6b:e7:fe:35
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        36:ce:a1:8c:41:d3:b2:26:c5:6e:e3:53:ec:38:2d:c9:
        ca:28:e9:19:df:5c:57:02:81:e3:15:01:02:19:34:e0:
        22:56:1f:37:1b:3c:55:02:b0:65:00:a9:5f:ae:bb:da:
        8b:3f:80:f3:dd:68:2d:fe:39:da:33:18:1a:34:5c:6b:
        28:7b:16:c5:07:6c:32:22:00:46:80:ea:18:44:fa:e7:
        1e:dd:61:8b:f1:bf:36:b7:7a:1d:40:2e:02:c1:32:5e:
        64:25:23:68:37:56:ba:d0:e9:e5:3d:2e:ba:5a:ca:7e:
        d5:8f:5e:1f:65:d3:93:81:f8:2e:a0:f1:8e:c8:f8:f3:
        b4:12:e7:36:b0:4a:19:36:d7:4e:4e:ea:10:89:ba:8c:
        be:40:ab:0d:34:0f:35:7c:8f:23:90:72:69:59:83:5c:
        a3:62:3a:95:af:f7:7a:f1:21:c7:27:48:d8:8d:32:83:
        08:aa:b2:3b:28:9b:00:75:eb:4f:9c:5d:c2:b3:45:a6:
        41:49:f3:cd:b2:f1:a2:1e:66:a1:78:11:8f:c4:8d:fe:
        56:ef:3f:8b:48:95:5f:46:e8:3b:2f:2f:9d:b4:62:4c:
        56:0c:a0:20:5d:d7:67:fc:42:26:2b:cb:86:68:0d:6d:
        25:e2:da:45:fb:52:dd:d8:f5:e1:6e:01:33:b0:72:df
    Fingerprint (SHA-256):
        F8:80:7B:09:C6:1B:BA:26:7E:4B:DC:62:F3:5B:29:4D:23:1C:85:F8:26:4E:95:95:13:6E:35:87:58:A4:7F:CA
    Fingerprint (SHA1):
        62:43:79:C5:8C:85:AF:8C:32:56:2A:00:6E:7B:D8:8E:03:FE:31:99
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7110: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235892 (0x300e2ef4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:13 2017
            Not After : Sat Aug 06 23:59:13 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fa:24:4b:3c:38:33:61:d1:93:d9:15:ef:88:6b:49:a7:
                    88:2c:89:ca:5d:0a:2a:e5:b7:07:1e:e2:47:a1:3a:8e:
                    4e:dc:f5:01:70:5b:83:40:df:20:4b:1a:7c:05:78:91:
                    96:bc:5d:0d:6b:16:8f:fd:62:a1:58:ca:aa:4c:f4:50:
                    e3:6d:dc:78:7c:f5:ae:c7:4f:72:0d:f9:19:e1:f7:ee:
                    62:6c:ac:80:28:5e:13:75:e5:e4:0b:14:a4:b2:30:81:
                    b8:72:08:57:15:9e:ca:c6:b5:48:1a:dd:fc:8e:1d:e3:
                    5e:1f:9a:c6:30:b1:9f:7d:23:8b:8f:ce:06:27:73:89:
                    78:2d:d1:fb:87:62:8a:59:f3:5b:c1:e2:aa:dc:3e:ee:
                    c2:d3:c4:6d:e5:c2:e3:c1:62:58:f2:06:48:e2:7a:3d:
                    d5:f5:4b:32:8a:b8:a8:3a:d3:18:79:7f:27:33:7b:fe:
                    6d:36:0e:ea:03:de:45:99:5b:e0:40:c4:9e:7f:df:8c:
                    b0:b8:0f:13:20:47:8f:52:d8:ed:c7:ac:6c:90:e9:09:
                    0e:84:78:e7:87:6f:b3:c2:20:8d:e4:c9:99:65:75:52:
                    11:c3:8e:27:9d:74:8d:29:f1:f6:13:8d:4b:9c:d5:21:
                    fa:98:2d:9b:86:7a:96:17:ea:66:ed:93:6b:e7:fe:35
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        36:ce:a1:8c:41:d3:b2:26:c5:6e:e3:53:ec:38:2d:c9:
        ca:28:e9:19:df:5c:57:02:81:e3:15:01:02:19:34:e0:
        22:56:1f:37:1b:3c:55:02:b0:65:00:a9:5f:ae:bb:da:
        8b:3f:80:f3:dd:68:2d:fe:39:da:33:18:1a:34:5c:6b:
        28:7b:16:c5:07:6c:32:22:00:46:80:ea:18:44:fa:e7:
        1e:dd:61:8b:f1:bf:36:b7:7a:1d:40:2e:02:c1:32:5e:
        64:25:23:68:37:56:ba:d0:e9:e5:3d:2e:ba:5a:ca:7e:
        d5:8f:5e:1f:65:d3:93:81:f8:2e:a0:f1:8e:c8:f8:f3:
        b4:12:e7:36:b0:4a:19:36:d7:4e:4e:ea:10:89:ba:8c:
        be:40:ab:0d:34:0f:35:7c:8f:23:90:72:69:59:83:5c:
        a3:62:3a:95:af:f7:7a:f1:21:c7:27:48:d8:8d:32:83:
        08:aa:b2:3b:28:9b:00:75:eb:4f:9c:5d:c2:b3:45:a6:
        41:49:f3:cd:b2:f1:a2:1e:66:a1:78:11:8f:c4:8d:fe:
        56:ef:3f:8b:48:95:5f:46:e8:3b:2f:2f:9d:b4:62:4c:
        56:0c:a0:20:5d:d7:67:fc:42:26:2b:cb:86:68:0d:6d:
        25:e2:da:45:fb:52:dd:d8:f5:e1:6e:01:33:b0:72:df
    Fingerprint (SHA-256):
        F8:80:7B:09:C6:1B:BA:26:7E:4B:DC:62:F3:5B:29:4D:23:1C:85:F8:26:4E:95:95:13:6E:35:87:58:A4:7F:CA
    Fingerprint (SHA1):
        62:43:79:C5:8C:85:AF:8C:32:56:2A:00:6E:7B:D8:8E:03:FE:31:99
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7111: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #7112: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806235895 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7113: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #7114: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7115: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7116: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 806235896   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7117: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7118: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7119: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7120: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 806235897   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7121: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7122: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #7123: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7124: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 806235898   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7125: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7126: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #7127: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7128: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 806235899   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7129: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7130: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #7131: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7132: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 806235900   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7133: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7134: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #7135: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7136: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 806235901   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7137: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7138: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7139: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #7140: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #7141: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7142: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #7143: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235895 (0x300e2ef7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:14 2017
            Not After : Sat Aug 06 23:59:14 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:9a:cd:cd:d3:f5:a4:e3:89:16:22:b9:3e:9e:6d:6f:
                    92:7d:51:8c:c3:6e:b2:de:fe:6d:98:f1:2a:e6:50:cc:
                    11:d7:aa:ae:f6:58:26:c9:91:a0:2b:89:37:ed:39:d6:
                    3e:17:ba:4a:83:cc:b7:74:d5:30:1c:e2:88:7a:34:ad:
                    1c:ef:54:17:73:2f:52:5e:27:6c:a2:26:e2:35:c6:e6:
                    c4:f2:8f:2b:7c:83:5e:61:10:81:21:7b:2c:56:19:44:
                    2f:fc:ff:98:8d:a6:2c:94:b7:b2:94:f8:51:ab:ef:54:
                    1c:45:48:e1:a9:e7:53:1a:3c:05:23:20:30:60:78:b3:
                    25:c3:26:42:49:f6:2a:2e:e3:96:77:5a:13:da:8e:c5:
                    e4:e9:d1:28:fd:05:e5:d1:da:62:51:57:d0:85:b0:f1:
                    f3:e8:8b:c0:ef:6a:28:86:af:b6:f1:ed:8b:84:7f:3b:
                    07:4b:29:dd:38:f5:e0:59:6c:4b:13:d6:57:39:be:3b:
                    68:82:cd:be:47:6c:ff:35:00:f0:90:48:b0:dc:54:7a:
                    32:b7:4d:45:de:9c:ea:53:16:90:46:16:fe:64:69:7d:
                    97:cc:36:f9:57:d3:be:9e:9e:1e:bc:17:1a:b2:2f:cf:
                    1d:77:68:47:7b:4b:8d:94:8c:5c:a9:29:16:3a:bb:43
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        49:e1:9c:f3:7e:12:cd:5f:de:dd:ea:81:97:2a:5a:5f:
        cf:ce:c2:b0:96:d8:14:91:82:00:fc:ff:a9:0d:9d:6b:
        cd:41:e9:cb:84:9f:50:e9:18:a0:a8:a4:e6:82:ec:f5:
        12:a2:17:8d:6e:a6:bb:e9:ec:25:43:f8:8a:54:8d:c4:
        6c:d3:43:fe:8d:d2:0c:90:97:ae:9f:23:3d:27:7c:e9:
        a4:cc:00:78:b4:01:1b:3d:42:26:f3:61:9b:97:a6:6d:
        db:86:61:a1:8c:0c:2a:a5:25:c8:4c:2d:1b:22:f2:e2:
        45:dc:78:93:36:94:88:cb:89:4d:ff:42:a0:6a:f3:c3:
        d4:bf:f6:b7:94:82:44:81:5e:b1:3f:67:4f:97:d7:35:
        45:a6:44:97:ef:6d:6c:57:f9:be:6e:19:66:89:39:e0:
        38:b5:d9:6a:a6:35:8b:86:84:d3:87:88:50:5e:e8:9e:
        65:ab:9d:69:a8:a8:22:c8:1c:51:f7:3e:ff:f5:4a:54:
        2d:ef:43:de:fa:cd:60:23:1d:36:67:96:e7:aa:d9:4f:
        ff:ad:0e:3c:9c:52:46:7e:07:cf:9f:c4:bc:80:9d:b1:
        c2:b5:d4:19:02:4f:ac:45:8e:6e:91:6f:96:fa:ef:a5:
        c7:ca:b3:eb:17:a4:5c:a9:3a:8d:92:a2:27:dd:de:2a
    Fingerprint (SHA-256):
        4F:65:9A:BE:BF:17:07:DF:C7:8B:C5:EC:34:4C:5B:64:37:05:D9:91:33:59:64:5C:D6:F4:32:80:F9:67:EE:74
    Fingerprint (SHA1):
        58:0A:F0:64:33:D7:F4:9D:2F:8E:37:42:5D:1A:8B:AD:FF:82:93:A0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7144: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7145: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7146: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7147: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235895 (0x300e2ef7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:14 2017
            Not After : Sat Aug 06 23:59:14 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:9a:cd:cd:d3:f5:a4:e3:89:16:22:b9:3e:9e:6d:6f:
                    92:7d:51:8c:c3:6e:b2:de:fe:6d:98:f1:2a:e6:50:cc:
                    11:d7:aa:ae:f6:58:26:c9:91:a0:2b:89:37:ed:39:d6:
                    3e:17:ba:4a:83:cc:b7:74:d5:30:1c:e2:88:7a:34:ad:
                    1c:ef:54:17:73:2f:52:5e:27:6c:a2:26:e2:35:c6:e6:
                    c4:f2:8f:2b:7c:83:5e:61:10:81:21:7b:2c:56:19:44:
                    2f:fc:ff:98:8d:a6:2c:94:b7:b2:94:f8:51:ab:ef:54:
                    1c:45:48:e1:a9:e7:53:1a:3c:05:23:20:30:60:78:b3:
                    25:c3:26:42:49:f6:2a:2e:e3:96:77:5a:13:da:8e:c5:
                    e4:e9:d1:28:fd:05:e5:d1:da:62:51:57:d0:85:b0:f1:
                    f3:e8:8b:c0:ef:6a:28:86:af:b6:f1:ed:8b:84:7f:3b:
                    07:4b:29:dd:38:f5:e0:59:6c:4b:13:d6:57:39:be:3b:
                    68:82:cd:be:47:6c:ff:35:00:f0:90:48:b0:dc:54:7a:
                    32:b7:4d:45:de:9c:ea:53:16:90:46:16:fe:64:69:7d:
                    97:cc:36:f9:57:d3:be:9e:9e:1e:bc:17:1a:b2:2f:cf:
                    1d:77:68:47:7b:4b:8d:94:8c:5c:a9:29:16:3a:bb:43
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        49:e1:9c:f3:7e:12:cd:5f:de:dd:ea:81:97:2a:5a:5f:
        cf:ce:c2:b0:96:d8:14:91:82:00:fc:ff:a9:0d:9d:6b:
        cd:41:e9:cb:84:9f:50:e9:18:a0:a8:a4:e6:82:ec:f5:
        12:a2:17:8d:6e:a6:bb:e9:ec:25:43:f8:8a:54:8d:c4:
        6c:d3:43:fe:8d:d2:0c:90:97:ae:9f:23:3d:27:7c:e9:
        a4:cc:00:78:b4:01:1b:3d:42:26:f3:61:9b:97:a6:6d:
        db:86:61:a1:8c:0c:2a:a5:25:c8:4c:2d:1b:22:f2:e2:
        45:dc:78:93:36:94:88:cb:89:4d:ff:42:a0:6a:f3:c3:
        d4:bf:f6:b7:94:82:44:81:5e:b1:3f:67:4f:97:d7:35:
        45:a6:44:97:ef:6d:6c:57:f9:be:6e:19:66:89:39:e0:
        38:b5:d9:6a:a6:35:8b:86:84:d3:87:88:50:5e:e8:9e:
        65:ab:9d:69:a8:a8:22:c8:1c:51:f7:3e:ff:f5:4a:54:
        2d:ef:43:de:fa:cd:60:23:1d:36:67:96:e7:aa:d9:4f:
        ff:ad:0e:3c:9c:52:46:7e:07:cf:9f:c4:bc:80:9d:b1:
        c2:b5:d4:19:02:4f:ac:45:8e:6e:91:6f:96:fa:ef:a5:
        c7:ca:b3:eb:17:a4:5c:a9:3a:8d:92:a2:27:dd:de:2a
    Fingerprint (SHA-256):
        4F:65:9A:BE:BF:17:07:DF:C7:8B:C5:EC:34:4C:5B:64:37:05:D9:91:33:59:64:5C:D6:F4:32:80:F9:67:EE:74
    Fingerprint (SHA1):
        58:0A:F0:64:33:D7:F4:9D:2F:8E:37:42:5D:1A:8B:AD:FF:82:93:A0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7148: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7149: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #7150: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806235902 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7151: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #7152: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7153: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7154: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 806235903   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7155: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7156: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #7157: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7158: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 806235904   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7159: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7160: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #7161: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7162: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 806235905   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7163: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7164: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7165: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7166: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 806235906   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7167: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7168: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #7169: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7170: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 806235907   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7171: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7172: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #7173: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7174: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 806235908   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7175: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7176: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7177: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7178: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 806235909   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7179: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7180: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #7181: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7182: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 806235910   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7183: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7184: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #7185: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7186: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 806235911   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7187: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7188: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #7189: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7190: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 806235912   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7191: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7192: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #7193: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7194: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 806235913   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7195: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7196: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #7197: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7198: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 806235914   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7199: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7200: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #7201: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7202: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 806235915   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7203: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7204: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #7205: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7206: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 806235916   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7207: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7208: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #7209: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7210: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 806235917   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7211: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7212: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #7213: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7214: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 806235918   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7215: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7216: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #7217: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7218: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 806235919   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7219: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7220: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #7221: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7222: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 806235920   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7223: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7224: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #7225: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7226: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 806235921   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7227: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7228: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #7229: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7230: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 806235922   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7231: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7232: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #7233: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7234: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 806235923   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7235: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7236: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #7237: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7238: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 806235924   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7239: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7240: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #7241: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7242: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 806235925   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7243: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7244: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #7245: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7246: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 806235926   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7247: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7248: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #7249: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7250: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 806235927   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7251: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7252: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #7253: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7254: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 806235928   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7255: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7256: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #7257: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7258: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 806235929   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7259: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7260: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #7261: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7262: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 806235930   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7263: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7264: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #7265: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7266: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 806235931   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7267: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7268: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7269: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235902 (0x300e2efe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:16 2017
            Not After : Sat Aug 06 23:59:16 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:47:08:f5:ef:7b:af:e4:f6:7d:5f:9f:33:27:7b:d4:
                    ed:87:c5:fd:7a:68:9e:fd:eb:80:d2:ba:e5:3f:cc:f0:
                    8c:06:9d:80:ae:10:a6:bb:14:7f:7b:e1:c6:2d:97:81:
                    14:44:ee:52:b0:81:4a:aa:af:0e:2b:ae:ab:67:88:80:
                    4f:2f:ea:01:c3:b5:0f:3a:b7:c0:e8:e8:05:6b:b6:84:
                    d7:fa:cc:cb:1b:8c:9b:af:5e:eb:76:6f:7d:11:23:a5:
                    73:54:14:fc:ca:d3:a4:3f:c5:c3:b7:38:ed:d8:b9:31:
                    1b:73:ee:39:08:a4:51:01:8a:43:95:b2:76:57:f1:a0:
                    55:cd:63:f2:84:9b:54:a8:8e:bc:1c:a9:e1:e4:ad:8c:
                    4d:ae:ad:ae:76:c3:46:77:d5:32:01:b3:60:f7:5f:9a:
                    6a:83:f3:12:f3:70:0c:38:01:1f:32:c2:20:d8:f0:40:
                    07:62:fd:b2:b7:90:02:fd:23:6c:09:51:4d:41:cd:a3:
                    4d:ba:28:a4:85:6a:bc:8b:39:bd:91:45:65:ae:50:fc:
                    12:0d:26:d0:c7:f3:77:d2:79:e2:be:f2:b7:f8:a6:6f:
                    de:94:07:a2:28:75:0b:c9:20:d9:97:6b:f1:3d:4a:0d:
                    b3:90:e3:a0:5a:04:9f:23:dc:75:62:8b:1c:c8:55:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5a:a3:2c:92:b6:84:9f:87:2d:0f:9f:4a:30:ae:b1:48:
        f4:67:ec:77:a1:55:0b:9d:79:6b:1d:7a:89:ea:c9:79:
        31:35:31:41:77:77:00:0d:60:37:7e:6c:f5:41:8a:39:
        ee:ec:cc:f4:33:78:d1:85:de:e1:ca:25:62:3e:22:72:
        0c:69:fe:f5:08:5e:96:db:d0:04:b0:c2:13:3f:5a:46:
        ec:ff:ad:2c:b7:f1:bb:46:9d:55:73:74:0b:41:4d:0e:
        4c:2d:ac:8e:84:3f:68:1a:5d:70:f3:aa:5e:0e:bc:de:
        46:d0:4a:7a:a1:f6:e0:84:b9:3d:e8:8a:49:35:95:ed:
        cf:fc:12:a3:a5:78:d0:db:8e:da:35:d1:15:c1:c9:92:
        e0:12:14:9c:dc:47:31:97:08:e4:14:5e:c9:95:70:fe:
        0b:bb:ad:57:67:21:4c:b8:51:38:db:1e:bb:46:33:e7:
        51:8f:7d:9d:ca:20:8d:a7:8e:88:46:2e:47:3b:d5:85:
        af:81:b7:63:7e:87:5b:74:9a:84:a2:2e:85:a3:a4:86:
        55:e2:6b:5f:9b:5b:93:28:5e:37:c1:d5:ec:04:79:42:
        29:60:b1:97:78:a0:19:41:32:78:8d:c7:8e:61:9a:d0:
        dc:05:b8:7c:27:09:14:5e:69:5f:0d:7f:66:c6:6f:a0
    Fingerprint (SHA-256):
        DC:F0:85:09:9B:22:47:E8:77:DF:9E:45:51:D5:A7:AF:34:C8:46:77:83:C8:4D:6C:DE:DD:AA:D1:C9:07:7A:EF
    Fingerprint (SHA1):
        DE:45:48:2C:5F:6B:B3:1C:86:82:48:2B:92:3F:87:BE:6B:CC:3B:F3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7270: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7271: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235902 (0x300e2efe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:16 2017
            Not After : Sat Aug 06 23:59:16 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:47:08:f5:ef:7b:af:e4:f6:7d:5f:9f:33:27:7b:d4:
                    ed:87:c5:fd:7a:68:9e:fd:eb:80:d2:ba:e5:3f:cc:f0:
                    8c:06:9d:80:ae:10:a6:bb:14:7f:7b:e1:c6:2d:97:81:
                    14:44:ee:52:b0:81:4a:aa:af:0e:2b:ae:ab:67:88:80:
                    4f:2f:ea:01:c3:b5:0f:3a:b7:c0:e8:e8:05:6b:b6:84:
                    d7:fa:cc:cb:1b:8c:9b:af:5e:eb:76:6f:7d:11:23:a5:
                    73:54:14:fc:ca:d3:a4:3f:c5:c3:b7:38:ed:d8:b9:31:
                    1b:73:ee:39:08:a4:51:01:8a:43:95:b2:76:57:f1:a0:
                    55:cd:63:f2:84:9b:54:a8:8e:bc:1c:a9:e1:e4:ad:8c:
                    4d:ae:ad:ae:76:c3:46:77:d5:32:01:b3:60:f7:5f:9a:
                    6a:83:f3:12:f3:70:0c:38:01:1f:32:c2:20:d8:f0:40:
                    07:62:fd:b2:b7:90:02:fd:23:6c:09:51:4d:41:cd:a3:
                    4d:ba:28:a4:85:6a:bc:8b:39:bd:91:45:65:ae:50:fc:
                    12:0d:26:d0:c7:f3:77:d2:79:e2:be:f2:b7:f8:a6:6f:
                    de:94:07:a2:28:75:0b:c9:20:d9:97:6b:f1:3d:4a:0d:
                    b3:90:e3:a0:5a:04:9f:23:dc:75:62:8b:1c:c8:55:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5a:a3:2c:92:b6:84:9f:87:2d:0f:9f:4a:30:ae:b1:48:
        f4:67:ec:77:a1:55:0b:9d:79:6b:1d:7a:89:ea:c9:79:
        31:35:31:41:77:77:00:0d:60:37:7e:6c:f5:41:8a:39:
        ee:ec:cc:f4:33:78:d1:85:de:e1:ca:25:62:3e:22:72:
        0c:69:fe:f5:08:5e:96:db:d0:04:b0:c2:13:3f:5a:46:
        ec:ff:ad:2c:b7:f1:bb:46:9d:55:73:74:0b:41:4d:0e:
        4c:2d:ac:8e:84:3f:68:1a:5d:70:f3:aa:5e:0e:bc:de:
        46:d0:4a:7a:a1:f6:e0:84:b9:3d:e8:8a:49:35:95:ed:
        cf:fc:12:a3:a5:78:d0:db:8e:da:35:d1:15:c1:c9:92:
        e0:12:14:9c:dc:47:31:97:08:e4:14:5e:c9:95:70:fe:
        0b:bb:ad:57:67:21:4c:b8:51:38:db:1e:bb:46:33:e7:
        51:8f:7d:9d:ca:20:8d:a7:8e:88:46:2e:47:3b:d5:85:
        af:81:b7:63:7e:87:5b:74:9a:84:a2:2e:85:a3:a4:86:
        55:e2:6b:5f:9b:5b:93:28:5e:37:c1:d5:ec:04:79:42:
        29:60:b1:97:78:a0:19:41:32:78:8d:c7:8e:61:9a:d0:
        dc:05:b8:7c:27:09:14:5e:69:5f:0d:7f:66:c6:6f:a0
    Fingerprint (SHA-256):
        DC:F0:85:09:9B:22:47:E8:77:DF:9E:45:51:D5:A7:AF:34:C8:46:77:83:C8:4D:6C:DE:DD:AA:D1:C9:07:7A:EF
    Fingerprint (SHA1):
        DE:45:48:2C:5F:6B:B3:1C:86:82:48:2B:92:3F:87:BE:6B:CC:3B:F3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7272: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7273: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7274: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7275: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235902 (0x300e2efe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:16 2017
            Not After : Sat Aug 06 23:59:16 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:47:08:f5:ef:7b:af:e4:f6:7d:5f:9f:33:27:7b:d4:
                    ed:87:c5:fd:7a:68:9e:fd:eb:80:d2:ba:e5:3f:cc:f0:
                    8c:06:9d:80:ae:10:a6:bb:14:7f:7b:e1:c6:2d:97:81:
                    14:44:ee:52:b0:81:4a:aa:af:0e:2b:ae:ab:67:88:80:
                    4f:2f:ea:01:c3:b5:0f:3a:b7:c0:e8:e8:05:6b:b6:84:
                    d7:fa:cc:cb:1b:8c:9b:af:5e:eb:76:6f:7d:11:23:a5:
                    73:54:14:fc:ca:d3:a4:3f:c5:c3:b7:38:ed:d8:b9:31:
                    1b:73:ee:39:08:a4:51:01:8a:43:95:b2:76:57:f1:a0:
                    55:cd:63:f2:84:9b:54:a8:8e:bc:1c:a9:e1:e4:ad:8c:
                    4d:ae:ad:ae:76:c3:46:77:d5:32:01:b3:60:f7:5f:9a:
                    6a:83:f3:12:f3:70:0c:38:01:1f:32:c2:20:d8:f0:40:
                    07:62:fd:b2:b7:90:02:fd:23:6c:09:51:4d:41:cd:a3:
                    4d:ba:28:a4:85:6a:bc:8b:39:bd:91:45:65:ae:50:fc:
                    12:0d:26:d0:c7:f3:77:d2:79:e2:be:f2:b7:f8:a6:6f:
                    de:94:07:a2:28:75:0b:c9:20:d9:97:6b:f1:3d:4a:0d:
                    b3:90:e3:a0:5a:04:9f:23:dc:75:62:8b:1c:c8:55:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5a:a3:2c:92:b6:84:9f:87:2d:0f:9f:4a:30:ae:b1:48:
        f4:67:ec:77:a1:55:0b:9d:79:6b:1d:7a:89:ea:c9:79:
        31:35:31:41:77:77:00:0d:60:37:7e:6c:f5:41:8a:39:
        ee:ec:cc:f4:33:78:d1:85:de:e1:ca:25:62:3e:22:72:
        0c:69:fe:f5:08:5e:96:db:d0:04:b0:c2:13:3f:5a:46:
        ec:ff:ad:2c:b7:f1:bb:46:9d:55:73:74:0b:41:4d:0e:
        4c:2d:ac:8e:84:3f:68:1a:5d:70:f3:aa:5e:0e:bc:de:
        46:d0:4a:7a:a1:f6:e0:84:b9:3d:e8:8a:49:35:95:ed:
        cf:fc:12:a3:a5:78:d0:db:8e:da:35:d1:15:c1:c9:92:
        e0:12:14:9c:dc:47:31:97:08:e4:14:5e:c9:95:70:fe:
        0b:bb:ad:57:67:21:4c:b8:51:38:db:1e:bb:46:33:e7:
        51:8f:7d:9d:ca:20:8d:a7:8e:88:46:2e:47:3b:d5:85:
        af:81:b7:63:7e:87:5b:74:9a:84:a2:2e:85:a3:a4:86:
        55:e2:6b:5f:9b:5b:93:28:5e:37:c1:d5:ec:04:79:42:
        29:60:b1:97:78:a0:19:41:32:78:8d:c7:8e:61:9a:d0:
        dc:05:b8:7c:27:09:14:5e:69:5f:0d:7f:66:c6:6f:a0
    Fingerprint (SHA-256):
        DC:F0:85:09:9B:22:47:E8:77:DF:9E:45:51:D5:A7:AF:34:C8:46:77:83:C8:4D:6C:DE:DD:AA:D1:C9:07:7A:EF
    Fingerprint (SHA1):
        DE:45:48:2C:5F:6B:B3:1C:86:82:48:2B:92:3F:87:BE:6B:CC:3B:F3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7276: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7277: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7278: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7279: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235902 (0x300e2efe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:16 2017
            Not After : Sat Aug 06 23:59:16 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:47:08:f5:ef:7b:af:e4:f6:7d:5f:9f:33:27:7b:d4:
                    ed:87:c5:fd:7a:68:9e:fd:eb:80:d2:ba:e5:3f:cc:f0:
                    8c:06:9d:80:ae:10:a6:bb:14:7f:7b:e1:c6:2d:97:81:
                    14:44:ee:52:b0:81:4a:aa:af:0e:2b:ae:ab:67:88:80:
                    4f:2f:ea:01:c3:b5:0f:3a:b7:c0:e8:e8:05:6b:b6:84:
                    d7:fa:cc:cb:1b:8c:9b:af:5e:eb:76:6f:7d:11:23:a5:
                    73:54:14:fc:ca:d3:a4:3f:c5:c3:b7:38:ed:d8:b9:31:
                    1b:73:ee:39:08:a4:51:01:8a:43:95:b2:76:57:f1:a0:
                    55:cd:63:f2:84:9b:54:a8:8e:bc:1c:a9:e1:e4:ad:8c:
                    4d:ae:ad:ae:76:c3:46:77:d5:32:01:b3:60:f7:5f:9a:
                    6a:83:f3:12:f3:70:0c:38:01:1f:32:c2:20:d8:f0:40:
                    07:62:fd:b2:b7:90:02:fd:23:6c:09:51:4d:41:cd:a3:
                    4d:ba:28:a4:85:6a:bc:8b:39:bd:91:45:65:ae:50:fc:
                    12:0d:26:d0:c7:f3:77:d2:79:e2:be:f2:b7:f8:a6:6f:
                    de:94:07:a2:28:75:0b:c9:20:d9:97:6b:f1:3d:4a:0d:
                    b3:90:e3:a0:5a:04:9f:23:dc:75:62:8b:1c:c8:55:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5a:a3:2c:92:b6:84:9f:87:2d:0f:9f:4a:30:ae:b1:48:
        f4:67:ec:77:a1:55:0b:9d:79:6b:1d:7a:89:ea:c9:79:
        31:35:31:41:77:77:00:0d:60:37:7e:6c:f5:41:8a:39:
        ee:ec:cc:f4:33:78:d1:85:de:e1:ca:25:62:3e:22:72:
        0c:69:fe:f5:08:5e:96:db:d0:04:b0:c2:13:3f:5a:46:
        ec:ff:ad:2c:b7:f1:bb:46:9d:55:73:74:0b:41:4d:0e:
        4c:2d:ac:8e:84:3f:68:1a:5d:70:f3:aa:5e:0e:bc:de:
        46:d0:4a:7a:a1:f6:e0:84:b9:3d:e8:8a:49:35:95:ed:
        cf:fc:12:a3:a5:78:d0:db:8e:da:35:d1:15:c1:c9:92:
        e0:12:14:9c:dc:47:31:97:08:e4:14:5e:c9:95:70:fe:
        0b:bb:ad:57:67:21:4c:b8:51:38:db:1e:bb:46:33:e7:
        51:8f:7d:9d:ca:20:8d:a7:8e:88:46:2e:47:3b:d5:85:
        af:81:b7:63:7e:87:5b:74:9a:84:a2:2e:85:a3:a4:86:
        55:e2:6b:5f:9b:5b:93:28:5e:37:c1:d5:ec:04:79:42:
        29:60:b1:97:78:a0:19:41:32:78:8d:c7:8e:61:9a:d0:
        dc:05:b8:7c:27:09:14:5e:69:5f:0d:7f:66:c6:6f:a0
    Fingerprint (SHA-256):
        DC:F0:85:09:9B:22:47:E8:77:DF:9E:45:51:D5:A7:AF:34:C8:46:77:83:C8:4D:6C:DE:DD:AA:D1:C9:07:7A:EF
    Fingerprint (SHA1):
        DE:45:48:2C:5F:6B:B3:1C:86:82:48:2B:92:3F:87:BE:6B:CC:3B:F3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7280: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235902 (0x300e2efe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:16 2017
            Not After : Sat Aug 06 23:59:16 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:47:08:f5:ef:7b:af:e4:f6:7d:5f:9f:33:27:7b:d4:
                    ed:87:c5:fd:7a:68:9e:fd:eb:80:d2:ba:e5:3f:cc:f0:
                    8c:06:9d:80:ae:10:a6:bb:14:7f:7b:e1:c6:2d:97:81:
                    14:44:ee:52:b0:81:4a:aa:af:0e:2b:ae:ab:67:88:80:
                    4f:2f:ea:01:c3:b5:0f:3a:b7:c0:e8:e8:05:6b:b6:84:
                    d7:fa:cc:cb:1b:8c:9b:af:5e:eb:76:6f:7d:11:23:a5:
                    73:54:14:fc:ca:d3:a4:3f:c5:c3:b7:38:ed:d8:b9:31:
                    1b:73:ee:39:08:a4:51:01:8a:43:95:b2:76:57:f1:a0:
                    55:cd:63:f2:84:9b:54:a8:8e:bc:1c:a9:e1:e4:ad:8c:
                    4d:ae:ad:ae:76:c3:46:77:d5:32:01:b3:60:f7:5f:9a:
                    6a:83:f3:12:f3:70:0c:38:01:1f:32:c2:20:d8:f0:40:
                    07:62:fd:b2:b7:90:02:fd:23:6c:09:51:4d:41:cd:a3:
                    4d:ba:28:a4:85:6a:bc:8b:39:bd:91:45:65:ae:50:fc:
                    12:0d:26:d0:c7:f3:77:d2:79:e2:be:f2:b7:f8:a6:6f:
                    de:94:07:a2:28:75:0b:c9:20:d9:97:6b:f1:3d:4a:0d:
                    b3:90:e3:a0:5a:04:9f:23:dc:75:62:8b:1c:c8:55:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5a:a3:2c:92:b6:84:9f:87:2d:0f:9f:4a:30:ae:b1:48:
        f4:67:ec:77:a1:55:0b:9d:79:6b:1d:7a:89:ea:c9:79:
        31:35:31:41:77:77:00:0d:60:37:7e:6c:f5:41:8a:39:
        ee:ec:cc:f4:33:78:d1:85:de:e1:ca:25:62:3e:22:72:
        0c:69:fe:f5:08:5e:96:db:d0:04:b0:c2:13:3f:5a:46:
        ec:ff:ad:2c:b7:f1:bb:46:9d:55:73:74:0b:41:4d:0e:
        4c:2d:ac:8e:84:3f:68:1a:5d:70:f3:aa:5e:0e:bc:de:
        46:d0:4a:7a:a1:f6:e0:84:b9:3d:e8:8a:49:35:95:ed:
        cf:fc:12:a3:a5:78:d0:db:8e:da:35:d1:15:c1:c9:92:
        e0:12:14:9c:dc:47:31:97:08:e4:14:5e:c9:95:70:fe:
        0b:bb:ad:57:67:21:4c:b8:51:38:db:1e:bb:46:33:e7:
        51:8f:7d:9d:ca:20:8d:a7:8e:88:46:2e:47:3b:d5:85:
        af:81:b7:63:7e:87:5b:74:9a:84:a2:2e:85:a3:a4:86:
        55:e2:6b:5f:9b:5b:93:28:5e:37:c1:d5:ec:04:79:42:
        29:60:b1:97:78:a0:19:41:32:78:8d:c7:8e:61:9a:d0:
        dc:05:b8:7c:27:09:14:5e:69:5f:0d:7f:66:c6:6f:a0
    Fingerprint (SHA-256):
        DC:F0:85:09:9B:22:47:E8:77:DF:9E:45:51:D5:A7:AF:34:C8:46:77:83:C8:4D:6C:DE:DD:AA:D1:C9:07:7A:EF
    Fingerprint (SHA1):
        DE:45:48:2C:5F:6B:B3:1C:86:82:48:2B:92:3F:87:BE:6B:CC:3B:F3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7281: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7282: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235902 (0x300e2efe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:16 2017
            Not After : Sat Aug 06 23:59:16 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:47:08:f5:ef:7b:af:e4:f6:7d:5f:9f:33:27:7b:d4:
                    ed:87:c5:fd:7a:68:9e:fd:eb:80:d2:ba:e5:3f:cc:f0:
                    8c:06:9d:80:ae:10:a6:bb:14:7f:7b:e1:c6:2d:97:81:
                    14:44:ee:52:b0:81:4a:aa:af:0e:2b:ae:ab:67:88:80:
                    4f:2f:ea:01:c3:b5:0f:3a:b7:c0:e8:e8:05:6b:b6:84:
                    d7:fa:cc:cb:1b:8c:9b:af:5e:eb:76:6f:7d:11:23:a5:
                    73:54:14:fc:ca:d3:a4:3f:c5:c3:b7:38:ed:d8:b9:31:
                    1b:73:ee:39:08:a4:51:01:8a:43:95:b2:76:57:f1:a0:
                    55:cd:63:f2:84:9b:54:a8:8e:bc:1c:a9:e1:e4:ad:8c:
                    4d:ae:ad:ae:76:c3:46:77:d5:32:01:b3:60:f7:5f:9a:
                    6a:83:f3:12:f3:70:0c:38:01:1f:32:c2:20:d8:f0:40:
                    07:62:fd:b2:b7:90:02:fd:23:6c:09:51:4d:41:cd:a3:
                    4d:ba:28:a4:85:6a:bc:8b:39:bd:91:45:65:ae:50:fc:
                    12:0d:26:d0:c7:f3:77:d2:79:e2:be:f2:b7:f8:a6:6f:
                    de:94:07:a2:28:75:0b:c9:20:d9:97:6b:f1:3d:4a:0d:
                    b3:90:e3:a0:5a:04:9f:23:dc:75:62:8b:1c:c8:55:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5a:a3:2c:92:b6:84:9f:87:2d:0f:9f:4a:30:ae:b1:48:
        f4:67:ec:77:a1:55:0b:9d:79:6b:1d:7a:89:ea:c9:79:
        31:35:31:41:77:77:00:0d:60:37:7e:6c:f5:41:8a:39:
        ee:ec:cc:f4:33:78:d1:85:de:e1:ca:25:62:3e:22:72:
        0c:69:fe:f5:08:5e:96:db:d0:04:b0:c2:13:3f:5a:46:
        ec:ff:ad:2c:b7:f1:bb:46:9d:55:73:74:0b:41:4d:0e:
        4c:2d:ac:8e:84:3f:68:1a:5d:70:f3:aa:5e:0e:bc:de:
        46:d0:4a:7a:a1:f6:e0:84:b9:3d:e8:8a:49:35:95:ed:
        cf:fc:12:a3:a5:78:d0:db:8e:da:35:d1:15:c1:c9:92:
        e0:12:14:9c:dc:47:31:97:08:e4:14:5e:c9:95:70:fe:
        0b:bb:ad:57:67:21:4c:b8:51:38:db:1e:bb:46:33:e7:
        51:8f:7d:9d:ca:20:8d:a7:8e:88:46:2e:47:3b:d5:85:
        af:81:b7:63:7e:87:5b:74:9a:84:a2:2e:85:a3:a4:86:
        55:e2:6b:5f:9b:5b:93:28:5e:37:c1:d5:ec:04:79:42:
        29:60:b1:97:78:a0:19:41:32:78:8d:c7:8e:61:9a:d0:
        dc:05:b8:7c:27:09:14:5e:69:5f:0d:7f:66:c6:6f:a0
    Fingerprint (SHA-256):
        DC:F0:85:09:9B:22:47:E8:77:DF:9E:45:51:D5:A7:AF:34:C8:46:77:83:C8:4D:6C:DE:DD:AA:D1:C9:07:7A:EF
    Fingerprint (SHA1):
        DE:45:48:2C:5F:6B:B3:1C:86:82:48:2B:92:3F:87:BE:6B:CC:3B:F3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7283: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7284: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7285: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7286: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235902 (0x300e2efe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:16 2017
            Not After : Sat Aug 06 23:59:16 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:47:08:f5:ef:7b:af:e4:f6:7d:5f:9f:33:27:7b:d4:
                    ed:87:c5:fd:7a:68:9e:fd:eb:80:d2:ba:e5:3f:cc:f0:
                    8c:06:9d:80:ae:10:a6:bb:14:7f:7b:e1:c6:2d:97:81:
                    14:44:ee:52:b0:81:4a:aa:af:0e:2b:ae:ab:67:88:80:
                    4f:2f:ea:01:c3:b5:0f:3a:b7:c0:e8:e8:05:6b:b6:84:
                    d7:fa:cc:cb:1b:8c:9b:af:5e:eb:76:6f:7d:11:23:a5:
                    73:54:14:fc:ca:d3:a4:3f:c5:c3:b7:38:ed:d8:b9:31:
                    1b:73:ee:39:08:a4:51:01:8a:43:95:b2:76:57:f1:a0:
                    55:cd:63:f2:84:9b:54:a8:8e:bc:1c:a9:e1:e4:ad:8c:
                    4d:ae:ad:ae:76:c3:46:77:d5:32:01:b3:60:f7:5f:9a:
                    6a:83:f3:12:f3:70:0c:38:01:1f:32:c2:20:d8:f0:40:
                    07:62:fd:b2:b7:90:02:fd:23:6c:09:51:4d:41:cd:a3:
                    4d:ba:28:a4:85:6a:bc:8b:39:bd:91:45:65:ae:50:fc:
                    12:0d:26:d0:c7:f3:77:d2:79:e2:be:f2:b7:f8:a6:6f:
                    de:94:07:a2:28:75:0b:c9:20:d9:97:6b:f1:3d:4a:0d:
                    b3:90:e3:a0:5a:04:9f:23:dc:75:62:8b:1c:c8:55:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5a:a3:2c:92:b6:84:9f:87:2d:0f:9f:4a:30:ae:b1:48:
        f4:67:ec:77:a1:55:0b:9d:79:6b:1d:7a:89:ea:c9:79:
        31:35:31:41:77:77:00:0d:60:37:7e:6c:f5:41:8a:39:
        ee:ec:cc:f4:33:78:d1:85:de:e1:ca:25:62:3e:22:72:
        0c:69:fe:f5:08:5e:96:db:d0:04:b0:c2:13:3f:5a:46:
        ec:ff:ad:2c:b7:f1:bb:46:9d:55:73:74:0b:41:4d:0e:
        4c:2d:ac:8e:84:3f:68:1a:5d:70:f3:aa:5e:0e:bc:de:
        46:d0:4a:7a:a1:f6:e0:84:b9:3d:e8:8a:49:35:95:ed:
        cf:fc:12:a3:a5:78:d0:db:8e:da:35:d1:15:c1:c9:92:
        e0:12:14:9c:dc:47:31:97:08:e4:14:5e:c9:95:70:fe:
        0b:bb:ad:57:67:21:4c:b8:51:38:db:1e:bb:46:33:e7:
        51:8f:7d:9d:ca:20:8d:a7:8e:88:46:2e:47:3b:d5:85:
        af:81:b7:63:7e:87:5b:74:9a:84:a2:2e:85:a3:a4:86:
        55:e2:6b:5f:9b:5b:93:28:5e:37:c1:d5:ec:04:79:42:
        29:60:b1:97:78:a0:19:41:32:78:8d:c7:8e:61:9a:d0:
        dc:05:b8:7c:27:09:14:5e:69:5f:0d:7f:66:c6:6f:a0
    Fingerprint (SHA-256):
        DC:F0:85:09:9B:22:47:E8:77:DF:9E:45:51:D5:A7:AF:34:C8:46:77:83:C8:4D:6C:DE:DD:AA:D1:C9:07:7A:EF
    Fingerprint (SHA1):
        DE:45:48:2C:5F:6B:B3:1C:86:82:48:2B:92:3F:87:BE:6B:CC:3B:F3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7287: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235902 (0x300e2efe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:16 2017
            Not After : Sat Aug 06 23:59:16 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:47:08:f5:ef:7b:af:e4:f6:7d:5f:9f:33:27:7b:d4:
                    ed:87:c5:fd:7a:68:9e:fd:eb:80:d2:ba:e5:3f:cc:f0:
                    8c:06:9d:80:ae:10:a6:bb:14:7f:7b:e1:c6:2d:97:81:
                    14:44:ee:52:b0:81:4a:aa:af:0e:2b:ae:ab:67:88:80:
                    4f:2f:ea:01:c3:b5:0f:3a:b7:c0:e8:e8:05:6b:b6:84:
                    d7:fa:cc:cb:1b:8c:9b:af:5e:eb:76:6f:7d:11:23:a5:
                    73:54:14:fc:ca:d3:a4:3f:c5:c3:b7:38:ed:d8:b9:31:
                    1b:73:ee:39:08:a4:51:01:8a:43:95:b2:76:57:f1:a0:
                    55:cd:63:f2:84:9b:54:a8:8e:bc:1c:a9:e1:e4:ad:8c:
                    4d:ae:ad:ae:76:c3:46:77:d5:32:01:b3:60:f7:5f:9a:
                    6a:83:f3:12:f3:70:0c:38:01:1f:32:c2:20:d8:f0:40:
                    07:62:fd:b2:b7:90:02:fd:23:6c:09:51:4d:41:cd:a3:
                    4d:ba:28:a4:85:6a:bc:8b:39:bd:91:45:65:ae:50:fc:
                    12:0d:26:d0:c7:f3:77:d2:79:e2:be:f2:b7:f8:a6:6f:
                    de:94:07:a2:28:75:0b:c9:20:d9:97:6b:f1:3d:4a:0d:
                    b3:90:e3:a0:5a:04:9f:23:dc:75:62:8b:1c:c8:55:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5a:a3:2c:92:b6:84:9f:87:2d:0f:9f:4a:30:ae:b1:48:
        f4:67:ec:77:a1:55:0b:9d:79:6b:1d:7a:89:ea:c9:79:
        31:35:31:41:77:77:00:0d:60:37:7e:6c:f5:41:8a:39:
        ee:ec:cc:f4:33:78:d1:85:de:e1:ca:25:62:3e:22:72:
        0c:69:fe:f5:08:5e:96:db:d0:04:b0:c2:13:3f:5a:46:
        ec:ff:ad:2c:b7:f1:bb:46:9d:55:73:74:0b:41:4d:0e:
        4c:2d:ac:8e:84:3f:68:1a:5d:70:f3:aa:5e:0e:bc:de:
        46:d0:4a:7a:a1:f6:e0:84:b9:3d:e8:8a:49:35:95:ed:
        cf:fc:12:a3:a5:78:d0:db:8e:da:35:d1:15:c1:c9:92:
        e0:12:14:9c:dc:47:31:97:08:e4:14:5e:c9:95:70:fe:
        0b:bb:ad:57:67:21:4c:b8:51:38:db:1e:bb:46:33:e7:
        51:8f:7d:9d:ca:20:8d:a7:8e:88:46:2e:47:3b:d5:85:
        af:81:b7:63:7e:87:5b:74:9a:84:a2:2e:85:a3:a4:86:
        55:e2:6b:5f:9b:5b:93:28:5e:37:c1:d5:ec:04:79:42:
        29:60:b1:97:78:a0:19:41:32:78:8d:c7:8e:61:9a:d0:
        dc:05:b8:7c:27:09:14:5e:69:5f:0d:7f:66:c6:6f:a0
    Fingerprint (SHA-256):
        DC:F0:85:09:9B:22:47:E8:77:DF:9E:45:51:D5:A7:AF:34:C8:46:77:83:C8:4D:6C:DE:DD:AA:D1:C9:07:7A:EF
    Fingerprint (SHA1):
        DE:45:48:2C:5F:6B:B3:1C:86:82:48:2B:92:3F:87:BE:6B:CC:3B:F3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7288: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235902 (0x300e2efe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:16 2017
            Not After : Sat Aug 06 23:59:16 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:47:08:f5:ef:7b:af:e4:f6:7d:5f:9f:33:27:7b:d4:
                    ed:87:c5:fd:7a:68:9e:fd:eb:80:d2:ba:e5:3f:cc:f0:
                    8c:06:9d:80:ae:10:a6:bb:14:7f:7b:e1:c6:2d:97:81:
                    14:44:ee:52:b0:81:4a:aa:af:0e:2b:ae:ab:67:88:80:
                    4f:2f:ea:01:c3:b5:0f:3a:b7:c0:e8:e8:05:6b:b6:84:
                    d7:fa:cc:cb:1b:8c:9b:af:5e:eb:76:6f:7d:11:23:a5:
                    73:54:14:fc:ca:d3:a4:3f:c5:c3:b7:38:ed:d8:b9:31:
                    1b:73:ee:39:08:a4:51:01:8a:43:95:b2:76:57:f1:a0:
                    55:cd:63:f2:84:9b:54:a8:8e:bc:1c:a9:e1:e4:ad:8c:
                    4d:ae:ad:ae:76:c3:46:77:d5:32:01:b3:60:f7:5f:9a:
                    6a:83:f3:12:f3:70:0c:38:01:1f:32:c2:20:d8:f0:40:
                    07:62:fd:b2:b7:90:02:fd:23:6c:09:51:4d:41:cd:a3:
                    4d:ba:28:a4:85:6a:bc:8b:39:bd:91:45:65:ae:50:fc:
                    12:0d:26:d0:c7:f3:77:d2:79:e2:be:f2:b7:f8:a6:6f:
                    de:94:07:a2:28:75:0b:c9:20:d9:97:6b:f1:3d:4a:0d:
                    b3:90:e3:a0:5a:04:9f:23:dc:75:62:8b:1c:c8:55:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5a:a3:2c:92:b6:84:9f:87:2d:0f:9f:4a:30:ae:b1:48:
        f4:67:ec:77:a1:55:0b:9d:79:6b:1d:7a:89:ea:c9:79:
        31:35:31:41:77:77:00:0d:60:37:7e:6c:f5:41:8a:39:
        ee:ec:cc:f4:33:78:d1:85:de:e1:ca:25:62:3e:22:72:
        0c:69:fe:f5:08:5e:96:db:d0:04:b0:c2:13:3f:5a:46:
        ec:ff:ad:2c:b7:f1:bb:46:9d:55:73:74:0b:41:4d:0e:
        4c:2d:ac:8e:84:3f:68:1a:5d:70:f3:aa:5e:0e:bc:de:
        46:d0:4a:7a:a1:f6:e0:84:b9:3d:e8:8a:49:35:95:ed:
        cf:fc:12:a3:a5:78:d0:db:8e:da:35:d1:15:c1:c9:92:
        e0:12:14:9c:dc:47:31:97:08:e4:14:5e:c9:95:70:fe:
        0b:bb:ad:57:67:21:4c:b8:51:38:db:1e:bb:46:33:e7:
        51:8f:7d:9d:ca:20:8d:a7:8e:88:46:2e:47:3b:d5:85:
        af:81:b7:63:7e:87:5b:74:9a:84:a2:2e:85:a3:a4:86:
        55:e2:6b:5f:9b:5b:93:28:5e:37:c1:d5:ec:04:79:42:
        29:60:b1:97:78:a0:19:41:32:78:8d:c7:8e:61:9a:d0:
        dc:05:b8:7c:27:09:14:5e:69:5f:0d:7f:66:c6:6f:a0
    Fingerprint (SHA-256):
        DC:F0:85:09:9B:22:47:E8:77:DF:9E:45:51:D5:A7:AF:34:C8:46:77:83:C8:4D:6C:DE:DD:AA:D1:C9:07:7A:EF
    Fingerprint (SHA1):
        DE:45:48:2C:5F:6B:B3:1C:86:82:48:2B:92:3F:87:BE:6B:CC:3B:F3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7289: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235902 (0x300e2efe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:16 2017
            Not After : Sat Aug 06 23:59:16 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:47:08:f5:ef:7b:af:e4:f6:7d:5f:9f:33:27:7b:d4:
                    ed:87:c5:fd:7a:68:9e:fd:eb:80:d2:ba:e5:3f:cc:f0:
                    8c:06:9d:80:ae:10:a6:bb:14:7f:7b:e1:c6:2d:97:81:
                    14:44:ee:52:b0:81:4a:aa:af:0e:2b:ae:ab:67:88:80:
                    4f:2f:ea:01:c3:b5:0f:3a:b7:c0:e8:e8:05:6b:b6:84:
                    d7:fa:cc:cb:1b:8c:9b:af:5e:eb:76:6f:7d:11:23:a5:
                    73:54:14:fc:ca:d3:a4:3f:c5:c3:b7:38:ed:d8:b9:31:
                    1b:73:ee:39:08:a4:51:01:8a:43:95:b2:76:57:f1:a0:
                    55:cd:63:f2:84:9b:54:a8:8e:bc:1c:a9:e1:e4:ad:8c:
                    4d:ae:ad:ae:76:c3:46:77:d5:32:01:b3:60:f7:5f:9a:
                    6a:83:f3:12:f3:70:0c:38:01:1f:32:c2:20:d8:f0:40:
                    07:62:fd:b2:b7:90:02:fd:23:6c:09:51:4d:41:cd:a3:
                    4d:ba:28:a4:85:6a:bc:8b:39:bd:91:45:65:ae:50:fc:
                    12:0d:26:d0:c7:f3:77:d2:79:e2:be:f2:b7:f8:a6:6f:
                    de:94:07:a2:28:75:0b:c9:20:d9:97:6b:f1:3d:4a:0d:
                    b3:90:e3:a0:5a:04:9f:23:dc:75:62:8b:1c:c8:55:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5a:a3:2c:92:b6:84:9f:87:2d:0f:9f:4a:30:ae:b1:48:
        f4:67:ec:77:a1:55:0b:9d:79:6b:1d:7a:89:ea:c9:79:
        31:35:31:41:77:77:00:0d:60:37:7e:6c:f5:41:8a:39:
        ee:ec:cc:f4:33:78:d1:85:de:e1:ca:25:62:3e:22:72:
        0c:69:fe:f5:08:5e:96:db:d0:04:b0:c2:13:3f:5a:46:
        ec:ff:ad:2c:b7:f1:bb:46:9d:55:73:74:0b:41:4d:0e:
        4c:2d:ac:8e:84:3f:68:1a:5d:70:f3:aa:5e:0e:bc:de:
        46:d0:4a:7a:a1:f6:e0:84:b9:3d:e8:8a:49:35:95:ed:
        cf:fc:12:a3:a5:78:d0:db:8e:da:35:d1:15:c1:c9:92:
        e0:12:14:9c:dc:47:31:97:08:e4:14:5e:c9:95:70:fe:
        0b:bb:ad:57:67:21:4c:b8:51:38:db:1e:bb:46:33:e7:
        51:8f:7d:9d:ca:20:8d:a7:8e:88:46:2e:47:3b:d5:85:
        af:81:b7:63:7e:87:5b:74:9a:84:a2:2e:85:a3:a4:86:
        55:e2:6b:5f:9b:5b:93:28:5e:37:c1:d5:ec:04:79:42:
        29:60:b1:97:78:a0:19:41:32:78:8d:c7:8e:61:9a:d0:
        dc:05:b8:7c:27:09:14:5e:69:5f:0d:7f:66:c6:6f:a0
    Fingerprint (SHA-256):
        DC:F0:85:09:9B:22:47:E8:77:DF:9E:45:51:D5:A7:AF:34:C8:46:77:83:C8:4D:6C:DE:DD:AA:D1:C9:07:7A:EF
    Fingerprint (SHA1):
        DE:45:48:2C:5F:6B:B3:1C:86:82:48:2B:92:3F:87:BE:6B:CC:3B:F3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7290: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235902 (0x300e2efe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:16 2017
            Not After : Sat Aug 06 23:59:16 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:47:08:f5:ef:7b:af:e4:f6:7d:5f:9f:33:27:7b:d4:
                    ed:87:c5:fd:7a:68:9e:fd:eb:80:d2:ba:e5:3f:cc:f0:
                    8c:06:9d:80:ae:10:a6:bb:14:7f:7b:e1:c6:2d:97:81:
                    14:44:ee:52:b0:81:4a:aa:af:0e:2b:ae:ab:67:88:80:
                    4f:2f:ea:01:c3:b5:0f:3a:b7:c0:e8:e8:05:6b:b6:84:
                    d7:fa:cc:cb:1b:8c:9b:af:5e:eb:76:6f:7d:11:23:a5:
                    73:54:14:fc:ca:d3:a4:3f:c5:c3:b7:38:ed:d8:b9:31:
                    1b:73:ee:39:08:a4:51:01:8a:43:95:b2:76:57:f1:a0:
                    55:cd:63:f2:84:9b:54:a8:8e:bc:1c:a9:e1:e4:ad:8c:
                    4d:ae:ad:ae:76:c3:46:77:d5:32:01:b3:60:f7:5f:9a:
                    6a:83:f3:12:f3:70:0c:38:01:1f:32:c2:20:d8:f0:40:
                    07:62:fd:b2:b7:90:02:fd:23:6c:09:51:4d:41:cd:a3:
                    4d:ba:28:a4:85:6a:bc:8b:39:bd:91:45:65:ae:50:fc:
                    12:0d:26:d0:c7:f3:77:d2:79:e2:be:f2:b7:f8:a6:6f:
                    de:94:07:a2:28:75:0b:c9:20:d9:97:6b:f1:3d:4a:0d:
                    b3:90:e3:a0:5a:04:9f:23:dc:75:62:8b:1c:c8:55:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5a:a3:2c:92:b6:84:9f:87:2d:0f:9f:4a:30:ae:b1:48:
        f4:67:ec:77:a1:55:0b:9d:79:6b:1d:7a:89:ea:c9:79:
        31:35:31:41:77:77:00:0d:60:37:7e:6c:f5:41:8a:39:
        ee:ec:cc:f4:33:78:d1:85:de:e1:ca:25:62:3e:22:72:
        0c:69:fe:f5:08:5e:96:db:d0:04:b0:c2:13:3f:5a:46:
        ec:ff:ad:2c:b7:f1:bb:46:9d:55:73:74:0b:41:4d:0e:
        4c:2d:ac:8e:84:3f:68:1a:5d:70:f3:aa:5e:0e:bc:de:
        46:d0:4a:7a:a1:f6:e0:84:b9:3d:e8:8a:49:35:95:ed:
        cf:fc:12:a3:a5:78:d0:db:8e:da:35:d1:15:c1:c9:92:
        e0:12:14:9c:dc:47:31:97:08:e4:14:5e:c9:95:70:fe:
        0b:bb:ad:57:67:21:4c:b8:51:38:db:1e:bb:46:33:e7:
        51:8f:7d:9d:ca:20:8d:a7:8e:88:46:2e:47:3b:d5:85:
        af:81:b7:63:7e:87:5b:74:9a:84:a2:2e:85:a3:a4:86:
        55:e2:6b:5f:9b:5b:93:28:5e:37:c1:d5:ec:04:79:42:
        29:60:b1:97:78:a0:19:41:32:78:8d:c7:8e:61:9a:d0:
        dc:05:b8:7c:27:09:14:5e:69:5f:0d:7f:66:c6:6f:a0
    Fingerprint (SHA-256):
        DC:F0:85:09:9B:22:47:E8:77:DF:9E:45:51:D5:A7:AF:34:C8:46:77:83:C8:4D:6C:DE:DD:AA:D1:C9:07:7A:EF
    Fingerprint (SHA1):
        DE:45:48:2C:5F:6B:B3:1C:86:82:48:2B:92:3F:87:BE:6B:CC:3B:F3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7291: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235902 (0x300e2efe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:16 2017
            Not After : Sat Aug 06 23:59:16 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:47:08:f5:ef:7b:af:e4:f6:7d:5f:9f:33:27:7b:d4:
                    ed:87:c5:fd:7a:68:9e:fd:eb:80:d2:ba:e5:3f:cc:f0:
                    8c:06:9d:80:ae:10:a6:bb:14:7f:7b:e1:c6:2d:97:81:
                    14:44:ee:52:b0:81:4a:aa:af:0e:2b:ae:ab:67:88:80:
                    4f:2f:ea:01:c3:b5:0f:3a:b7:c0:e8:e8:05:6b:b6:84:
                    d7:fa:cc:cb:1b:8c:9b:af:5e:eb:76:6f:7d:11:23:a5:
                    73:54:14:fc:ca:d3:a4:3f:c5:c3:b7:38:ed:d8:b9:31:
                    1b:73:ee:39:08:a4:51:01:8a:43:95:b2:76:57:f1:a0:
                    55:cd:63:f2:84:9b:54:a8:8e:bc:1c:a9:e1:e4:ad:8c:
                    4d:ae:ad:ae:76:c3:46:77:d5:32:01:b3:60:f7:5f:9a:
                    6a:83:f3:12:f3:70:0c:38:01:1f:32:c2:20:d8:f0:40:
                    07:62:fd:b2:b7:90:02:fd:23:6c:09:51:4d:41:cd:a3:
                    4d:ba:28:a4:85:6a:bc:8b:39:bd:91:45:65:ae:50:fc:
                    12:0d:26:d0:c7:f3:77:d2:79:e2:be:f2:b7:f8:a6:6f:
                    de:94:07:a2:28:75:0b:c9:20:d9:97:6b:f1:3d:4a:0d:
                    b3:90:e3:a0:5a:04:9f:23:dc:75:62:8b:1c:c8:55:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5a:a3:2c:92:b6:84:9f:87:2d:0f:9f:4a:30:ae:b1:48:
        f4:67:ec:77:a1:55:0b:9d:79:6b:1d:7a:89:ea:c9:79:
        31:35:31:41:77:77:00:0d:60:37:7e:6c:f5:41:8a:39:
        ee:ec:cc:f4:33:78:d1:85:de:e1:ca:25:62:3e:22:72:
        0c:69:fe:f5:08:5e:96:db:d0:04:b0:c2:13:3f:5a:46:
        ec:ff:ad:2c:b7:f1:bb:46:9d:55:73:74:0b:41:4d:0e:
        4c:2d:ac:8e:84:3f:68:1a:5d:70:f3:aa:5e:0e:bc:de:
        46:d0:4a:7a:a1:f6:e0:84:b9:3d:e8:8a:49:35:95:ed:
        cf:fc:12:a3:a5:78:d0:db:8e:da:35:d1:15:c1:c9:92:
        e0:12:14:9c:dc:47:31:97:08:e4:14:5e:c9:95:70:fe:
        0b:bb:ad:57:67:21:4c:b8:51:38:db:1e:bb:46:33:e7:
        51:8f:7d:9d:ca:20:8d:a7:8e:88:46:2e:47:3b:d5:85:
        af:81:b7:63:7e:87:5b:74:9a:84:a2:2e:85:a3:a4:86:
        55:e2:6b:5f:9b:5b:93:28:5e:37:c1:d5:ec:04:79:42:
        29:60:b1:97:78:a0:19:41:32:78:8d:c7:8e:61:9a:d0:
        dc:05:b8:7c:27:09:14:5e:69:5f:0d:7f:66:c6:6f:a0
    Fingerprint (SHA-256):
        DC:F0:85:09:9B:22:47:E8:77:DF:9E:45:51:D5:A7:AF:34:C8:46:77:83:C8:4D:6C:DE:DD:AA:D1:C9:07:7A:EF
    Fingerprint (SHA1):
        DE:45:48:2C:5F:6B:B3:1C:86:82:48:2B:92:3F:87:BE:6B:CC:3B:F3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7292: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7293: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7294: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806235932 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7295: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7296: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #7297: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7298: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 806235933   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7299: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7300: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #7301: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7302: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 806235934   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7303: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7304: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #7305: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7306: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 806235935   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7307: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7308: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #7309: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7310: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 806235936   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7311: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7312: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #7313: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7314: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 806235937   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7315: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7316: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #7317: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7318: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 806235938   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7319: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7320: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7321: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235932 (0x300e2f1c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:23 2017
            Not After : Sat Aug 06 23:59:23 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9b:bd:bf:5f:e4:c4:ff:f8:ad:b8:eb:90:21:63:c0:4b:
                    35:63:4e:29:00:f9:3f:a4:38:f7:4a:0b:06:17:cf:5a:
                    0a:33:75:4d:7c:84:2b:2f:ac:6a:ad:93:97:e2:9d:44:
                    e3:95:5a:93:5f:c2:75:21:2f:b5:ef:d4:e1:44:6e:3b:
                    46:51:42:e4:09:d0:e9:69:d9:81:a4:df:95:2d:f5:1f:
                    2b:11:ec:94:0f:00:fd:7e:41:06:ef:e9:c8:f5:c6:b5:
                    89:71:b9:a9:d5:aa:b8:64:15:f2:f8:6d:5d:76:84:c2:
                    70:fc:23:f2:c2:00:b2:cb:16:59:e7:c4:6d:55:25:9e:
                    f1:f6:96:2a:55:32:b1:14:77:b3:7e:d4:52:5e:b7:0d:
                    f9:be:b7:30:bd:5d:98:d2:5c:8f:9b:f6:68:f6:26:49:
                    1d:d7:78:e6:a5:94:53:f2:08:0a:12:9a:2d:68:b8:4c:
                    ae:18:c9:f9:0a:8c:92:ad:a3:53:dc:2f:dc:ae:74:2c:
                    d2:31:c4:e5:21:76:9c:60:d7:47:b5:30:66:d1:e7:5e:
                    50:26:ba:2f:45:02:eb:59:f5:fb:d2:cd:69:0b:c3:08:
                    02:9c:d9:a1:37:33:a9:74:f7:09:80:6e:e4:d4:d2:04:
                    5b:ce:8c:11:49:73:15:f2:42:75:6a:df:1e:80:dd:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8c:37:eb:a4:b3:e6:56:cc:3a:f1:fe:d5:81:aa:c0:05:
        97:a6:f6:9b:bf:6c:7d:38:9f:7e:58:fe:9f:fd:74:e2:
        e2:d2:b7:14:bf:33:5b:8c:39:30:44:c8:7c:e3:ad:ec:
        bc:81:0c:25:04:a3:f2:6c:21:9c:9a:2f:4f:cd:e4:30:
        ab:36:c1:d7:00:f2:cf:52:d3:22:2c:9e:3b:b2:33:2f:
        66:ca:aa:ef:93:71:68:40:7c:c5:ac:58:f3:47:38:6e:
        39:f2:05:7f:05:7b:6e:b2:7c:52:e5:75:37:ef:a7:7f:
        da:cc:21:25:19:f0:83:6b:78:87:8e:a2:79:da:4b:20:
        a0:d2:d8:1f:c2:97:98:01:a9:4f:92:c0:8c:62:a5:20:
        b4:47:eb:16:13:82:44:88:5c:71:17:31:8b:e1:ea:66:
        d1:1e:a6:58:4f:05:a5:7b:9b:9b:e5:33:1c:2a:e1:0f:
        b8:cc:49:ff:b4:15:4b:e0:f0:a1:24:f9:31:0d:84:32:
        5f:6a:35:ed:56:c5:02:ad:68:1c:93:10:d8:6e:3f:21:
        10:54:49:f6:0e:55:1f:3a:cd:7d:ca:cf:d3:08:e3:fe:
        93:32:31:b3:99:cc:c8:56:cb:53:35:71:27:c1:95:f5:
        83:c3:ff:38:d2:1d:dc:70:ed:5c:fe:06:71:5b:2b:01
    Fingerprint (SHA-256):
        05:1C:7A:E0:B8:B3:63:D0:25:48:7E:CB:0C:26:3B:49:CE:E7:25:96:CB:13:20:05:5A:9F:67:37:B0:21:48:7B
    Fingerprint (SHA1):
        8F:B5:EE:D4:3D:A3:BD:C5:A4:92:9A:60:DC:C2:A4:03:A4:EB:44:EC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #7322: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7323: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7324: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7325: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235932 (0x300e2f1c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:23 2017
            Not After : Sat Aug 06 23:59:23 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9b:bd:bf:5f:e4:c4:ff:f8:ad:b8:eb:90:21:63:c0:4b:
                    35:63:4e:29:00:f9:3f:a4:38:f7:4a:0b:06:17:cf:5a:
                    0a:33:75:4d:7c:84:2b:2f:ac:6a:ad:93:97:e2:9d:44:
                    e3:95:5a:93:5f:c2:75:21:2f:b5:ef:d4:e1:44:6e:3b:
                    46:51:42:e4:09:d0:e9:69:d9:81:a4:df:95:2d:f5:1f:
                    2b:11:ec:94:0f:00:fd:7e:41:06:ef:e9:c8:f5:c6:b5:
                    89:71:b9:a9:d5:aa:b8:64:15:f2:f8:6d:5d:76:84:c2:
                    70:fc:23:f2:c2:00:b2:cb:16:59:e7:c4:6d:55:25:9e:
                    f1:f6:96:2a:55:32:b1:14:77:b3:7e:d4:52:5e:b7:0d:
                    f9:be:b7:30:bd:5d:98:d2:5c:8f:9b:f6:68:f6:26:49:
                    1d:d7:78:e6:a5:94:53:f2:08:0a:12:9a:2d:68:b8:4c:
                    ae:18:c9:f9:0a:8c:92:ad:a3:53:dc:2f:dc:ae:74:2c:
                    d2:31:c4:e5:21:76:9c:60:d7:47:b5:30:66:d1:e7:5e:
                    50:26:ba:2f:45:02:eb:59:f5:fb:d2:cd:69:0b:c3:08:
                    02:9c:d9:a1:37:33:a9:74:f7:09:80:6e:e4:d4:d2:04:
                    5b:ce:8c:11:49:73:15:f2:42:75:6a:df:1e:80:dd:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8c:37:eb:a4:b3:e6:56:cc:3a:f1:fe:d5:81:aa:c0:05:
        97:a6:f6:9b:bf:6c:7d:38:9f:7e:58:fe:9f:fd:74:e2:
        e2:d2:b7:14:bf:33:5b:8c:39:30:44:c8:7c:e3:ad:ec:
        bc:81:0c:25:04:a3:f2:6c:21:9c:9a:2f:4f:cd:e4:30:
        ab:36:c1:d7:00:f2:cf:52:d3:22:2c:9e:3b:b2:33:2f:
        66:ca:aa:ef:93:71:68:40:7c:c5:ac:58:f3:47:38:6e:
        39:f2:05:7f:05:7b:6e:b2:7c:52:e5:75:37:ef:a7:7f:
        da:cc:21:25:19:f0:83:6b:78:87:8e:a2:79:da:4b:20:
        a0:d2:d8:1f:c2:97:98:01:a9:4f:92:c0:8c:62:a5:20:
        b4:47:eb:16:13:82:44:88:5c:71:17:31:8b:e1:ea:66:
        d1:1e:a6:58:4f:05:a5:7b:9b:9b:e5:33:1c:2a:e1:0f:
        b8:cc:49:ff:b4:15:4b:e0:f0:a1:24:f9:31:0d:84:32:
        5f:6a:35:ed:56:c5:02:ad:68:1c:93:10:d8:6e:3f:21:
        10:54:49:f6:0e:55:1f:3a:cd:7d:ca:cf:d3:08:e3:fe:
        93:32:31:b3:99:cc:c8:56:cb:53:35:71:27:c1:95:f5:
        83:c3:ff:38:d2:1d:dc:70:ed:5c:fe:06:71:5b:2b:01
    Fingerprint (SHA-256):
        05:1C:7A:E0:B8:B3:63:D0:25:48:7E:CB:0C:26:3B:49:CE:E7:25:96:CB:13:20:05:5A:9F:67:37:B0:21:48:7B
    Fingerprint (SHA1):
        8F:B5:EE:D4:3D:A3:BD:C5:A4:92:9A:60:DC:C2:A4:03:A4:EB:44:EC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #7326: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7327: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7328: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7329: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806235939 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7330: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7331: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7332: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7333: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 806235940   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #7334: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7335: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7336: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7337: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 806235941   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7338: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7339: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7340: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7341: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 806235942   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7342: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7343: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7344: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7345: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #7346: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7347: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235939 (0x300e2f23)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:25 2017
            Not After : Sat Aug 06 23:59:25 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:46:ad:62:2a:1f:f3:bc:80:84:ac:1f:e3:28:b4:b2:
                    f7:6f:07:44:0c:35:a1:ad:1d:a4:6b:62:da:d7:c0:4f:
                    c1:4c:ae:41:eb:b5:f9:f3:ca:e3:bd:8e:a5:38:c0:41:
                    35:a7:1a:62:f8:64:fa:8e:1a:b3:08:7c:9f:e9:c3:80:
                    70:c5:58:c2:da:9b:93:17:2f:84:63:ca:ff:80:27:40:
                    23:27:31:c9:fe:47:f1:cd:28:95:ea:56:76:40:a9:01:
                    6f:64:42:88:08:33:a7:9f:03:84:05:30:94:1d:b8:93:
                    c5:f0:1b:93:81:f7:21:8f:25:0d:e1:0f:96:3c:19:d9:
                    ae:c8:26:c9:73:19:e5:2f:1b:5c:05:c2:85:b7:9a:fd:
                    62:06:34:f9:51:b2:1b:15:a1:6f:35:25:85:7a:4e:36:
                    73:e4:3c:bd:33:44:79:4b:a3:bb:3f:41:29:22:dc:ce:
                    35:64:41:90:18:5c:af:b5:a0:e1:5d:32:1f:44:52:2c:
                    c2:bd:24:63:ac:eb:d7:11:34:c3:17:b1:d0:af:1b:0f:
                    1f:d6:f7:0f:28:c3:e7:34:0b:21:d6:08:fa:be:75:cd:
                    80:da:d7:08:fa:0c:dc:17:9f:be:ff:c0:0f:96:2c:c9:
                    35:31:1f:29:16:b9:1f:d6:27:b1:eb:00:3b:f9:92:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:bd:3c:33:64:53:93:0c:8a:ff:00:6e:fc:52:a1:46:
        20:34:4e:da:10:09:17:ed:3e:99:49:3c:89:45:e1:b2:
        5a:da:7a:0f:c7:12:f9:25:6f:2c:ee:82:3c:b3:26:5f:
        f4:d4:36:da:ac:a3:d7:79:45:0d:17:12:6f:39:4c:48:
        58:01:b8:2c:c6:15:6e:27:af:98:07:f6:a3:d2:9c:24:
        8e:a3:b5:4f:e8:e3:9e:87:53:6a:05:bb:82:c1:80:b8:
        32:8d:e9:6e:ea:38:f9:19:61:79:51:40:c2:a0:45:ae:
        49:f9:e0:99:e9:51:40:0b:f6:88:04:b8:9e:44:33:db:
        5d:75:bf:2f:ad:b5:c6:45:26:c9:c3:56:fa:91:df:a2:
        67:16:2d:b0:88:31:be:eb:6e:1e:fa:75:3d:ea:de:7a:
        19:b7:54:29:88:55:65:4b:92:62:1b:e6:8a:14:09:79:
        45:81:36:e8:8d:2e:fa:0c:40:6a:96:d9:59:09:ed:bc:
        c1:91:b9:7b:2e:71:d5:35:e5:8f:3b:b5:d2:58:d5:21:
        9d:a5:b0:24:c4:9d:c5:d8:19:e8:9b:6c:19:b7:22:5d:
        6d:31:e6:8b:a3:af:c8:d2:8e:dd:2b:f6:7b:4c:f3:ae:
        42:0d:b0:7c:8e:c9:20:e6:a9:a9:d1:01:b2:90:b8:73
    Fingerprint (SHA-256):
        FE:18:51:D2:B7:17:D5:05:8C:CE:E3:C5:C3:85:9E:42:08:2D:45:55:9F:DC:53:DE:6B:6B:9E:D6:CA:8E:A4:51
    Fingerprint (SHA1):
        26:31:18:9F:DE:6B:3A:59:51:E0:10:33:26:55:28:A2:70:6D:4E:F2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7348: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7349: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7350: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235940 (0x300e2f24)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:25 2017
            Not After : Sat Aug 06 23:59:25 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:a7:84:d5:fb:c2:dc:09:85:48:52:a6:1d:82:6f:3d:
                    5c:67:1c:62:93:f9:a1:21:0e:70:55:0d:b3:10:70:62:
                    e4:74:5c:71:4f:04:68:21:b7:5e:29:11:87:28:d0:5d:
                    3d:aa:be:aa:c7:ea:bf:e6:47:b2:d0:bc:f9:ac:d6:c3:
                    50:ac:38:1c:f5:1f:29:32:66:6e:ac:86:a7:0b:3e:7a:
                    80:b5:88:f6:d5:dc:54:f8:a5:64:c9:cd:21:fb:54:0c:
                    90:99:79:1c:c9:0b:f2:c2:f5:b1:dc:df:1f:b4:e1:da:
                    0e:79:81:de:7a:a5:21:cc:76:bc:17:a6:c2:9f:20:94:
                    8d:a7:ae:0d:57:4f:6a:fa:f9:9c:4a:0d:b3:f4:57:94:
                    d9:90:7b:50:bb:35:ea:1c:2b:92:1c:3b:7f:b1:6f:98:
                    13:92:f0:ef:1e:e6:5e:fb:4a:c0:ad:d8:ef:25:7d:b3:
                    c9:14:64:28:6f:56:d1:37:61:79:a1:73:2c:0f:f2:26:
                    e1:32:b7:20:cd:34:94:a2:1b:14:2f:4c:d3:5a:e2:f4:
                    29:d1:ef:02:f4:fa:39:a8:35:36:7c:fa:b5:60:52:cd:
                    69:d7:42:14:df:b3:f0:44:ca:88:71:3c:5a:07:80:d9:
                    4e:b7:fd:f9:c0:de:ce:05:b5:43:ec:e4:b0:d5:d4:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        11:ed:c9:04:6a:36:63:00:0e:c5:f6:a4:7c:33:0f:c8:
        6d:36:e2:dd:83:29:9b:a3:c4:e9:7a:5c:c3:b1:6d:18:
        9c:c4:59:a5:10:33:1d:23:ae:54:38:60:21:96:ec:c5:
        b7:16:51:cd:0e:6f:87:99:01:7b:1d:47:43:4e:14:dc:
        7f:42:07:01:f6:22:c8:45:73:c4:09:b2:ce:2d:a1:d1:
        ec:1a:17:55:23:44:d0:6e:ef:f5:eb:73:68:ee:2c:cb:
        3b:77:f0:74:f1:30:d0:e9:0c:77:e7:d3:29:a3:41:a2:
        5b:41:e8:09:b7:66:af:04:d1:16:7d:4d:92:0a:0a:0b:
        e5:64:29:2f:d7:4f:72:d9:15:81:43:0a:8b:1a:81:05:
        34:cc:20:a1:27:98:d0:79:29:5a:68:4f:6d:28:69:b7:
        7d:32:23:6c:77:f3:fc:b8:46:ac:06:4d:b1:cd:12:d5:
        4b:af:39:70:86:50:aa:b5:87:f8:52:05:0f:44:3f:ad:
        76:63:26:ca:e2:d0:9b:fc:62:24:67:d2:a2:84:12:3c:
        a3:14:36:6d:76:84:10:2a:48:45:8b:96:e6:9e:34:14:
        52:7a:76:4f:b7:09:70:36:da:29:04:e8:78:b9:e4:07:
        8b:db:3d:aa:e4:24:50:06:b8:da:6b:42:44:fa:d9:5b
    Fingerprint (SHA-256):
        DD:B5:96:46:8E:21:F3:79:EF:D2:3B:27:80:4E:73:E1:99:7E:95:28:E9:DF:AE:9D:07:E2:C9:C5:88:2A:E0:33
    Fingerprint (SHA1):
        DF:C4:55:8B:FF:D7:12:7F:9E:EB:1D:C0:B6:6A:9C:B8:AA:17:7E:65
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7351: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7352: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235941 (0x300e2f25)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:26 2017
            Not After : Sat Aug 06 23:59:26 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a0:35:3b:df:77:e3:e9:65:81:8d:e5:7f:54:6d:43:46:
                    95:34:2e:aa:0e:3c:ab:d9:4d:bc:8b:d2:a5:2f:8d:bd:
                    99:a4:9b:21:62:0c:9c:ee:f7:e2:a8:77:74:d6:fa:a2:
                    43:b1:86:ad:5c:66:bb:33:0d:5b:85:d4:44:d5:6a:64:
                    4f:8f:13:a0:0d:8e:c4:1b:67:be:ac:55:92:ee:f4:e3:
                    f3:44:1e:1e:b1:c7:fc:a5:f6:12:b0:6c:8b:00:ec:fe:
                    89:b9:06:bc:31:47:ed:78:75:98:aa:ca:36:85:b8:86:
                    c0:c2:e9:fd:09:09:40:ee:77:e5:f7:fa:1d:3f:35:6c:
                    7b:59:b0:dc:40:05:46:91:65:ad:e9:ac:9d:19:37:f6:
                    38:d8:f0:fc:2e:44:04:f8:44:fe:d8:9e:92:be:3e:31:
                    d3:78:2f:2d:81:d4:85:f3:11:d1:a2:20:81:88:15:43:
                    ec:ff:e4:8e:17:b7:a7:23:72:da:ce:12:64:a5:f4:44:
                    0d:38:43:28:ed:d5:65:61:91:59:73:a9:42:a2:f9:7f:
                    0d:dc:0e:b9:94:e1:27:38:bc:0b:51:95:73:7e:f4:66:
                    e2:3c:5a:6a:a3:72:4a:2f:1a:4c:0a:61:42:a6:41:cd:
                    e2:6f:db:6b:d6:6c:04:53:1a:20:20:6e:58:4d:46:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:8a:78:6a:21:0d:c0:b4:1d:a0:62:ca:cd:16:af:19:
        a1:a6:e9:23:3f:8d:72:9a:ef:34:6a:5c:07:ad:b0:2e:
        7d:14:ab:4a:59:d7:3f:c0:d2:aa:d4:ad:32:6b:35:2f:
        29:8a:7d:bc:2f:76:c7:3a:3a:67:0e:5b:00:63:13:58:
        5b:d9:72:e8:57:b7:16:5f:b6:8f:6a:ad:aa:39:3c:aa:
        2f:c5:94:bd:57:3b:6e:a7:84:e6:0b:06:de:57:6c:6e:
        58:94:15:11:1e:f6:c7:f3:d8:bd:a7:03:10:0f:82:c2:
        aa:f1:d5:d7:5c:a4:d8:0f:20:cb:7e:2d:df:31:b7:16:
        73:db:e2:91:00:41:ac:1b:67:00:67:1d:58:a1:c3:0f:
        fc:46:72:3c:60:98:03:ea:db:e7:f4:4f:4f:c3:90:fa:
        c2:5a:05:67:a2:fa:c0:86:5f:89:48:41:f5:26:fc:26:
        ce:ea:94:d8:9e:0b:bf:ba:fa:71:ab:f5:38:b3:c7:69:
        b5:de:fe:4e:56:b4:73:21:15:3c:08:d5:68:82:3d:c5:
        c2:c9:36:bb:f7:69:e5:87:04:d4:80:ed:01:d7:67:7c:
        e7:5b:58:71:36:08:f6:6e:cf:9e:4e:07:09:26:4b:9d:
        db:99:25:19:9d:0c:e8:ea:dc:36:cb:c6:fa:74:b3:5b
    Fingerprint (SHA-256):
        CF:70:92:F4:88:CC:C8:D8:09:7E:B7:71:FD:9D:EF:56:FF:C8:FC:1F:A0:FA:82:83:53:1A:EB:D5:3E:D1:D7:EE
    Fingerprint (SHA1):
        52:52:72:8A:48:B4:46:69:40:87:5E:A8:5D:A7:2E:B5:34:C9:4C:74
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #7353: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7354: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806235943 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7355: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7356: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7357: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7358: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 806235944   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7359: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7360: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7361: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7362: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 806235945   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #7363: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7364: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #7365: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7366: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 806235946   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7367: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7368: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7369: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7370: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 806235947   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7371: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7372: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7373: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7374: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #7375: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7376: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #7377: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235943 (0x300e2f27)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:26 2017
            Not After : Sat Aug 06 23:59:26 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:50:5f:a8:bb:5e:1c:5d:53:0b:84:d5:9b:d7:df:a9:
                    95:d7:8b:8e:d3:45:5b:a2:dc:a7:c0:17:b8:f2:01:32:
                    ac:a2:4a:21:fb:b4:56:a9:34:7d:18:2d:9d:26:d4:48:
                    d2:69:2e:20:5b:f4:cd:50:6e:8b:4d:5d:4c:47:ba:0a:
                    cd:d1:d4:59:87:10:60:47:1d:48:62:95:64:08:54:69:
                    37:18:ad:89:c0:29:d4:56:af:25:c8:2d:a0:95:bf:80:
                    f9:e2:25:ff:0a:b9:4a:67:13:b0:ca:49:57:0e:1b:a7:
                    31:50:06:d8:8f:e7:58:31:03:9b:ba:47:85:21:b1:49:
                    d2:9f:cf:31:90:f1:b2:a3:52:4f:95:97:a6:93:67:5a:
                    18:29:f2:f6:cf:1d:21:de:0e:09:e4:ff:c2:93:d0:47:
                    a1:83:bd:3b:1c:68:6b:41:eb:9b:cc:7a:6d:aa:b4:1c:
                    8a:42:d3:7f:f4:f8:55:3e:a6:e8:63:d2:b4:26:3b:1a:
                    13:c8:97:d6:5b:5e:75:2d:16:5c:90:26:e0:06:ad:88:
                    95:e8:05:fc:b8:4a:77:02:0e:45:0c:11:6e:fe:70:82:
                    32:d2:be:b7:f0:c1:f1:8c:2c:1f:34:c1:e3:73:6c:5c:
                    76:70:77:9b:5f:2b:e0:07:09:46:4f:bf:47:cf:25:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c8:b9:48:46:5a:4a:bc:1b:4b:4e:8f:c8:91:11:0c:0c:
        ad:3c:70:86:9b:e3:85:73:9f:73:06:cd:83:8b:fa:c0:
        ab:34:02:c3:f8:eb:6e:55:4a:85:d7:8e:29:c2:b9:12:
        74:29:cf:d7:14:fb:d7:59:86:e7:06:8a:36:32:a0:47:
        e2:f5:f3:b3:1c:f1:fd:f3:64:e9:d3:27:d2:80:e9:c4:
        4c:50:b6:91:7f:99:cc:d9:fc:b7:93:c1:f2:f5:c8:fe:
        79:db:80:4b:39:6a:b6:c5:3d:af:0c:f3:f8:90:f3:5e:
        d3:d2:50:06:6b:2e:b5:f8:55:7f:ba:99:18:73:1e:3c:
        e9:d9:6d:74:c5:db:10:ca:ee:5f:35:67:f2:7a:60:04:
        ab:ac:9a:ae:ca:91:31:86:6b:4c:6e:8e:fc:7f:bb:ca:
        9b:3c:10:2e:b8:ee:a5:a7:45:55:6c:94:81:b0:ee:12:
        51:9a:a0:25:60:00:2a:ba:b6:f4:9f:31:d2:88:17:0b:
        07:d1:80:3c:e2:2f:7b:b5:cd:ed:6e:e9:ac:00:85:62:
        c5:28:35:0e:0c:b9:69:35:80:c4:55:07:41:96:f5:6a:
        5d:af:b5:fe:00:0c:70:4c:2e:2f:c4:52:d3:bb:ce:f5:
        ab:5a:52:ee:99:f5:be:4c:1a:35:00:db:62:5e:b9:01
    Fingerprint (SHA-256):
        8D:97:AB:15:58:96:BD:E0:A9:86:D3:62:D1:26:21:E9:71:F9:AE:21:39:CF:A1:AC:A5:3F:51:CA:60:B6:6D:41
    Fingerprint (SHA1):
        15:56:98:1C:E7:2C:8E:BF:ED:16:4E:66:9F:57:63:58:8F:DD:31:98
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7378: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7379: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235944 (0x300e2f28)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:27 2017
            Not After : Sat Aug 06 23:59:27 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:e7:e4:cf:35:36:fa:fc:23:6c:ce:d3:fb:d1:c9:10:
                    51:d1:ea:92:63:1d:31:d7:ca:0e:8d:6d:b0:53:38:1c:
                    1c:45:27:c5:c2:a5:6b:8c:a8:b6:5a:2d:e3:0d:21:a5:
                    cf:a2:5b:d2:37:3c:40:16:2f:77:15:4a:6d:3d:77:95:
                    63:6c:1d:d5:cb:a9:2f:45:af:c3:4e:00:f4:10:92:b3:
                    4f:c2:73:00:91:99:4f:85:11:1a:ef:bc:b6:4d:09:5b:
                    c6:5e:b8:44:cd:9d:f4:55:74:3f:62:f3:41:e6:05:57:
                    06:58:86:20:ee:94:a9:cd:52:01:22:12:25:1d:29:9b:
                    b6:2b:8c:93:fd:c0:87:43:da:6f:d1:44:1a:1d:50:43:
                    c0:5a:c9:0d:3c:13:10:f5:61:94:9d:3a:d6:ed:0d:80:
                    4b:d3:c9:e1:ba:2d:6e:00:e7:9a:59:92:57:f6:22:c9:
                    69:81:f8:36:4d:05:b2:ed:e5:33:8d:20:e0:6a:87:0c:
                    f4:6c:2e:72:dc:78:4d:1d:ca:c1:7a:31:cd:66:96:ad:
                    36:90:22:96:b5:91:e5:e9:de:3f:3a:7a:04:62:db:f2:
                    49:58:95:59:93:d6:3f:cc:43:53:76:49:87:a0:73:ce:
                    ef:57:81:27:38:c9:d2:7e:a4:de:2b:77:7a:3e:63:0b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        80:69:9d:45:a6:41:a1:e4:1f:86:69:2c:14:0f:3e:f1:
        ee:db:26:6b:48:69:9b:e4:56:c8:9b:0b:b5:0a:09:be:
        61:ed:1a:01:2f:dc:10:9f:76:f2:de:1c:69:11:46:4f:
        d4:3a:04:86:7c:ca:fb:54:33:b8:24:1f:7e:cb:be:15:
        78:71:42:a7:15:ab:a9:66:35:ea:e3:bd:f2:72:5c:cb:
        43:57:38:16:54:30:d2:8b:8f:d1:4e:d8:06:25:76:df:
        36:49:5e:cc:58:26:7c:9a:35:91:74:d1:7e:99:7a:b0:
        17:03:84:75:23:02:44:47:af:30:d7:af:0e:3a:94:63:
        29:20:1c:8d:e7:05:98:76:f0:35:9d:7d:46:51:de:ea:
        23:45:89:5a:c4:59:e2:77:27:1d:10:b5:91:92:67:7e:
        47:9f:9f:7b:6d:d2:35:a4:bd:95:bd:26:4f:96:52:27:
        20:2f:72:34:38:d2:07:51:da:7d:8f:f2:5c:68:30:02:
        ea:93:f3:db:19:10:5c:24:2c:43:50:d6:ae:f0:27:ea:
        13:cf:86:c1:72:b1:a4:8e:2a:d8:a5:68:91:7b:5a:f4:
        55:5a:1b:48:63:23:b0:8e:77:8d:7d:e1:f1:79:b8:15:
        29:68:94:fc:af:8c:b0:ed:91:0c:c1:75:94:af:53:00
    Fingerprint (SHA-256):
        CD:46:46:3A:C0:79:F0:AE:6F:C7:F6:A5:39:EF:68:DE:51:6F:A3:5E:31:DA:D4:C0:2C:97:DD:9B:36:D2:01:7A
    Fingerprint (SHA1):
        49:ED:6C:2C:11:D7:B8:97:A8:8A:C7:A1:E2:BE:75:CB:EC:59:6B:54
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7380: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7381: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7382: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235945 (0x300e2f29)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:27 2017
            Not After : Sat Aug 06 23:59:27 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:d0:bb:dc:34:34:d2:c4:3c:3f:32:6a:b2:ac:b0:c6:
                    36:d4:1c:99:8f:4c:e9:2e:f0:5d:a0:96:c2:5d:be:80:
                    c6:2b:17:31:88:55:fe:5e:50:83:39:e1:46:74:7f:de:
                    d3:29:80:06:f5:17:96:0c:fa:d2:60:2a:45:b2:80:dc:
                    a7:56:e8:a8:3a:37:47:63:ba:5d:0c:a2:a6:de:5a:d2:
                    87:a4:5c:88:c7:d5:7d:1b:cf:3d:99:f7:83:41:17:b5:
                    c6:20:aa:90:83:64:43:a2:64:8e:7a:71:25:36:dc:04:
                    76:98:23:68:92:1e:43:01:0c:ca:76:af:bb:1e:7a:26:
                    21:0c:1e:3e:5a:e4:5c:ed:c4:2a:be:f4:3f:75:c1:36:
                    d8:71:ee:1d:36:10:d4:b6:63:92:5a:6e:b6:27:c2:3e:
                    b0:61:f4:74:92:cd:76:aa:73:60:28:e7:8d:0a:75:89:
                    de:ca:48:a7:84:df:84:10:1a:8f:57:24:d3:1d:e8:01:
                    63:ed:d1:30:8e:24:88:b3:b8:88:02:f9:06:47:9c:5c:
                    b0:5b:1c:9c:78:6e:6f:60:e2:e1:62:65:48:22:0b:84:
                    b8:c6:bf:1d:51:87:69:ff:90:29:8d:3d:70:29:e4:9c:
                    ff:26:fb:fc:d3:9e:50:03:0d:85:11:89:33:41:eb:bf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:dd:26:91:7f:3f:7b:2e:0d:f8:e0:d9:6e:6b:69:a4:
        91:2f:bd:0c:68:d7:13:02:8a:21:57:b4:22:2a:08:e3:
        06:13:9f:ab:94:6d:31:e2:1e:78:a6:b0:ab:74:d2:b5:
        da:4b:8c:38:2c:7a:49:4d:7f:a6:c2:3f:80:00:b1:f3:
        ba:46:14:50:8f:43:7d:21:7e:f2:f7:45:d4:36:8e:35:
        27:e0:5b:6a:98:e0:a0:50:5f:ed:42:c3:4c:48:ce:05:
        32:51:68:3b:a4:f7:5d:eb:34:46:40:97:e8:1e:d9:b6:
        52:f3:6d:6c:d2:48:c7:73:91:e8:c2:12:a2:51:8e:f7:
        50:70:f3:37:cb:d6:e2:bb:d4:50:63:26:19:e2:ce:73:
        b9:dc:ac:20:22:d5:a8:fc:47:81:e9:de:72:f0:7a:59:
        01:bc:b1:e5:6f:fc:b3:54:b1:7e:8f:3e:c2:c1:7f:6b:
        b9:d8:67:b9:b2:c0:86:6f:d4:78:85:11:63:a3:06:d3:
        45:ab:40:76:03:57:f6:32:b2:88:42:e6:20:26:a2:f9:
        df:63:2a:ce:05:92:4b:ae:4b:a6:8a:6e:3e:d0:38:82:
        9d:1e:fd:fa:53:7b:0f:0a:a7:e4:0f:d9:42:3d:13:a0:
        32:71:ae:b6:f8:f9:ab:0c:b3:8c:b0:51:a9:b2:84:68
    Fingerprint (SHA-256):
        05:56:BA:9A:26:25:7C:66:91:B0:93:83:F9:2A:E6:86:30:83:2A:33:5C:9E:B9:E3:63:8B:F7:81:3D:03:E7:4A
    Fingerprint (SHA1):
        43:E0:04:00:BE:D1:2F:33:30:84:95:AB:41:07:CA:E7:0A:70:0C:DC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #7383: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7384: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806235948 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7385: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7386: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7387: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7388: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 806235949   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7389: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7390: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7391: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7392: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 806235950   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA1Root-806235857.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7393: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7394: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7395: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7396: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 806235951   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7397: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7398: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #7399: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235948 (0x300e2f2c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:28 2017
            Not After : Sat Aug 06 23:59:28 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:56:85:33:8c:da:9e:f8:85:4e:56:c8:9b:65:32:7d:
                    c8:ab:33:70:4e:01:d6:a1:16:9d:2e:af:4c:34:25:4d:
                    9d:74:6f:ad:fa:ac:f3:0c:ad:c7:d5:b7:14:c6:e6:d4:
                    9c:54:ee:c8:52:db:a9:4a:69:9b:b1:3b:bf:42:17:1d:
                    ed:97:cd:f3:76:b5:33:63:78:62:e6:de:f8:6e:77:69:
                    88:6c:51:60:5b:58:84:ee:9b:9f:af:86:4b:cd:cd:a1:
                    92:be:0b:14:8c:11:36:1d:e7:8c:f8:f3:ce:25:07:9b:
                    c5:68:61:ae:99:d7:e3:64:e3:87:97:4b:c7:e5:44:4e:
                    07:9f:60:d8:50:d5:84:67:bf:a1:a0:bd:fb:29:36:61:
                    5f:3e:3b:ee:97:ca:94:2c:f7:9e:8a:9e:e4:42:40:a3:
                    07:05:64:58:38:3c:12:da:62:4a:73:b2:a9:01:02:ce:
                    d6:1b:cc:df:34:93:02:8d:09:4f:45:24:0a:67:ed:04:
                    a1:42:51:e8:77:7a:54:29:c3:31:4b:b0:78:30:18:c7:
                    3e:a3:63:8f:2d:e5:40:80:c6:22:9a:76:40:b8:ad:fb:
                    7e:ff:ff:4e:45:5b:1e:b0:a0:87:77:f8:44:51:a6:ef:
                    78:4e:40:eb:5b:ce:64:cd:f6:96:63:f5:54:7f:4d:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9b:68:34:3a:58:73:f8:d1:0f:6d:27:01:a9:c3:e9:ef:
        fb:92:a8:b8:bc:f9:9b:d1:10:c4:9e:e6:c5:19:58:29:
        a1:4a:38:0f:f8:02:82:34:af:b8:53:d3:c4:90:dd:d2:
        63:12:52:f4:73:41:44:e0:40:83:10:34:87:37:21:c6:
        85:79:31:d6:9c:dd:e7:8c:5e:55:66:48:67:3a:1d:10:
        6f:fd:53:27:b0:6b:e0:59:a8:7d:10:89:f2:66:48:89:
        44:48:e1:2a:62:75:6d:cb:c8:9b:68:7c:df:c4:3c:ae:
        21:02:b6:b9:d3:91:93:5d:a3:b7:12:38:b9:0d:9e:b3:
        36:35:eb:94:09:b8:2b:88:88:e2:9f:07:a9:9c:b3:5b:
        18:1d:57:31:ef:6d:42:6d:55:8f:41:9f:9a:b2:b4:fe:
        2e:46:6c:cd:01:d5:de:94:bf:62:18:0c:bf:13:1b:ad:
        c6:25:ba:11:c5:ac:e2:0f:0c:db:45:d4:08:bc:1d:df:
        06:c8:7e:71:cb:61:ac:0c:71:d8:f9:32:65:ea:b7:3d:
        93:47:0d:a6:d9:a8:d9:28:8f:d6:2c:fe:e3:f6:2f:c6:
        57:3c:b7:6f:01:34:3a:f5:ce:a6:4b:ef:4f:9f:0b:6d:
        b5:0c:2b:92:18:9a:5c:ed:82:b5:24:20:e7:88:06:0a
    Fingerprint (SHA-256):
        5E:08:BF:33:76:D3:7F:A9:CA:DB:D6:89:FB:3C:A9:3A:B2:E9:05:F8:22:4B:87:D0:70:A7:BD:03:83:D7:C8:9D
    Fingerprint (SHA1):
        F1:31:DB:82:E8:E8:CB:40:19:74:B7:83:DD:F0:DE:9F:7A:A2:30:0C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7400: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #7401: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806235952 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7402: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #7403: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #7404: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806235953 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7405: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #7406: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #7407: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7408: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 806235954 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7409: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7410: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 806235955 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7411: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7412: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #7413: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7414: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7415: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 806235956   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-Bridge-806235858.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7416: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7417: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7418: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7419: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 806235957   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7420: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7421: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #7422: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #7423: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235953 (0x300e2f31)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:28 2017
            Not After : Sat Aug 06 23:59:28 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:2d:52:26:f1:fe:f0:bd:55:56:db:e1:3a:36:2e:1d:
                    fc:8e:02:f2:42:1a:7b:25:62:3f:2a:fc:b2:54:4e:fd:
                    8e:a3:cd:56:de:1a:e7:bf:d8:d5:82:af:7e:27:d5:92:
                    11:4d:da:55:3c:dd:4b:2a:78:de:a8:78:62:ad:b6:01:
                    9b:4a:0f:f2:b4:8f:f1:fd:e0:0f:8d:7f:ff:97:08:74:
                    a7:61:58:f4:34:10:28:19:16:84:99:e0:f9:f8:51:54:
                    9c:f9:c7:78:2b:88:74:41:2a:b6:0d:13:5a:ad:87:2d:
                    f0:82:fd:12:1a:63:45:e1:e5:ce:b7:ce:28:b1:c2:da:
                    6e:37:2e:b0:83:25:66:98:b9:e1:cb:30:a4:df:b8:74:
                    ba:ec:93:ac:94:b7:53:58:58:b0:fc:73:8e:8a:ba:01:
                    81:28:f9:da:e4:4d:94:d2:0e:59:dc:01:cf:55:aa:bc:
                    c8:d3:e8:43:aa:98:23:6a:f2:fc:c4:fd:1e:f2:9a:4b:
                    b3:dd:a1:f9:b2:fa:13:f8:51:42:08:6c:5f:ae:82:12:
                    90:20:a6:7c:9a:fe:ba:e5:5e:33:43:e8:38:90:5b:0b:
                    59:4b:0d:b2:0b:aa:10:72:f8:18:56:7f:92:c7:24:9a:
                    4f:40:2d:d7:af:c9:4b:42:28:74:b1:76:c4:2d:88:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:fa:8c:16:97:85:bf:fb:86:20:b2:a9:01:22:53:c9:
        3d:f6:fd:cf:78:ea:8a:66:0a:b4:ea:e7:4d:1f:87:a8:
        ce:d0:57:c6:2d:86:c6:d3:4f:50:6d:c2:af:f8:a6:32:
        59:9a:6a:99:ef:ad:ef:80:d6:10:0d:ae:88:17:c3:4a:
        52:0f:6c:bb:30:f0:3c:f2:d8:ba:5e:31:3d:fa:b2:30:
        16:87:88:24:d7:28:5d:fc:46:2c:14:ed:ce:f6:22:69:
        e5:26:2b:38:fd:2b:37:29:b7:00:af:d9:b0:32:13:e0:
        fd:1d:d7:24:3d:a8:13:e1:60:e0:b9:5b:70:f0:b8:7f:
        0e:fe:1e:08:76:3e:01:e8:1b:0f:68:d8:e5:3e:f0:4a:
        93:13:76:31:e4:d2:e7:83:14:99:a7:d6:f9:64:9a:50:
        84:20:0f:62:c9:61:b3:a2:92:55:2f:b6:81:6e:76:22:
        28:c1:c0:a9:d8:f6:0b:31:fd:dc:10:3c:f3:70:d1:af:
        75:32:ec:12:d4:73:30:09:85:d1:23:1a:0c:94:e7:1f:
        fd:6a:da:6f:6d:54:e7:7f:16:f9:89:23:8c:6d:80:d1:
        36:57:2d:f6:ef:fe:4f:aa:f0:ef:1d:5c:78:7f:37:e4:
        69:cc:2c:a0:80:44:28:3e:7c:79:91:40:95:ce:14:33
    Fingerprint (SHA-256):
        E8:18:D1:B1:ED:95:A9:04:18:DF:9B:E7:A1:0B:13:3D:88:8B:74:E5:0E:F8:75:28:6D:5B:4B:DA:43:26:6A:17
    Fingerprint (SHA1):
        06:30:2B:82:3E:FE:1B:4F:4A:79:A9:17:6D:BF:5B:3A:4C:33:0F:AC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7424: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235953 (0x300e2f31)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:28 2017
            Not After : Sat Aug 06 23:59:28 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:2d:52:26:f1:fe:f0:bd:55:56:db:e1:3a:36:2e:1d:
                    fc:8e:02:f2:42:1a:7b:25:62:3f:2a:fc:b2:54:4e:fd:
                    8e:a3:cd:56:de:1a:e7:bf:d8:d5:82:af:7e:27:d5:92:
                    11:4d:da:55:3c:dd:4b:2a:78:de:a8:78:62:ad:b6:01:
                    9b:4a:0f:f2:b4:8f:f1:fd:e0:0f:8d:7f:ff:97:08:74:
                    a7:61:58:f4:34:10:28:19:16:84:99:e0:f9:f8:51:54:
                    9c:f9:c7:78:2b:88:74:41:2a:b6:0d:13:5a:ad:87:2d:
                    f0:82:fd:12:1a:63:45:e1:e5:ce:b7:ce:28:b1:c2:da:
                    6e:37:2e:b0:83:25:66:98:b9:e1:cb:30:a4:df:b8:74:
                    ba:ec:93:ac:94:b7:53:58:58:b0:fc:73:8e:8a:ba:01:
                    81:28:f9:da:e4:4d:94:d2:0e:59:dc:01:cf:55:aa:bc:
                    c8:d3:e8:43:aa:98:23:6a:f2:fc:c4:fd:1e:f2:9a:4b:
                    b3:dd:a1:f9:b2:fa:13:f8:51:42:08:6c:5f:ae:82:12:
                    90:20:a6:7c:9a:fe:ba:e5:5e:33:43:e8:38:90:5b:0b:
                    59:4b:0d:b2:0b:aa:10:72:f8:18:56:7f:92:c7:24:9a:
                    4f:40:2d:d7:af:c9:4b:42:28:74:b1:76:c4:2d:88:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:fa:8c:16:97:85:bf:fb:86:20:b2:a9:01:22:53:c9:
        3d:f6:fd:cf:78:ea:8a:66:0a:b4:ea:e7:4d:1f:87:a8:
        ce:d0:57:c6:2d:86:c6:d3:4f:50:6d:c2:af:f8:a6:32:
        59:9a:6a:99:ef:ad:ef:80:d6:10:0d:ae:88:17:c3:4a:
        52:0f:6c:bb:30:f0:3c:f2:d8:ba:5e:31:3d:fa:b2:30:
        16:87:88:24:d7:28:5d:fc:46:2c:14:ed:ce:f6:22:69:
        e5:26:2b:38:fd:2b:37:29:b7:00:af:d9:b0:32:13:e0:
        fd:1d:d7:24:3d:a8:13:e1:60:e0:b9:5b:70:f0:b8:7f:
        0e:fe:1e:08:76:3e:01:e8:1b:0f:68:d8:e5:3e:f0:4a:
        93:13:76:31:e4:d2:e7:83:14:99:a7:d6:f9:64:9a:50:
        84:20:0f:62:c9:61:b3:a2:92:55:2f:b6:81:6e:76:22:
        28:c1:c0:a9:d8:f6:0b:31:fd:dc:10:3c:f3:70:d1:af:
        75:32:ec:12:d4:73:30:09:85:d1:23:1a:0c:94:e7:1f:
        fd:6a:da:6f:6d:54:e7:7f:16:f9:89:23:8c:6d:80:d1:
        36:57:2d:f6:ef:fe:4f:aa:f0:ef:1d:5c:78:7f:37:e4:
        69:cc:2c:a0:80:44:28:3e:7c:79:91:40:95:ce:14:33
    Fingerprint (SHA-256):
        E8:18:D1:B1:ED:95:A9:04:18:DF:9B:E7:A1:0B:13:3D:88:8B:74:E5:0E:F8:75:28:6D:5B:4B:DA:43:26:6A:17
    Fingerprint (SHA1):
        06:30:2B:82:3E:FE:1B:4F:4A:79:A9:17:6D:BF:5B:3A:4C:33:0F:AC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7425: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #7426: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806235958 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7427: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #7428: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #7429: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806235959 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7430: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #7431: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #7432: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7433: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 806235960 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7434: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7435: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 806235961 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7436: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7437: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #7438: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7439: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7440: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 806235962   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-Bridge-806235859.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7441: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7442: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7443: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7444: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 806235963   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7445: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7446: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7447: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7448: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 806235964   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-BridgeNavy-806235860.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7449: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7450: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7451: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7452: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 806235965   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7453: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7454: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #7455: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #7456: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235959 (0x300e2f37)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:30 2017
            Not After : Sat Aug 06 23:59:30 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:3a:d7:f4:1e:54:87:10:89:ed:44:9a:4c:5f:ce:94:
                    58:3c:7d:20:3e:ab:93:e6:55:a8:3e:d9:a5:63:c9:99:
                    70:d8:46:d9:55:99:57:09:67:40:72:10:df:78:8a:b5:
                    a7:05:17:e3:83:7b:8d:f7:48:2b:29:12:b8:f1:12:48:
                    b8:c1:d5:bd:0b:34:de:8b:83:57:2b:62:0c:6a:27:67:
                    21:7c:30:aa:c2:26:d2:22:36:27:ab:55:45:1e:3b:c9:
                    ec:07:a9:7a:66:13:03:44:0f:62:3e:65:ac:9a:f2:96:
                    fd:4d:62:bb:9a:53:da:0b:c8:77:c6:a4:de:a6:22:57:
                    5c:16:20:fc:c6:b7:91:6b:eb:9a:f7:90:2f:c1:f6:62:
                    94:c6:f8:6f:b7:64:4b:90:ec:7b:7a:21:3b:14:05:86:
                    f2:5f:72:00:60:40:a8:c9:c3:b2:e8:17:18:70:d2:f8:
                    99:44:cb:db:04:13:af:80:44:6e:3d:56:88:d3:ed:cf:
                    db:91:f9:05:65:b3:23:d3:51:e5:73:55:ac:a4:db:34:
                    ba:7e:1e:40:43:35:09:13:0e:f6:f4:1b:55:58:33:d5:
                    95:47:c7:bc:15:86:f3:0b:df:7f:f3:96:66:de:ae:e0:
                    66:db:fd:f0:7d:d8:03:1d:ff:14:d1:df:f0:01:71:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:3e:e5:b8:3e:63:f8:c6:ab:32:a2:ef:af:bf:87:ec:
        56:6a:88:a2:56:d1:ea:91:c1:43:9e:0b:c2:53:a2:dd:
        97:f0:ee:7f:6a:c9:90:ea:c3:14:82:6c:16:b2:35:4c:
        80:a2:8d:0c:0c:09:72:82:ab:69:2e:56:eb:07:28:e3:
        7b:db:6c:96:e1:cf:de:9a:3b:9d:e9:15:8b:42:bf:b8:
        f7:39:42:7b:04:7d:7a:af:f4:f2:c0:9d:57:da:01:63:
        46:dc:1e:45:d6:be:64:8a:8a:69:f5:68:b8:f1:b4:66:
        3a:a6:16:b7:98:ec:ee:c5:5b:ac:f5:c2:1d:b6:56:4f:
        f3:8c:4b:7d:26:a0:bc:d4:5d:da:2c:61:f3:d1:f2:1b:
        b8:f8:f1:60:c8:19:5c:ee:c0:ca:48:f5:70:8e:ac:7e:
        b6:3c:a8:ac:ce:4e:69:00:6f:7d:48:df:47:2d:77:d5:
        32:21:ef:de:f4:13:4b:11:d7:1b:ce:71:e4:b4:65:31:
        ff:7c:19:6f:9f:f0:0f:e6:fd:8c:bc:da:8d:8f:94:46:
        8c:20:75:88:e9:4a:36:a6:28:15:89:96:95:7d:f1:ef:
        44:cf:05:38:10:86:4e:89:9e:ed:45:86:03:c7:24:dd:
        9a:b1:af:4e:0a:78:19:bf:df:d5:82:39:41:9d:f7:d2
    Fingerprint (SHA-256):
        5C:46:2B:49:6C:9A:27:9E:15:39:17:E2:7B:A9:52:77:DF:70:3B:88:F6:0A:47:8B:83:35:E2:41:70:1A:AC:E7
    Fingerprint (SHA1):
        66:EF:AF:E1:A1:AC:81:6B:BE:1D:7A:A4:D6:BB:93:18:FB:0A:07:26
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7457: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235959 (0x300e2f37)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:30 2017
            Not After : Sat Aug 06 23:59:30 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:3a:d7:f4:1e:54:87:10:89:ed:44:9a:4c:5f:ce:94:
                    58:3c:7d:20:3e:ab:93:e6:55:a8:3e:d9:a5:63:c9:99:
                    70:d8:46:d9:55:99:57:09:67:40:72:10:df:78:8a:b5:
                    a7:05:17:e3:83:7b:8d:f7:48:2b:29:12:b8:f1:12:48:
                    b8:c1:d5:bd:0b:34:de:8b:83:57:2b:62:0c:6a:27:67:
                    21:7c:30:aa:c2:26:d2:22:36:27:ab:55:45:1e:3b:c9:
                    ec:07:a9:7a:66:13:03:44:0f:62:3e:65:ac:9a:f2:96:
                    fd:4d:62:bb:9a:53:da:0b:c8:77:c6:a4:de:a6:22:57:
                    5c:16:20:fc:c6:b7:91:6b:eb:9a:f7:90:2f:c1:f6:62:
                    94:c6:f8:6f:b7:64:4b:90:ec:7b:7a:21:3b:14:05:86:
                    f2:5f:72:00:60:40:a8:c9:c3:b2:e8:17:18:70:d2:f8:
                    99:44:cb:db:04:13:af:80:44:6e:3d:56:88:d3:ed:cf:
                    db:91:f9:05:65:b3:23:d3:51:e5:73:55:ac:a4:db:34:
                    ba:7e:1e:40:43:35:09:13:0e:f6:f4:1b:55:58:33:d5:
                    95:47:c7:bc:15:86:f3:0b:df:7f:f3:96:66:de:ae:e0:
                    66:db:fd:f0:7d:d8:03:1d:ff:14:d1:df:f0:01:71:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:3e:e5:b8:3e:63:f8:c6:ab:32:a2:ef:af:bf:87:ec:
        56:6a:88:a2:56:d1:ea:91:c1:43:9e:0b:c2:53:a2:dd:
        97:f0:ee:7f:6a:c9:90:ea:c3:14:82:6c:16:b2:35:4c:
        80:a2:8d:0c:0c:09:72:82:ab:69:2e:56:eb:07:28:e3:
        7b:db:6c:96:e1:cf:de:9a:3b:9d:e9:15:8b:42:bf:b8:
        f7:39:42:7b:04:7d:7a:af:f4:f2:c0:9d:57:da:01:63:
        46:dc:1e:45:d6:be:64:8a:8a:69:f5:68:b8:f1:b4:66:
        3a:a6:16:b7:98:ec:ee:c5:5b:ac:f5:c2:1d:b6:56:4f:
        f3:8c:4b:7d:26:a0:bc:d4:5d:da:2c:61:f3:d1:f2:1b:
        b8:f8:f1:60:c8:19:5c:ee:c0:ca:48:f5:70:8e:ac:7e:
        b6:3c:a8:ac:ce:4e:69:00:6f:7d:48:df:47:2d:77:d5:
        32:21:ef:de:f4:13:4b:11:d7:1b:ce:71:e4:b4:65:31:
        ff:7c:19:6f:9f:f0:0f:e6:fd:8c:bc:da:8d:8f:94:46:
        8c:20:75:88:e9:4a:36:a6:28:15:89:96:95:7d:f1:ef:
        44:cf:05:38:10:86:4e:89:9e:ed:45:86:03:c7:24:dd:
        9a:b1:af:4e:0a:78:19:bf:df:d5:82:39:41:9d:f7:d2
    Fingerprint (SHA-256):
        5C:46:2B:49:6C:9A:27:9E:15:39:17:E2:7B:A9:52:77:DF:70:3B:88:F6:0A:47:8B:83:35:E2:41:70:1A:AC:E7
    Fingerprint (SHA1):
        66:EF:AF:E1:A1:AC:81:6B:BE:1D:7A:A4:D6:BB:93:18:FB:0A:07:26
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7458: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #7459: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235958 (0x300e2f36)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:29 2017
            Not After : Sat Aug 06 23:59:29 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:b3:c9:5c:be:58:6d:96:58:b6:df:fc:b1:6b:39:c6:
                    f9:1e:c3:2a:48:a8:84:af:c5:3c:64:59:09:fc:27:c4:
                    8e:1e:20:d0:d3:76:79:0f:84:af:f5:e5:c7:4f:aa:7c:
                    d3:29:0b:18:2b:f5:c4:39:29:16:e4:04:c3:2c:fc:c7:
                    4a:e9:82:6a:26:57:45:1a:55:93:bf:c8:44:fe:3b:06:
                    29:56:f8:ab:a3:48:61:2c:37:4b:95:31:bc:3c:3b:9f:
                    c0:b3:2a:11:22:91:5c:a5:62:29:0b:73:c6:7a:c0:a8:
                    f2:57:a7:33:bd:ac:7c:ba:31:3a:4a:4f:5a:84:9c:e5:
                    78:1c:6a:f8:99:43:a7:2d:8a:c5:d8:e1:70:a0:45:7b:
                    8a:7c:68:46:1f:16:1a:a1:1a:16:a3:62:82:51:ce:88:
                    b0:cd:c3:84:df:21:6f:34:b1:65:60:1d:73:7e:4a:5d:
                    20:bd:cc:17:f5:6d:37:40:59:62:af:31:cb:31:38:e3:
                    e9:5e:93:6b:b3:f1:d3:40:b8:e2:02:c2:3a:bc:49:7c:
                    6f:38:fa:4d:8d:0e:2e:2a:e8:f6:ff:74:38:05:73:e5:
                    ae:ce:3e:26:34:d5:d7:b5:bd:24:54:de:67:9d:c0:01:
                    ae:9d:86:35:6f:74:90:6a:83:5d:a4:d5:4d:d1:8f:43
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        33:ad:ab:df:c6:bf:67:d4:92:b9:cc:de:89:d9:ad:59:
        62:3a:02:bb:1a:91:a4:b3:99:21:a3:3b:eb:9b:4f:20:
        d5:53:80:da:ba:79:20:3d:79:67:66:73:50:26:5d:df:
        8e:6e:3f:4f:46:ec:cb:10:35:3a:9d:b1:a1:24:f1:e9:
        f1:c1:7a:c8:82:be:62:71:8b:ec:c5:e5:44:3f:1d:bb:
        dd:5f:d1:78:99:75:d7:15:19:89:ec:7c:c7:ad:b2:71:
        fa:7c:ae:7d:c8:16:b2:b2:6e:f7:d7:40:36:b1:9c:3f:
        8b:2f:82:d8:2d:a5:61:55:3d:e8:f4:b3:65:c0:d3:ea:
        1b:f5:ba:75:da:36:61:e2:4f:43:a5:c7:59:69:97:51:
        c4:ed:79:5c:b3:43:f0:b6:64:3b:ab:d1:4b:98:85:14:
        df:3e:74:52:62:25:2c:77:45:01:5f:7b:b4:9b:66:89:
        95:59:f2:51:9b:45:a1:d3:9a:42:26:5a:bc:b9:1a:f2:
        b2:8b:50:8e:54:0d:8c:69:0b:6a:a1:22:2c:49:41:ed:
        a9:99:22:eb:40:54:f4:0e:2f:40:e2:42:b5:13:f5:56:
        9a:7a:f0:4b:38:2f:49:93:bb:65:28:4c:fb:53:6c:65:
        a0:02:f9:3d:16:fd:59:30:3a:63:87:9e:96:6a:47:0e
    Fingerprint (SHA-256):
        FF:33:BF:D6:B6:44:40:B7:7D:97:1F:F7:31:9C:33:24:EB:BB:68:8C:6D:50:B6:7A:16:7E:CA:36:9F:50:58:81
    Fingerprint (SHA1):
        45:16:F3:82:5A:BF:7F:E6:5F:E3:46:2E:EB:0C:40:74:AB:AB:49:CF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7460: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235959 (0x300e2f37)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:30 2017
            Not After : Sat Aug 06 23:59:30 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:3a:d7:f4:1e:54:87:10:89:ed:44:9a:4c:5f:ce:94:
                    58:3c:7d:20:3e:ab:93:e6:55:a8:3e:d9:a5:63:c9:99:
                    70:d8:46:d9:55:99:57:09:67:40:72:10:df:78:8a:b5:
                    a7:05:17:e3:83:7b:8d:f7:48:2b:29:12:b8:f1:12:48:
                    b8:c1:d5:bd:0b:34:de:8b:83:57:2b:62:0c:6a:27:67:
                    21:7c:30:aa:c2:26:d2:22:36:27:ab:55:45:1e:3b:c9:
                    ec:07:a9:7a:66:13:03:44:0f:62:3e:65:ac:9a:f2:96:
                    fd:4d:62:bb:9a:53:da:0b:c8:77:c6:a4:de:a6:22:57:
                    5c:16:20:fc:c6:b7:91:6b:eb:9a:f7:90:2f:c1:f6:62:
                    94:c6:f8:6f:b7:64:4b:90:ec:7b:7a:21:3b:14:05:86:
                    f2:5f:72:00:60:40:a8:c9:c3:b2:e8:17:18:70:d2:f8:
                    99:44:cb:db:04:13:af:80:44:6e:3d:56:88:d3:ed:cf:
                    db:91:f9:05:65:b3:23:d3:51:e5:73:55:ac:a4:db:34:
                    ba:7e:1e:40:43:35:09:13:0e:f6:f4:1b:55:58:33:d5:
                    95:47:c7:bc:15:86:f3:0b:df:7f:f3:96:66:de:ae:e0:
                    66:db:fd:f0:7d:d8:03:1d:ff:14:d1:df:f0:01:71:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:3e:e5:b8:3e:63:f8:c6:ab:32:a2:ef:af:bf:87:ec:
        56:6a:88:a2:56:d1:ea:91:c1:43:9e:0b:c2:53:a2:dd:
        97:f0:ee:7f:6a:c9:90:ea:c3:14:82:6c:16:b2:35:4c:
        80:a2:8d:0c:0c:09:72:82:ab:69:2e:56:eb:07:28:e3:
        7b:db:6c:96:e1:cf:de:9a:3b:9d:e9:15:8b:42:bf:b8:
        f7:39:42:7b:04:7d:7a:af:f4:f2:c0:9d:57:da:01:63:
        46:dc:1e:45:d6:be:64:8a:8a:69:f5:68:b8:f1:b4:66:
        3a:a6:16:b7:98:ec:ee:c5:5b:ac:f5:c2:1d:b6:56:4f:
        f3:8c:4b:7d:26:a0:bc:d4:5d:da:2c:61:f3:d1:f2:1b:
        b8:f8:f1:60:c8:19:5c:ee:c0:ca:48:f5:70:8e:ac:7e:
        b6:3c:a8:ac:ce:4e:69:00:6f:7d:48:df:47:2d:77:d5:
        32:21:ef:de:f4:13:4b:11:d7:1b:ce:71:e4:b4:65:31:
        ff:7c:19:6f:9f:f0:0f:e6:fd:8c:bc:da:8d:8f:94:46:
        8c:20:75:88:e9:4a:36:a6:28:15:89:96:95:7d:f1:ef:
        44:cf:05:38:10:86:4e:89:9e:ed:45:86:03:c7:24:dd:
        9a:b1:af:4e:0a:78:19:bf:df:d5:82:39:41:9d:f7:d2
    Fingerprint (SHA-256):
        5C:46:2B:49:6C:9A:27:9E:15:39:17:E2:7B:A9:52:77:DF:70:3B:88:F6:0A:47:8B:83:35:E2:41:70:1A:AC:E7
    Fingerprint (SHA1):
        66:EF:AF:E1:A1:AC:81:6B:BE:1D:7A:A4:D6:BB:93:18:FB:0A:07:26
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7461: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235959 (0x300e2f37)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:30 2017
            Not After : Sat Aug 06 23:59:30 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:3a:d7:f4:1e:54:87:10:89:ed:44:9a:4c:5f:ce:94:
                    58:3c:7d:20:3e:ab:93:e6:55:a8:3e:d9:a5:63:c9:99:
                    70:d8:46:d9:55:99:57:09:67:40:72:10:df:78:8a:b5:
                    a7:05:17:e3:83:7b:8d:f7:48:2b:29:12:b8:f1:12:48:
                    b8:c1:d5:bd:0b:34:de:8b:83:57:2b:62:0c:6a:27:67:
                    21:7c:30:aa:c2:26:d2:22:36:27:ab:55:45:1e:3b:c9:
                    ec:07:a9:7a:66:13:03:44:0f:62:3e:65:ac:9a:f2:96:
                    fd:4d:62:bb:9a:53:da:0b:c8:77:c6:a4:de:a6:22:57:
                    5c:16:20:fc:c6:b7:91:6b:eb:9a:f7:90:2f:c1:f6:62:
                    94:c6:f8:6f:b7:64:4b:90:ec:7b:7a:21:3b:14:05:86:
                    f2:5f:72:00:60:40:a8:c9:c3:b2:e8:17:18:70:d2:f8:
                    99:44:cb:db:04:13:af:80:44:6e:3d:56:88:d3:ed:cf:
                    db:91:f9:05:65:b3:23:d3:51:e5:73:55:ac:a4:db:34:
                    ba:7e:1e:40:43:35:09:13:0e:f6:f4:1b:55:58:33:d5:
                    95:47:c7:bc:15:86:f3:0b:df:7f:f3:96:66:de:ae:e0:
                    66:db:fd:f0:7d:d8:03:1d:ff:14:d1:df:f0:01:71:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:3e:e5:b8:3e:63:f8:c6:ab:32:a2:ef:af:bf:87:ec:
        56:6a:88:a2:56:d1:ea:91:c1:43:9e:0b:c2:53:a2:dd:
        97:f0:ee:7f:6a:c9:90:ea:c3:14:82:6c:16:b2:35:4c:
        80:a2:8d:0c:0c:09:72:82:ab:69:2e:56:eb:07:28:e3:
        7b:db:6c:96:e1:cf:de:9a:3b:9d:e9:15:8b:42:bf:b8:
        f7:39:42:7b:04:7d:7a:af:f4:f2:c0:9d:57:da:01:63:
        46:dc:1e:45:d6:be:64:8a:8a:69:f5:68:b8:f1:b4:66:
        3a:a6:16:b7:98:ec:ee:c5:5b:ac:f5:c2:1d:b6:56:4f:
        f3:8c:4b:7d:26:a0:bc:d4:5d:da:2c:61:f3:d1:f2:1b:
        b8:f8:f1:60:c8:19:5c:ee:c0:ca:48:f5:70:8e:ac:7e:
        b6:3c:a8:ac:ce:4e:69:00:6f:7d:48:df:47:2d:77:d5:
        32:21:ef:de:f4:13:4b:11:d7:1b:ce:71:e4:b4:65:31:
        ff:7c:19:6f:9f:f0:0f:e6:fd:8c:bc:da:8d:8f:94:46:
        8c:20:75:88:e9:4a:36:a6:28:15:89:96:95:7d:f1:ef:
        44:cf:05:38:10:86:4e:89:9e:ed:45:86:03:c7:24:dd:
        9a:b1:af:4e:0a:78:19:bf:df:d5:82:39:41:9d:f7:d2
    Fingerprint (SHA-256):
        5C:46:2B:49:6C:9A:27:9E:15:39:17:E2:7B:A9:52:77:DF:70:3B:88:F6:0A:47:8B:83:35:E2:41:70:1A:AC:E7
    Fingerprint (SHA1):
        66:EF:AF:E1:A1:AC:81:6B:BE:1D:7A:A4:D6:BB:93:18:FB:0A:07:26
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7462: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #7463: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806235966 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7464: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #7465: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #7466: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806235967 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7467: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #7468: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #7469: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7470: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 806235968   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7471: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7472: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #7473: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7474: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 806235969   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7475: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7476: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #7477: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7478: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 806235970 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #7479: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7480: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 806235971 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #7481: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7482: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #7483: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7484: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7485: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 806235972   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7486: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7487: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7488: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7489: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 806235973   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7490: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7491: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7492: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7493: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 806235974   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7494: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7495: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7496: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7497: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 806235975   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7498: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7499: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7500: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235966 (0x300e2f3e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:32 2017
            Not After : Sat Aug 06 23:59:32 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e3:07:28:79:21:54:68:53:cd:0a:6a:6f:c6:99:44:60:
                    e2:e1:d9:66:30:37:5b:ee:73:24:22:51:09:bb:b2:3a:
                    a7:89:73:95:90:30:d9:55:0f:bd:c2:04:1f:e5:64:f9:
                    70:2a:c9:42:83:66:06:10:db:e0:5e:5e:0d:d0:e1:29:
                    31:b0:d5:66:44:de:da:fb:9b:e0:7c:19:fc:7f:ab:c6:
                    52:8c:89:2c:f1:75:ad:a9:9d:37:01:b7:e4:a7:e6:f1:
                    3e:4f:9f:bd:e6:e0:17:ad:f7:49:38:44:7f:17:84:9c:
                    09:50:b4:fc:02:eb:cd:84:74:c9:71:be:de:12:57:e6:
                    88:21:84:df:9d:10:19:88:2b:92:fd:d3:fd:2a:c4:bf:
                    7d:64:37:5f:d2:ab:b7:ae:e6:87:82:c7:59:02:8c:d7:
                    18:da:ce:50:48:5c:b7:2c:f7:62:c4:96:de:fd:2a:aa:
                    eb:bb:eb:fd:92:9d:8a:cf:bc:5d:a8:51:7b:2c:6f:5b:
                    0f:1f:81:82:1e:9d:4d:5e:29:5f:a4:92:a3:39:0d:ef:
                    28:ac:0b:56:a4:61:0a:8b:0b:a1:1f:19:d2:2b:84:95:
                    6d:85:c8:be:87:21:91:18:e8:ec:ba:f5:02:01:99:ae:
                    8c:2b:12:7b:f9:e5:31:14:b5:44:ab:3e:eb:5e:ff:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:8d:50:af:79:d9:08:6e:ce:18:1c:25:79:60:59:25:
        d2:17:01:4a:6d:f5:f1:c3:dc:4c:63:6a:ac:9e:f7:60:
        55:33:56:6a:b0:22:8a:0b:08:2b:95:b4:0d:bb:26:61:
        da:23:0f:8e:24:a4:30:84:55:c1:ad:f9:26:86:73:1b:
        68:45:cc:c1:11:03:88:b1:c8:9f:ea:47:40:07:7c:a7:
        ec:e6:50:c2:28:c5:02:7c:49:13:23:00:c3:28:07:67:
        25:b8:45:05:1f:04:36:a2:66:65:54:8c:0a:cf:d1:ba:
        ef:f4:88:48:7f:a2:ad:6c:28:dd:b5:ff:f6:2c:83:d4:
        57:ef:63:dd:60:ea:c4:6b:95:4c:69:64:56:e1:d7:89:
        b7:8a:27:85:b7:a2:6b:c0:55:5c:79:be:02:e5:a4:bd:
        18:f9:71:3c:c5:02:68:ae:0b:2f:f9:42:2b:2b:ee:7b:
        c2:18:c6:bc:75:86:77:8d:7a:f5:13:7f:a9:fe:1f:f5:
        15:d0:58:a6:e2:68:18:b9:98:c6:03:d3:5d:37:4b:18:
        4c:2a:ba:43:02:85:e2:f2:69:9e:ae:74:97:53:b3:79:
        a0:0a:fa:5f:c7:44:c9:41:08:a5:4e:d7:99:6d:89:2e:
        33:af:de:b9:2f:12:d1:5c:95:01:62:17:33:ff:b8:7d
    Fingerprint (SHA-256):
        AD:03:4D:52:0D:AB:05:2C:89:EF:AB:CA:73:B5:BE:4B:9C:16:E6:6D:80:C2:50:D6:02:3D:D9:2A:E3:55:0C:E4
    Fingerprint (SHA1):
        43:BB:27:83:88:7B:52:79:34:45:7E:DA:D1:FD:48:38:3F:23:D2:4F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #7501: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7502: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7503: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7504: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7505: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7506: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7507: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7508: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7509: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235967 (0x300e2f3f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:32 2017
            Not After : Sat Aug 06 23:59:32 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:c2:5c:e6:d1:70:6a:77:c8:5b:cd:4f:1e:a5:bb:90:
                    77:e0:2a:3a:0e:a2:5b:30:d9:91:fe:1d:04:41:93:55:
                    43:3e:d8:4a:8d:b4:b6:2f:99:c5:c5:b7:e0:81:77:9a:
                    65:03:86:36:a3:11:80:b0:c9:c5:c0:4c:1f:a8:b8:6d:
                    f7:8b:d0:cf:89:fc:4c:af:c9:68:9d:4b:9e:d3:9e:17:
                    37:ef:6e:7a:f5:13:f0:e6:43:41:f6:58:15:f8:49:17:
                    79:23:09:c5:15:6a:94:6d:8f:da:99:7b:98:1a:52:ad:
                    5a:c0:5f:63:8f:c0:34:f8:7f:05:7b:fe:5a:7e:c3:91:
                    c6:a2:77:cb:29:e4:de:36:00:c3:e1:0c:98:8a:bb:b4:
                    88:81:55:ec:ff:2c:49:a4:58:61:c4:c0:c5:7a:76:22:
                    ea:d2:6d:49:00:9d:33:f1:c6:53:42:30:39:5c:3b:3e:
                    cc:9f:5e:26:fb:82:cd:e5:07:39:f8:08:33:a1:9b:60:
                    11:a2:1a:5b:4a:3b:3e:b6:77:54:d2:4c:e7:7e:bb:b9:
                    54:31:5a:c5:46:de:62:7a:ec:c9:54:86:2a:17:e4:01:
                    7d:cc:9d:b2:c3:fd:53:b8:9d:a7:16:19:41:4c:b4:75:
                    19:f9:fd:91:7d:27:12:90:d9:76:e2:7d:fb:0f:72:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:f7:c8:e6:81:ba:69:1e:2c:74:33:86:18:b8:bb:4c:
        1e:2a:81:cd:0d:0b:9b:ce:27:19:d5:91:8d:1e:74:f7:
        df:15:e7:8b:85:9b:42:99:f2:1f:09:aa:3c:30:62:26:
        98:fb:50:d1:f5:7a:7f:60:61:21:3d:ec:eb:4a:98:58:
        18:ac:88:11:97:8e:96:fe:c5:ff:32:73:77:59:1e:6f:
        74:d4:54:99:2d:63:e5:bb:16:3f:bd:36:16:cb:69:80:
        1d:5b:c6:a6:56:9f:54:a8:62:c4:10:ea:c4:0e:28:a7:
        9c:ca:11:41:89:fc:2f:b0:9b:ce:bc:ba:12:2c:8d:6a:
        01:36:ae:fa:e2:51:ce:10:38:77:c3:da:d8:07:6e:e8:
        00:91:55:e2:af:45:41:54:20:67:0f:26:b5:f6:37:51:
        d3:c9:19:a7:a3:20:4c:09:31:0e:81:d3:c2:a2:7c:66:
        8b:ee:d5:cc:47:f8:7b:0b:10:75:ba:0c:95:38:4e:ed:
        e7:e8:0f:d5:e2:0c:c0:b2:5d:67:86:d3:c7:20:75:d5:
        3b:bb:f5:e3:3d:aa:22:4f:c3:21:b1:94:04:30:3e:df:
        a3:8a:91:74:7a:d4:ee:04:04:41:4e:9a:b1:4d:05:a6:
        83:da:a2:6e:94:b3:58:1a:74:8c:a1:7a:9d:04:9b:f3
    Fingerprint (SHA-256):
        86:5E:4C:42:05:28:5B:E0:8D:33:F3:B4:B4:A9:3E:3B:F7:6A:56:5A:6E:AA:DF:64:16:B7:1D:F9:2A:F8:6B:66
    Fingerprint (SHA1):
        55:A7:52:EC:1D:88:28:AD:D8:37:2A:59:5B:47:FC:95:F8:95:3D:BA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #7510: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7511: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7512: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7513: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7514: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7515: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7516: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #7517: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #7518: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #7519: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #7520: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #7521: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #7522: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #7523: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7524: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7525: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #7526: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #7527: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7528: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806235976 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7529: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7530: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7531: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7532: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 806235977   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7533: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7534: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7535: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7536: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 806235978   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7537: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7538: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7539: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7540: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 806235979   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7541: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7542: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7543: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7544: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 806235980   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7545: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7546: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #7547: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7548: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 806235981   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7549: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7550: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #7551: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7552: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 806235982   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7553: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7554: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #7555: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7556: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 806235983   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7557: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7558: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #7559: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7560: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 806235984   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7561: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7562: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7563: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235976 (0x300e2f48)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:35 2017
            Not After : Sat Aug 06 23:59:35 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    b1:41:f0:da:0a:31:87:da:64:3c:da:ed:74:a0:20:58:
                    3a:b6:f2:b8:8a:20:c4:44:45:8c:f0:2f:f5:dd:56:6b:
                    0e:dc:e2:e2:fc:31:f4:ff:31:66:87:2a:e9:c9:47:39:
                    51:3f:95:f8:eb:81:d9:ea:12:82:bd:5d:85:eb:42:db:
                    49:5c:dc:c8:e7:f1:bd:2b:f1:6a:92:74:19:91:98:49:
                    57:ca:35:c1:cc:7d:78:09:dd:02:3f:5f:26:9a:a0:64:
                    ee:4d:c1:29:74:4f:19:26:09:f9:f4:b4:49:b8:77:00:
                    5f:26:a0:c8:ef:63:a7:b3:ef:00:0e:63:0e:26:38:45:
                    4d:4e:ab:8e:07:92:81:be:81:e4:f1:30:d9:cf:a3:5a:
                    32:55:e6:8c:81:a2:ac:cc:e2:a0:b0:a8:2b:e4:b5:4e:
                    56:e2:da:3f:14:0a:36:1c:c9:78:a9:67:4a:b1:f1:75:
                    bf:fd:62:54:ec:50:82:b7:30:b0:8c:5c:f3:94:e0:65:
                    3b:12:34:93:81:88:7a:e3:a2:10:27:9e:37:2d:ea:41:
                    62:bd:26:04:46:27:53:72:c9:28:b3:5e:4d:ff:dd:13:
                    51:67:e8:ac:c3:5e:de:23:40:fd:07:c0:02:f2:e1:75:
                    94:9c:e7:5c:36:99:18:04:a2:86:25:db:58:b3:70:0c
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3c:02:1c:35:73:7a:94:03:83:52:f0:de:49:ef:02:
        87:e5:f6:94:04:33:63:b8:62:fc:c6:db:fe:9e:9d:5f:
        02:1c:4c:94:0b:68:b2:85:c4:3f:eb:d0:bf:41:78:09:
        08:b6:3e:9a:66:2f:7b:b5:b6:8a:2c:d2:83:e9
    Fingerprint (SHA-256):
        E8:01:9D:F2:17:0E:8F:02:7A:49:B6:98:38:84:B8:85:BD:8E:E8:4B:84:FB:3E:33:05:65:9A:C8:1D:03:79:09
    Fingerprint (SHA1):
        CB:E4:7C:4B:8C:BE:D8:87:C9:BF:33:FC:91:02:74:CE:60:C4:15:11
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7564: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235976 (0x300e2f48)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:35 2017
            Not After : Sat Aug 06 23:59:35 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    b1:41:f0:da:0a:31:87:da:64:3c:da:ed:74:a0:20:58:
                    3a:b6:f2:b8:8a:20:c4:44:45:8c:f0:2f:f5:dd:56:6b:
                    0e:dc:e2:e2:fc:31:f4:ff:31:66:87:2a:e9:c9:47:39:
                    51:3f:95:f8:eb:81:d9:ea:12:82:bd:5d:85:eb:42:db:
                    49:5c:dc:c8:e7:f1:bd:2b:f1:6a:92:74:19:91:98:49:
                    57:ca:35:c1:cc:7d:78:09:dd:02:3f:5f:26:9a:a0:64:
                    ee:4d:c1:29:74:4f:19:26:09:f9:f4:b4:49:b8:77:00:
                    5f:26:a0:c8:ef:63:a7:b3:ef:00:0e:63:0e:26:38:45:
                    4d:4e:ab:8e:07:92:81:be:81:e4:f1:30:d9:cf:a3:5a:
                    32:55:e6:8c:81:a2:ac:cc:e2:a0:b0:a8:2b:e4:b5:4e:
                    56:e2:da:3f:14:0a:36:1c:c9:78:a9:67:4a:b1:f1:75:
                    bf:fd:62:54:ec:50:82:b7:30:b0:8c:5c:f3:94:e0:65:
                    3b:12:34:93:81:88:7a:e3:a2:10:27:9e:37:2d:ea:41:
                    62:bd:26:04:46:27:53:72:c9:28:b3:5e:4d:ff:dd:13:
                    51:67:e8:ac:c3:5e:de:23:40:fd:07:c0:02:f2:e1:75:
                    94:9c:e7:5c:36:99:18:04:a2:86:25:db:58:b3:70:0c
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3c:02:1c:35:73:7a:94:03:83:52:f0:de:49:ef:02:
        87:e5:f6:94:04:33:63:b8:62:fc:c6:db:fe:9e:9d:5f:
        02:1c:4c:94:0b:68:b2:85:c4:3f:eb:d0:bf:41:78:09:
        08:b6:3e:9a:66:2f:7b:b5:b6:8a:2c:d2:83:e9
    Fingerprint (SHA-256):
        E8:01:9D:F2:17:0E:8F:02:7A:49:B6:98:38:84:B8:85:BD:8E:E8:4B:84:FB:3E:33:05:65:9A:C8:1D:03:79:09
    Fingerprint (SHA1):
        CB:E4:7C:4B:8C:BE:D8:87:C9:BF:33:FC:91:02:74:CE:60:C4:15:11
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7565: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235976 (0x300e2f48)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:35 2017
            Not After : Sat Aug 06 23:59:35 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    b1:41:f0:da:0a:31:87:da:64:3c:da:ed:74:a0:20:58:
                    3a:b6:f2:b8:8a:20:c4:44:45:8c:f0:2f:f5:dd:56:6b:
                    0e:dc:e2:e2:fc:31:f4:ff:31:66:87:2a:e9:c9:47:39:
                    51:3f:95:f8:eb:81:d9:ea:12:82:bd:5d:85:eb:42:db:
                    49:5c:dc:c8:e7:f1:bd:2b:f1:6a:92:74:19:91:98:49:
                    57:ca:35:c1:cc:7d:78:09:dd:02:3f:5f:26:9a:a0:64:
                    ee:4d:c1:29:74:4f:19:26:09:f9:f4:b4:49:b8:77:00:
                    5f:26:a0:c8:ef:63:a7:b3:ef:00:0e:63:0e:26:38:45:
                    4d:4e:ab:8e:07:92:81:be:81:e4:f1:30:d9:cf:a3:5a:
                    32:55:e6:8c:81:a2:ac:cc:e2:a0:b0:a8:2b:e4:b5:4e:
                    56:e2:da:3f:14:0a:36:1c:c9:78:a9:67:4a:b1:f1:75:
                    bf:fd:62:54:ec:50:82:b7:30:b0:8c:5c:f3:94:e0:65:
                    3b:12:34:93:81:88:7a:e3:a2:10:27:9e:37:2d:ea:41:
                    62:bd:26:04:46:27:53:72:c9:28:b3:5e:4d:ff:dd:13:
                    51:67:e8:ac:c3:5e:de:23:40:fd:07:c0:02:f2:e1:75:
                    94:9c:e7:5c:36:99:18:04:a2:86:25:db:58:b3:70:0c
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3c:02:1c:35:73:7a:94:03:83:52:f0:de:49:ef:02:
        87:e5:f6:94:04:33:63:b8:62:fc:c6:db:fe:9e:9d:5f:
        02:1c:4c:94:0b:68:b2:85:c4:3f:eb:d0:bf:41:78:09:
        08:b6:3e:9a:66:2f:7b:b5:b6:8a:2c:d2:83:e9
    Fingerprint (SHA-256):
        E8:01:9D:F2:17:0E:8F:02:7A:49:B6:98:38:84:B8:85:BD:8E:E8:4B:84:FB:3E:33:05:65:9A:C8:1D:03:79:09
    Fingerprint (SHA1):
        CB:E4:7C:4B:8C:BE:D8:87:C9:BF:33:FC:91:02:74:CE:60:C4:15:11
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #7566: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235976 (0x300e2f48)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:35 2017
            Not After : Sat Aug 06 23:59:35 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    b1:41:f0:da:0a:31:87:da:64:3c:da:ed:74:a0:20:58:
                    3a:b6:f2:b8:8a:20:c4:44:45:8c:f0:2f:f5:dd:56:6b:
                    0e:dc:e2:e2:fc:31:f4:ff:31:66:87:2a:e9:c9:47:39:
                    51:3f:95:f8:eb:81:d9:ea:12:82:bd:5d:85:eb:42:db:
                    49:5c:dc:c8:e7:f1:bd:2b:f1:6a:92:74:19:91:98:49:
                    57:ca:35:c1:cc:7d:78:09:dd:02:3f:5f:26:9a:a0:64:
                    ee:4d:c1:29:74:4f:19:26:09:f9:f4:b4:49:b8:77:00:
                    5f:26:a0:c8:ef:63:a7:b3:ef:00:0e:63:0e:26:38:45:
                    4d:4e:ab:8e:07:92:81:be:81:e4:f1:30:d9:cf:a3:5a:
                    32:55:e6:8c:81:a2:ac:cc:e2:a0:b0:a8:2b:e4:b5:4e:
                    56:e2:da:3f:14:0a:36:1c:c9:78:a9:67:4a:b1:f1:75:
                    bf:fd:62:54:ec:50:82:b7:30:b0:8c:5c:f3:94:e0:65:
                    3b:12:34:93:81:88:7a:e3:a2:10:27:9e:37:2d:ea:41:
                    62:bd:26:04:46:27:53:72:c9:28:b3:5e:4d:ff:dd:13:
                    51:67:e8:ac:c3:5e:de:23:40:fd:07:c0:02:f2:e1:75:
                    94:9c:e7:5c:36:99:18:04:a2:86:25:db:58:b3:70:0c
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3c:02:1c:35:73:7a:94:03:83:52:f0:de:49:ef:02:
        87:e5:f6:94:04:33:63:b8:62:fc:c6:db:fe:9e:9d:5f:
        02:1c:4c:94:0b:68:b2:85:c4:3f:eb:d0:bf:41:78:09:
        08:b6:3e:9a:66:2f:7b:b5:b6:8a:2c:d2:83:e9
    Fingerprint (SHA-256):
        E8:01:9D:F2:17:0E:8F:02:7A:49:B6:98:38:84:B8:85:BD:8E:E8:4B:84:FB:3E:33:05:65:9A:C8:1D:03:79:09
    Fingerprint (SHA1):
        CB:E4:7C:4B:8C:BE:D8:87:C9:BF:33:FC:91:02:74:CE:60:C4:15:11
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #7567: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7568: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 10 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7569: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7570: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #7571: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7572: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7573: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7574: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7575: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7576: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7577: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7578: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #7579: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7580: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7581: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7582: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #7583: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7584: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7585: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7586: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7587: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7588: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7589: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7590: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #7591: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7592: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7593: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7594: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170806235937Z
nextupdate=20180806235937Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Sun Aug 06 23:59:37 2017
    Next Update: Mon Aug 06 23:59:37 2018
    CRL Extensions:
chains.sh: #7595: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170806235937Z
nextupdate=20180806235937Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sun Aug 06 23:59:37 2017
    Next Update: Mon Aug 06 23:59:37 2018
    CRL Extensions:
chains.sh: #7596: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170806235937Z
nextupdate=20180806235937Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Sun Aug 06 23:59:37 2017
    Next Update: Mon Aug 06 23:59:37 2018
    CRL Extensions:
chains.sh: #7597: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170806235938Z
nextupdate=20180806235938Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Sun Aug 06 23:59:38 2017
    Next Update: Mon Aug 06 23:59:38 2018
    CRL Extensions:
chains.sh: #7598: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170806235939Z
addcert 14 20170806235939Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Sun Aug 06 23:59:39 2017
    Next Update: Mon Aug 06 23:59:37 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Sun Aug 06 23:59:39 2017
    CRL Extensions:
chains.sh: #7599: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170806235940Z
addcert 15 20170806235940Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sun Aug 06 23:59:40 2017
    Next Update: Mon Aug 06 23:59:37 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Sun Aug 06 23:59:40 2017
    CRL Extensions:
chains.sh: #7600: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7601: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7602: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #7603: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #7604: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #7605: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #7606: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #7607: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #7608: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #7609: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:36 2017
            Not After : Sat Aug 06 23:59:36 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:fe:e5:7d:37:a6:13:e6:af:37:e4:10:57:bb:81:7e:
                    b5:b6:be:a0:98:14:81:5b:62:6d:09:08:34:d9:1f:c5:
                    3f:5d:f4:5e:e4:cd:7a:79:ac:2b:ce:d5:1b:bc:43:9a:
                    b8:11:99:be:67:5b:c9:98:d6:5d:06:17:36:74:e0:ab:
                    b0:f4:c4:78:a4:17:d2:9a:5c:34:e2:a0:64:7c:ec:13:
                    f8:f7:c1:ca:ee:97:5c:33:69:4e:49:fe:27:2a:41:82:
                    aa:b6:a1:ee:03:79:74:95:48:e0:b3:4d:88:aa:38:b7:
                    ca:9c:42:bb:79:d5:6c:40:69:5c:10:74:3b:e1:f5:9e:
                    89:b8:3c:87:15:b5:cd:85:ad:a5:51:45:b7:7f:b3:4b:
                    20:b5:04:3f:cc:d2:3b:cf:23:24:29:7c:39:df:7a:32:
                    b4:24:db:03:6d:bd:c9:17:67:95:09:11:46:14:93:f9:
                    31:56:48:a1:a9:a9:13:22:64:54:a5:4b:05:d6:74:f3:
                    ad:3d:05:23:08:15:cb:57:72:61:e0:e0:14:d2:39:60:
                    07:e5:89:d6:7c:c4:2b:87:6e:38:9c:44:c5:a5:4f:59:
                    9f:0b:6d:37:51:4e:53:56:d7:57:67:ef:e7:ee:cd:1b:
                    70:61:4d:b0:0d:f4:09:08:ed:75:57:a0:4e:8e:13:e9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:05:22:48:ea:3b:fd:17:c8:c6:37:3a:ee:1e:cf:e1:
        40:be:3d:3a:85:a8:f6:1d:04:2b:50:38:ec:18:d0:80:
        a7:8f:73:c7:81:9f:66:bc:47:56:56:0a:0d:2f:e1:39:
        5e:58:d6:dc:77:3a:6b:48:2c:ff:a4:cb:ce:a0:06:c5:
        42:b6:80:b0:3b:72:ff:eb:c7:51:8a:24:fb:db:84:7d:
        57:81:11:ca:1a:95:fa:fc:86:9b:42:18:e2:14:19:06:
        e7:e1:9e:75:8d:34:36:f0:17:6b:29:0a:0d:a2:11:fd:
        e0:07:96:a3:de:93:83:7b:55:b0:e0:69:88:78:52:84:
        16:29:f0:fd:40:1a:4a:6e:39:26:d2:c6:91:f5:1e:02:
        07:8e:3f:46:f4:89:92:b8:09:f3:96:9a:ec:3b:a7:e0:
        40:a0:38:b4:30:7e:96:30:18:6b:24:39:4c:36:38:37:
        cd:50:a7:5e:8c:71:e6:68:73:0e:e2:67:f9:c6:2c:9b:
        3c:91:ee:7a:97:f9:ef:e9:ff:73:4a:93:7f:7f:1a:19:
        6d:2d:d6:6e:14:50:07:58:b7:8f:d5:76:89:4c:b1:78:
        ad:72:93:c1:a0:c7:be:0e:1a:4c:d9:80:37:e2:de:41:
        f2:76:38:93:a7:94:f3:fa:f0:b4:a5:d5:65:fc:2c:0f
    Fingerprint (SHA-256):
        5F:26:DB:5E:5C:A9:82:14:50:45:2F:D6:BA:85:40:03:23:47:FB:7D:72:49:7B:E3:A3:4F:01:99:6B:3C:A6:E6
    Fingerprint (SHA1):
        09:59:DD:3B:D7:6F:60:2F:43:1D:58:25:BB:65:29:D2:B5:FE:8A:3D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #7610: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #7611: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:36 2017
            Not After : Sat Aug 06 23:59:36 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:fe:e5:7d:37:a6:13:e6:af:37:e4:10:57:bb:81:7e:
                    b5:b6:be:a0:98:14:81:5b:62:6d:09:08:34:d9:1f:c5:
                    3f:5d:f4:5e:e4:cd:7a:79:ac:2b:ce:d5:1b:bc:43:9a:
                    b8:11:99:be:67:5b:c9:98:d6:5d:06:17:36:74:e0:ab:
                    b0:f4:c4:78:a4:17:d2:9a:5c:34:e2:a0:64:7c:ec:13:
                    f8:f7:c1:ca:ee:97:5c:33:69:4e:49:fe:27:2a:41:82:
                    aa:b6:a1:ee:03:79:74:95:48:e0:b3:4d:88:aa:38:b7:
                    ca:9c:42:bb:79:d5:6c:40:69:5c:10:74:3b:e1:f5:9e:
                    89:b8:3c:87:15:b5:cd:85:ad:a5:51:45:b7:7f:b3:4b:
                    20:b5:04:3f:cc:d2:3b:cf:23:24:29:7c:39:df:7a:32:
                    b4:24:db:03:6d:bd:c9:17:67:95:09:11:46:14:93:f9:
                    31:56:48:a1:a9:a9:13:22:64:54:a5:4b:05:d6:74:f3:
                    ad:3d:05:23:08:15:cb:57:72:61:e0:e0:14:d2:39:60:
                    07:e5:89:d6:7c:c4:2b:87:6e:38:9c:44:c5:a5:4f:59:
                    9f:0b:6d:37:51:4e:53:56:d7:57:67:ef:e7:ee:cd:1b:
                    70:61:4d:b0:0d:f4:09:08:ed:75:57:a0:4e:8e:13:e9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:05:22:48:ea:3b:fd:17:c8:c6:37:3a:ee:1e:cf:e1:
        40:be:3d:3a:85:a8:f6:1d:04:2b:50:38:ec:18:d0:80:
        a7:8f:73:c7:81:9f:66:bc:47:56:56:0a:0d:2f:e1:39:
        5e:58:d6:dc:77:3a:6b:48:2c:ff:a4:cb:ce:a0:06:c5:
        42:b6:80:b0:3b:72:ff:eb:c7:51:8a:24:fb:db:84:7d:
        57:81:11:ca:1a:95:fa:fc:86:9b:42:18:e2:14:19:06:
        e7:e1:9e:75:8d:34:36:f0:17:6b:29:0a:0d:a2:11:fd:
        e0:07:96:a3:de:93:83:7b:55:b0:e0:69:88:78:52:84:
        16:29:f0:fd:40:1a:4a:6e:39:26:d2:c6:91:f5:1e:02:
        07:8e:3f:46:f4:89:92:b8:09:f3:96:9a:ec:3b:a7:e0:
        40:a0:38:b4:30:7e:96:30:18:6b:24:39:4c:36:38:37:
        cd:50:a7:5e:8c:71:e6:68:73:0e:e2:67:f9:c6:2c:9b:
        3c:91:ee:7a:97:f9:ef:e9:ff:73:4a:93:7f:7f:1a:19:
        6d:2d:d6:6e:14:50:07:58:b7:8f:d5:76:89:4c:b1:78:
        ad:72:93:c1:a0:c7:be:0e:1a:4c:d9:80:37:e2:de:41:
        f2:76:38:93:a7:94:f3:fa:f0:b4:a5:d5:65:fc:2c:0f
    Fingerprint (SHA-256):
        5F:26:DB:5E:5C:A9:82:14:50:45:2F:D6:BA:85:40:03:23:47:FB:7D:72:49:7B:E3:A3:4F:01:99:6B:3C:A6:E6
    Fingerprint (SHA1):
        09:59:DD:3B:D7:6F:60:2F:43:1D:58:25:BB:65:29:D2:B5:FE:8A:3D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #7612: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #7613: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7614: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806235985 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7615: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7616: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #7617: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7618: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 806235986   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7619: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7620: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7621: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9019/localhost-8843-CA0-806235876.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7622: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0Root-806235861.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7623: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7624: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #7625: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0-806235876.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7626: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 806235987   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7627: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7628: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7629: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9019/localhost-8843-CA0-806235876.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7630: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0Root-806235862.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7631: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7632: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #7633: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7634: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 806235988   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7635: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7636: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7637: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0-806235876.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7638: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0Root-806235863.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7639: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7640: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7641: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0-806235876.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7642: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0Root-806235864.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7643: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7644: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170806235941Z
nextupdate=20180806235941Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Sun Aug 06 23:59:41 2017
    Next Update: Mon Aug 06 23:59:41 2018
    CRL Extensions:
chains.sh: #7645: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170806235941Z
nextupdate=20180806235941Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sun Aug 06 23:59:41 2017
    Next Update: Mon Aug 06 23:59:41 2018
    CRL Extensions:
chains.sh: #7646: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170806235942Z
nextupdate=20180806235942Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Sun Aug 06 23:59:42 2017
    Next Update: Mon Aug 06 23:59:42 2018
    CRL Extensions:
chains.sh: #7647: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170806235942Z
nextupdate=20180806235942Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Sun Aug 06 23:59:42 2017
    Next Update: Mon Aug 06 23:59:42 2018
    CRL Extensions:
chains.sh: #7648: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170806235943Z
addcert 20 20170806235943Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sun Aug 06 23:59:43 2017
    Next Update: Mon Aug 06 23:59:41 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Sun Aug 06 23:59:43 2017
    CRL Extensions:
chains.sh: #7649: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170806235944Z
addcert 40 20170806235944Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sun Aug 06 23:59:44 2017
    Next Update: Mon Aug 06 23:59:41 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Sun Aug 06 23:59:43 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Sun Aug 06 23:59:44 2017
    CRL Extensions:
chains.sh: #7650: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7651: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7652: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #7653: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235985 (0x300e2f51)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:40 2017
            Not After : Sat Aug 06 23:59:40 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:4e:3c:19:04:40:86:51:06:1e:c6:c8:ee:91:75:17:
                    e1:a8:59:ee:16:6c:fa:1d:8e:01:e0:53:02:19:bc:e0:
                    81:30:f7:62:86:0e:0f:4f:3a:ff:d4:70:ac:08:63:f5:
                    ff:82:25:02:14:70:74:71:3a:17:19:e0:7b:4e:06:a1:
                    18:5c:7b:bd:64:e3:a5:3f:31:fd:32:b4:f3:bf:ef:f7:
                    6e:f8:32:ed:60:d3:da:a7:ab:22:5e:bb:8d:8e:04:c1:
                    2f:1c:e6:a7:d4:81:ac:b9:13:0e:6c:3b:3a:2e:b0:e7:
                    e4:c9:75:fd:b7:07:b0:bc:39:70:b6:47:30:52:a5:8a:
                    3b:d2:c7:52:90:b9:3c:ce:01:3f:07:d7:81:a3:f6:66:
                    b7:2b:f2:d9:eb:91:8f:9d:f1:52:33:19:fd:17:c9:49:
                    b2:e0:13:b3:de:85:e7:6c:af:24:a4:5e:86:52:10:cb:
                    85:ae:c5:a4:45:f9:7a:37:aa:23:0c:38:8d:fd:6d:8d:
                    46:01:1b:78:77:ac:aa:44:92:28:22:51:3c:97:56:e1:
                    a0:c5:c9:0b:7a:aa:30:18:86:ca:e2:d4:cb:de:f9:b8:
                    d2:f8:fb:79:7a:c2:5c:4d:ca:3a:91:a6:89:4d:67:59:
                    d8:dd:2f:b8:0e:ae:2d:d7:7c:71:e7:02:aa:d3:7e:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:a1:0c:fe:4d:30:d2:8f:f3:8e:14:22:08:94:ca:b5:
        90:6a:a4:71:00:67:c0:1f:89:79:ba:85:c6:ad:22:20:
        6e:26:6f:55:26:d3:9a:25:ba:2d:4d:02:e0:68:4f:0c:
        54:41:f4:04:25:85:51:08:21:25:aa:c1:e7:66:cb:a8:
        21:87:e7:f7:e8:5b:5d:11:06:59:b1:17:2e:57:d7:88:
        f9:91:57:59:e5:1d:49:a1:6a:29:43:1d:39:fe:a2:10:
        ce:3c:e2:e7:0c:56:76:41:7c:7b:83:b6:7f:f7:d1:31:
        4e:96:b7:10:82:46:6b:fb:57:13:f6:33:77:e5:1f:3b:
        29:2e:3d:ad:4b:85:e4:c7:d9:b1:c3:78:c1:91:38:2b:
        4f:93:3f:24:57:df:d8:00:86:85:93:64:95:87:29:a9:
        e7:5b:af:ee:da:41:b6:62:a4:20:1a:fd:39:ab:e6:01:
        f3:d1:58:2e:07:90:89:29:4a:62:2c:f9:65:7d:46:b4:
        f5:9e:d0:8b:ba:7a:62:36:ca:08:a2:10:02:e6:59:fd:
        52:46:4e:24:cc:41:54:d7:d5:9d:67:01:68:d3:50:cf:
        19:b2:20:85:35:0e:3d:20:26:5e:25:49:f5:43:9e:b7:
        30:e1:44:c3:a3:9f:11:07:98:bb:51:16:65:4a:d7:db
    Fingerprint (SHA-256):
        75:11:A1:20:E9:15:9A:59:06:CC:01:55:10:18:9E:A8:87:24:3E:6B:59:F0:AB:1F:83:2E:B2:AC:F4:F4:BD:0C
    Fingerprint (SHA1):
        1F:AD:C8:AA:2D:EE:D3:15:C6:15:3B:98:7A:77:1A:9D:FE:62:A2:9D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #7654: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #7655: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235985 (0x300e2f51)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:40 2017
            Not After : Sat Aug 06 23:59:40 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:4e:3c:19:04:40:86:51:06:1e:c6:c8:ee:91:75:17:
                    e1:a8:59:ee:16:6c:fa:1d:8e:01:e0:53:02:19:bc:e0:
                    81:30:f7:62:86:0e:0f:4f:3a:ff:d4:70:ac:08:63:f5:
                    ff:82:25:02:14:70:74:71:3a:17:19:e0:7b:4e:06:a1:
                    18:5c:7b:bd:64:e3:a5:3f:31:fd:32:b4:f3:bf:ef:f7:
                    6e:f8:32:ed:60:d3:da:a7:ab:22:5e:bb:8d:8e:04:c1:
                    2f:1c:e6:a7:d4:81:ac:b9:13:0e:6c:3b:3a:2e:b0:e7:
                    e4:c9:75:fd:b7:07:b0:bc:39:70:b6:47:30:52:a5:8a:
                    3b:d2:c7:52:90:b9:3c:ce:01:3f:07:d7:81:a3:f6:66:
                    b7:2b:f2:d9:eb:91:8f:9d:f1:52:33:19:fd:17:c9:49:
                    b2:e0:13:b3:de:85:e7:6c:af:24:a4:5e:86:52:10:cb:
                    85:ae:c5:a4:45:f9:7a:37:aa:23:0c:38:8d:fd:6d:8d:
                    46:01:1b:78:77:ac:aa:44:92:28:22:51:3c:97:56:e1:
                    a0:c5:c9:0b:7a:aa:30:18:86:ca:e2:d4:cb:de:f9:b8:
                    d2:f8:fb:79:7a:c2:5c:4d:ca:3a:91:a6:89:4d:67:59:
                    d8:dd:2f:b8:0e:ae:2d:d7:7c:71:e7:02:aa:d3:7e:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:a1:0c:fe:4d:30:d2:8f:f3:8e:14:22:08:94:ca:b5:
        90:6a:a4:71:00:67:c0:1f:89:79:ba:85:c6:ad:22:20:
        6e:26:6f:55:26:d3:9a:25:ba:2d:4d:02:e0:68:4f:0c:
        54:41:f4:04:25:85:51:08:21:25:aa:c1:e7:66:cb:a8:
        21:87:e7:f7:e8:5b:5d:11:06:59:b1:17:2e:57:d7:88:
        f9:91:57:59:e5:1d:49:a1:6a:29:43:1d:39:fe:a2:10:
        ce:3c:e2:e7:0c:56:76:41:7c:7b:83:b6:7f:f7:d1:31:
        4e:96:b7:10:82:46:6b:fb:57:13:f6:33:77:e5:1f:3b:
        29:2e:3d:ad:4b:85:e4:c7:d9:b1:c3:78:c1:91:38:2b:
        4f:93:3f:24:57:df:d8:00:86:85:93:64:95:87:29:a9:
        e7:5b:af:ee:da:41:b6:62:a4:20:1a:fd:39:ab:e6:01:
        f3:d1:58:2e:07:90:89:29:4a:62:2c:f9:65:7d:46:b4:
        f5:9e:d0:8b:ba:7a:62:36:ca:08:a2:10:02:e6:59:fd:
        52:46:4e:24:cc:41:54:d7:d5:9d:67:01:68:d3:50:cf:
        19:b2:20:85:35:0e:3d:20:26:5e:25:49:f5:43:9e:b7:
        30:e1:44:c3:a3:9f:11:07:98:bb:51:16:65:4a:d7:db
    Fingerprint (SHA-256):
        75:11:A1:20:E9:15:9A:59:06:CC:01:55:10:18:9E:A8:87:24:3E:6B:59:F0:AB:1F:83:2E:B2:AC:F4:F4:BD:0C
    Fingerprint (SHA1):
        1F:AD:C8:AA:2D:EE:D3:15:C6:15:3B:98:7A:77:1A:9D:FE:62:A2:9D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #7656: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #7657: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #7658: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806235989 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7659: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #7660: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7661: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7662: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 806235990   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7663: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7664: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7665: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7666: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 806235991   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7667: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7668: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7669: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7670: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 806235992   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7671: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7672: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #7673: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806235993 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7674: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #7675: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #7676: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7677: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 806235994   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7678: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7679: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7680: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7681: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 806235995   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7682: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7683: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #7684: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #7685: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #7686: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235989 (0x300e2f55)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:44 2017
            Not After : Sat Aug 06 23:59:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:99:9e:30:19:d6:f9:66:73:bf:99:fd:2d:e0:63:bd:
                    8b:de:9c:ef:67:5f:6e:20:cb:cf:b7:5e:72:05:97:79:
                    7c:5c:15:b8:2c:38:65:a7:c5:65:d5:8a:6c:07:01:f2:
                    08:9f:9c:c5:85:c5:36:62:ea:9b:9a:3c:0c:86:46:c4:
                    ae:89:e8:68:b7:fc:4c:bc:3c:5b:26:c0:7a:32:4e:4d:
                    d5:81:e3:12:9e:c5:76:d9:44:8b:65:61:00:6c:b3:d3:
                    7a:56:f8:8d:32:24:23:4f:30:38:59:50:18:71:7e:4e:
                    a8:8a:86:1d:1d:c0:9e:31:a8:34:23:5a:15:0a:65:47:
                    04:79:59:99:75:62:40:c0:41:c0:10:2a:a3:30:b1:f5:
                    44:76:33:59:e7:8b:87:fc:1d:3f:80:f6:0f:d4:00:34:
                    4e:12:f3:8d:17:8d:96:d3:16:b9:57:2f:a8:e7:c0:37:
                    fb:f0:88:10:97:f9:9b:32:09:a3:3c:33:08:15:c8:92:
                    39:f0:f4:ff:1e:f3:6c:fc:55:18:fb:21:0d:2c:a9:ce:
                    59:82:68:54:0c:aa:0d:ec:5b:21:dd:2e:dc:c7:31:2a:
                    9c:97:e8:a7:4a:c6:89:9d:3c:07:6e:90:d6:bd:c3:98:
                    27:21:b7:5e:93:c4:44:09:33:89:8f:03:3e:d9:12:c7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b9:c1:02:f8:72:41:57:c0:39:cb:41:5d:c9:1c:94:ae:
        11:5e:ff:1a:ef:e8:b1:92:c0:6c:c4:05:6e:db:2f:aa:
        5f:7b:0d:53:a9:e4:7b:e3:c6:02:8d:c1:ea:24:8e:90:
        8c:97:27:19:f1:df:63:21:f1:95:ae:9a:40:b3:af:13:
        4e:0c:8c:ab:0f:9e:dc:49:56:e1:4d:78:b8:02:e7:9c:
        07:e3:6f:09:73:63:e6:e8:ba:71:1e:92:2b:4d:b9:ef:
        fe:88:bc:19:56:f4:9a:00:9e:e0:ec:0b:31:da:9c:8b:
        47:4c:42:d6:6d:1f:2d:68:99:de:f3:26:e4:1d:ed:e4:
        a1:8d:aa:82:8e:4d:b0:6d:cb:11:10:03:97:39:69:c2:
        35:33:f3:89:f1:0c:d2:ff:6a:b9:ee:30:16:72:cc:d6:
        b4:dd:37:bb:32:c7:3a:80:20:45:a1:3d:4f:7c:9a:3e:
        23:5a:bf:e9:98:1b:f7:18:ca:fc:14:ea:a2:c4:96:fb:
        d7:6a:ab:66:9c:b8:76:c6:0e:4d:f8:92:c5:49:dd:25:
        ae:1b:3c:8c:fb:fc:14:e6:0e:32:b6:1c:6e:11:aa:f3:
        fa:45:ec:1c:ac:aa:24:f9:b5:1d:c6:be:44:df:0a:99:
        19:d7:4a:8a:08:6c:1c:ba:5b:48:1e:63:f6:30:40:fb
    Fingerprint (SHA-256):
        C3:80:7E:B1:15:5E:33:72:3F:ED:D6:E3:41:0F:3E:4E:1F:08:5C:8A:0A:00:04:72:0F:9B:82:ED:AC:44:3A:18
    Fingerprint (SHA1):
        CA:A5:B1:B0:2C:99:96:6B:40:AB:C5:23:AE:78:86:D4:27:51:AF:3B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7687: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235991 (0x300e2f57)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:45 2017
            Not After : Sat Aug 06 23:59:45 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:c2:82:a9:5e:17:ea:0e:a9:ad:aa:d4:53:87:a2:17:
                    7d:90:c1:a7:13:1a:8e:00:fd:62:4f:31:ca:8f:a5:d8:
                    38:e2:e8:c5:b6:e4:6f:96:5c:90:db:76:a8:d8:42:9d:
                    2b:81:c2:30:59:50:d5:0b:df:10:29:b7:de:31:10:f2:
                    3d:34:be:dc:fb:12:bd:1d:6f:ed:cd:4a:b4:6c:45:43:
                    6e:d2:c9:54:fe:70:5c:30:d8:2d:8a:57:f3:eb:c9:bf:
                    7c:26:c4:46:ae:e8:07:ca:f5:62:63:b9:e4:d6:d3:aa:
                    11:38:95:71:77:e3:a7:83:86:41:85:7c:3a:46:41:a2:
                    61:b3:5b:dc:a2:98:71:94:41:2b:0f:71:26:7b:b4:7b:
                    d3:09:60:3b:c2:84:51:64:33:fa:e7:ff:40:b0:87:ef:
                    3b:40:b7:3a:bc:67:bd:50:37:83:28:75:a8:ee:b7:54:
                    d3:f1:98:54:ed:20:37:12:89:59:28:e3:8d:35:92:5b:
                    63:c1:ea:59:f7:12:1f:48:0c:5d:ab:5c:54:fe:d4:e3:
                    0c:c4:f3:5f:41:ad:17:01:e9:ba:81:04:5a:8f:a8:f9:
                    9e:8d:83:c6:88:c2:de:f1:62:a2:35:6c:fa:7a:31:ca:
                    b8:e1:d5:1d:3f:59:12:95:c6:b1:13:ef:bd:b9:29:b9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c7:4a:34:e4:f0:d0:f2:78:2a:8b:e9:7c:70:bf:87:65:
        e6:eb:c9:84:6c:78:a9:08:03:b6:22:5c:b0:a9:81:9a:
        0b:f6:5a:49:8e:78:24:f9:a3:54:df:dc:46:7a:1a:c4:
        3e:df:9b:8e:8c:ae:47:fe:9a:b7:be:0f:6b:0b:b4:a9:
        ef:7c:92:b2:e3:15:42:27:42:5f:28:64:1f:12:04:d6:
        e0:9f:c5:bc:fc:1a:52:bc:19:7c:ef:ef:4e:8b:01:1d:
        42:2a:23:6f:ce:7f:17:28:91:b6:8e:98:e6:47:f6:93:
        10:d3:69:8b:65:8b:a0:9f:ea:37:f3:a8:8c:e0:26:80:
        42:0d:7c:37:78:68:bd:f0:2f:3b:b7:74:32:eb:1c:15:
        a2:77:42:d4:25:f0:54:20:de:5f:ee:60:cd:03:23:d0:
        c4:c9:8a:03:ed:01:ae:24:0c:78:b4:ab:75:01:1d:6b:
        5d:7e:3d:d2:f9:0d:fd:ab:e5:e7:04:c2:c6:56:45:a6:
        88:50:92:b2:e1:69:52:7b:b3:96:cd:60:4d:ea:42:20:
        37:c6:ad:c5:ee:cd:9a:23:80:09:36:a9:39:23:ce:a4:
        bd:9e:62:b5:a2:f7:5d:9f:f8:2b:0d:c5:7d:b3:d4:31:
        2f:43:95:68:49:92:ca:fa:70:a2:aa:2b:24:fa:c1:39
    Fingerprint (SHA-256):
        14:FE:AF:F8:05:6B:A0:CB:B7:11:30:57:14:32:FB:EF:16:90:85:3E:23:A4:83:19:17:DF:B3:76:C0:79:38:73
    Fingerprint (SHA1):
        54:AB:0E:21:EF:8F:B9:BE:61:6B:7F:88:19:9E:38:56:DD:6E:E5:53
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7688: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235989 (0x300e2f55)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:44 2017
            Not After : Sat Aug 06 23:59:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:99:9e:30:19:d6:f9:66:73:bf:99:fd:2d:e0:63:bd:
                    8b:de:9c:ef:67:5f:6e:20:cb:cf:b7:5e:72:05:97:79:
                    7c:5c:15:b8:2c:38:65:a7:c5:65:d5:8a:6c:07:01:f2:
                    08:9f:9c:c5:85:c5:36:62:ea:9b:9a:3c:0c:86:46:c4:
                    ae:89:e8:68:b7:fc:4c:bc:3c:5b:26:c0:7a:32:4e:4d:
                    d5:81:e3:12:9e:c5:76:d9:44:8b:65:61:00:6c:b3:d3:
                    7a:56:f8:8d:32:24:23:4f:30:38:59:50:18:71:7e:4e:
                    a8:8a:86:1d:1d:c0:9e:31:a8:34:23:5a:15:0a:65:47:
                    04:79:59:99:75:62:40:c0:41:c0:10:2a:a3:30:b1:f5:
                    44:76:33:59:e7:8b:87:fc:1d:3f:80:f6:0f:d4:00:34:
                    4e:12:f3:8d:17:8d:96:d3:16:b9:57:2f:a8:e7:c0:37:
                    fb:f0:88:10:97:f9:9b:32:09:a3:3c:33:08:15:c8:92:
                    39:f0:f4:ff:1e:f3:6c:fc:55:18:fb:21:0d:2c:a9:ce:
                    59:82:68:54:0c:aa:0d:ec:5b:21:dd:2e:dc:c7:31:2a:
                    9c:97:e8:a7:4a:c6:89:9d:3c:07:6e:90:d6:bd:c3:98:
                    27:21:b7:5e:93:c4:44:09:33:89:8f:03:3e:d9:12:c7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b9:c1:02:f8:72:41:57:c0:39:cb:41:5d:c9:1c:94:ae:
        11:5e:ff:1a:ef:e8:b1:92:c0:6c:c4:05:6e:db:2f:aa:
        5f:7b:0d:53:a9:e4:7b:e3:c6:02:8d:c1:ea:24:8e:90:
        8c:97:27:19:f1:df:63:21:f1:95:ae:9a:40:b3:af:13:
        4e:0c:8c:ab:0f:9e:dc:49:56:e1:4d:78:b8:02:e7:9c:
        07:e3:6f:09:73:63:e6:e8:ba:71:1e:92:2b:4d:b9:ef:
        fe:88:bc:19:56:f4:9a:00:9e:e0:ec:0b:31:da:9c:8b:
        47:4c:42:d6:6d:1f:2d:68:99:de:f3:26:e4:1d:ed:e4:
        a1:8d:aa:82:8e:4d:b0:6d:cb:11:10:03:97:39:69:c2:
        35:33:f3:89:f1:0c:d2:ff:6a:b9:ee:30:16:72:cc:d6:
        b4:dd:37:bb:32:c7:3a:80:20:45:a1:3d:4f:7c:9a:3e:
        23:5a:bf:e9:98:1b:f7:18:ca:fc:14:ea:a2:c4:96:fb:
        d7:6a:ab:66:9c:b8:76:c6:0e:4d:f8:92:c5:49:dd:25:
        ae:1b:3c:8c:fb:fc:14:e6:0e:32:b6:1c:6e:11:aa:f3:
        fa:45:ec:1c:ac:aa:24:f9:b5:1d:c6:be:44:df:0a:99:
        19:d7:4a:8a:08:6c:1c:ba:5b:48:1e:63:f6:30:40:fb
    Fingerprint (SHA-256):
        C3:80:7E:B1:15:5E:33:72:3F:ED:D6:E3:41:0F:3E:4E:1F:08:5C:8A:0A:00:04:72:0F:9B:82:ED:AC:44:3A:18
    Fingerprint (SHA1):
        CA:A5:B1:B0:2C:99:96:6B:40:AB:C5:23:AE:78:86:D4:27:51:AF:3B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7689: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #7690: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235989 (0x300e2f55)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:44 2017
            Not After : Sat Aug 06 23:59:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:99:9e:30:19:d6:f9:66:73:bf:99:fd:2d:e0:63:bd:
                    8b:de:9c:ef:67:5f:6e:20:cb:cf:b7:5e:72:05:97:79:
                    7c:5c:15:b8:2c:38:65:a7:c5:65:d5:8a:6c:07:01:f2:
                    08:9f:9c:c5:85:c5:36:62:ea:9b:9a:3c:0c:86:46:c4:
                    ae:89:e8:68:b7:fc:4c:bc:3c:5b:26:c0:7a:32:4e:4d:
                    d5:81:e3:12:9e:c5:76:d9:44:8b:65:61:00:6c:b3:d3:
                    7a:56:f8:8d:32:24:23:4f:30:38:59:50:18:71:7e:4e:
                    a8:8a:86:1d:1d:c0:9e:31:a8:34:23:5a:15:0a:65:47:
                    04:79:59:99:75:62:40:c0:41:c0:10:2a:a3:30:b1:f5:
                    44:76:33:59:e7:8b:87:fc:1d:3f:80:f6:0f:d4:00:34:
                    4e:12:f3:8d:17:8d:96:d3:16:b9:57:2f:a8:e7:c0:37:
                    fb:f0:88:10:97:f9:9b:32:09:a3:3c:33:08:15:c8:92:
                    39:f0:f4:ff:1e:f3:6c:fc:55:18:fb:21:0d:2c:a9:ce:
                    59:82:68:54:0c:aa:0d:ec:5b:21:dd:2e:dc:c7:31:2a:
                    9c:97:e8:a7:4a:c6:89:9d:3c:07:6e:90:d6:bd:c3:98:
                    27:21:b7:5e:93:c4:44:09:33:89:8f:03:3e:d9:12:c7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b9:c1:02:f8:72:41:57:c0:39:cb:41:5d:c9:1c:94:ae:
        11:5e:ff:1a:ef:e8:b1:92:c0:6c:c4:05:6e:db:2f:aa:
        5f:7b:0d:53:a9:e4:7b:e3:c6:02:8d:c1:ea:24:8e:90:
        8c:97:27:19:f1:df:63:21:f1:95:ae:9a:40:b3:af:13:
        4e:0c:8c:ab:0f:9e:dc:49:56:e1:4d:78:b8:02:e7:9c:
        07:e3:6f:09:73:63:e6:e8:ba:71:1e:92:2b:4d:b9:ef:
        fe:88:bc:19:56:f4:9a:00:9e:e0:ec:0b:31:da:9c:8b:
        47:4c:42:d6:6d:1f:2d:68:99:de:f3:26:e4:1d:ed:e4:
        a1:8d:aa:82:8e:4d:b0:6d:cb:11:10:03:97:39:69:c2:
        35:33:f3:89:f1:0c:d2:ff:6a:b9:ee:30:16:72:cc:d6:
        b4:dd:37:bb:32:c7:3a:80:20:45:a1:3d:4f:7c:9a:3e:
        23:5a:bf:e9:98:1b:f7:18:ca:fc:14:ea:a2:c4:96:fb:
        d7:6a:ab:66:9c:b8:76:c6:0e:4d:f8:92:c5:49:dd:25:
        ae:1b:3c:8c:fb:fc:14:e6:0e:32:b6:1c:6e:11:aa:f3:
        fa:45:ec:1c:ac:aa:24:f9:b5:1d:c6:be:44:df:0a:99:
        19:d7:4a:8a:08:6c:1c:ba:5b:48:1e:63:f6:30:40:fb
    Fingerprint (SHA-256):
        C3:80:7E:B1:15:5E:33:72:3F:ED:D6:E3:41:0F:3E:4E:1F:08:5C:8A:0A:00:04:72:0F:9B:82:ED:AC:44:3A:18
    Fingerprint (SHA1):
        CA:A5:B1:B0:2C:99:96:6B:40:AB:C5:23:AE:78:86:D4:27:51:AF:3B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7691: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235991 (0x300e2f57)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:45 2017
            Not After : Sat Aug 06 23:59:45 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:c2:82:a9:5e:17:ea:0e:a9:ad:aa:d4:53:87:a2:17:
                    7d:90:c1:a7:13:1a:8e:00:fd:62:4f:31:ca:8f:a5:d8:
                    38:e2:e8:c5:b6:e4:6f:96:5c:90:db:76:a8:d8:42:9d:
                    2b:81:c2:30:59:50:d5:0b:df:10:29:b7:de:31:10:f2:
                    3d:34:be:dc:fb:12:bd:1d:6f:ed:cd:4a:b4:6c:45:43:
                    6e:d2:c9:54:fe:70:5c:30:d8:2d:8a:57:f3:eb:c9:bf:
                    7c:26:c4:46:ae:e8:07:ca:f5:62:63:b9:e4:d6:d3:aa:
                    11:38:95:71:77:e3:a7:83:86:41:85:7c:3a:46:41:a2:
                    61:b3:5b:dc:a2:98:71:94:41:2b:0f:71:26:7b:b4:7b:
                    d3:09:60:3b:c2:84:51:64:33:fa:e7:ff:40:b0:87:ef:
                    3b:40:b7:3a:bc:67:bd:50:37:83:28:75:a8:ee:b7:54:
                    d3:f1:98:54:ed:20:37:12:89:59:28:e3:8d:35:92:5b:
                    63:c1:ea:59:f7:12:1f:48:0c:5d:ab:5c:54:fe:d4:e3:
                    0c:c4:f3:5f:41:ad:17:01:e9:ba:81:04:5a:8f:a8:f9:
                    9e:8d:83:c6:88:c2:de:f1:62:a2:35:6c:fa:7a:31:ca:
                    b8:e1:d5:1d:3f:59:12:95:c6:b1:13:ef:bd:b9:29:b9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c7:4a:34:e4:f0:d0:f2:78:2a:8b:e9:7c:70:bf:87:65:
        e6:eb:c9:84:6c:78:a9:08:03:b6:22:5c:b0:a9:81:9a:
        0b:f6:5a:49:8e:78:24:f9:a3:54:df:dc:46:7a:1a:c4:
        3e:df:9b:8e:8c:ae:47:fe:9a:b7:be:0f:6b:0b:b4:a9:
        ef:7c:92:b2:e3:15:42:27:42:5f:28:64:1f:12:04:d6:
        e0:9f:c5:bc:fc:1a:52:bc:19:7c:ef:ef:4e:8b:01:1d:
        42:2a:23:6f:ce:7f:17:28:91:b6:8e:98:e6:47:f6:93:
        10:d3:69:8b:65:8b:a0:9f:ea:37:f3:a8:8c:e0:26:80:
        42:0d:7c:37:78:68:bd:f0:2f:3b:b7:74:32:eb:1c:15:
        a2:77:42:d4:25:f0:54:20:de:5f:ee:60:cd:03:23:d0:
        c4:c9:8a:03:ed:01:ae:24:0c:78:b4:ab:75:01:1d:6b:
        5d:7e:3d:d2:f9:0d:fd:ab:e5:e7:04:c2:c6:56:45:a6:
        88:50:92:b2:e1:69:52:7b:b3:96:cd:60:4d:ea:42:20:
        37:c6:ad:c5:ee:cd:9a:23:80:09:36:a9:39:23:ce:a4:
        bd:9e:62:b5:a2:f7:5d:9f:f8:2b:0d:c5:7d:b3:d4:31:
        2f:43:95:68:49:92:ca:fa:70:a2:aa:2b:24:fa:c1:39
    Fingerprint (SHA-256):
        14:FE:AF:F8:05:6B:A0:CB:B7:11:30:57:14:32:FB:EF:16:90:85:3E:23:A4:83:19:17:DF:B3:76:C0:79:38:73
    Fingerprint (SHA1):
        54:AB:0E:21:EF:8F:B9:BE:61:6B:7F:88:19:9E:38:56:DD:6E:E5:53
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7692: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #7693: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #7694: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #7695: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235989 (0x300e2f55)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:44 2017
            Not After : Sat Aug 06 23:59:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:99:9e:30:19:d6:f9:66:73:bf:99:fd:2d:e0:63:bd:
                    8b:de:9c:ef:67:5f:6e:20:cb:cf:b7:5e:72:05:97:79:
                    7c:5c:15:b8:2c:38:65:a7:c5:65:d5:8a:6c:07:01:f2:
                    08:9f:9c:c5:85:c5:36:62:ea:9b:9a:3c:0c:86:46:c4:
                    ae:89:e8:68:b7:fc:4c:bc:3c:5b:26:c0:7a:32:4e:4d:
                    d5:81:e3:12:9e:c5:76:d9:44:8b:65:61:00:6c:b3:d3:
                    7a:56:f8:8d:32:24:23:4f:30:38:59:50:18:71:7e:4e:
                    a8:8a:86:1d:1d:c0:9e:31:a8:34:23:5a:15:0a:65:47:
                    04:79:59:99:75:62:40:c0:41:c0:10:2a:a3:30:b1:f5:
                    44:76:33:59:e7:8b:87:fc:1d:3f:80:f6:0f:d4:00:34:
                    4e:12:f3:8d:17:8d:96:d3:16:b9:57:2f:a8:e7:c0:37:
                    fb:f0:88:10:97:f9:9b:32:09:a3:3c:33:08:15:c8:92:
                    39:f0:f4:ff:1e:f3:6c:fc:55:18:fb:21:0d:2c:a9:ce:
                    59:82:68:54:0c:aa:0d:ec:5b:21:dd:2e:dc:c7:31:2a:
                    9c:97:e8:a7:4a:c6:89:9d:3c:07:6e:90:d6:bd:c3:98:
                    27:21:b7:5e:93:c4:44:09:33:89:8f:03:3e:d9:12:c7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b9:c1:02:f8:72:41:57:c0:39:cb:41:5d:c9:1c:94:ae:
        11:5e:ff:1a:ef:e8:b1:92:c0:6c:c4:05:6e:db:2f:aa:
        5f:7b:0d:53:a9:e4:7b:e3:c6:02:8d:c1:ea:24:8e:90:
        8c:97:27:19:f1:df:63:21:f1:95:ae:9a:40:b3:af:13:
        4e:0c:8c:ab:0f:9e:dc:49:56:e1:4d:78:b8:02:e7:9c:
        07:e3:6f:09:73:63:e6:e8:ba:71:1e:92:2b:4d:b9:ef:
        fe:88:bc:19:56:f4:9a:00:9e:e0:ec:0b:31:da:9c:8b:
        47:4c:42:d6:6d:1f:2d:68:99:de:f3:26:e4:1d:ed:e4:
        a1:8d:aa:82:8e:4d:b0:6d:cb:11:10:03:97:39:69:c2:
        35:33:f3:89:f1:0c:d2:ff:6a:b9:ee:30:16:72:cc:d6:
        b4:dd:37:bb:32:c7:3a:80:20:45:a1:3d:4f:7c:9a:3e:
        23:5a:bf:e9:98:1b:f7:18:ca:fc:14:ea:a2:c4:96:fb:
        d7:6a:ab:66:9c:b8:76:c6:0e:4d:f8:92:c5:49:dd:25:
        ae:1b:3c:8c:fb:fc:14:e6:0e:32:b6:1c:6e:11:aa:f3:
        fa:45:ec:1c:ac:aa:24:f9:b5:1d:c6:be:44:df:0a:99:
        19:d7:4a:8a:08:6c:1c:ba:5b:48:1e:63:f6:30:40:fb
    Fingerprint (SHA-256):
        C3:80:7E:B1:15:5E:33:72:3F:ED:D6:E3:41:0F:3E:4E:1F:08:5C:8A:0A:00:04:72:0F:9B:82:ED:AC:44:3A:18
    Fingerprint (SHA1):
        CA:A5:B1:B0:2C:99:96:6B:40:AB:C5:23:AE:78:86:D4:27:51:AF:3B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7696: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235993 (0x300e2f59)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:45 2017
            Not After : Sat Aug 06 23:59:45 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    af:76:d5:05:5f:6a:af:30:26:e8:73:c7:5d:a3:1e:61:
                    dc:ce:12:58:65:28:00:f9:ad:00:21:50:17:31:27:d9:
                    d0:a2:ad:b4:d2:fd:1d:51:4d:29:f6:92:9e:58:cb:e9:
                    32:a0:93:d7:b9:e8:3a:e3:fe:5d:4a:3d:ca:5d:15:8a:
                    a4:b3:8e:48:2b:c1:b2:42:e6:10:84:0f:b5:e3:e1:2b:
                    2d:28:07:dd:f5:20:e4:12:04:cd:73:63:5e:c8:7e:64:
                    84:76:ca:35:81:36:d7:82:85:de:6e:30:6f:ab:a5:ae:
                    09:5d:84:a7:fa:cb:94:40:08:8c:2d:4f:81:0e:5e:45:
                    69:04:10:09:35:27:b6:20:16:d6:59:ed:a0:82:7d:21:
                    f2:21:8c:bc:ac:e6:e4:07:79:52:29:83:65:1d:e8:e8:
                    7d:78:7e:9f:f1:47:4d:4f:c0:4c:f1:6b:f4:38:0d:cb:
                    6d:9f:b3:a0:e8:31:a2:1f:1e:3b:ed:92:14:fc:03:4f:
                    7a:06:6f:76:95:f0:e8:5c:e6:e1:ad:d5:dc:07:d8:04:
                    8d:d5:ec:d2:68:32:ac:42:85:1d:a5:34:43:88:83:2e:
                    75:a8:5f:08:f7:f1:a1:26:da:cc:3b:8a:c4:21:36:e5:
                    e1:da:c7:07:f4:94:d5:11:d5:c2:54:7f:e5:c4:44:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        53:c1:80:0f:4c:4e:3e:47:5c:51:6e:b7:b2:b2:d4:7d:
        00:18:3f:61:c8:78:f0:9d:7b:cf:27:e5:5b:10:f7:a9:
        7e:41:d3:a6:6b:53:24:83:43:f4:a5:84:c7:de:74:b4:
        68:97:c2:c3:3b:e3:41:bf:bf:a5:97:ba:ab:6d:a3:7b:
        f3:23:8a:fd:89:3b:77:d0:d9:2e:a1:61:a3:85:cc:cf:
        d1:a2:49:58:b4:18:06:cf:3d:b6:75:6d:3a:5e:25:aa:
        aa:1a:19:f1:d6:65:1c:23:7c:d1:b3:59:9a:e1:aa:ad:
        b9:34:8d:2c:40:b3:f3:cb:a8:fc:fe:35:b6:1c:d4:eb:
        84:3b:b5:73:03:b2:b4:e1:39:0d:bc:fe:3f:23:67:fb:
        9e:74:46:9b:82:1e:28:8e:c7:30:c6:95:e6:5b:eb:dc:
        11:68:0c:3e:4c:1b:ae:27:20:7d:1d:57:21:85:27:94:
        c6:55:21:19:31:91:23:c2:4c:7e:47:16:2a:32:07:c7:
        00:1c:7f:2b:e3:31:57:3a:c3:ac:0e:24:0d:07:dc:10:
        88:1f:b6:b6:55:6f:38:d7:ee:fb:42:46:46:6d:b3:57:
        48:d3:2b:9d:23:c4:04:8d:d1:a2:e0:8a:bb:6c:a6:d5:
        70:b2:b1:ff:de:f3:dd:a3:05:17:33:51:bb:41:03:f4
    Fingerprint (SHA-256):
        80:0B:5B:68:38:D8:CE:1A:4F:E0:87:C2:EB:4D:C1:42:C6:0F:FA:3C:DD:78:15:1A:0C:FC:77:02:2E:9E:44:03
    Fingerprint (SHA1):
        1E:4F:27:61:61:26:86:F5:12:3A:23:C5:8A:FD:DE:EE:C5:32:74:4F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #7697: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235989 (0x300e2f55)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:44 2017
            Not After : Sat Aug 06 23:59:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:99:9e:30:19:d6:f9:66:73:bf:99:fd:2d:e0:63:bd:
                    8b:de:9c:ef:67:5f:6e:20:cb:cf:b7:5e:72:05:97:79:
                    7c:5c:15:b8:2c:38:65:a7:c5:65:d5:8a:6c:07:01:f2:
                    08:9f:9c:c5:85:c5:36:62:ea:9b:9a:3c:0c:86:46:c4:
                    ae:89:e8:68:b7:fc:4c:bc:3c:5b:26:c0:7a:32:4e:4d:
                    d5:81:e3:12:9e:c5:76:d9:44:8b:65:61:00:6c:b3:d3:
                    7a:56:f8:8d:32:24:23:4f:30:38:59:50:18:71:7e:4e:
                    a8:8a:86:1d:1d:c0:9e:31:a8:34:23:5a:15:0a:65:47:
                    04:79:59:99:75:62:40:c0:41:c0:10:2a:a3:30:b1:f5:
                    44:76:33:59:e7:8b:87:fc:1d:3f:80:f6:0f:d4:00:34:
                    4e:12:f3:8d:17:8d:96:d3:16:b9:57:2f:a8:e7:c0:37:
                    fb:f0:88:10:97:f9:9b:32:09:a3:3c:33:08:15:c8:92:
                    39:f0:f4:ff:1e:f3:6c:fc:55:18:fb:21:0d:2c:a9:ce:
                    59:82:68:54:0c:aa:0d:ec:5b:21:dd:2e:dc:c7:31:2a:
                    9c:97:e8:a7:4a:c6:89:9d:3c:07:6e:90:d6:bd:c3:98:
                    27:21:b7:5e:93:c4:44:09:33:89:8f:03:3e:d9:12:c7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b9:c1:02:f8:72:41:57:c0:39:cb:41:5d:c9:1c:94:ae:
        11:5e:ff:1a:ef:e8:b1:92:c0:6c:c4:05:6e:db:2f:aa:
        5f:7b:0d:53:a9:e4:7b:e3:c6:02:8d:c1:ea:24:8e:90:
        8c:97:27:19:f1:df:63:21:f1:95:ae:9a:40:b3:af:13:
        4e:0c:8c:ab:0f:9e:dc:49:56:e1:4d:78:b8:02:e7:9c:
        07:e3:6f:09:73:63:e6:e8:ba:71:1e:92:2b:4d:b9:ef:
        fe:88:bc:19:56:f4:9a:00:9e:e0:ec:0b:31:da:9c:8b:
        47:4c:42:d6:6d:1f:2d:68:99:de:f3:26:e4:1d:ed:e4:
        a1:8d:aa:82:8e:4d:b0:6d:cb:11:10:03:97:39:69:c2:
        35:33:f3:89:f1:0c:d2:ff:6a:b9:ee:30:16:72:cc:d6:
        b4:dd:37:bb:32:c7:3a:80:20:45:a1:3d:4f:7c:9a:3e:
        23:5a:bf:e9:98:1b:f7:18:ca:fc:14:ea:a2:c4:96:fb:
        d7:6a:ab:66:9c:b8:76:c6:0e:4d:f8:92:c5:49:dd:25:
        ae:1b:3c:8c:fb:fc:14:e6:0e:32:b6:1c:6e:11:aa:f3:
        fa:45:ec:1c:ac:aa:24:f9:b5:1d:c6:be:44:df:0a:99:
        19:d7:4a:8a:08:6c:1c:ba:5b:48:1e:63:f6:30:40:fb
    Fingerprint (SHA-256):
        C3:80:7E:B1:15:5E:33:72:3F:ED:D6:E3:41:0F:3E:4E:1F:08:5C:8A:0A:00:04:72:0F:9B:82:ED:AC:44:3A:18
    Fingerprint (SHA1):
        CA:A5:B1:B0:2C:99:96:6B:40:AB:C5:23:AE:78:86:D4:27:51:AF:3B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7698: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #7699: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #7700: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #7701: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #7702: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #7703: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235994 (0x300e2f5a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:45 2017
            Not After : Sat Aug 06 23:59:45 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:87:e6:ce:07:8c:ac:d0:78:8b:3b:eb:a1:ab:bd:38:
                    73:ae:0e:d6:83:0f:a5:84:fc:b9:0c:ca:7e:b2:4b:5d:
                    68:ea:50:e5:83:99:34:79:07:70:ee:99:8e:d9:d0:44:
                    10:9f:fc:61:13:47:f2:55:f0:64:64:b4:db:ba:4e:17:
                    18:24:2b:6d:be:ac:bb:ba:8f:aa:96:0b:f6:55:9d:e7:
                    0f:1f:9e:d3:e1:c5:31:a2:4e:a6:bb:6e:7f:ce:bf:ee:
                    da:f1:b6:d2:91:47:3b:c2:95:62:cf:66:b1:ce:52:75:
                    f1:79:3b:ad:e2:a6:7f:64:37:aa:8d:81:1b:87:e6:f2:
                    02:97:5c:37:d9:65:72:b1:c0:85:3e:74:0b:9c:ac:5c:
                    61:f5:8a:6e:e2:22:52:a2:10:3c:7b:6f:d1:8b:e0:86:
                    66:ff:f7:37:e6:43:58:52:34:79:5b:35:a2:4b:13:40:
                    e4:01:42:f4:1f:30:d4:0d:66:2e:97:04:c6:d3:bf:a6:
                    e0:47:ec:cf:87:20:c1:99:42:e5:c2:e1:7f:c5:ed:30:
                    35:19:50:85:b3:41:a5:74:6a:ed:be:8d:9c:54:24:0d:
                    2e:33:7e:4e:fb:b7:5d:7b:63:25:80:d6:a2:cc:0a:04:
                    c9:8c:49:e6:1c:21:6b:09:ee:b5:c0:e1:7f:82:bc:5d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:5e:7a:fa:09:66:58:a8:7b:59:30:cc:b1:81:70:a5:
        cf:22:b1:b9:07:ad:19:27:35:ce:66:76:3f:fe:51:5f:
        de:a4:5f:50:19:4a:56:2e:74:09:83:cf:3a:c1:b1:c8:
        b4:a3:92:b6:f1:6c:e9:ea:b1:c0:34:b1:87:96:ad:f3:
        a0:e9:d0:6d:01:f3:f1:29:6b:42:8e:5b:70:ae:bf:98:
        6f:ed:74:2c:7f:4b:a4:dd:7d:d8:38:c6:89:20:b4:1b:
        06:8e:7a:fa:37:f6:c6:01:20:05:d8:26:1f:ab:4c:b5:
        b1:0d:ae:cd:15:35:82:3c:e1:4b:6d:32:b3:88:f3:9e:
        60:b9:68:34:60:20:5f:2a:96:47:47:8c:5f:b2:e8:a4:
        e5:7a:e5:0b:2b:31:6f:07:3b:7b:9d:ad:23:22:fc:89:
        f2:96:59:e3:32:af:53:8a:b9:14:50:71:e1:ce:f9:74:
        d6:ef:85:84:3c:46:0a:ba:32:2d:24:0b:07:c8:9b:e8:
        47:18:49:6c:2e:28:da:68:88:40:f6:49:d2:d8:31:0d:
        95:40:82:55:de:92:2d:e1:a2:cb:a8:6d:51:3c:1b:d2:
        d4:9c:40:81:8d:29:32:d6:20:f0:04:8d:68:cc:60:b1:
        61:c0:a4:e8:6f:fd:23:5b:5f:e7:7d:9b:b8:80:e3:21
    Fingerprint (SHA-256):
        A0:C4:B8:52:08:EA:8A:17:DE:13:1F:C5:C6:E5:BC:0C:18:52:24:4D:47:9C:10:D1:DA:FA:E0:13:E2:BA:B3:B2
    Fingerprint (SHA1):
        C4:29:D2:0A:44:69:F3:12:03:4D:A1:E0:23:88:A4:F5:65:D7:5F:C4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7704: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #7705: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #7706: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #7707: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #7708: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #7709: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7710: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7711: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #7712: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7713: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7714: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7715: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7716: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #7717: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7718: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7719: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7720: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #7721: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7722: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #7723: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7724: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #7725: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7726: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #7727: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 30927 at Sun Aug  6 23:59:47 UTC 2017
kill -USR1 30927
httpserv: normal termination
httpserv -b -p 9019 2>/dev/null;
httpserv with PID 30927 killed at Sun Aug  6 23:59:47 UTC 2017
httpserv starting at Sun Aug  6 23:59:47 UTC 2017
httpserv -D -p 9019  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA3.crl \
         -O get-unknown -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/aiahttp/http_pid.8843  &
trying to connect to httpserv at Sun Aug  6 23:59:47 UTC 2017
tstclnt -p 9019 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9019 (address=::1)
tstclnt: exiting with return code 0
kill -0 14056 >/dev/null 2>/dev/null
httpserv with PID 14056 found at Sun Aug  6 23:59:47 UTC 2017
httpserv with PID 14056 started at Sun Aug  6 23:59:47 UTC 2017
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #7728: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806235996 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7729: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #7730: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #7731: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806235997 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7732: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #7733: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #7734: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7735: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 806235998 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7736: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7737: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 806235999 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7738: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7739: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #7740: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7741: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7742: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 806236000   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7743: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7744: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7745: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #7746: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #7747: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235997 (0x300e2f5d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:47 2017
            Not After : Sat Aug 06 23:59:47 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:4b:98:04:54:f0:55:44:e7:5f:c3:64:dc:4c:80:14:
                    9c:93:9a:ed:55:aa:54:65:12:18:96:dc:bc:50:20:8a:
                    00:e4:41:a8:6a:34:f3:8e:3b:52:51:b6:dc:f5:26:04:
                    c8:04:77:16:fe:85:66:6e:70:c6:b2:86:5b:ff:b5:76:
                    7d:03:42:a0:c9:2c:0c:6e:62:79:e7:e6:da:1e:ab:cc:
                    ca:a0:6f:8c:8f:04:7e:66:bc:22:98:ca:29:f9:74:8e:
                    1e:9a:bb:8a:f6:27:27:9f:33:7c:8b:b9:fe:4e:12:d9:
                    db:85:85:da:d8:3e:fc:45:58:78:61:93:30:50:fa:9c:
                    c9:66:79:61:2d:b2:d3:e8:d8:e7:5f:1f:09:80:d6:1c:
                    cf:c0:8d:b3:0b:5c:d7:e2:55:a1:6a:46:55:75:03:0e:
                    65:39:5c:93:64:b2:e5:07:fa:5f:4c:5a:d5:40:28:d4:
                    1b:d2:86:6b:fb:2a:d8:42:a2:4e:bd:7e:b2:36:69:6f:
                    5e:8e:f8:3b:12:5c:5e:c0:cb:e2:ad:45:f4:cc:2a:58:
                    aa:2a:ff:fe:df:e8:00:63:d6:e0:19:7e:ae:42:75:fb:
                    1e:22:81:2a:bf:31:74:99:ff:1d:91:36:98:f7:e4:e0:
                    15:5a:0b:2c:b9:7f:6c:e8:dc:98:12:89:41:34:a8:51
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        94:ef:d7:b2:a0:c2:cc:55:23:e6:b3:6c:e7:2a:fb:f6:
        25:0e:41:06:de:89:26:e3:2c:cb:c9:a7:49:20:ea:aa:
        ba:85:01:36:22:5e:8e:d2:2d:df:48:20:74:21:04:39:
        4d:42:d3:ac:d7:df:80:8d:1b:41:ee:91:01:aa:da:58:
        b7:5b:69:9d:49:ac:7d:ac:6f:16:aa:9b:c0:5b:06:57:
        a1:08:92:3d:66:3c:71:2f:0e:8b:a1:fc:72:0c:a5:fb:
        d6:14:13:8e:b2:a9:38:d8:f6:57:b7:72:8a:42:04:70:
        ee:81:82:96:2c:73:78:5f:04:0e:34:ea:b7:18:34:92:
        d3:cc:93:46:5e:50:ab:6f:68:fd:67:30:40:4d:29:72:
        b0:bc:96:8f:ae:c9:32:e7:d3:92:d7:05:3d:11:0f:e9:
        49:dd:1b:9e:5d:91:c9:01:34:db:9e:b4:aa:19:68:49:
        85:b8:66:1f:cf:9a:83:39:cb:f7:c7:f6:70:e3:5e:de:
        7e:c8:3f:9e:0a:4c:fe:7c:39:3f:8f:a2:22:52:bb:1b:
        f0:4f:fd:8d:0f:0f:b7:06:b6:b5:46:fa:ef:da:a5:fe:
        0f:84:0e:23:58:4d:4d:d1:09:4e:17:10:fe:02:0c:b2:
        82:89:85:9b:5b:28:d4:e1:21:5d:35:4d:48:bf:0b:f5
    Fingerprint (SHA-256):
        AE:B7:8A:CA:88:88:77:60:50:5B:C0:A4:E1:A5:70:2D:95:3A:75:07:B1:21:1C:25:BA:A6:9B:26:18:20:65:BC
    Fingerprint (SHA1):
        08:F3:6B:E5:6F:64:F4:16:8F:DF:67:82:47:55:3C:DA:2C:FF:BE:75
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7748: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235996 (0x300e2f5c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:47 2017
            Not After : Sat Aug 06 23:59:47 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:41:83:f9:71:0a:14:6d:6b:a5:d6:0f:de:57:ee:6c:
                    50:0b:91:78:52:8c:71:96:f3:52:05:21:fc:5e:60:54:
                    b3:df:ae:09:94:c7:5a:f3:70:1d:8f:a0:90:17:4a:c8:
                    cc:de:64:d4:b3:d3:36:2e:f3:4e:cb:03:96:16:4f:60:
                    c7:b4:55:21:c7:47:2b:d8:0a:1b:d0:34:4f:64:d1:ca:
                    eb:18:ec:a4:f0:71:08:8a:a3:5c:42:b6:68:e3:9e:15:
                    9e:05:f8:f0:3a:13:4c:a0:39:dc:06:f3:0e:83:3b:b7:
                    31:df:ab:4e:eb:36:c2:57:a4:3d:8a:ee:25:a4:d7:c4:
                    46:c3:af:d7:dd:e8:0b:8f:fa:1b:eb:5d:84:92:9b:13:
                    65:5a:a5:ff:17:d5:22:71:10:79:3f:aa:62:4f:7e:3e:
                    52:d7:42:af:e6:84:c3:7c:e2:cc:8e:fe:cd:ff:91:cf:
                    aa:cd:a8:a3:1a:bb:79:15:21:d2:d8:9c:97:70:ab:a7:
                    fd:c5:86:c2:0d:03:cc:62:75:e3:3f:de:70:8e:5c:48:
                    a8:92:d2:87:17:d8:5c:10:e7:c7:af:4d:06:c8:0c:67:
                    e3:bd:7e:b9:82:f8:c0:a1:c7:3e:4f:11:99:23:d4:da:
                    c1:76:31:d5:da:ca:ec:e3:fb:e1:51:e5:f7:ee:49:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        49:38:3c:a5:af:25:a4:80:2e:6f:5e:2d:54:a1:50:97:
        a0:a3:ff:2b:d6:2f:ad:53:bd:43:a1:b3:72:b4:cb:28:
        42:8e:58:68:ed:33:f9:86:f2:12:60:a4:9d:a3:37:1a:
        2c:1c:bb:79:ed:fa:d3:11:38:73:69:08:70:6d:20:ed:
        17:e2:0b:18:71:ca:7e:62:bb:dc:a2:30:81:de:20:2d:
        dd:7c:de:64:67:56:05:77:1c:64:33:a8:c7:39:35:9c:
        50:81:62:3f:88:4d:df:c4:13:1d:ff:bd:45:16:d4:03:
        6f:93:29:22:11:63:b8:7c:bc:be:c1:a0:95:f5:12:e5:
        11:96:1f:0d:69:4c:79:d4:1f:32:3c:db:0c:fe:c6:15:
        8d:99:4a:5a:c3:84:6a:df:c2:8d:6f:ed:cd:b4:7c:4d:
        21:18:95:8c:e3:f0:a1:b2:37:af:6f:12:63:5a:24:37:
        9f:c2:76:7a:22:b7:97:af:7b:ee:13:e0:52:e1:13:ed:
        5b:86:aa:a1:4f:4c:e8:11:21:9e:09:d5:9d:2e:ff:4b:
        a6:2b:b3:36:c5:24:ea:fc:8a:9e:96:2c:16:80:8f:95:
        3d:5b:29:6c:8c:3c:c7:db:1f:fe:2e:64:1c:e5:07:46:
        62:e6:c7:59:c3:ae:e6:02:89:38:e1:3d:dc:f4:f5:d8
    Fingerprint (SHA-256):
        68:DE:B2:07:64:75:A1:ED:BC:19:D4:92:8C:9F:0C:C2:C2:54:2D:DE:1E:88:D6:B5:1A:87:F7:C8:7B:48:AA:0E
    Fingerprint (SHA1):
        42:15:D5:69:0E:B8:91:C9:E7:E3:C2:2E:78:CA:9F:40:0D:3E:12:81
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7749: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #7750: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #7751: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #7752: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235996 (0x300e2f5c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:47 2017
            Not After : Sat Aug 06 23:59:47 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:41:83:f9:71:0a:14:6d:6b:a5:d6:0f:de:57:ee:6c:
                    50:0b:91:78:52:8c:71:96:f3:52:05:21:fc:5e:60:54:
                    b3:df:ae:09:94:c7:5a:f3:70:1d:8f:a0:90:17:4a:c8:
                    cc:de:64:d4:b3:d3:36:2e:f3:4e:cb:03:96:16:4f:60:
                    c7:b4:55:21:c7:47:2b:d8:0a:1b:d0:34:4f:64:d1:ca:
                    eb:18:ec:a4:f0:71:08:8a:a3:5c:42:b6:68:e3:9e:15:
                    9e:05:f8:f0:3a:13:4c:a0:39:dc:06:f3:0e:83:3b:b7:
                    31:df:ab:4e:eb:36:c2:57:a4:3d:8a:ee:25:a4:d7:c4:
                    46:c3:af:d7:dd:e8:0b:8f:fa:1b:eb:5d:84:92:9b:13:
                    65:5a:a5:ff:17:d5:22:71:10:79:3f:aa:62:4f:7e:3e:
                    52:d7:42:af:e6:84:c3:7c:e2:cc:8e:fe:cd:ff:91:cf:
                    aa:cd:a8:a3:1a:bb:79:15:21:d2:d8:9c:97:70:ab:a7:
                    fd:c5:86:c2:0d:03:cc:62:75:e3:3f:de:70:8e:5c:48:
                    a8:92:d2:87:17:d8:5c:10:e7:c7:af:4d:06:c8:0c:67:
                    e3:bd:7e:b9:82:f8:c0:a1:c7:3e:4f:11:99:23:d4:da:
                    c1:76:31:d5:da:ca:ec:e3:fb:e1:51:e5:f7:ee:49:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        49:38:3c:a5:af:25:a4:80:2e:6f:5e:2d:54:a1:50:97:
        a0:a3:ff:2b:d6:2f:ad:53:bd:43:a1:b3:72:b4:cb:28:
        42:8e:58:68:ed:33:f9:86:f2:12:60:a4:9d:a3:37:1a:
        2c:1c:bb:79:ed:fa:d3:11:38:73:69:08:70:6d:20:ed:
        17:e2:0b:18:71:ca:7e:62:bb:dc:a2:30:81:de:20:2d:
        dd:7c:de:64:67:56:05:77:1c:64:33:a8:c7:39:35:9c:
        50:81:62:3f:88:4d:df:c4:13:1d:ff:bd:45:16:d4:03:
        6f:93:29:22:11:63:b8:7c:bc:be:c1:a0:95:f5:12:e5:
        11:96:1f:0d:69:4c:79:d4:1f:32:3c:db:0c:fe:c6:15:
        8d:99:4a:5a:c3:84:6a:df:c2:8d:6f:ed:cd:b4:7c:4d:
        21:18:95:8c:e3:f0:a1:b2:37:af:6f:12:63:5a:24:37:
        9f:c2:76:7a:22:b7:97:af:7b:ee:13:e0:52:e1:13:ed:
        5b:86:aa:a1:4f:4c:e8:11:21:9e:09:d5:9d:2e:ff:4b:
        a6:2b:b3:36:c5:24:ea:fc:8a:9e:96:2c:16:80:8f:95:
        3d:5b:29:6c:8c:3c:c7:db:1f:fe:2e:64:1c:e5:07:46:
        62:e6:c7:59:c3:ae:e6:02:89:38:e1:3d:dc:f4:f5:d8
    Fingerprint (SHA-256):
        68:DE:B2:07:64:75:A1:ED:BC:19:D4:92:8C:9F:0C:C2:C2:54:2D:DE:1E:88:D6:B5:1A:87:F7:C8:7B:48:AA:0E
    Fingerprint (SHA1):
        42:15:D5:69:0E:B8:91:C9:E7:E3:C2:2E:78:CA:9F:40:0D:3E:12:81
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7753: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235997 (0x300e2f5d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:47 2017
            Not After : Sat Aug 06 23:59:47 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:4b:98:04:54:f0:55:44:e7:5f:c3:64:dc:4c:80:14:
                    9c:93:9a:ed:55:aa:54:65:12:18:96:dc:bc:50:20:8a:
                    00:e4:41:a8:6a:34:f3:8e:3b:52:51:b6:dc:f5:26:04:
                    c8:04:77:16:fe:85:66:6e:70:c6:b2:86:5b:ff:b5:76:
                    7d:03:42:a0:c9:2c:0c:6e:62:79:e7:e6:da:1e:ab:cc:
                    ca:a0:6f:8c:8f:04:7e:66:bc:22:98:ca:29:f9:74:8e:
                    1e:9a:bb:8a:f6:27:27:9f:33:7c:8b:b9:fe:4e:12:d9:
                    db:85:85:da:d8:3e:fc:45:58:78:61:93:30:50:fa:9c:
                    c9:66:79:61:2d:b2:d3:e8:d8:e7:5f:1f:09:80:d6:1c:
                    cf:c0:8d:b3:0b:5c:d7:e2:55:a1:6a:46:55:75:03:0e:
                    65:39:5c:93:64:b2:e5:07:fa:5f:4c:5a:d5:40:28:d4:
                    1b:d2:86:6b:fb:2a:d8:42:a2:4e:bd:7e:b2:36:69:6f:
                    5e:8e:f8:3b:12:5c:5e:c0:cb:e2:ad:45:f4:cc:2a:58:
                    aa:2a:ff:fe:df:e8:00:63:d6:e0:19:7e:ae:42:75:fb:
                    1e:22:81:2a:bf:31:74:99:ff:1d:91:36:98:f7:e4:e0:
                    15:5a:0b:2c:b9:7f:6c:e8:dc:98:12:89:41:34:a8:51
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        94:ef:d7:b2:a0:c2:cc:55:23:e6:b3:6c:e7:2a:fb:f6:
        25:0e:41:06:de:89:26:e3:2c:cb:c9:a7:49:20:ea:aa:
        ba:85:01:36:22:5e:8e:d2:2d:df:48:20:74:21:04:39:
        4d:42:d3:ac:d7:df:80:8d:1b:41:ee:91:01:aa:da:58:
        b7:5b:69:9d:49:ac:7d:ac:6f:16:aa:9b:c0:5b:06:57:
        a1:08:92:3d:66:3c:71:2f:0e:8b:a1:fc:72:0c:a5:fb:
        d6:14:13:8e:b2:a9:38:d8:f6:57:b7:72:8a:42:04:70:
        ee:81:82:96:2c:73:78:5f:04:0e:34:ea:b7:18:34:92:
        d3:cc:93:46:5e:50:ab:6f:68:fd:67:30:40:4d:29:72:
        b0:bc:96:8f:ae:c9:32:e7:d3:92:d7:05:3d:11:0f:e9:
        49:dd:1b:9e:5d:91:c9:01:34:db:9e:b4:aa:19:68:49:
        85:b8:66:1f:cf:9a:83:39:cb:f7:c7:f6:70:e3:5e:de:
        7e:c8:3f:9e:0a:4c:fe:7c:39:3f:8f:a2:22:52:bb:1b:
        f0:4f:fd:8d:0f:0f:b7:06:b6:b5:46:fa:ef:da:a5:fe:
        0f:84:0e:23:58:4d:4d:d1:09:4e:17:10:fe:02:0c:b2:
        82:89:85:9b:5b:28:d4:e1:21:5d:35:4d:48:bf:0b:f5
    Fingerprint (SHA-256):
        AE:B7:8A:CA:88:88:77:60:50:5B:C0:A4:E1:A5:70:2D:95:3A:75:07:B1:21:1C:25:BA:A6:9B:26:18:20:65:BC
    Fingerprint (SHA1):
        08:F3:6B:E5:6F:64:F4:16:8F:DF:67:82:47:55:3C:DA:2C:FF:BE:75
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7754: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #7755: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #7756: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #7757: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #7758: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #7759: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235997 (0x300e2f5d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:47 2017
            Not After : Sat Aug 06 23:59:47 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:4b:98:04:54:f0:55:44:e7:5f:c3:64:dc:4c:80:14:
                    9c:93:9a:ed:55:aa:54:65:12:18:96:dc:bc:50:20:8a:
                    00:e4:41:a8:6a:34:f3:8e:3b:52:51:b6:dc:f5:26:04:
                    c8:04:77:16:fe:85:66:6e:70:c6:b2:86:5b:ff:b5:76:
                    7d:03:42:a0:c9:2c:0c:6e:62:79:e7:e6:da:1e:ab:cc:
                    ca:a0:6f:8c:8f:04:7e:66:bc:22:98:ca:29:f9:74:8e:
                    1e:9a:bb:8a:f6:27:27:9f:33:7c:8b:b9:fe:4e:12:d9:
                    db:85:85:da:d8:3e:fc:45:58:78:61:93:30:50:fa:9c:
                    c9:66:79:61:2d:b2:d3:e8:d8:e7:5f:1f:09:80:d6:1c:
                    cf:c0:8d:b3:0b:5c:d7:e2:55:a1:6a:46:55:75:03:0e:
                    65:39:5c:93:64:b2:e5:07:fa:5f:4c:5a:d5:40:28:d4:
                    1b:d2:86:6b:fb:2a:d8:42:a2:4e:bd:7e:b2:36:69:6f:
                    5e:8e:f8:3b:12:5c:5e:c0:cb:e2:ad:45:f4:cc:2a:58:
                    aa:2a:ff:fe:df:e8:00:63:d6:e0:19:7e:ae:42:75:fb:
                    1e:22:81:2a:bf:31:74:99:ff:1d:91:36:98:f7:e4:e0:
                    15:5a:0b:2c:b9:7f:6c:e8:dc:98:12:89:41:34:a8:51
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        94:ef:d7:b2:a0:c2:cc:55:23:e6:b3:6c:e7:2a:fb:f6:
        25:0e:41:06:de:89:26:e3:2c:cb:c9:a7:49:20:ea:aa:
        ba:85:01:36:22:5e:8e:d2:2d:df:48:20:74:21:04:39:
        4d:42:d3:ac:d7:df:80:8d:1b:41:ee:91:01:aa:da:58:
        b7:5b:69:9d:49:ac:7d:ac:6f:16:aa:9b:c0:5b:06:57:
        a1:08:92:3d:66:3c:71:2f:0e:8b:a1:fc:72:0c:a5:fb:
        d6:14:13:8e:b2:a9:38:d8:f6:57:b7:72:8a:42:04:70:
        ee:81:82:96:2c:73:78:5f:04:0e:34:ea:b7:18:34:92:
        d3:cc:93:46:5e:50:ab:6f:68:fd:67:30:40:4d:29:72:
        b0:bc:96:8f:ae:c9:32:e7:d3:92:d7:05:3d:11:0f:e9:
        49:dd:1b:9e:5d:91:c9:01:34:db:9e:b4:aa:19:68:49:
        85:b8:66:1f:cf:9a:83:39:cb:f7:c7:f6:70:e3:5e:de:
        7e:c8:3f:9e:0a:4c:fe:7c:39:3f:8f:a2:22:52:bb:1b:
        f0:4f:fd:8d:0f:0f:b7:06:b6:b5:46:fa:ef:da:a5:fe:
        0f:84:0e:23:58:4d:4d:d1:09:4e:17:10:fe:02:0c:b2:
        82:89:85:9b:5b:28:d4:e1:21:5d:35:4d:48:bf:0b:f5
    Fingerprint (SHA-256):
        AE:B7:8A:CA:88:88:77:60:50:5B:C0:A4:E1:A5:70:2D:95:3A:75:07:B1:21:1C:25:BA:A6:9B:26:18:20:65:BC
    Fingerprint (SHA1):
        08:F3:6B:E5:6F:64:F4:16:8F:DF:67:82:47:55:3C:DA:2C:FF:BE:75
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7760: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235997 (0x300e2f5d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:47 2017
            Not After : Sat Aug 06 23:59:47 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:4b:98:04:54:f0:55:44:e7:5f:c3:64:dc:4c:80:14:
                    9c:93:9a:ed:55:aa:54:65:12:18:96:dc:bc:50:20:8a:
                    00:e4:41:a8:6a:34:f3:8e:3b:52:51:b6:dc:f5:26:04:
                    c8:04:77:16:fe:85:66:6e:70:c6:b2:86:5b:ff:b5:76:
                    7d:03:42:a0:c9:2c:0c:6e:62:79:e7:e6:da:1e:ab:cc:
                    ca:a0:6f:8c:8f:04:7e:66:bc:22:98:ca:29:f9:74:8e:
                    1e:9a:bb:8a:f6:27:27:9f:33:7c:8b:b9:fe:4e:12:d9:
                    db:85:85:da:d8:3e:fc:45:58:78:61:93:30:50:fa:9c:
                    c9:66:79:61:2d:b2:d3:e8:d8:e7:5f:1f:09:80:d6:1c:
                    cf:c0:8d:b3:0b:5c:d7:e2:55:a1:6a:46:55:75:03:0e:
                    65:39:5c:93:64:b2:e5:07:fa:5f:4c:5a:d5:40:28:d4:
                    1b:d2:86:6b:fb:2a:d8:42:a2:4e:bd:7e:b2:36:69:6f:
                    5e:8e:f8:3b:12:5c:5e:c0:cb:e2:ad:45:f4:cc:2a:58:
                    aa:2a:ff:fe:df:e8:00:63:d6:e0:19:7e:ae:42:75:fb:
                    1e:22:81:2a:bf:31:74:99:ff:1d:91:36:98:f7:e4:e0:
                    15:5a:0b:2c:b9:7f:6c:e8:dc:98:12:89:41:34:a8:51
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        94:ef:d7:b2:a0:c2:cc:55:23:e6:b3:6c:e7:2a:fb:f6:
        25:0e:41:06:de:89:26:e3:2c:cb:c9:a7:49:20:ea:aa:
        ba:85:01:36:22:5e:8e:d2:2d:df:48:20:74:21:04:39:
        4d:42:d3:ac:d7:df:80:8d:1b:41:ee:91:01:aa:da:58:
        b7:5b:69:9d:49:ac:7d:ac:6f:16:aa:9b:c0:5b:06:57:
        a1:08:92:3d:66:3c:71:2f:0e:8b:a1:fc:72:0c:a5:fb:
        d6:14:13:8e:b2:a9:38:d8:f6:57:b7:72:8a:42:04:70:
        ee:81:82:96:2c:73:78:5f:04:0e:34:ea:b7:18:34:92:
        d3:cc:93:46:5e:50:ab:6f:68:fd:67:30:40:4d:29:72:
        b0:bc:96:8f:ae:c9:32:e7:d3:92:d7:05:3d:11:0f:e9:
        49:dd:1b:9e:5d:91:c9:01:34:db:9e:b4:aa:19:68:49:
        85:b8:66:1f:cf:9a:83:39:cb:f7:c7:f6:70:e3:5e:de:
        7e:c8:3f:9e:0a:4c:fe:7c:39:3f:8f:a2:22:52:bb:1b:
        f0:4f:fd:8d:0f:0f:b7:06:b6:b5:46:fa:ef:da:a5:fe:
        0f:84:0e:23:58:4d:4d:d1:09:4e:17:10:fe:02:0c:b2:
        82:89:85:9b:5b:28:d4:e1:21:5d:35:4d:48:bf:0b:f5
    Fingerprint (SHA-256):
        AE:B7:8A:CA:88:88:77:60:50:5B:C0:A4:E1:A5:70:2D:95:3A:75:07:B1:21:1C:25:BA:A6:9B:26:18:20:65:BC
    Fingerprint (SHA1):
        08:F3:6B:E5:6F:64:F4:16:8F:DF:67:82:47:55:3C:DA:2C:FF:BE:75
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7761: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #7762: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #7763: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #7764: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #7765: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #7766: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235996 (0x300e2f5c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:47 2017
            Not After : Sat Aug 06 23:59:47 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:41:83:f9:71:0a:14:6d:6b:a5:d6:0f:de:57:ee:6c:
                    50:0b:91:78:52:8c:71:96:f3:52:05:21:fc:5e:60:54:
                    b3:df:ae:09:94:c7:5a:f3:70:1d:8f:a0:90:17:4a:c8:
                    cc:de:64:d4:b3:d3:36:2e:f3:4e:cb:03:96:16:4f:60:
                    c7:b4:55:21:c7:47:2b:d8:0a:1b:d0:34:4f:64:d1:ca:
                    eb:18:ec:a4:f0:71:08:8a:a3:5c:42:b6:68:e3:9e:15:
                    9e:05:f8:f0:3a:13:4c:a0:39:dc:06:f3:0e:83:3b:b7:
                    31:df:ab:4e:eb:36:c2:57:a4:3d:8a:ee:25:a4:d7:c4:
                    46:c3:af:d7:dd:e8:0b:8f:fa:1b:eb:5d:84:92:9b:13:
                    65:5a:a5:ff:17:d5:22:71:10:79:3f:aa:62:4f:7e:3e:
                    52:d7:42:af:e6:84:c3:7c:e2:cc:8e:fe:cd:ff:91:cf:
                    aa:cd:a8:a3:1a:bb:79:15:21:d2:d8:9c:97:70:ab:a7:
                    fd:c5:86:c2:0d:03:cc:62:75:e3:3f:de:70:8e:5c:48:
                    a8:92:d2:87:17:d8:5c:10:e7:c7:af:4d:06:c8:0c:67:
                    e3:bd:7e:b9:82:f8:c0:a1:c7:3e:4f:11:99:23:d4:da:
                    c1:76:31:d5:da:ca:ec:e3:fb:e1:51:e5:f7:ee:49:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        49:38:3c:a5:af:25:a4:80:2e:6f:5e:2d:54:a1:50:97:
        a0:a3:ff:2b:d6:2f:ad:53:bd:43:a1:b3:72:b4:cb:28:
        42:8e:58:68:ed:33:f9:86:f2:12:60:a4:9d:a3:37:1a:
        2c:1c:bb:79:ed:fa:d3:11:38:73:69:08:70:6d:20:ed:
        17:e2:0b:18:71:ca:7e:62:bb:dc:a2:30:81:de:20:2d:
        dd:7c:de:64:67:56:05:77:1c:64:33:a8:c7:39:35:9c:
        50:81:62:3f:88:4d:df:c4:13:1d:ff:bd:45:16:d4:03:
        6f:93:29:22:11:63:b8:7c:bc:be:c1:a0:95:f5:12:e5:
        11:96:1f:0d:69:4c:79:d4:1f:32:3c:db:0c:fe:c6:15:
        8d:99:4a:5a:c3:84:6a:df:c2:8d:6f:ed:cd:b4:7c:4d:
        21:18:95:8c:e3:f0:a1:b2:37:af:6f:12:63:5a:24:37:
        9f:c2:76:7a:22:b7:97:af:7b:ee:13:e0:52:e1:13:ed:
        5b:86:aa:a1:4f:4c:e8:11:21:9e:09:d5:9d:2e:ff:4b:
        a6:2b:b3:36:c5:24:ea:fc:8a:9e:96:2c:16:80:8f:95:
        3d:5b:29:6c:8c:3c:c7:db:1f:fe:2e:64:1c:e5:07:46:
        62:e6:c7:59:c3:ae:e6:02:89:38:e1:3d:dc:f4:f5:d8
    Fingerprint (SHA-256):
        68:DE:B2:07:64:75:A1:ED:BC:19:D4:92:8C:9F:0C:C2:C2:54:2D:DE:1E:88:D6:B5:1A:87:F7:C8:7B:48:AA:0E
    Fingerprint (SHA1):
        42:15:D5:69:0E:B8:91:C9:E7:E3:C2:2E:78:CA:9F:40:0D:3E:12:81
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7767: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806235996 (0x300e2f5c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:47 2017
            Not After : Sat Aug 06 23:59:47 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:41:83:f9:71:0a:14:6d:6b:a5:d6:0f:de:57:ee:6c:
                    50:0b:91:78:52:8c:71:96:f3:52:05:21:fc:5e:60:54:
                    b3:df:ae:09:94:c7:5a:f3:70:1d:8f:a0:90:17:4a:c8:
                    cc:de:64:d4:b3:d3:36:2e:f3:4e:cb:03:96:16:4f:60:
                    c7:b4:55:21:c7:47:2b:d8:0a:1b:d0:34:4f:64:d1:ca:
                    eb:18:ec:a4:f0:71:08:8a:a3:5c:42:b6:68:e3:9e:15:
                    9e:05:f8:f0:3a:13:4c:a0:39:dc:06:f3:0e:83:3b:b7:
                    31:df:ab:4e:eb:36:c2:57:a4:3d:8a:ee:25:a4:d7:c4:
                    46:c3:af:d7:dd:e8:0b:8f:fa:1b:eb:5d:84:92:9b:13:
                    65:5a:a5:ff:17:d5:22:71:10:79:3f:aa:62:4f:7e:3e:
                    52:d7:42:af:e6:84:c3:7c:e2:cc:8e:fe:cd:ff:91:cf:
                    aa:cd:a8:a3:1a:bb:79:15:21:d2:d8:9c:97:70:ab:a7:
                    fd:c5:86:c2:0d:03:cc:62:75:e3:3f:de:70:8e:5c:48:
                    a8:92:d2:87:17:d8:5c:10:e7:c7:af:4d:06:c8:0c:67:
                    e3:bd:7e:b9:82:f8:c0:a1:c7:3e:4f:11:99:23:d4:da:
                    c1:76:31:d5:da:ca:ec:e3:fb:e1:51:e5:f7:ee:49:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        49:38:3c:a5:af:25:a4:80:2e:6f:5e:2d:54:a1:50:97:
        a0:a3:ff:2b:d6:2f:ad:53:bd:43:a1:b3:72:b4:cb:28:
        42:8e:58:68:ed:33:f9:86:f2:12:60:a4:9d:a3:37:1a:
        2c:1c:bb:79:ed:fa:d3:11:38:73:69:08:70:6d:20:ed:
        17:e2:0b:18:71:ca:7e:62:bb:dc:a2:30:81:de:20:2d:
        dd:7c:de:64:67:56:05:77:1c:64:33:a8:c7:39:35:9c:
        50:81:62:3f:88:4d:df:c4:13:1d:ff:bd:45:16:d4:03:
        6f:93:29:22:11:63:b8:7c:bc:be:c1:a0:95:f5:12:e5:
        11:96:1f:0d:69:4c:79:d4:1f:32:3c:db:0c:fe:c6:15:
        8d:99:4a:5a:c3:84:6a:df:c2:8d:6f:ed:cd:b4:7c:4d:
        21:18:95:8c:e3:f0:a1:b2:37:af:6f:12:63:5a:24:37:
        9f:c2:76:7a:22:b7:97:af:7b:ee:13:e0:52:e1:13:ed:
        5b:86:aa:a1:4f:4c:e8:11:21:9e:09:d5:9d:2e:ff:4b:
        a6:2b:b3:36:c5:24:ea:fc:8a:9e:96:2c:16:80:8f:95:
        3d:5b:29:6c:8c:3c:c7:db:1f:fe:2e:64:1c:e5:07:46:
        62:e6:c7:59:c3:ae:e6:02:89:38:e1:3d:dc:f4:f5:d8
    Fingerprint (SHA-256):
        68:DE:B2:07:64:75:A1:ED:BC:19:D4:92:8C:9F:0C:C2:C2:54:2D:DE:1E:88:D6:B5:1A:87:F7:C8:7B:48:AA:0E
    Fingerprint (SHA1):
        42:15:D5:69:0E:B8:91:C9:E7:E3:C2:2E:78:CA:9F:40:0D:3E:12:81
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7768: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #7769: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806236001 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7770: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #7771: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #7772: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806236002 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7773: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #7774: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #7775: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806236003 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7776: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #7777: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #7778: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806236004 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7779: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #7780: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #7781: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806236005 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7782: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #7783: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #7784: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806236006 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7785: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #7786: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #7787: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806236007 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7788: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #7789: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #7790: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806236008 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7791: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #7792: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #7793: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806236009 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7794: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #7795: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #7796: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7797: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 806236010 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7798: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7799: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 806236011 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7800: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7801: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 806236012 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7802: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7803: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #7804: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #7805: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7806: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 806236013 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7807: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7808: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 806236014 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7809: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7810: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 806236015 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7811: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7812: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #7813: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #7814: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7815: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 806236016 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7816: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7817: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 806236017 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7818: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7819: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 806236018 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7820: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7821: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #7822: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #7823: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7824: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 806236019 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7825: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7826: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 806236020 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7827: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7828: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 806236021 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7829: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7830: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #7831: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7832: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7833: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 806236022   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7834: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7835: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7836: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7837: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 806236023   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7838: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7839: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236001 (0x300e2f61)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:48 2017
            Not After : Sat Aug 06 23:59:48 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:d3:8b:da:6e:ef:aa:2c:c6:22:46:f1:ca:35:6b:f3:
                    3d:71:9f:ae:48:93:33:fc:59:99:3b:f7:e4:5e:94:39:
                    18:16:7a:c5:f7:1b:86:2c:8b:91:1f:c3:1c:1e:39:c2:
                    aa:2b:40:25:71:20:9a:29:ef:81:1a:29:f9:c8:1d:be:
                    aa:21:6b:92:42:60:63:3f:f2:ab:06:40:b1:78:24:fb:
                    dc:04:50:98:e5:08:7c:65:5f:12:6d:67:a2:1c:68:07:
                    7d:da:13:f4:23:98:66:fd:0e:cf:02:ed:2f:c9:ae:00:
                    e4:e4:9c:94:83:1b:0c:30:34:ab:0f:63:64:3c:78:96:
                    b9:43:e9:39:c7:2d:66:6e:f9:71:8c:bc:77:1c:84:76:
                    e7:2f:85:4e:2a:84:1b:32:9c:ec:07:c9:d1:92:fa:48:
                    33:43:e4:99:5c:59:43:b4:75:c0:fa:83:ff:00:70:4f:
                    d3:12:fd:58:8e:b4:ca:0d:d7:c1:a8:7b:e9:71:ad:2e:
                    e6:62:cd:0d:7d:99:37:5f:0b:ae:1c:a2:8f:c7:00:20:
                    e1:54:fe:c2:64:56:2a:73:3f:bd:81:26:13:95:52:54:
                    8d:b5:30:0e:f1:ea:e2:c1:ec:5e:46:f4:21:7f:29:08:
                    7d:70:74:7d:1d:b3:8b:05:95:04:55:b9:a1:a0:a4:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7b:84:1f:ed:70:72:6a:de:36:95:4d:51:db:7a:8c:74:
        9b:02:d3:7c:30:c2:dd:15:c2:f4:e0:10:fe:e6:54:5a:
        bb:55:92:ab:08:0a:f8:e3:8e:5d:d5:80:41:2c:70:88:
        36:c3:a6:39:a4:33:3d:80:83:e5:48:a6:74:23:75:69:
        ff:cf:79:53:37:bd:72:a8:3d:1d:e7:79:89:aa:7d:50:
        b0:13:f1:3a:0d:c7:b6:78:a5:65:93:36:dc:c5:9b:c6:
        10:3a:43:88:46:0f:7e:ac:b9:f0:ff:38:35:0e:64:c5:
        58:5e:ba:dc:31:16:e7:5b:75:2d:e1:2e:66:03:b1:5c:
        3b:b4:ae:39:1b:8f:4b:62:ea:c1:19:66:1d:91:15:75:
        ba:26:5a:db:72:d7:ed:c7:80:c8:b5:79:4e:1e:18:ff:
        4e:06:ec:a0:e2:a2:5b:61:b2:af:57:20:e1:df:57:89:
        d8:0a:7f:50:fd:4d:18:cc:25:0c:d8:55:7e:55:85:64:
        41:02:08:97:00:95:a1:1d:53:9d:f1:73:01:52:94:e9:
        8f:3d:ca:70:86:f2:98:69:d3:e8:9e:76:05:4e:f5:e5:
        3a:a4:24:b8:71:c5:f7:97:4a:ab:25:f3:fc:3e:e7:7c:
        0a:a5:f0:cd:c9:ee:0c:0d:58:e3:bf:d7:0f:0b:ae:40
    Fingerprint (SHA-256):
        CA:FD:77:D5:F1:C2:FA:4B:70:86:65:42:71:D7:25:EF:20:E7:6D:D9:7C:D8:08:58:3D:1B:9E:98:86:C5:16:35
    Fingerprint (SHA1):
        33:B4:EA:DF:3E:90:F2:0B:AF:77:0B:4D:5E:A9:A0:79:DE:B8:2D:C6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #7840: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236002 (0x300e2f62)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:49 2017
            Not After : Sat Aug 06 23:59:49 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:6d:cf:46:8e:d6:cb:ac:e0:f4:c8:c6:18:11:67:88:
                    87:5c:cd:93:b7:bc:13:cb:79:a6:24:fa:5c:6e:5d:e4:
                    80:9f:5a:fd:f0:a8:ba:cf:4f:99:6b:7a:ab:98:b6:a2:
                    f6:74:40:61:0c:e6:9d:de:72:db:17:c9:ca:7e:ca:48:
                    12:19:44:ed:ed:5c:15:83:39:9f:fd:b5:ab:43:c0:31:
                    02:79:ba:32:52:2b:e0:74:38:d2:06:40:c1:87:d7:c5:
                    de:d6:ee:1f:35:b2:48:4b:fa:35:3f:8d:e4:ff:2b:95:
                    32:30:c6:e7:dd:43:ec:de:9d:3f:19:76:48:30:9a:bc:
                    ce:4c:0e:5f:4e:ae:00:48:5d:9d:52:4d:d0:97:79:dc:
                    59:80:b7:4c:04:f9:b3:f7:46:98:f2:81:e8:8d:a1:be:
                    dc:25:37:20:01:21:c0:d9:c5:4e:22:16:7c:db:30:99:
                    12:11:56:8d:b4:ac:fa:f1:96:6e:2d:32:a9:37:67:31:
                    78:79:50:03:9a:c7:37:55:0b:68:98:c5:50:c4:ee:55:
                    43:01:7a:6f:06:4c:0f:22:fc:fe:91:e5:53:74:e1:95:
                    bd:2d:03:b4:58:3e:5a:cf:02:f6:12:f1:27:4f:76:66:
                    35:fa:4a:99:dc:a1:fb:7c:f0:3a:9c:cf:01:e5:f9:e5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a2:47:d2:20:fa:7f:d0:81:b6:18:80:60:6e:9f:e4:b2:
        d3:c3:23:05:c3:1d:76:89:4d:64:80:9d:3a:af:4f:16:
        32:38:17:76:90:b9:c3:70:65:7f:40:39:1f:79:b6:92:
        43:10:52:5c:9c:b7:0d:8b:6f:ce:c4:3e:ec:f1:bd:d2:
        b1:34:18:87:42:16:5b:5d:d9:50:7c:df:57:22:05:6b:
        04:c6:20:9a:07:b0:c5:80:87:6d:f2:f4:10:c6:4c:8a:
        59:df:6e:77:e0:8e:f2:76:6a:a9:0e:8c:7b:45:5c:cb:
        19:c9:65:a8:60:eb:88:0d:8e:9a:1f:fc:c6:dc:cf:01:
        00:b0:e9:50:69:12:57:c8:ca:21:d1:e5:71:fe:83:d0:
        d6:15:6c:b9:69:da:ad:a6:7b:05:1c:3c:6d:33:84:13:
        ac:34:6a:06:3a:6a:7b:9e:76:33:5e:a2:a3:e5:af:35:
        7c:01:bd:f7:df:36:56:ec:e3:18:83:23:66:4f:6c:d4:
        17:0b:52:c6:04:c9:65:88:9b:8b:1a:e1:83:81:aa:dc:
        48:87:36:5f:57:5d:94:40:57:e2:50:80:85:c0:f0:3f:
        5a:62:49:b4:98:15:a5:3e:2c:c2:46:f2:74:85:07:a9:
        0c:b4:36:9c:c2:fb:01:df:1b:66:23:17:22:72:b8:d0
    Fingerprint (SHA-256):
        C9:D6:4E:7C:8A:9C:E6:9E:A9:5A:89:35:AF:8B:04:B6:04:16:16:19:B1:9C:33:C1:61:8B:2E:86:71:13:46:0A
    Fingerprint (SHA1):
        29:0F:65:72:04:FC:87:2D:76:71:6B:22:80:30:F4:A5:23:2A:90:81
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #7841: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236003 (0x300e2f63)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:49 2017
            Not After : Sat Aug 06 23:59:49 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:4d:96:b6:ca:64:56:cd:87:74:f0:b0:14:85:0f:60:
                    ef:c2:00:2e:55:dc:47:24:3d:e2:09:44:ee:05:76:45:
                    9b:03:36:13:02:11:72:52:49:b0:3c:27:04:5e:ea:47:
                    da:57:86:a9:1d:41:a7:70:75:c6:0c:ae:4c:9e:46:4e:
                    95:44:30:f6:75:45:7f:0e:a5:8e:f9:22:25:5e:bf:1e:
                    6f:1d:56:fa:7b:22:72:3d:fe:08:6d:ce:77:f2:0c:6c:
                    a9:cd:f8:ce:08:e5:08:31:73:a8:e8:90:cb:cd:ce:7f:
                    e7:ab:57:a1:df:91:3d:56:f8:d1:4c:12:b8:06:4d:78:
                    c6:d7:64:58:aa:6d:6a:b6:b7:27:2e:6f:4b:b0:77:ad:
                    96:80:2b:4b:b6:df:b2:35:99:f5:a0:03:e3:01:67:1d:
                    60:05:81:b6:0e:2a:ba:c9:e7:b9:c1:59:11:ad:71:52:
                    30:6d:dd:ae:95:a3:66:eb:c3:1a:d5:ba:85:1f:26:0f:
                    85:e9:63:61:41:20:0c:ab:d1:62:08:b5:75:29:c2:48:
                    b1:a8:db:f6:69:e8:19:12:5d:7b:79:f0:e8:3f:6f:1a:
                    61:59:a4:cf:10:55:ab:f4:6a:b7:24:64:ff:cb:53:8b:
                    42:91:f6:3c:50:19:c2:a1:09:3c:42:d6:7d:86:6f:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        96:b9:b7:30:e0:27:f6:8a:3b:71:14:60:21:69:73:2a:
        4d:29:82:52:9e:83:97:db:a8:e6:81:c3:b8:e3:26:53:
        53:fe:f8:d4:41:8e:65:51:d6:49:82:f3:ac:ee:f8:ed:
        37:f4:4a:b9:a6:30:54:b7:1a:4c:2e:c3:c4:fb:61:b4:
        87:54:03:20:08:a2:69:71:e4:85:33:9a:26:39:da:69:
        a0:19:09:a3:a1:9c:71:a7:c4:0b:2b:c3:52:8b:ea:05:
        47:18:fc:91:7e:3c:45:41:32:a5:b8:b1:a8:cb:78:f9:
        46:7c:e3:b5:65:fe:65:5a:b4:04:34:83:ce:bf:1b:83:
        17:05:c3:8c:2a:d8:80:59:21:39:f4:5f:93:f8:31:20:
        ea:98:5c:34:0d:56:fe:1c:2d:93:be:0d:91:f7:75:dc:
        95:55:5e:d7:e6:a7:ae:c9:76:d7:78:11:37:0e:3e:10:
        cc:84:fa:74:45:da:0a:55:3a:f3:ba:57:0b:04:03:f9:
        f4:e6:fe:11:05:3c:d5:43:99:1f:b1:bb:24:62:58:1e:
        6e:4f:7e:9b:65:8e:a8:cd:2d:b2:25:52:5b:5a:ad:eb:
        06:20:1d:48:9d:37:66:90:b5:d2:63:ef:13:ef:83:92:
        4a:b4:6c:04:03:06:7b:17:6b:5c:01:59:27:fc:86:4c
    Fingerprint (SHA-256):
        4E:97:91:36:66:7C:05:3A:63:1D:FE:FC:8B:77:EE:18:8B:45:2B:E8:C8:56:6C:09:4B:78:58:CC:EF:7F:18:D0
    Fingerprint (SHA1):
        B3:F1:E2:A0:D2:12:07:25:A8:01:4C:B2:72:14:34:7A:4C:FF:79:C6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #7842: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236004 (0x300e2f64)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:49 2017
            Not After : Sat Aug 06 23:59:49 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:35:31:7f:90:af:c6:91:e2:63:b7:55:9f:b9:cb:e1:
                    75:4a:ba:ba:cb:b4:a3:20:ee:da:8a:ee:f6:e1:21:2b:
                    fd:2c:4b:36:49:d6:17:5d:b6:d2:cb:2c:38:c4:29:8e:
                    9f:00:8a:9c:c4:8a:5b:80:97:74:21:0f:07:41:1d:78:
                    8c:a3:23:ae:bc:98:3f:a5:74:c5:84:72:ca:c5:c4:32:
                    d3:d7:b3:eb:8a:de:fd:8e:f2:95:91:10:f7:99:c9:5b:
                    77:6a:87:97:ea:41:a6:d9:02:cb:5d:84:c8:be:05:73:
                    4c:64:f3:3e:45:8b:25:3f:60:bd:64:31:cc:68:22:03:
                    51:a6:9e:3d:8d:a6:28:ea:14:dc:bc:a5:40:1d:5f:f5:
                    3a:03:1f:b4:29:7e:41:fc:17:02:08:3b:f6:d4:73:72:
                    2a:13:01:13:e6:dd:5c:2b:11:49:58:8d:b1:ff:6c:c8:
                    5f:21:a4:ea:4a:aa:b5:6e:92:cc:14:79:fc:38:d6:32:
                    e7:9b:9a:ad:ab:c6:bb:d8:49:96:ca:eb:1d:44:be:16:
                    f2:12:fe:63:6f:0f:57:ac:0d:54:3f:4e:63:f5:d4:92:
                    0c:3c:ef:f6:d4:dc:5b:18:3c:c9:09:d8:f8:c6:04:38:
                    18:22:06:64:03:d5:6e:b6:22:71:06:ab:43:7a:04:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2d:01:76:12:46:20:6e:df:ea:c7:51:d3:48:ae:2e:3d:
        ee:72:97:ab:37:80:50:3d:76:bf:7f:12:f3:3a:20:5e:
        0a:ea:70:63:ff:43:cc:81:d3:47:e4:92:a6:18:28:5b:
        0d:c6:ad:eb:af:fa:f4:a8:c4:75:a0:23:57:47:ab:ef:
        0b:84:e2:4c:8d:b2:f5:82:a3:77:ab:1d:27:83:1e:1f:
        5a:55:2e:c2:24:ec:f5:1e:62:10:41:5f:9b:01:aa:0c:
        9e:f1:59:76:74:9d:a8:2f:0f:74:62:94:9c:84:02:5b:
        07:fa:55:b3:f3:ff:a8:50:6a:76:36:41:52:6c:c3:e8:
        c7:a8:ae:b4:e0:c9:4b:48:e4:45:46:62:30:69:9b:9d:
        28:63:2b:90:33:69:2a:3f:4c:ee:03:18:7b:a3:b2:f4:
        46:e1:c0:d7:4f:bd:8e:2f:56:35:91:41:d5:1d:39:20:
        2d:d7:ca:ec:e2:24:b1:e2:f8:be:4e:b8:31:ec:13:c1:
        a9:9c:67:d5:56:61:e5:ce:57:b3:ab:5f:f7:c6:52:c3:
        6a:7d:8c:6e:14:a5:d8:25:7f:98:b5:11:ab:17:40:95:
        ec:5c:cc:ca:5b:c6:2a:66:48:08:49:0e:78:97:f9:a9:
        41:5c:d7:61:96:1f:43:15:72:16:51:dd:e1:ec:d7:ed
    Fingerprint (SHA-256):
        54:AD:9D:2A:EA:33:34:E8:A0:B0:87:BA:B8:69:42:BE:01:9D:5D:D7:05:6E:63:6C:6E:4D:08:68:31:95:A7:41
    Fingerprint (SHA1):
        BB:C1:CA:F0:97:32:8E:0B:AE:41:A0:68:96:D0:D2:C9:F9:FE:1A:B6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #7843: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236005 (0x300e2f65)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:49 2017
            Not After : Sat Aug 06 23:59:49 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:6d:a8:43:ce:76:1d:78:b9:2d:9c:8b:3d:57:51:58:
                    6a:ae:d2:f7:8c:48:3a:69:b8:91:82:a4:74:4c:27:5d:
                    e3:31:49:3e:36:ad:e0:ae:91:23:5a:c3:39:17:08:61:
                    80:d9:8a:60:11:51:ea:12:f5:92:6e:9b:ef:80:35:2f:
                    71:d8:6f:7c:4d:44:27:54:03:f4:c0:63:96:6b:8b:cd:
                    fc:a1:10:6f:e1:00:a2:a6:ed:db:36:b9:67:7f:e8:88:
                    64:58:1c:26:a4:ca:d1:9c:60:8d:1f:0b:85:13:9a:86:
                    6c:24:dc:9d:7f:ff:3a:e3:0c:e0:25:f4:ec:81:32:ad:
                    4a:1e:aa:d5:1d:03:9a:86:7d:01:2f:89:22:bd:b9:59:
                    89:8e:bf:f2:a9:f9:70:12:e9:62:04:7f:8a:d6:68:24:
                    5f:b8:e9:e7:ef:5c:3e:76:ff:61:27:27:de:de:16:8f:
                    0a:36:9a:18:f2:ee:94:5c:d7:4d:9a:85:93:2e:75:a5:
                    9f:f4:ec:5e:ed:33:44:e5:d9:a4:78:f6:62:4f:52:40:
                    d8:bf:76:2a:e4:0e:85:76:22:ec:ec:a5:39:df:c6:7b:
                    c2:ca:3d:42:ff:07:b8:66:a4:c7:9a:3b:8e:d0:2b:68:
                    f1:3a:84:fb:26:cc:81:89:6f:55:62:9e:48:4c:23:21
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        19:9e:d2:cf:74:af:94:6d:59:d0:e1:4f:16:e3:59:e5:
        0d:c2:e0:3e:6c:73:bc:9d:f0:4c:52:ce:83:d8:2e:78:
        ca:c4:1d:86:86:3d:4a:d2:80:da:4b:b3:8f:55:63:6e:
        65:dc:d7:d9:6e:9f:0c:4b:91:44:02:06:64:bd:c9:dc:
        2e:bb:a6:d1:ce:ed:a3:44:b5:c0:fe:f9:56:7a:ba:b3:
        5b:63:bc:f6:dd:64:97:1c:d6:9b:76:b0:25:af:75:c2:
        7e:e9:75:92:e7:21:5a:cd:ed:68:52:da:e3:37:da:42:
        2c:24:4e:23:2c:c9:8d:3a:e1:8a:b8:89:a0:55:ea:2d:
        d3:66:66:cd:76:59:be:a8:c6:0f:95:b8:3b:9d:ae:ae:
        b2:1e:28:a9:3b:e5:dc:5d:20:9f:99:10:f7:58:1e:9e:
        f2:ff:c3:96:c5:ed:c5:69:b4:6b:7b:b5:9b:b8:53:c8:
        69:6c:f3:56:8f:62:42:22:d1:1d:1c:d4:e2:fb:b2:ac:
        fc:b0:6a:6d:01:56:56:28:da:11:a4:1c:91:0f:83:8d:
        cc:ba:13:ec:88:52:a2:2f:28:ec:6c:3c:37:39:2a:5b:
        13:c6:a5:e5:69:1a:3d:ca:ac:89:90:1d:a1:63:92:ba:
        3c:10:d9:a4:09:a3:61:eb:80:cb:8d:cf:71:50:20:c7
    Fingerprint (SHA-256):
        40:8F:B4:1F:90:31:AE:3C:B5:D0:C0:2E:4F:CA:CE:98:CD:B5:15:CB:1B:A8:67:2B:AC:22:E0:8A:5A:86:17:8E
    Fingerprint (SHA1):
        D5:99:A4:ED:BB:A7:8B:EB:8C:FF:70:2D:37:D4:F3:E7:8F:4A:4E:4D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #7844: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236006 (0x300e2f66)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:49 2017
            Not After : Sat Aug 06 23:59:49 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:3a:95:b6:a6:10:8c:ed:35:78:79:53:96:38:f4:b3:
                    17:5c:2e:c4:38:4d:4a:a0:d3:90:c2:fd:52:db:4e:d8:
                    6e:08:f6:ef:44:d7:37:d2:f6:7e:54:71:58:cf:b6:03:
                    3c:bd:62:29:fa:98:22:43:95:6d:3b:fd:02:0e:63:e1:
                    2a:16:de:f7:f7:55:45:5b:fa:81:30:a0:7a:ae:22:94:
                    ae:05:5c:d8:9a:31:44:eb:14:95:dd:a3:a3:09:b4:09:
                    d4:25:8b:9f:d0:65:44:0a:40:40:05:40:8c:cf:a6:29:
                    93:8e:b1:90:7a:b9:c9:74:03:0c:7d:de:b6:45:99:71:
                    6c:16:55:7e:e6:c0:50:ce:36:b9:d4:fe:36:a3:34:9e:
                    6a:d7:43:f4:13:d8:96:1f:a0:aa:a6:d9:2f:de:b0:f1:
                    e7:f5:4e:ac:06:43:83:51:60:ac:1d:3b:bd:ff:61:5e:
                    8c:b1:00:a3:35:14:99:6d:ec:8d:c1:dd:32:c4:b2:ee:
                    7d:cc:27:7d:37:70:13:5e:ad:d2:92:dc:7d:68:eb:c5:
                    f4:5f:2a:29:a7:4a:55:85:1e:40:aa:dc:14:6c:06:45:
                    5d:c0:5e:a1:c2:9f:96:cf:29:38:84:e4:71:68:12:cf:
                    4a:5d:a6:ce:cf:24:3a:6d:71:ec:f4:a3:08:83:d9:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:63:a1:79:e1:b9:64:10:1e:73:24:f5:b4:d3:92:97:
        50:48:52:c7:ac:77:1a:6a:15:e2:a5:d4:fc:77:29:1f:
        50:7e:09:94:a3:0c:ab:01:7d:a5:4f:c3:36:0b:b7:01:
        cb:94:81:20:fb:b3:10:25:57:1b:1a:5b:1e:79:78:60:
        58:c2:f5:31:0b:2b:b3:be:a1:de:e0:bb:dd:a6:1a:36:
        15:bd:ad:70:88:1b:e7:67:02:5b:cb:c5:0f:c8:5e:b6:
        e8:88:3b:13:20:db:28:59:15:82:1d:24:33:c6:df:1f:
        e9:3c:2d:e5:1f:c1:68:f1:58:5e:22:51:f4:33:ef:bc:
        15:51:b0:c4:38:3a:a6:c0:33:ef:6b:c8:93:1d:b6:ff:
        ad:9c:d7:07:16:f8:fc:36:68:8e:ca:ef:53:d7:fa:b0:
        b4:9a:36:f5:92:40:5f:38:f2:34:f1:86:bc:72:3b:70:
        d2:57:d4:a7:0f:cf:5b:9a:ef:2a:fa:71:5c:86:5e:3a:
        79:8a:5d:e1:d7:4d:a9:d4:c1:c7:06:64:d5:48:25:e6:
        81:1b:e3:ac:e6:53:28:35:82:d7:1f:b8:27:85:8c:c4:
        29:07:d5:a6:da:a1:e6:2b:0b:4c:b4:c1:55:38:00:4e:
        b0:f5:99:a6:ec:59:06:31:4b:b5:53:14:20:5a:f7:5c
    Fingerprint (SHA-256):
        74:B9:C8:79:3B:75:82:F0:72:C7:70:47:0F:A2:59:E4:95:79:FC:7F:BD:1A:66:DD:8B:91:CA:51:BD:07:5E:F7
    Fingerprint (SHA1):
        76:B1:BA:DA:1F:7D:E5:B6:05:08:81:B3:6A:6B:0B:F3:F0:FF:75:03
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #7845: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236007 (0x300e2f67)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:49 2017
            Not After : Sat Aug 06 23:59:49 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:dd:a0:0b:a2:48:66:c1:07:c5:47:9e:45:ab:df:fb:
                    62:3e:1d:dc:96:90:a3:6c:42:66:96:81:6e:5c:f1:ea:
                    28:3e:81:ee:24:58:c0:85:89:89:7c:5b:24:97:b8:2e:
                    61:62:66:84:39:ca:12:2d:93:ae:3d:cb:22:e5:74:21:
                    56:fd:80:a2:af:94:7f:74:9b:28:eb:07:ec:40:01:b0:
                    d4:c7:94:16:62:c8:21:70:59:80:68:92:18:32:47:e6:
                    15:44:e8:f4:c3:8f:4d:3d:59:53:85:f2:12:05:50:5a:
                    7b:07:5c:55:91:a6:f1:40:53:c2:ca:49:8f:02:6d:3c:
                    8f:b3:32:06:b8:f2:7f:7e:3a:82:e7:44:ed:d2:1e:08:
                    06:80:61:1b:a4:3f:ff:68:3d:51:9a:33:95:71:00:b7:
                    de:5b:cb:17:1f:b6:48:ad:da:01:bd:5b:62:98:c2:31:
                    3b:3a:f8:28:30:8b:23:0b:f0:c3:68:ea:b7:9b:ed:74:
                    98:6d:34:4a:d0:2d:be:65:fe:02:b9:93:3f:aa:b4:a3:
                    1c:e7:2c:e9:fc:a5:1f:73:66:c5:98:c2:ea:bf:9b:e5:
                    00:44:7a:4c:40:fc:46:ba:11:bd:ca:49:1e:36:0f:4f:
                    16:f1:8b:47:4c:18:5a:03:d4:c7:63:0f:ef:db:cf:5d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        38:3b:42:64:71:0e:31:91:52:17:92:9d:2c:16:11:5c:
        c6:49:78:d2:35:27:86:65:52:9c:e6:90:8f:b4:e1:a9:
        89:9a:83:4d:e3:2c:d4:34:c5:59:2a:44:35:41:df:69:
        76:5b:60:a8:f8:6c:05:f4:f3:18:76:c4:09:54:df:da:
        10:22:8b:cb:8b:79:82:43:6e:5c:c5:65:29:71:8d:d6:
        33:7e:f4:58:df:b0:16:b8:eb:5c:b0:37:a7:49:28:47:
        85:2b:6b:c8:a3:ee:cc:e6:b1:6f:6d:a6:22:d0:8d:71:
        76:78:68:44:db:e8:4f:56:45:46:8b:ae:8e:0b:40:15:
        ce:81:fa:e2:18:63:57:d0:b2:60:cb:1a:2c:4c:db:7a:
        d9:79:62:14:99:29:3d:02:e0:15:d9:13:27:89:58:35:
        d3:7d:ed:87:fe:04:de:14:f0:c2:a3:6e:78:5c:1d:0f:
        01:6f:14:f8:1b:01:f3:15:30:2f:d3:80:49:d5:2a:53:
        2e:e8:8b:7b:8e:21:da:ce:9c:de:67:e6:b1:8c:bf:f2:
        9a:45:e5:47:b7:02:dc:a4:5e:a5:1e:a7:89:44:ae:f3:
        ca:d3:5b:21:82:3d:f7:4d:93:ec:1f:a7:4c:96:f9:cb:
        aa:7e:d5:6a:0c:e9:cf:1f:a0:21:0c:27:50:da:42:2d
    Fingerprint (SHA-256):
        EE:67:5A:9B:12:E9:45:C3:29:ED:0F:0F:D1:DD:73:53:A0:DF:54:3D:DB:1D:7A:D5:DA:56:35:76:DF:A3:ED:EA
    Fingerprint (SHA1):
        80:8F:2D:E6:6C:E9:42:D8:5E:CB:F0:5F:73:16:3A:54:04:A6:DD:B4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #7846: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236008 (0x300e2f68)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:50 2017
            Not After : Sat Aug 06 23:59:50 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:7f:b6:56:bf:f8:f0:58:c5:5a:dc:2b:1a:47:9f:d4:
                    a6:37:3c:b6:68:99:1d:b6:82:38:e5:b8:bc:47:ad:b7:
                    2e:46:d5:a1:a7:60:87:77:9b:ef:a8:78:7b:8a:d8:e9:
                    41:3e:2b:37:fc:aa:19:10:2e:86:49:5a:1f:04:b1:f4:
                    a0:cc:d7:c7:e1:db:c4:d0:69:75:f3:00:e2:dd:ba:fd:
                    14:a0:a0:8c:33:13:09:3b:be:7a:a4:02:28:68:ce:be:
                    09:55:e5:ca:76:db:01:6a:d4:1b:c0:4f:a3:00:3c:f4:
                    d0:f8:69:ee:f4:02:1e:f1:b3:ab:ad:3d:4e:24:6f:ea:
                    52:33:cd:82:db:9c:9d:15:ac:ec:54:7a:ce:1b:1c:80:
                    26:71:5f:a0:c6:f5:ff:c9:6f:88:34:6a:4f:7b:14:a8:
                    2a:9d:cd:e7:a0:1f:97:f0:53:e8:1e:c7:12:b1:6a:db:
                    e4:23:4c:f4:02:7c:70:85:35:f9:a6:9b:ce:e9:4a:a6:
                    29:95:28:cd:97:3e:1b:24:e4:ec:89:c1:c5:7e:4d:4b:
                    fc:8d:bb:5a:7c:47:52:ce:04:36:d2:1f:5e:d4:8d:1f:
                    18:36:e6:15:8f:41:cb:71:db:7c:24:c0:c1:18:5b:86:
                    0b:85:b1:d6:89:54:1f:ba:bf:83:32:6c:98:1f:3e:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8b:54:e1:ec:1a:6d:2e:43:e0:0f:32:7a:e7:7a:30:6b:
        44:35:e1:eb:ec:cb:b1:47:a3:52:c3:8a:6b:e1:94:66:
        dc:1a:3f:29:2e:6a:6f:8b:b5:90:7d:41:54:79:07:c4:
        e1:4e:70:f2:d9:8f:84:51:6e:b4:0c:57:0d:92:cc:67:
        28:d6:93:7f:4d:7d:01:61:b1:59:9d:b7:44:2f:71:64:
        92:14:41:fd:65:ef:dd:12:23:2a:7c:46:21:88:f0:2a:
        67:aa:52:e0:64:a3:5d:47:d6:a7:aa:53:c5:c8:62:ab:
        e6:91:23:31:5e:9d:61:a6:f4:4b:18:0d:2e:1b:d2:09:
        c4:58:e5:0f:d2:3d:86:05:69:e6:a9:ec:4d:0b:2c:1c:
        28:24:2d:16:14:70:c6:01:7a:26:da:20:cb:fc:77:01:
        e6:ea:39:48:19:73:f0:0a:64:0b:72:01:14:da:3f:1a:
        69:22:ed:c5:38:22:5c:1a:f6:26:8d:51:b3:c5:7b:6e:
        20:a6:1f:1d:ac:53:1b:43:7b:a6:45:4f:27:f3:2a:5e:
        22:6c:ec:1e:bf:27:f5:76:68:39:78:47:ab:4f:9e:ee:
        86:3b:d8:45:59:68:3f:81:ad:99:e2:17:0c:74:08:e7:
        8b:94:dc:60:e5:cb:51:91:a9:e6:3e:6c:b1:56:63:8e
    Fingerprint (SHA-256):
        6C:D5:C3:03:1F:31:CE:E3:37:EC:E0:74:EB:D7:7C:C4:4D:FC:00:A6:AD:C8:39:9F:20:45:FC:E0:98:9F:96:F0
    Fingerprint (SHA1):
        33:8D:AD:0B:5A:A6:C0:64:E1:D1:1D:C9:79:AC:5B:3F:6B:72:AC:AF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #7847: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236009 (0x300e2f69)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:50 2017
            Not After : Sat Aug 06 23:59:50 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:c7:16:3d:30:87:6c:cc:e9:ba:60:77:43:e2:ed:b5:
                    98:37:65:e2:df:35:cb:a9:30:4e:4f:9e:51:f7:02:2b:
                    32:1d:da:d9:da:7b:7f:3a:53:ae:fb:19:1b:6b:a1:76:
                    ca:1f:72:9c:66:02:3b:af:46:28:a0:a2:29:99:d6:33:
                    db:0b:fc:c1:68:fc:d8:a4:91:54:39:6f:82:3c:6a:9b:
                    e6:d7:74:fe:23:fd:60:55:32:0a:71:40:8f:31:a4:be:
                    2b:7e:6d:29:a0:8a:73:83:23:79:c7:a1:de:ed:96:4d:
                    71:e6:2c:0f:ad:02:dc:41:6c:f0:a9:ec:b1:4d:6b:ef:
                    15:c8:87:7a:4b:e6:c4:74:8b:25:b7:ca:3a:31:81:6b:
                    13:f6:a0:01:b9:28:ab:06:c1:c2:c2:45:dc:81:30:bc:
                    b5:29:04:39:1b:9a:a5:3d:da:bb:b2:a1:79:ca:81:e2:
                    3e:2c:09:55:22:21:80:24:0a:72:8c:92:1e:41:31:44:
                    52:1b:7d:91:34:2e:43:4c:ac:62:75:48:9f:fb:28:df:
                    2a:00:ff:a6:61:05:4c:45:e9:86:a0:f3:db:e7:15:5b:
                    d9:02:b2:b6:e0:87:40:96:0e:ef:cb:69:77:34:77:58:
                    98:7c:39:2c:57:c5:3b:f7:66:90:96:cc:36:e2:08:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:1f:49:f4:06:ce:96:ab:4a:b9:ea:8e:48:30:b0:84:
        c6:4c:c5:20:03:11:d9:e4:8c:c2:10:40:50:68:9a:24:
        10:2c:43:2b:de:e2:b9:e6:ce:a3:7f:42:d9:2d:b5:31:
        99:4d:2a:15:b0:a7:76:c8:cb:52:d4:39:1e:6e:ad:b2:
        47:b1:cb:f4:fb:a1:bd:7c:20:b6:35:62:cc:77:5f:a0:
        03:0b:b9:db:d9:00:c2:88:2a:3f:b6:39:61:e3:5a:7c:
        c6:24:9f:5f:5a:00:8d:a3:8e:c4:0d:db:9c:de:21:9e:
        20:5b:6a:33:b6:42:16:68:49:2b:48:98:37:32:41:60:
        aa:f4:2c:3b:e9:94:b6:36:04:8f:12:cb:05:e8:81:d9:
        fb:bd:17:5b:91:fe:d9:12:b4:d6:27:6e:8f:e8:ba:2d:
        46:d6:8e:89:81:83:0d:ec:89:6b:c3:d0:ad:6b:ee:ea:
        f6:de:33:70:bb:0a:4d:3a:0a:91:7d:21:fa:f5:d0:ce:
        e0:7e:c3:76:d8:59:32:66:d9:fc:21:85:f4:7e:21:ab:
        bf:4a:e1:e7:fc:db:6b:4a:4c:8d:d2:d0:dc:64:15:b7:
        09:be:35:f8:bd:65:24:4a:8a:1e:bd:c6:29:00:e5:14:
        bc:e4:64:d1:8e:12:b2:e6:35:d8:f2:30:7d:fc:f4:91
    Fingerprint (SHA-256):
        C3:5E:8D:A3:DF:FF:D5:CD:12:98:3C:F8:24:BE:11:30:4C:57:43:13:03:63:8D:DB:F3:F8:29:71:42:C7:A0:2B
    Fingerprint (SHA1):
        36:C1:B3:F7:31:5F:72:E0:54:86:F2:5C:39:AB:D1:14:A4:E9:70:DE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #7848: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7849: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806236024 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7850: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7851: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7852: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7853: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 806236025   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7854: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7855: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7856: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7857: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 806236026   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7858: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7859: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7860: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7861: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 806236027   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7862: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7863: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7864: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236024 (0x300e2f78)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:52 2017
            Not After : Sat Aug 06 23:59:52 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:62:36:7a:71:b5:0f:2d:04:b2:31:48:c7:a1:9a:1c:
                    62:83:bc:95:4c:36:a7:a0:f6:85:72:16:37:8a:7d:62:
                    69:7b:1e:f1:a1:9a:c1:ce:55:f9:ed:15:bc:a5:62:55:
                    d7:88:49:21:54:f6:ee:0f:6a:21:1b:07:34:f8:60:d6:
                    64:ff:0b:8b:7d:20:4a:51:56:15:74:81:91:dd:7c:da:
                    36:92:34:b6:d5:c0:fb:5b:d7:80:84:39:9a:ea:96:70:
                    f2:38:c0:34:82:86:01:9b:c7:82:50:6f:47:ff:c7:dc:
                    b5:75:53:83:4a:81:61:05:fc:62:20:ac:5c:55:5c:bb:
                    e7:c3:73:d3:51:6f:0d:43:fa:34:3e:2e:cb:ce:83:74:
                    61:12:35:9a:19:35:01:47:5d:cf:57:c7:14:21:07:e9:
                    b9:23:e8:40:7d:50:d9:f4:6f:ec:46:b8:0c:0f:80:cd:
                    f4:06:da:aa:06:a3:91:6f:cd:3a:96:fe:20:1e:40:da:
                    f9:c9:02:25:75:eb:59:d8:ee:b1:19:89:7c:11:26:5b:
                    af:16:b2:ba:4b:f6:5f:bd:4b:2f:56:1d:bd:7d:ab:8d:
                    d3:36:6e:b6:6f:68:60:87:28:05:e8:3c:77:9a:5b:f3:
                    d6:66:ca:8f:a4:12:3a:e3:d1:bd:34:59:fd:17:ad:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:60:0a:66:50:3d:82:4c:9e:b0:6a:4d:76:7e:71:62:
        ff:df:45:ab:63:b2:31:c7:7c:55:26:60:c0:31:59:32:
        e2:6f:bc:21:f9:90:23:99:5c:3e:5c:d4:52:f1:02:86:
        8e:04:91:ce:f9:53:e5:f4:f5:26:63:70:a4:2a:de:d3:
        ea:9a:07:6f:5d:cd:24:e4:d9:6d:c4:4f:66:a3:75:57:
        82:e5:8e:48:c3:0a:93:a0:35:10:f7:97:2c:21:79:fb:
        70:2a:3b:16:87:ae:f5:69:0c:93:c8:4d:70:ba:37:5b:
        66:47:05:47:a4:a1:bc:5b:b1:89:49:18:a6:81:12:b2:
        e2:eb:a5:cf:af:7b:7c:8e:71:47:71:92:ab:74:03:37:
        f5:da:80:7d:13:fc:3e:9b:dd:5b:df:e6:c7:3b:d6:0e:
        7a:8e:17:7d:c4:36:2b:ca:3b:fb:41:45:20:bc:11:a2:
        92:4b:62:4b:33:14:1a:ea:8b:82:c2:90:b4:8b:55:de:
        c8:da:6d:31:04:e4:94:4c:d6:24:3e:4d:7e:ac:c6:71:
        a0:66:8b:ee:b2:9d:ce:1c:a0:a6:76:de:56:ff:99:58:
        fc:74:40:c0:ff:22:e9:f7:5e:1c:1d:83:13:48:be:04:
        f9:2a:c4:24:76:88:4f:64:7e:85:39:ad:4d:15:28:b3
    Fingerprint (SHA-256):
        CC:23:3B:7A:67:F3:FF:77:19:FD:55:60:CA:DA:4C:87:5D:07:5D:88:C6:05:5D:0E:1D:E0:47:3B:46:A6:36:20
    Fingerprint (SHA1):
        68:F4:FB:C2:CF:5E:31:F2:30:3B:20:A3:C5:0D:9F:DF:51:C7:DE:FE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7865: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7866: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236025 (0x300e2f79)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:52 2017
            Not After : Sat Aug 06 23:59:52 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:de:67:82:b5:fd:a1:34:7f:41:73:83:91:9f:49:72:
                    b1:ba:fb:23:38:ba:bd:6c:e7:de:13:b2:f0:0e:6c:5d:
                    09:73:c9:60:36:b5:50:b5:5a:f2:d0:2a:49:b3:b2:f0:
                    26:48:1a:b1:ed:e7:fc:74:a6:77:05:61:cb:23:10:05:
                    f8:6a:05:b4:56:5c:27:1f:a5:b4:c9:7e:3b:f2:5b:ed:
                    c2:e5:49:ee:f6:5c:a4:d9:71:9f:d8:df:5c:b2:21:f4:
                    03:80:2d:a0:ff:c1:14:d0:a4:25:7a:f4:39:2b:96:1f:
                    8f:4b:fc:24:2f:2d:e3:d9:f8:99:aa:c2:8a:2e:e8:7a:
                    7c:d9:5d:28:93:86:cd:7f:2d:49:25:00:ad:6f:55:67:
                    37:4a:9d:5d:cb:9b:3e:2b:a1:e6:2b:dc:27:09:ec:11:
                    bb:8e:d8:7a:60:f0:12:b5:c2:08:8d:4d:9f:0a:57:73:
                    00:56:87:c9:9f:06:ff:9a:f3:4f:b6:80:6c:01:d6:5b:
                    ac:77:2a:a9:50:5f:11:77:6e:4c:b3:43:42:06:4f:f2:
                    74:6f:8f:b3:1b:a6:1a:26:4c:7f:22:a0:d2:80:8b:7a:
                    f6:66:9d:11:bb:b9:ed:f5:1e:06:55:ae:50:69:ab:ba:
                    67:b8:87:9a:9f:7a:e1:88:96:f3:c3:5a:2f:2f:dd:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        23:f5:86:66:a8:d8:34:75:10:94:13:fe:e4:6a:f0:bf:
        0d:27:60:f1:90:37:51:55:b0:16:57:0f:41:d1:65:83:
        5d:a8:f6:6d:16:68:c9:bf:9d:27:6f:6e:c7:90:31:17:
        0c:1d:05:e5:43:db:32:f3:46:07:cc:72:6e:19:ff:bf:
        b4:f2:ae:c9:41:77:1e:42:ce:84:a9:31:5b:42:0d:a7:
        f1:6a:9f:ec:76:98:0c:fb:0a:2c:f3:15:3d:27:e5:1a:
        c5:ae:25:bf:b3:73:0e:9e:76:a4:0c:00:37:af:6d:9e:
        52:53:f1:75:75:96:4d:16:b9:82:2a:c0:ba:bc:fc:77:
        d0:51:b1:29:85:f9:ec:65:b6:63:2f:55:b4:17:3c:c8:
        c0:b1:92:e4:24:7c:e0:75:e8:8a:b8:9a:9c:11:7d:c4:
        40:37:be:8c:05:7b:99:f5:9b:51:46:82:6d:82:e0:4f:
        bd:e7:f7:3c:fe:70:76:44:42:9f:5a:69:b7:6f:37:9b:
        a0:05:dd:91:6d:bd:6e:3b:ff:7e:ad:0b:8b:11:5c:69:
        bd:f4:b8:57:30:1f:df:0e:41:f8:ca:53:9b:87:cb:9a:
        0b:23:1c:8a:ae:ad:e8:72:04:52:c7:de:f3:d0:92:cf:
        1b:29:81:3e:5e:65:98:18:bd:c5:ad:7b:a3:bb:e8:c4
    Fingerprint (SHA-256):
        CA:B6:61:4F:A8:82:BC:BF:9D:5B:9F:CE:CB:B2:40:60:3D:2A:87:FC:AC:3D:9B:82:8F:20:D2:BD:22:59:7E:C8
    Fingerprint (SHA1):
        5A:5C:CD:5B:E9:86:A1:03:CC:F8:26:60:16:78:6C:1F:1F:84:20:55
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7867: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7868: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236026 (0x300e2f7a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:52 2017
            Not After : Sat Aug 06 23:59:52 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:db:a0:41:be:9d:32:bd:25:b5:dc:bc:42:f6:2f:0e:
                    66:70:eb:ed:86:6e:bc:43:18:04:c9:01:a1:8b:4b:3a:
                    66:20:5b:dd:90:e5:84:b5:ac:f8:ff:7d:12:f7:ca:2c:
                    ae:e6:8a:b2:ce:f2:91:a7:36:db:7b:e6:dc:2c:9c:69:
                    98:d8:b1:7f:8e:3b:0b:03:c9:5b:78:69:45:44:90:49:
                    dd:60:03:de:13:09:09:6e:ef:ca:e7:68:68:cf:0f:24:
                    4c:27:9e:ac:fc:e6:32:b7:bb:8f:07:39:e2:74:bf:97:
                    8f:f8:47:8b:2a:cc:88:68:b2:5c:ee:7c:c3:5e:07:13:
                    f2:10:78:3b:e6:38:25:61:90:96:33:7e:95:5d:0a:34:
                    c6:d9:09:fa:0a:62:5e:0c:fb:40:f8:b4:48:ad:1f:3e:
                    95:e2:b7:4e:53:59:78:61:c3:9d:67:60:c3:8c:d6:c4:
                    53:d9:15:3e:d4:19:cd:0a:7f:f9:1c:b5:db:8c:fc:88:
                    2b:fc:53:5f:89:06:51:e5:cc:22:24:db:7a:99:4b:c0:
                    51:10:7e:b2:3c:45:e7:b3:e0:0c:de:3e:b8:b5:5f:41:
                    42:50:99:f3:f6:72:12:43:ad:ec:98:aa:8c:82:8a:5a:
                    34:51:c1:ba:c2:99:8a:c7:71:2e:4b:19:d9:ea:37:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:0a:2a:da:82:04:a6:83:d7:11:de:ac:bc:78:4b:21:
        e9:b5:a0:e1:a9:1b:df:15:24:07:ef:d4:31:df:d9:29:
        2f:53:89:28:75:8c:4d:d9:78:a6:16:b8:0a:d2:01:62:
        47:11:df:3e:05:c9:20:d0:db:ef:b3:a5:59:0b:f0:5f:
        20:19:f7:4f:da:a3:d6:70:65:8f:2f:e5:b2:a3:85:72:
        ac:2e:f5:17:19:88:be:4a:33:86:0e:55:89:d8:59:6f:
        8c:d1:36:58:27:81:07:a7:12:66:45:47:c5:9e:06:7a:
        6a:70:49:95:29:12:dd:ac:48:1c:6a:7a:e9:c3:10:9e:
        39:ee:65:c0:01:24:1d:c2:4e:ae:1f:34:3a:7f:2a:e6:
        fc:86:9e:77:8c:af:64:24:70:8c:f0:c3:9b:06:93:0a:
        8b:68:73:41:7e:98:0f:53:d3:44:93:d0:c1:0f:71:f7:
        38:50:b3:19:dd:15:22:7c:cc:a0:ea:47:4e:2f:0b:b5:
        8c:e2:c3:b1:1a:db:55:7e:bd:ae:9c:c1:40:c6:13:84:
        29:49:57:ba:3c:a8:5c:35:17:85:05:49:0d:d2:be:57:
        9e:6c:c0:47:1c:b8:10:79:58:80:cc:d1:f4:f9:c8:9f:
        8d:3b:ba:c8:7b:8f:5b:ce:45:3a:2a:9d:55:43:dd:76
    Fingerprint (SHA-256):
        09:36:07:DC:53:0E:81:EB:2B:1A:E8:35:4A:E3:EB:87:A5:2E:91:53:A1:22:62:85:89:25:EE:8F:5A:D2:55:6A
    Fingerprint (SHA1):
        66:14:8F:AA:34:29:D1:2C:C1:83:D1:0E:97:77:EF:4E:D5:F9:BC:53
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #7869: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7870: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7871: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #7872: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7873: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236024 (0x300e2f78)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:52 2017
            Not After : Sat Aug 06 23:59:52 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:62:36:7a:71:b5:0f:2d:04:b2:31:48:c7:a1:9a:1c:
                    62:83:bc:95:4c:36:a7:a0:f6:85:72:16:37:8a:7d:62:
                    69:7b:1e:f1:a1:9a:c1:ce:55:f9:ed:15:bc:a5:62:55:
                    d7:88:49:21:54:f6:ee:0f:6a:21:1b:07:34:f8:60:d6:
                    64:ff:0b:8b:7d:20:4a:51:56:15:74:81:91:dd:7c:da:
                    36:92:34:b6:d5:c0:fb:5b:d7:80:84:39:9a:ea:96:70:
                    f2:38:c0:34:82:86:01:9b:c7:82:50:6f:47:ff:c7:dc:
                    b5:75:53:83:4a:81:61:05:fc:62:20:ac:5c:55:5c:bb:
                    e7:c3:73:d3:51:6f:0d:43:fa:34:3e:2e:cb:ce:83:74:
                    61:12:35:9a:19:35:01:47:5d:cf:57:c7:14:21:07:e9:
                    b9:23:e8:40:7d:50:d9:f4:6f:ec:46:b8:0c:0f:80:cd:
                    f4:06:da:aa:06:a3:91:6f:cd:3a:96:fe:20:1e:40:da:
                    f9:c9:02:25:75:eb:59:d8:ee:b1:19:89:7c:11:26:5b:
                    af:16:b2:ba:4b:f6:5f:bd:4b:2f:56:1d:bd:7d:ab:8d:
                    d3:36:6e:b6:6f:68:60:87:28:05:e8:3c:77:9a:5b:f3:
                    d6:66:ca:8f:a4:12:3a:e3:d1:bd:34:59:fd:17:ad:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:60:0a:66:50:3d:82:4c:9e:b0:6a:4d:76:7e:71:62:
        ff:df:45:ab:63:b2:31:c7:7c:55:26:60:c0:31:59:32:
        e2:6f:bc:21:f9:90:23:99:5c:3e:5c:d4:52:f1:02:86:
        8e:04:91:ce:f9:53:e5:f4:f5:26:63:70:a4:2a:de:d3:
        ea:9a:07:6f:5d:cd:24:e4:d9:6d:c4:4f:66:a3:75:57:
        82:e5:8e:48:c3:0a:93:a0:35:10:f7:97:2c:21:79:fb:
        70:2a:3b:16:87:ae:f5:69:0c:93:c8:4d:70:ba:37:5b:
        66:47:05:47:a4:a1:bc:5b:b1:89:49:18:a6:81:12:b2:
        e2:eb:a5:cf:af:7b:7c:8e:71:47:71:92:ab:74:03:37:
        f5:da:80:7d:13:fc:3e:9b:dd:5b:df:e6:c7:3b:d6:0e:
        7a:8e:17:7d:c4:36:2b:ca:3b:fb:41:45:20:bc:11:a2:
        92:4b:62:4b:33:14:1a:ea:8b:82:c2:90:b4:8b:55:de:
        c8:da:6d:31:04:e4:94:4c:d6:24:3e:4d:7e:ac:c6:71:
        a0:66:8b:ee:b2:9d:ce:1c:a0:a6:76:de:56:ff:99:58:
        fc:74:40:c0:ff:22:e9:f7:5e:1c:1d:83:13:48:be:04:
        f9:2a:c4:24:76:88:4f:64:7e:85:39:ad:4d:15:28:b3
    Fingerprint (SHA-256):
        CC:23:3B:7A:67:F3:FF:77:19:FD:55:60:CA:DA:4C:87:5D:07:5D:88:C6:05:5D:0E:1D:E0:47:3B:46:A6:36:20
    Fingerprint (SHA1):
        68:F4:FB:C2:CF:5E:31:F2:30:3B:20:A3:C5:0D:9F:DF:51:C7:DE:FE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7874: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7875: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236025 (0x300e2f79)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:52 2017
            Not After : Sat Aug 06 23:59:52 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:de:67:82:b5:fd:a1:34:7f:41:73:83:91:9f:49:72:
                    b1:ba:fb:23:38:ba:bd:6c:e7:de:13:b2:f0:0e:6c:5d:
                    09:73:c9:60:36:b5:50:b5:5a:f2:d0:2a:49:b3:b2:f0:
                    26:48:1a:b1:ed:e7:fc:74:a6:77:05:61:cb:23:10:05:
                    f8:6a:05:b4:56:5c:27:1f:a5:b4:c9:7e:3b:f2:5b:ed:
                    c2:e5:49:ee:f6:5c:a4:d9:71:9f:d8:df:5c:b2:21:f4:
                    03:80:2d:a0:ff:c1:14:d0:a4:25:7a:f4:39:2b:96:1f:
                    8f:4b:fc:24:2f:2d:e3:d9:f8:99:aa:c2:8a:2e:e8:7a:
                    7c:d9:5d:28:93:86:cd:7f:2d:49:25:00:ad:6f:55:67:
                    37:4a:9d:5d:cb:9b:3e:2b:a1:e6:2b:dc:27:09:ec:11:
                    bb:8e:d8:7a:60:f0:12:b5:c2:08:8d:4d:9f:0a:57:73:
                    00:56:87:c9:9f:06:ff:9a:f3:4f:b6:80:6c:01:d6:5b:
                    ac:77:2a:a9:50:5f:11:77:6e:4c:b3:43:42:06:4f:f2:
                    74:6f:8f:b3:1b:a6:1a:26:4c:7f:22:a0:d2:80:8b:7a:
                    f6:66:9d:11:bb:b9:ed:f5:1e:06:55:ae:50:69:ab:ba:
                    67:b8:87:9a:9f:7a:e1:88:96:f3:c3:5a:2f:2f:dd:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        23:f5:86:66:a8:d8:34:75:10:94:13:fe:e4:6a:f0:bf:
        0d:27:60:f1:90:37:51:55:b0:16:57:0f:41:d1:65:83:
        5d:a8:f6:6d:16:68:c9:bf:9d:27:6f:6e:c7:90:31:17:
        0c:1d:05:e5:43:db:32:f3:46:07:cc:72:6e:19:ff:bf:
        b4:f2:ae:c9:41:77:1e:42:ce:84:a9:31:5b:42:0d:a7:
        f1:6a:9f:ec:76:98:0c:fb:0a:2c:f3:15:3d:27:e5:1a:
        c5:ae:25:bf:b3:73:0e:9e:76:a4:0c:00:37:af:6d:9e:
        52:53:f1:75:75:96:4d:16:b9:82:2a:c0:ba:bc:fc:77:
        d0:51:b1:29:85:f9:ec:65:b6:63:2f:55:b4:17:3c:c8:
        c0:b1:92:e4:24:7c:e0:75:e8:8a:b8:9a:9c:11:7d:c4:
        40:37:be:8c:05:7b:99:f5:9b:51:46:82:6d:82:e0:4f:
        bd:e7:f7:3c:fe:70:76:44:42:9f:5a:69:b7:6f:37:9b:
        a0:05:dd:91:6d:bd:6e:3b:ff:7e:ad:0b:8b:11:5c:69:
        bd:f4:b8:57:30:1f:df:0e:41:f8:ca:53:9b:87:cb:9a:
        0b:23:1c:8a:ae:ad:e8:72:04:52:c7:de:f3:d0:92:cf:
        1b:29:81:3e:5e:65:98:18:bd:c5:ad:7b:a3:bb:e8:c4
    Fingerprint (SHA-256):
        CA:B6:61:4F:A8:82:BC:BF:9D:5B:9F:CE:CB:B2:40:60:3D:2A:87:FC:AC:3D:9B:82:8F:20:D2:BD:22:59:7E:C8
    Fingerprint (SHA1):
        5A:5C:CD:5B:E9:86:A1:03:CC:F8:26:60:16:78:6C:1F:1F:84:20:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7876: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7877: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236026 (0x300e2f7a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:52 2017
            Not After : Sat Aug 06 23:59:52 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:db:a0:41:be:9d:32:bd:25:b5:dc:bc:42:f6:2f:0e:
                    66:70:eb:ed:86:6e:bc:43:18:04:c9:01:a1:8b:4b:3a:
                    66:20:5b:dd:90:e5:84:b5:ac:f8:ff:7d:12:f7:ca:2c:
                    ae:e6:8a:b2:ce:f2:91:a7:36:db:7b:e6:dc:2c:9c:69:
                    98:d8:b1:7f:8e:3b:0b:03:c9:5b:78:69:45:44:90:49:
                    dd:60:03:de:13:09:09:6e:ef:ca:e7:68:68:cf:0f:24:
                    4c:27:9e:ac:fc:e6:32:b7:bb:8f:07:39:e2:74:bf:97:
                    8f:f8:47:8b:2a:cc:88:68:b2:5c:ee:7c:c3:5e:07:13:
                    f2:10:78:3b:e6:38:25:61:90:96:33:7e:95:5d:0a:34:
                    c6:d9:09:fa:0a:62:5e:0c:fb:40:f8:b4:48:ad:1f:3e:
                    95:e2:b7:4e:53:59:78:61:c3:9d:67:60:c3:8c:d6:c4:
                    53:d9:15:3e:d4:19:cd:0a:7f:f9:1c:b5:db:8c:fc:88:
                    2b:fc:53:5f:89:06:51:e5:cc:22:24:db:7a:99:4b:c0:
                    51:10:7e:b2:3c:45:e7:b3:e0:0c:de:3e:b8:b5:5f:41:
                    42:50:99:f3:f6:72:12:43:ad:ec:98:aa:8c:82:8a:5a:
                    34:51:c1:ba:c2:99:8a:c7:71:2e:4b:19:d9:ea:37:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:0a:2a:da:82:04:a6:83:d7:11:de:ac:bc:78:4b:21:
        e9:b5:a0:e1:a9:1b:df:15:24:07:ef:d4:31:df:d9:29:
        2f:53:89:28:75:8c:4d:d9:78:a6:16:b8:0a:d2:01:62:
        47:11:df:3e:05:c9:20:d0:db:ef:b3:a5:59:0b:f0:5f:
        20:19:f7:4f:da:a3:d6:70:65:8f:2f:e5:b2:a3:85:72:
        ac:2e:f5:17:19:88:be:4a:33:86:0e:55:89:d8:59:6f:
        8c:d1:36:58:27:81:07:a7:12:66:45:47:c5:9e:06:7a:
        6a:70:49:95:29:12:dd:ac:48:1c:6a:7a:e9:c3:10:9e:
        39:ee:65:c0:01:24:1d:c2:4e:ae:1f:34:3a:7f:2a:e6:
        fc:86:9e:77:8c:af:64:24:70:8c:f0:c3:9b:06:93:0a:
        8b:68:73:41:7e:98:0f:53:d3:44:93:d0:c1:0f:71:f7:
        38:50:b3:19:dd:15:22:7c:cc:a0:ea:47:4e:2f:0b:b5:
        8c:e2:c3:b1:1a:db:55:7e:bd:ae:9c:c1:40:c6:13:84:
        29:49:57:ba:3c:a8:5c:35:17:85:05:49:0d:d2:be:57:
        9e:6c:c0:47:1c:b8:10:79:58:80:cc:d1:f4:f9:c8:9f:
        8d:3b:ba:c8:7b:8f:5b:ce:45:3a:2a:9d:55:43:dd:76
    Fingerprint (SHA-256):
        09:36:07:DC:53:0E:81:EB:2B:1A:E8:35:4A:E3:EB:87:A5:2E:91:53:A1:22:62:85:89:25:EE:8F:5A:D2:55:6A
    Fingerprint (SHA1):
        66:14:8F:AA:34:29:D1:2C:C1:83:D1:0E:97:77:EF:4E:D5:F9:BC:53
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #7878: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7879: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7880: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806236028 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7881: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7882: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7883: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7884: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 806236029   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7885: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7886: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7887: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7888: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 806236030   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7889: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7890: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #7891: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7892: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 806236031   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7893: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7894: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #7895: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7896: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 806236032   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7897: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7898: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7899: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236028 (0x300e2f7c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:54 2017
            Not After : Sat Aug 06 23:59:54 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:c9:1b:aa:b2:76:b0:d5:1d:10:c1:fc:72:b1:ce:db:
                    81:cb:a7:cd:e9:74:12:4f:85:c1:d0:41:02:ac:c5:73:
                    c8:8d:fb:d4:48:21:5f:0a:bf:16:1a:ff:28:bd:fa:02:
                    31:e9:dc:5f:6a:d4:61:6c:88:83:e2:58:da:1b:a3:d1:
                    c6:2d:26:46:0a:d2:d8:b9:0c:89:a9:a0:33:70:ea:65:
                    58:31:6b:85:3b:da:97:6b:5a:7b:95:b2:e8:bd:58:d3:
                    d5:6f:d0:f3:1e:b0:79:a2:85:64:a8:9c:72:29:c3:55:
                    bb:8c:42:40:73:58:75:2f:5d:ba:f8:e9:bd:bc:3f:e5:
                    a3:06:ac:56:74:76:54:88:7b:91:7d:4a:17:0a:14:fe:
                    88:ba:bc:1a:34:79:86:11:9e:06:ff:94:b1:6d:1f:5c:
                    3b:18:ef:56:6b:e1:74:9a:1d:c8:cc:58:bc:92:eb:19:
                    cb:c9:b6:bd:8d:3f:86:9e:17:f1:21:db:16:b9:e7:0a:
                    16:50:45:cf:20:9a:40:3d:1b:47:27:ba:8c:97:82:0f:
                    71:93:e8:90:a2:22:cf:4a:4b:05:0c:e7:95:4e:61:d8:
                    7d:82:4f:2a:a2:59:31:0c:6e:4a:e0:5e:d7:e9:ff:e0:
                    ab:d7:3d:32:d6:bd:29:c6:ab:1b:d2:c0:25:50:62:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9f:4e:a4:14:c5:6b:79:7e:17:c1:08:62:e8:0a:27:d4:
        a9:3a:a9:c7:39:83:74:f9:cc:9d:3e:b8:d7:fa:83:c3:
        79:07:18:42:d3:2f:bb:c0:e7:b2:d3:9f:51:97:86:9d:
        d2:c9:b6:7e:30:3a:a3:2e:0e:30:4d:91:b5:94:9c:26:
        8b:cf:5e:c3:a0:19:77:51:a5:ac:d3:72:35:33:49:70:
        28:be:30:6a:c4:8d:2b:51:7b:74:e4:39:ca:db:e4:e3:
        d8:49:7a:82:0d:ea:a2:dd:53:0c:93:01:9b:52:4d:d2:
        2a:3a:e1:99:3b:33:fe:75:7e:c8:97:a8:7a:d5:8e:76:
        75:fc:5b:ab:01:c3:70:e3:f7:a9:25:74:b7:6f:0e:46:
        3f:d4:dd:a3:9c:34:83:b1:bb:25:e7:93:3e:b0:ab:5c:
        dc:34:79:75:66:ba:70:c4:59:dc:05:25:5f:a6:6a:9d:
        c0:95:34:5e:7f:6d:b5:ab:66:34:20:07:4d:76:cf:32:
        d8:a0:d8:f0:a9:3e:be:5a:c4:48:72:b7:c3:a3:b6:e4:
        92:26:a3:00:a6:7d:06:3c:27:98:05:51:58:21:ce:bc:
        fe:e6:5e:5a:c8:d8:c4:90:14:1e:f4:d0:7e:5d:77:4a:
        48:81:c5:e4:ee:0d:b0:29:6f:e6:60:26:fd:96:1a:58
    Fingerprint (SHA-256):
        75:A9:49:09:76:5C:A8:FE:8D:F7:40:0C:52:B5:63:42:AD:13:8C:81:50:15:65:94:73:37:96:32:7B:E7:56:47
    Fingerprint (SHA1):
        F7:1E:B0:B1:F3:79:3D:4D:B9:7B:64:32:A8:06:DD:74:7B:83:23:4A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7900: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7901: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236029 (0x300e2f7d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:54 2017
            Not After : Sat Aug 06 23:59:54 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:18:b5:18:61:56:87:28:ac:1e:c8:87:d8:29:3c:9d:
                    6c:a2:3f:21:4e:82:83:ee:26:de:d7:3b:56:78:dc:51:
                    91:0d:83:68:75:cb:c2:0d:f6:9f:06:bf:a3:aa:37:cc:
                    74:2a:0a:33:bb:e4:71:45:a2:ec:40:85:17:e4:fc:f5:
                    88:1a:8d:55:f2:40:ee:c7:6e:85:11:71:4d:a9:6f:68:
                    70:ed:ac:92:21:b5:54:9f:a1:44:96:cd:b5:f4:1b:78:
                    ca:93:0a:6e:1a:8b:71:1f:bc:6e:59:49:7e:e1:b6:ef:
                    84:76:47:78:0c:05:56:b0:84:38:19:68:bf:54:7e:1f:
                    66:1c:76:14:35:cf:a0:09:6f:40:85:3c:4a:4b:7d:05:
                    1f:cf:45:03:db:cd:01:90:49:97:d2:a6:38:cb:7b:c3:
                    78:e2:73:79:a4:9b:3a:45:68:df:9a:5f:21:aa:35:73:
                    8b:d5:32:d8:0d:e1:bf:97:72:e6:ce:87:b7:15:5a:2d:
                    a2:a4:60:43:da:1f:3b:ab:62:9d:ae:0f:b0:a3:d5:9f:
                    ae:0a:82:34:f3:ec:5d:84:cf:50:cc:29:39:c9:01:16:
                    40:6a:b7:3c:10:54:8b:a1:4f:de:ea:0a:23:1f:d1:46:
                    02:ca:c9:26:d6:d8:39:86:84:f7:ff:b3:1f:ca:da:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2f:ae:cf:f2:69:00:92:72:04:0b:d4:34:5e:bd:07:22:
        7e:1f:5c:80:d7:10:1e:25:17:43:8c:c0:3b:12:e3:54:
        f3:8f:8c:5a:54:75:28:f3:98:91:8c:04:9c:32:95:3e:
        c7:ad:cf:cc:c3:0d:10:29:dd:97:3e:b2:52:ec:16:e9:
        db:c7:26:7c:f8:80:30:40:ca:7d:5e:e0:4b:56:00:00:
        99:2d:a3:2d:8c:30:53:39:b4:e5:cd:68:07:65:9e:c8:
        bc:99:1e:57:fd:e3:b9:43:70:f4:02:33:9f:d0:6a:c0:
        20:d9:06:6e:5e:64:f6:c2:24:76:45:d2:61:ab:97:98:
        de:c9:41:89:47:05:ca:ea:68:11:9e:2d:58:1b:cf:8a:
        fe:48:78:64:02:d5:8b:c1:16:f5:2b:c8:23:c5:fd:99:
        5a:1c:c4:ab:03:cd:4a:4c:a2:a6:c0:90:02:44:78:0f:
        b3:36:91:5e:8d:a0:c2:74:65:5f:00:51:54:9f:51:b4:
        69:2e:17:15:c0:5c:96:4b:71:d4:7f:72:36:db:16:08:
        36:2f:e6:b1:dc:d0:62:b4:ad:b7:8c:95:ea:78:ce:38:
        12:51:1c:c0:0a:29:86:58:55:bd:57:46:a6:f8:1f:cc:
        53:32:a6:ac:9d:89:09:e6:82:2c:65:53:da:2a:00:5b
    Fingerprint (SHA-256):
        0F:7F:29:91:DE:93:25:D8:8F:5B:C6:7C:93:E9:82:08:71:7F:19:14:B5:44:33:DC:C0:D5:86:15:A2:51:57:8D
    Fingerprint (SHA1):
        67:9C:A8:F1:1F:FF:2A:AB:54:00:13:CE:97:A9:2D:15:34:59:7A:9A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7902: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7903: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236030 (0x300e2f7e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:54 2017
            Not After : Sat Aug 06 23:59:54 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:60:16:20:f3:a1:93:64:dc:97:ad:21:0d:dc:7e:07:
                    35:2c:b7:24:5f:c5:e1:cf:e9:df:b1:df:47:cf:13:2d:
                    a8:4d:53:69:bd:39:85:f5:55:67:89:48:3b:48:a3:f9:
                    dc:e7:c2:8b:cd:ad:8c:ba:14:56:78:72:87:3c:35:81:
                    71:40:a1:bc:24:f8:68:6d:33:2c:21:7a:bb:b3:44:dc:
                    82:8c:c7:ec:fc:64:e4:0c:79:8b:51:b2:c6:fa:15:31:
                    8f:14:f6:3d:af:86:17:49:f9:ea:e0:7e:1f:54:dd:24:
                    ed:f7:5d:59:80:7b:a1:a8:0e:7a:c6:6b:34:e1:7a:c7:
                    a2:63:59:17:84:b5:0d:8c:64:e8:0d:8f:ab:be:ac:0a:
                    c8:95:61:03:2f:20:d1:ec:13:d3:1d:ac:b8:f7:59:92:
                    f1:03:56:f5:5d:3a:50:f6:14:ce:62:4e:03:db:4c:5e:
                    9d:e6:12:ad:2b:3e:4f:d4:85:92:f2:a2:dc:e3:fa:0f:
                    79:b7:ec:a2:7e:a4:18:78:55:7c:5e:17:97:39:37:1f:
                    56:28:a7:8d:bb:81:25:61:a3:10:3e:ed:af:5b:2c:12:
                    26:3c:30:be:ea:db:74:01:a9:8f:e3:1d:30:2a:22:81:
                    9b:44:0b:c3:1c:4a:5a:9c:e9:c3:e4:b9:c4:c4:8b:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9d:bc:6d:5b:ce:3e:97:0e:5b:c6:d1:a7:e3:eb:be:f9:
        dd:46:ea:8d:32:8f:08:8d:cf:5a:a7:e5:f1:97:ef:07:
        c6:ec:80:d7:92:8b:9e:ff:4e:07:8f:cc:cc:be:7d:63:
        28:ee:cb:99:39:5d:98:3f:ce:51:32:24:18:2b:04:21:
        93:6f:be:41:b0:9a:60:33:92:86:de:de:87:3f:92:dd:
        3f:ce:6a:9b:95:c6:d2:bb:59:1a:d0:64:bf:9d:f5:03:
        5b:33:69:34:97:80:cc:bc:6a:8a:67:b7:0b:19:a6:6c:
        05:22:74:a2:e3:91:97:cc:6d:e5:be:4b:02:0f:c4:d2:
        89:5a:f3:16:cc:92:01:75:c4:8e:1a:be:21:23:39:9e:
        20:23:72:8c:17:77:c0:bd:a3:b1:83:49:b8:09:0b:00:
        15:55:d2:b1:59:5a:1a:d7:81:f9:78:65:b4:d0:f2:b8:
        be:2b:2d:6b:5a:10:8d:f6:44:36:19:a9:da:50:16:fc:
        0b:d8:70:10:08:4d:9d:9a:96:4f:48:de:4d:89:f8:68:
        d3:9d:c9:f3:b9:68:79:96:14:cc:05:fb:cd:9f:27:d4:
        5a:ec:62:5a:fd:11:f2:12:3f:b2:c7:38:02:eb:d4:84:
        01:ff:0d:f8:0b:7f:67:8f:bf:fe:9f:b2:62:dc:d3:cf
    Fingerprint (SHA-256):
        BC:78:45:C5:B8:63:CC:52:41:31:ED:6E:B4:6C:B7:89:78:C1:98:94:38:E8:32:5C:71:83:CF:82:68:DF:3A:A5
    Fingerprint (SHA1):
        B0:A9:C0:30:51:95:8E:D9:C9:A2:61:E9:8C:35:64:BA:DD:86:7A:01
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7904: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7905: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7906: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #7907: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7908: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236028 (0x300e2f7c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:54 2017
            Not After : Sat Aug 06 23:59:54 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:c9:1b:aa:b2:76:b0:d5:1d:10:c1:fc:72:b1:ce:db:
                    81:cb:a7:cd:e9:74:12:4f:85:c1:d0:41:02:ac:c5:73:
                    c8:8d:fb:d4:48:21:5f:0a:bf:16:1a:ff:28:bd:fa:02:
                    31:e9:dc:5f:6a:d4:61:6c:88:83:e2:58:da:1b:a3:d1:
                    c6:2d:26:46:0a:d2:d8:b9:0c:89:a9:a0:33:70:ea:65:
                    58:31:6b:85:3b:da:97:6b:5a:7b:95:b2:e8:bd:58:d3:
                    d5:6f:d0:f3:1e:b0:79:a2:85:64:a8:9c:72:29:c3:55:
                    bb:8c:42:40:73:58:75:2f:5d:ba:f8:e9:bd:bc:3f:e5:
                    a3:06:ac:56:74:76:54:88:7b:91:7d:4a:17:0a:14:fe:
                    88:ba:bc:1a:34:79:86:11:9e:06:ff:94:b1:6d:1f:5c:
                    3b:18:ef:56:6b:e1:74:9a:1d:c8:cc:58:bc:92:eb:19:
                    cb:c9:b6:bd:8d:3f:86:9e:17:f1:21:db:16:b9:e7:0a:
                    16:50:45:cf:20:9a:40:3d:1b:47:27:ba:8c:97:82:0f:
                    71:93:e8:90:a2:22:cf:4a:4b:05:0c:e7:95:4e:61:d8:
                    7d:82:4f:2a:a2:59:31:0c:6e:4a:e0:5e:d7:e9:ff:e0:
                    ab:d7:3d:32:d6:bd:29:c6:ab:1b:d2:c0:25:50:62:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9f:4e:a4:14:c5:6b:79:7e:17:c1:08:62:e8:0a:27:d4:
        a9:3a:a9:c7:39:83:74:f9:cc:9d:3e:b8:d7:fa:83:c3:
        79:07:18:42:d3:2f:bb:c0:e7:b2:d3:9f:51:97:86:9d:
        d2:c9:b6:7e:30:3a:a3:2e:0e:30:4d:91:b5:94:9c:26:
        8b:cf:5e:c3:a0:19:77:51:a5:ac:d3:72:35:33:49:70:
        28:be:30:6a:c4:8d:2b:51:7b:74:e4:39:ca:db:e4:e3:
        d8:49:7a:82:0d:ea:a2:dd:53:0c:93:01:9b:52:4d:d2:
        2a:3a:e1:99:3b:33:fe:75:7e:c8:97:a8:7a:d5:8e:76:
        75:fc:5b:ab:01:c3:70:e3:f7:a9:25:74:b7:6f:0e:46:
        3f:d4:dd:a3:9c:34:83:b1:bb:25:e7:93:3e:b0:ab:5c:
        dc:34:79:75:66:ba:70:c4:59:dc:05:25:5f:a6:6a:9d:
        c0:95:34:5e:7f:6d:b5:ab:66:34:20:07:4d:76:cf:32:
        d8:a0:d8:f0:a9:3e:be:5a:c4:48:72:b7:c3:a3:b6:e4:
        92:26:a3:00:a6:7d:06:3c:27:98:05:51:58:21:ce:bc:
        fe:e6:5e:5a:c8:d8:c4:90:14:1e:f4:d0:7e:5d:77:4a:
        48:81:c5:e4:ee:0d:b0:29:6f:e6:60:26:fd:96:1a:58
    Fingerprint (SHA-256):
        75:A9:49:09:76:5C:A8:FE:8D:F7:40:0C:52:B5:63:42:AD:13:8C:81:50:15:65:94:73:37:96:32:7B:E7:56:47
    Fingerprint (SHA1):
        F7:1E:B0:B1:F3:79:3D:4D:B9:7B:64:32:A8:06:DD:74:7B:83:23:4A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7909: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7910: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236029 (0x300e2f7d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:54 2017
            Not After : Sat Aug 06 23:59:54 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:18:b5:18:61:56:87:28:ac:1e:c8:87:d8:29:3c:9d:
                    6c:a2:3f:21:4e:82:83:ee:26:de:d7:3b:56:78:dc:51:
                    91:0d:83:68:75:cb:c2:0d:f6:9f:06:bf:a3:aa:37:cc:
                    74:2a:0a:33:bb:e4:71:45:a2:ec:40:85:17:e4:fc:f5:
                    88:1a:8d:55:f2:40:ee:c7:6e:85:11:71:4d:a9:6f:68:
                    70:ed:ac:92:21:b5:54:9f:a1:44:96:cd:b5:f4:1b:78:
                    ca:93:0a:6e:1a:8b:71:1f:bc:6e:59:49:7e:e1:b6:ef:
                    84:76:47:78:0c:05:56:b0:84:38:19:68:bf:54:7e:1f:
                    66:1c:76:14:35:cf:a0:09:6f:40:85:3c:4a:4b:7d:05:
                    1f:cf:45:03:db:cd:01:90:49:97:d2:a6:38:cb:7b:c3:
                    78:e2:73:79:a4:9b:3a:45:68:df:9a:5f:21:aa:35:73:
                    8b:d5:32:d8:0d:e1:bf:97:72:e6:ce:87:b7:15:5a:2d:
                    a2:a4:60:43:da:1f:3b:ab:62:9d:ae:0f:b0:a3:d5:9f:
                    ae:0a:82:34:f3:ec:5d:84:cf:50:cc:29:39:c9:01:16:
                    40:6a:b7:3c:10:54:8b:a1:4f:de:ea:0a:23:1f:d1:46:
                    02:ca:c9:26:d6:d8:39:86:84:f7:ff:b3:1f:ca:da:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2f:ae:cf:f2:69:00:92:72:04:0b:d4:34:5e:bd:07:22:
        7e:1f:5c:80:d7:10:1e:25:17:43:8c:c0:3b:12:e3:54:
        f3:8f:8c:5a:54:75:28:f3:98:91:8c:04:9c:32:95:3e:
        c7:ad:cf:cc:c3:0d:10:29:dd:97:3e:b2:52:ec:16:e9:
        db:c7:26:7c:f8:80:30:40:ca:7d:5e:e0:4b:56:00:00:
        99:2d:a3:2d:8c:30:53:39:b4:e5:cd:68:07:65:9e:c8:
        bc:99:1e:57:fd:e3:b9:43:70:f4:02:33:9f:d0:6a:c0:
        20:d9:06:6e:5e:64:f6:c2:24:76:45:d2:61:ab:97:98:
        de:c9:41:89:47:05:ca:ea:68:11:9e:2d:58:1b:cf:8a:
        fe:48:78:64:02:d5:8b:c1:16:f5:2b:c8:23:c5:fd:99:
        5a:1c:c4:ab:03:cd:4a:4c:a2:a6:c0:90:02:44:78:0f:
        b3:36:91:5e:8d:a0:c2:74:65:5f:00:51:54:9f:51:b4:
        69:2e:17:15:c0:5c:96:4b:71:d4:7f:72:36:db:16:08:
        36:2f:e6:b1:dc:d0:62:b4:ad:b7:8c:95:ea:78:ce:38:
        12:51:1c:c0:0a:29:86:58:55:bd:57:46:a6:f8:1f:cc:
        53:32:a6:ac:9d:89:09:e6:82:2c:65:53:da:2a:00:5b
    Fingerprint (SHA-256):
        0F:7F:29:91:DE:93:25:D8:8F:5B:C6:7C:93:E9:82:08:71:7F:19:14:B5:44:33:DC:C0:D5:86:15:A2:51:57:8D
    Fingerprint (SHA1):
        67:9C:A8:F1:1F:FF:2A:AB:54:00:13:CE:97:A9:2D:15:34:59:7A:9A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7911: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7912: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236030 (0x300e2f7e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:54 2017
            Not After : Sat Aug 06 23:59:54 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:60:16:20:f3:a1:93:64:dc:97:ad:21:0d:dc:7e:07:
                    35:2c:b7:24:5f:c5:e1:cf:e9:df:b1:df:47:cf:13:2d:
                    a8:4d:53:69:bd:39:85:f5:55:67:89:48:3b:48:a3:f9:
                    dc:e7:c2:8b:cd:ad:8c:ba:14:56:78:72:87:3c:35:81:
                    71:40:a1:bc:24:f8:68:6d:33:2c:21:7a:bb:b3:44:dc:
                    82:8c:c7:ec:fc:64:e4:0c:79:8b:51:b2:c6:fa:15:31:
                    8f:14:f6:3d:af:86:17:49:f9:ea:e0:7e:1f:54:dd:24:
                    ed:f7:5d:59:80:7b:a1:a8:0e:7a:c6:6b:34:e1:7a:c7:
                    a2:63:59:17:84:b5:0d:8c:64:e8:0d:8f:ab:be:ac:0a:
                    c8:95:61:03:2f:20:d1:ec:13:d3:1d:ac:b8:f7:59:92:
                    f1:03:56:f5:5d:3a:50:f6:14:ce:62:4e:03:db:4c:5e:
                    9d:e6:12:ad:2b:3e:4f:d4:85:92:f2:a2:dc:e3:fa:0f:
                    79:b7:ec:a2:7e:a4:18:78:55:7c:5e:17:97:39:37:1f:
                    56:28:a7:8d:bb:81:25:61:a3:10:3e:ed:af:5b:2c:12:
                    26:3c:30:be:ea:db:74:01:a9:8f:e3:1d:30:2a:22:81:
                    9b:44:0b:c3:1c:4a:5a:9c:e9:c3:e4:b9:c4:c4:8b:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9d:bc:6d:5b:ce:3e:97:0e:5b:c6:d1:a7:e3:eb:be:f9:
        dd:46:ea:8d:32:8f:08:8d:cf:5a:a7:e5:f1:97:ef:07:
        c6:ec:80:d7:92:8b:9e:ff:4e:07:8f:cc:cc:be:7d:63:
        28:ee:cb:99:39:5d:98:3f:ce:51:32:24:18:2b:04:21:
        93:6f:be:41:b0:9a:60:33:92:86:de:de:87:3f:92:dd:
        3f:ce:6a:9b:95:c6:d2:bb:59:1a:d0:64:bf:9d:f5:03:
        5b:33:69:34:97:80:cc:bc:6a:8a:67:b7:0b:19:a6:6c:
        05:22:74:a2:e3:91:97:cc:6d:e5:be:4b:02:0f:c4:d2:
        89:5a:f3:16:cc:92:01:75:c4:8e:1a:be:21:23:39:9e:
        20:23:72:8c:17:77:c0:bd:a3:b1:83:49:b8:09:0b:00:
        15:55:d2:b1:59:5a:1a:d7:81:f9:78:65:b4:d0:f2:b8:
        be:2b:2d:6b:5a:10:8d:f6:44:36:19:a9:da:50:16:fc:
        0b:d8:70:10:08:4d:9d:9a:96:4f:48:de:4d:89:f8:68:
        d3:9d:c9:f3:b9:68:79:96:14:cc:05:fb:cd:9f:27:d4:
        5a:ec:62:5a:fd:11:f2:12:3f:b2:c7:38:02:eb:d4:84:
        01:ff:0d:f8:0b:7f:67:8f:bf:fe:9f:b2:62:dc:d3:cf
    Fingerprint (SHA-256):
        BC:78:45:C5:B8:63:CC:52:41:31:ED:6E:B4:6C:B7:89:78:C1:98:94:38:E8:32:5C:71:83:CF:82:68:DF:3A:A5
    Fingerprint (SHA1):
        B0:A9:C0:30:51:95:8E:D9:C9:A2:61:E9:8C:35:64:BA:DD:86:7A:01
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7913: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7914: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236028 (0x300e2f7c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:54 2017
            Not After : Sat Aug 06 23:59:54 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:c9:1b:aa:b2:76:b0:d5:1d:10:c1:fc:72:b1:ce:db:
                    81:cb:a7:cd:e9:74:12:4f:85:c1:d0:41:02:ac:c5:73:
                    c8:8d:fb:d4:48:21:5f:0a:bf:16:1a:ff:28:bd:fa:02:
                    31:e9:dc:5f:6a:d4:61:6c:88:83:e2:58:da:1b:a3:d1:
                    c6:2d:26:46:0a:d2:d8:b9:0c:89:a9:a0:33:70:ea:65:
                    58:31:6b:85:3b:da:97:6b:5a:7b:95:b2:e8:bd:58:d3:
                    d5:6f:d0:f3:1e:b0:79:a2:85:64:a8:9c:72:29:c3:55:
                    bb:8c:42:40:73:58:75:2f:5d:ba:f8:e9:bd:bc:3f:e5:
                    a3:06:ac:56:74:76:54:88:7b:91:7d:4a:17:0a:14:fe:
                    88:ba:bc:1a:34:79:86:11:9e:06:ff:94:b1:6d:1f:5c:
                    3b:18:ef:56:6b:e1:74:9a:1d:c8:cc:58:bc:92:eb:19:
                    cb:c9:b6:bd:8d:3f:86:9e:17:f1:21:db:16:b9:e7:0a:
                    16:50:45:cf:20:9a:40:3d:1b:47:27:ba:8c:97:82:0f:
                    71:93:e8:90:a2:22:cf:4a:4b:05:0c:e7:95:4e:61:d8:
                    7d:82:4f:2a:a2:59:31:0c:6e:4a:e0:5e:d7:e9:ff:e0:
                    ab:d7:3d:32:d6:bd:29:c6:ab:1b:d2:c0:25:50:62:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9f:4e:a4:14:c5:6b:79:7e:17:c1:08:62:e8:0a:27:d4:
        a9:3a:a9:c7:39:83:74:f9:cc:9d:3e:b8:d7:fa:83:c3:
        79:07:18:42:d3:2f:bb:c0:e7:b2:d3:9f:51:97:86:9d:
        d2:c9:b6:7e:30:3a:a3:2e:0e:30:4d:91:b5:94:9c:26:
        8b:cf:5e:c3:a0:19:77:51:a5:ac:d3:72:35:33:49:70:
        28:be:30:6a:c4:8d:2b:51:7b:74:e4:39:ca:db:e4:e3:
        d8:49:7a:82:0d:ea:a2:dd:53:0c:93:01:9b:52:4d:d2:
        2a:3a:e1:99:3b:33:fe:75:7e:c8:97:a8:7a:d5:8e:76:
        75:fc:5b:ab:01:c3:70:e3:f7:a9:25:74:b7:6f:0e:46:
        3f:d4:dd:a3:9c:34:83:b1:bb:25:e7:93:3e:b0:ab:5c:
        dc:34:79:75:66:ba:70:c4:59:dc:05:25:5f:a6:6a:9d:
        c0:95:34:5e:7f:6d:b5:ab:66:34:20:07:4d:76:cf:32:
        d8:a0:d8:f0:a9:3e:be:5a:c4:48:72:b7:c3:a3:b6:e4:
        92:26:a3:00:a6:7d:06:3c:27:98:05:51:58:21:ce:bc:
        fe:e6:5e:5a:c8:d8:c4:90:14:1e:f4:d0:7e:5d:77:4a:
        48:81:c5:e4:ee:0d:b0:29:6f:e6:60:26:fd:96:1a:58
    Fingerprint (SHA-256):
        75:A9:49:09:76:5C:A8:FE:8D:F7:40:0C:52:B5:63:42:AD:13:8C:81:50:15:65:94:73:37:96:32:7B:E7:56:47
    Fingerprint (SHA1):
        F7:1E:B0:B1:F3:79:3D:4D:B9:7B:64:32:A8:06:DD:74:7B:83:23:4A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7915: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236028 (0x300e2f7c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:54 2017
            Not After : Sat Aug 06 23:59:54 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:c9:1b:aa:b2:76:b0:d5:1d:10:c1:fc:72:b1:ce:db:
                    81:cb:a7:cd:e9:74:12:4f:85:c1:d0:41:02:ac:c5:73:
                    c8:8d:fb:d4:48:21:5f:0a:bf:16:1a:ff:28:bd:fa:02:
                    31:e9:dc:5f:6a:d4:61:6c:88:83:e2:58:da:1b:a3:d1:
                    c6:2d:26:46:0a:d2:d8:b9:0c:89:a9:a0:33:70:ea:65:
                    58:31:6b:85:3b:da:97:6b:5a:7b:95:b2:e8:bd:58:d3:
                    d5:6f:d0:f3:1e:b0:79:a2:85:64:a8:9c:72:29:c3:55:
                    bb:8c:42:40:73:58:75:2f:5d:ba:f8:e9:bd:bc:3f:e5:
                    a3:06:ac:56:74:76:54:88:7b:91:7d:4a:17:0a:14:fe:
                    88:ba:bc:1a:34:79:86:11:9e:06:ff:94:b1:6d:1f:5c:
                    3b:18:ef:56:6b:e1:74:9a:1d:c8:cc:58:bc:92:eb:19:
                    cb:c9:b6:bd:8d:3f:86:9e:17:f1:21:db:16:b9:e7:0a:
                    16:50:45:cf:20:9a:40:3d:1b:47:27:ba:8c:97:82:0f:
                    71:93:e8:90:a2:22:cf:4a:4b:05:0c:e7:95:4e:61:d8:
                    7d:82:4f:2a:a2:59:31:0c:6e:4a:e0:5e:d7:e9:ff:e0:
                    ab:d7:3d:32:d6:bd:29:c6:ab:1b:d2:c0:25:50:62:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9f:4e:a4:14:c5:6b:79:7e:17:c1:08:62:e8:0a:27:d4:
        a9:3a:a9:c7:39:83:74:f9:cc:9d:3e:b8:d7:fa:83:c3:
        79:07:18:42:d3:2f:bb:c0:e7:b2:d3:9f:51:97:86:9d:
        d2:c9:b6:7e:30:3a:a3:2e:0e:30:4d:91:b5:94:9c:26:
        8b:cf:5e:c3:a0:19:77:51:a5:ac:d3:72:35:33:49:70:
        28:be:30:6a:c4:8d:2b:51:7b:74:e4:39:ca:db:e4:e3:
        d8:49:7a:82:0d:ea:a2:dd:53:0c:93:01:9b:52:4d:d2:
        2a:3a:e1:99:3b:33:fe:75:7e:c8:97:a8:7a:d5:8e:76:
        75:fc:5b:ab:01:c3:70:e3:f7:a9:25:74:b7:6f:0e:46:
        3f:d4:dd:a3:9c:34:83:b1:bb:25:e7:93:3e:b0:ab:5c:
        dc:34:79:75:66:ba:70:c4:59:dc:05:25:5f:a6:6a:9d:
        c0:95:34:5e:7f:6d:b5:ab:66:34:20:07:4d:76:cf:32:
        d8:a0:d8:f0:a9:3e:be:5a:c4:48:72:b7:c3:a3:b6:e4:
        92:26:a3:00:a6:7d:06:3c:27:98:05:51:58:21:ce:bc:
        fe:e6:5e:5a:c8:d8:c4:90:14:1e:f4:d0:7e:5d:77:4a:
        48:81:c5:e4:ee:0d:b0:29:6f:e6:60:26:fd:96:1a:58
    Fingerprint (SHA-256):
        75:A9:49:09:76:5C:A8:FE:8D:F7:40:0C:52:B5:63:42:AD:13:8C:81:50:15:65:94:73:37:96:32:7B:E7:56:47
    Fingerprint (SHA1):
        F7:1E:B0:B1:F3:79:3D:4D:B9:7B:64:32:A8:06:DD:74:7B:83:23:4A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7916: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236029 (0x300e2f7d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:54 2017
            Not After : Sat Aug 06 23:59:54 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:18:b5:18:61:56:87:28:ac:1e:c8:87:d8:29:3c:9d:
                    6c:a2:3f:21:4e:82:83:ee:26:de:d7:3b:56:78:dc:51:
                    91:0d:83:68:75:cb:c2:0d:f6:9f:06:bf:a3:aa:37:cc:
                    74:2a:0a:33:bb:e4:71:45:a2:ec:40:85:17:e4:fc:f5:
                    88:1a:8d:55:f2:40:ee:c7:6e:85:11:71:4d:a9:6f:68:
                    70:ed:ac:92:21:b5:54:9f:a1:44:96:cd:b5:f4:1b:78:
                    ca:93:0a:6e:1a:8b:71:1f:bc:6e:59:49:7e:e1:b6:ef:
                    84:76:47:78:0c:05:56:b0:84:38:19:68:bf:54:7e:1f:
                    66:1c:76:14:35:cf:a0:09:6f:40:85:3c:4a:4b:7d:05:
                    1f:cf:45:03:db:cd:01:90:49:97:d2:a6:38:cb:7b:c3:
                    78:e2:73:79:a4:9b:3a:45:68:df:9a:5f:21:aa:35:73:
                    8b:d5:32:d8:0d:e1:bf:97:72:e6:ce:87:b7:15:5a:2d:
                    a2:a4:60:43:da:1f:3b:ab:62:9d:ae:0f:b0:a3:d5:9f:
                    ae:0a:82:34:f3:ec:5d:84:cf:50:cc:29:39:c9:01:16:
                    40:6a:b7:3c:10:54:8b:a1:4f:de:ea:0a:23:1f:d1:46:
                    02:ca:c9:26:d6:d8:39:86:84:f7:ff:b3:1f:ca:da:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2f:ae:cf:f2:69:00:92:72:04:0b:d4:34:5e:bd:07:22:
        7e:1f:5c:80:d7:10:1e:25:17:43:8c:c0:3b:12:e3:54:
        f3:8f:8c:5a:54:75:28:f3:98:91:8c:04:9c:32:95:3e:
        c7:ad:cf:cc:c3:0d:10:29:dd:97:3e:b2:52:ec:16:e9:
        db:c7:26:7c:f8:80:30:40:ca:7d:5e:e0:4b:56:00:00:
        99:2d:a3:2d:8c:30:53:39:b4:e5:cd:68:07:65:9e:c8:
        bc:99:1e:57:fd:e3:b9:43:70:f4:02:33:9f:d0:6a:c0:
        20:d9:06:6e:5e:64:f6:c2:24:76:45:d2:61:ab:97:98:
        de:c9:41:89:47:05:ca:ea:68:11:9e:2d:58:1b:cf:8a:
        fe:48:78:64:02:d5:8b:c1:16:f5:2b:c8:23:c5:fd:99:
        5a:1c:c4:ab:03:cd:4a:4c:a2:a6:c0:90:02:44:78:0f:
        b3:36:91:5e:8d:a0:c2:74:65:5f:00:51:54:9f:51:b4:
        69:2e:17:15:c0:5c:96:4b:71:d4:7f:72:36:db:16:08:
        36:2f:e6:b1:dc:d0:62:b4:ad:b7:8c:95:ea:78:ce:38:
        12:51:1c:c0:0a:29:86:58:55:bd:57:46:a6:f8:1f:cc:
        53:32:a6:ac:9d:89:09:e6:82:2c:65:53:da:2a:00:5b
    Fingerprint (SHA-256):
        0F:7F:29:91:DE:93:25:D8:8F:5B:C6:7C:93:E9:82:08:71:7F:19:14:B5:44:33:DC:C0:D5:86:15:A2:51:57:8D
    Fingerprint (SHA1):
        67:9C:A8:F1:1F:FF:2A:AB:54:00:13:CE:97:A9:2D:15:34:59:7A:9A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7917: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236029 (0x300e2f7d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:54 2017
            Not After : Sat Aug 06 23:59:54 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:18:b5:18:61:56:87:28:ac:1e:c8:87:d8:29:3c:9d:
                    6c:a2:3f:21:4e:82:83:ee:26:de:d7:3b:56:78:dc:51:
                    91:0d:83:68:75:cb:c2:0d:f6:9f:06:bf:a3:aa:37:cc:
                    74:2a:0a:33:bb:e4:71:45:a2:ec:40:85:17:e4:fc:f5:
                    88:1a:8d:55:f2:40:ee:c7:6e:85:11:71:4d:a9:6f:68:
                    70:ed:ac:92:21:b5:54:9f:a1:44:96:cd:b5:f4:1b:78:
                    ca:93:0a:6e:1a:8b:71:1f:bc:6e:59:49:7e:e1:b6:ef:
                    84:76:47:78:0c:05:56:b0:84:38:19:68:bf:54:7e:1f:
                    66:1c:76:14:35:cf:a0:09:6f:40:85:3c:4a:4b:7d:05:
                    1f:cf:45:03:db:cd:01:90:49:97:d2:a6:38:cb:7b:c3:
                    78:e2:73:79:a4:9b:3a:45:68:df:9a:5f:21:aa:35:73:
                    8b:d5:32:d8:0d:e1:bf:97:72:e6:ce:87:b7:15:5a:2d:
                    a2:a4:60:43:da:1f:3b:ab:62:9d:ae:0f:b0:a3:d5:9f:
                    ae:0a:82:34:f3:ec:5d:84:cf:50:cc:29:39:c9:01:16:
                    40:6a:b7:3c:10:54:8b:a1:4f:de:ea:0a:23:1f:d1:46:
                    02:ca:c9:26:d6:d8:39:86:84:f7:ff:b3:1f:ca:da:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2f:ae:cf:f2:69:00:92:72:04:0b:d4:34:5e:bd:07:22:
        7e:1f:5c:80:d7:10:1e:25:17:43:8c:c0:3b:12:e3:54:
        f3:8f:8c:5a:54:75:28:f3:98:91:8c:04:9c:32:95:3e:
        c7:ad:cf:cc:c3:0d:10:29:dd:97:3e:b2:52:ec:16:e9:
        db:c7:26:7c:f8:80:30:40:ca:7d:5e:e0:4b:56:00:00:
        99:2d:a3:2d:8c:30:53:39:b4:e5:cd:68:07:65:9e:c8:
        bc:99:1e:57:fd:e3:b9:43:70:f4:02:33:9f:d0:6a:c0:
        20:d9:06:6e:5e:64:f6:c2:24:76:45:d2:61:ab:97:98:
        de:c9:41:89:47:05:ca:ea:68:11:9e:2d:58:1b:cf:8a:
        fe:48:78:64:02:d5:8b:c1:16:f5:2b:c8:23:c5:fd:99:
        5a:1c:c4:ab:03:cd:4a:4c:a2:a6:c0:90:02:44:78:0f:
        b3:36:91:5e:8d:a0:c2:74:65:5f:00:51:54:9f:51:b4:
        69:2e:17:15:c0:5c:96:4b:71:d4:7f:72:36:db:16:08:
        36:2f:e6:b1:dc:d0:62:b4:ad:b7:8c:95:ea:78:ce:38:
        12:51:1c:c0:0a:29:86:58:55:bd:57:46:a6:f8:1f:cc:
        53:32:a6:ac:9d:89:09:e6:82:2c:65:53:da:2a:00:5b
    Fingerprint (SHA-256):
        0F:7F:29:91:DE:93:25:D8:8F:5B:C6:7C:93:E9:82:08:71:7F:19:14:B5:44:33:DC:C0:D5:86:15:A2:51:57:8D
    Fingerprint (SHA1):
        67:9C:A8:F1:1F:FF:2A:AB:54:00:13:CE:97:A9:2D:15:34:59:7A:9A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7918: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236030 (0x300e2f7e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:54 2017
            Not After : Sat Aug 06 23:59:54 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:60:16:20:f3:a1:93:64:dc:97:ad:21:0d:dc:7e:07:
                    35:2c:b7:24:5f:c5:e1:cf:e9:df:b1:df:47:cf:13:2d:
                    a8:4d:53:69:bd:39:85:f5:55:67:89:48:3b:48:a3:f9:
                    dc:e7:c2:8b:cd:ad:8c:ba:14:56:78:72:87:3c:35:81:
                    71:40:a1:bc:24:f8:68:6d:33:2c:21:7a:bb:b3:44:dc:
                    82:8c:c7:ec:fc:64:e4:0c:79:8b:51:b2:c6:fa:15:31:
                    8f:14:f6:3d:af:86:17:49:f9:ea:e0:7e:1f:54:dd:24:
                    ed:f7:5d:59:80:7b:a1:a8:0e:7a:c6:6b:34:e1:7a:c7:
                    a2:63:59:17:84:b5:0d:8c:64:e8:0d:8f:ab:be:ac:0a:
                    c8:95:61:03:2f:20:d1:ec:13:d3:1d:ac:b8:f7:59:92:
                    f1:03:56:f5:5d:3a:50:f6:14:ce:62:4e:03:db:4c:5e:
                    9d:e6:12:ad:2b:3e:4f:d4:85:92:f2:a2:dc:e3:fa:0f:
                    79:b7:ec:a2:7e:a4:18:78:55:7c:5e:17:97:39:37:1f:
                    56:28:a7:8d:bb:81:25:61:a3:10:3e:ed:af:5b:2c:12:
                    26:3c:30:be:ea:db:74:01:a9:8f:e3:1d:30:2a:22:81:
                    9b:44:0b:c3:1c:4a:5a:9c:e9:c3:e4:b9:c4:c4:8b:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9d:bc:6d:5b:ce:3e:97:0e:5b:c6:d1:a7:e3:eb:be:f9:
        dd:46:ea:8d:32:8f:08:8d:cf:5a:a7:e5:f1:97:ef:07:
        c6:ec:80:d7:92:8b:9e:ff:4e:07:8f:cc:cc:be:7d:63:
        28:ee:cb:99:39:5d:98:3f:ce:51:32:24:18:2b:04:21:
        93:6f:be:41:b0:9a:60:33:92:86:de:de:87:3f:92:dd:
        3f:ce:6a:9b:95:c6:d2:bb:59:1a:d0:64:bf:9d:f5:03:
        5b:33:69:34:97:80:cc:bc:6a:8a:67:b7:0b:19:a6:6c:
        05:22:74:a2:e3:91:97:cc:6d:e5:be:4b:02:0f:c4:d2:
        89:5a:f3:16:cc:92:01:75:c4:8e:1a:be:21:23:39:9e:
        20:23:72:8c:17:77:c0:bd:a3:b1:83:49:b8:09:0b:00:
        15:55:d2:b1:59:5a:1a:d7:81:f9:78:65:b4:d0:f2:b8:
        be:2b:2d:6b:5a:10:8d:f6:44:36:19:a9:da:50:16:fc:
        0b:d8:70:10:08:4d:9d:9a:96:4f:48:de:4d:89:f8:68:
        d3:9d:c9:f3:b9:68:79:96:14:cc:05:fb:cd:9f:27:d4:
        5a:ec:62:5a:fd:11:f2:12:3f:b2:c7:38:02:eb:d4:84:
        01:ff:0d:f8:0b:7f:67:8f:bf:fe:9f:b2:62:dc:d3:cf
    Fingerprint (SHA-256):
        BC:78:45:C5:B8:63:CC:52:41:31:ED:6E:B4:6C:B7:89:78:C1:98:94:38:E8:32:5C:71:83:CF:82:68:DF:3A:A5
    Fingerprint (SHA1):
        B0:A9:C0:30:51:95:8E:D9:C9:A2:61:E9:8C:35:64:BA:DD:86:7A:01
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7919: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236030 (0x300e2f7e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:54 2017
            Not After : Sat Aug 06 23:59:54 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:60:16:20:f3:a1:93:64:dc:97:ad:21:0d:dc:7e:07:
                    35:2c:b7:24:5f:c5:e1:cf:e9:df:b1:df:47:cf:13:2d:
                    a8:4d:53:69:bd:39:85:f5:55:67:89:48:3b:48:a3:f9:
                    dc:e7:c2:8b:cd:ad:8c:ba:14:56:78:72:87:3c:35:81:
                    71:40:a1:bc:24:f8:68:6d:33:2c:21:7a:bb:b3:44:dc:
                    82:8c:c7:ec:fc:64:e4:0c:79:8b:51:b2:c6:fa:15:31:
                    8f:14:f6:3d:af:86:17:49:f9:ea:e0:7e:1f:54:dd:24:
                    ed:f7:5d:59:80:7b:a1:a8:0e:7a:c6:6b:34:e1:7a:c7:
                    a2:63:59:17:84:b5:0d:8c:64:e8:0d:8f:ab:be:ac:0a:
                    c8:95:61:03:2f:20:d1:ec:13:d3:1d:ac:b8:f7:59:92:
                    f1:03:56:f5:5d:3a:50:f6:14:ce:62:4e:03:db:4c:5e:
                    9d:e6:12:ad:2b:3e:4f:d4:85:92:f2:a2:dc:e3:fa:0f:
                    79:b7:ec:a2:7e:a4:18:78:55:7c:5e:17:97:39:37:1f:
                    56:28:a7:8d:bb:81:25:61:a3:10:3e:ed:af:5b:2c:12:
                    26:3c:30:be:ea:db:74:01:a9:8f:e3:1d:30:2a:22:81:
                    9b:44:0b:c3:1c:4a:5a:9c:e9:c3:e4:b9:c4:c4:8b:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9d:bc:6d:5b:ce:3e:97:0e:5b:c6:d1:a7:e3:eb:be:f9:
        dd:46:ea:8d:32:8f:08:8d:cf:5a:a7:e5:f1:97:ef:07:
        c6:ec:80:d7:92:8b:9e:ff:4e:07:8f:cc:cc:be:7d:63:
        28:ee:cb:99:39:5d:98:3f:ce:51:32:24:18:2b:04:21:
        93:6f:be:41:b0:9a:60:33:92:86:de:de:87:3f:92:dd:
        3f:ce:6a:9b:95:c6:d2:bb:59:1a:d0:64:bf:9d:f5:03:
        5b:33:69:34:97:80:cc:bc:6a:8a:67:b7:0b:19:a6:6c:
        05:22:74:a2:e3:91:97:cc:6d:e5:be:4b:02:0f:c4:d2:
        89:5a:f3:16:cc:92:01:75:c4:8e:1a:be:21:23:39:9e:
        20:23:72:8c:17:77:c0:bd:a3:b1:83:49:b8:09:0b:00:
        15:55:d2:b1:59:5a:1a:d7:81:f9:78:65:b4:d0:f2:b8:
        be:2b:2d:6b:5a:10:8d:f6:44:36:19:a9:da:50:16:fc:
        0b:d8:70:10:08:4d:9d:9a:96:4f:48:de:4d:89:f8:68:
        d3:9d:c9:f3:b9:68:79:96:14:cc:05:fb:cd:9f:27:d4:
        5a:ec:62:5a:fd:11:f2:12:3f:b2:c7:38:02:eb:d4:84:
        01:ff:0d:f8:0b:7f:67:8f:bf:fe:9f:b2:62:dc:d3:cf
    Fingerprint (SHA-256):
        BC:78:45:C5:B8:63:CC:52:41:31:ED:6E:B4:6C:B7:89:78:C1:98:94:38:E8:32:5C:71:83:CF:82:68:DF:3A:A5
    Fingerprint (SHA1):
        B0:A9:C0:30:51:95:8E:D9:C9:A2:61:E9:8C:35:64:BA:DD:86:7A:01
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7920: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #7921: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806236033 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7922: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #7923: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7924: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7925: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 806236034   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7926: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7927: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7928: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7929: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 806236035   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7930: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7931: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #7932: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7933: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 806236036   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7934: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7935: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #7936: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7937: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 806236037   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7938: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7939: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #7940: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7941: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 806236038   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7942: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7943: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #7944: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7945: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 806236039   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7946: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7947: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7948: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #7949: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #7950: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7951: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #7952: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236033 (0x300e2f81)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:55 2017
            Not After : Sat Aug 06 23:59:55 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:62:ec:2b:9f:25:23:81:df:6c:35:e0:07:19:b6:36:
                    38:7c:65:21:10:40:86:33:0a:ba:c0:18:36:d8:55:f4:
                    3c:94:cd:40:ff:85:d7:a0:fd:00:4e:2d:b7:3d:1a:6e:
                    64:71:d2:ca:24:13:d7:11:e0:66:e3:5d:b9:64:14:87:
                    c5:19:3f:1e:66:17:9a:0d:f8:7c:28:22:ea:97:48:ea:
                    e7:01:f9:28:13:b1:39:50:0f:f6:0a:1f:ed:f5:06:a1:
                    f2:48:a5:87:ab:23:7d:28:82:27:1f:1c:54:97:b0:b4:
                    04:16:1a:d5:31:8e:02:17:50:30:ba:eb:1f:91:f3:67:
                    47:4d:3b:de:e7:b1:c9:ee:d5:43:94:7c:52:30:c1:3c:
                    8c:48:2b:36:20:2b:53:95:ab:97:9e:ba:e8:06:db:8d:
                    33:ce:1c:04:16:9c:fa:b7:80:31:94:67:63:92:1c:bf:
                    e9:24:15:20:11:a2:c9:ee:06:42:94:f9:9e:e1:11:db:
                    fa:f9:27:f7:86:0b:54:44:01:bc:65:11:35:3d:3d:dc:
                    bf:a5:b8:1b:87:b1:fd:f2:bf:e3:24:fe:4c:5a:46:37:
                    63:c5:ff:06:ad:6f:c5:b3:67:5b:7f:9b:83:f1:77:83:
                    94:8a:4d:e4:36:f9:2c:14:e7:9c:87:ae:f3:73:ab:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a2:8c:e8:76:be:4d:65:ed:1a:cd:b2:20:9d:7f:55:4a:
        37:8a:a9:a2:72:be:0e:29:f4:6c:79:96:33:07:3c:25:
        e6:f3:c9:57:f5:4d:fc:23:1f:e9:4d:f9:5c:39:27:73:
        16:ac:bd:07:02:af:f7:18:61:cc:45:2a:bb:7a:2f:ba:
        1f:86:99:f1:7f:8a:09:5a:95:a9:a1:d9:c2:df:cd:74:
        ee:d2:f1:93:5c:94:62:f3:be:a4:c0:69:f6:b6:fa:a7:
        f6:76:b9:26:4a:16:ef:1c:cc:5f:5a:c7:4a:74:6d:61:
        d8:94:a2:74:ef:56:dc:b5:2b:ab:b5:26:3d:5e:c8:96:
        25:d5:19:43:84:e3:91:87:44:a4:5a:6c:8f:2e:8c:a0:
        b4:60:4e:c3:a6:3b:93:5e:a9:aa:a1:48:79:4a:a6:f0:
        a4:9b:e2:e7:a9:7f:cb:76:5f:17:0b:15:35:79:ba:9c:
        86:76:77:27:9b:98:df:91:e2:45:3e:b8:bf:4e:6f:d9:
        b2:0f:24:88:0d:4b:a9:a8:9f:e0:d5:58:82:c1:94:b7:
        04:b4:d9:d4:cc:18:c2:7e:95:89:76:c9:1c:80:86:17:
        03:e9:70:ee:5d:3b:da:23:ab:0e:b6:d9:be:c3:bf:51:
        05:04:24:9d:38:c7:63:d6:ab:4c:13:3a:30:78:ea:bb
    Fingerprint (SHA-256):
        70:E6:16:75:C5:62:49:03:63:46:80:2F:35:30:FD:FC:20:23:B1:A8:D4:B2:2D:C3:AB:E8:37:FB:CD:98:36:A3
    Fingerprint (SHA1):
        F3:59:5D:2A:1E:62:07:06:DC:12:56:05:65:75:3D:6B:22:AB:E5:9C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7953: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7954: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7955: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7956: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236033 (0x300e2f81)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:55 2017
            Not After : Sat Aug 06 23:59:55 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:62:ec:2b:9f:25:23:81:df:6c:35:e0:07:19:b6:36:
                    38:7c:65:21:10:40:86:33:0a:ba:c0:18:36:d8:55:f4:
                    3c:94:cd:40:ff:85:d7:a0:fd:00:4e:2d:b7:3d:1a:6e:
                    64:71:d2:ca:24:13:d7:11:e0:66:e3:5d:b9:64:14:87:
                    c5:19:3f:1e:66:17:9a:0d:f8:7c:28:22:ea:97:48:ea:
                    e7:01:f9:28:13:b1:39:50:0f:f6:0a:1f:ed:f5:06:a1:
                    f2:48:a5:87:ab:23:7d:28:82:27:1f:1c:54:97:b0:b4:
                    04:16:1a:d5:31:8e:02:17:50:30:ba:eb:1f:91:f3:67:
                    47:4d:3b:de:e7:b1:c9:ee:d5:43:94:7c:52:30:c1:3c:
                    8c:48:2b:36:20:2b:53:95:ab:97:9e:ba:e8:06:db:8d:
                    33:ce:1c:04:16:9c:fa:b7:80:31:94:67:63:92:1c:bf:
                    e9:24:15:20:11:a2:c9:ee:06:42:94:f9:9e:e1:11:db:
                    fa:f9:27:f7:86:0b:54:44:01:bc:65:11:35:3d:3d:dc:
                    bf:a5:b8:1b:87:b1:fd:f2:bf:e3:24:fe:4c:5a:46:37:
                    63:c5:ff:06:ad:6f:c5:b3:67:5b:7f:9b:83:f1:77:83:
                    94:8a:4d:e4:36:f9:2c:14:e7:9c:87:ae:f3:73:ab:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a2:8c:e8:76:be:4d:65:ed:1a:cd:b2:20:9d:7f:55:4a:
        37:8a:a9:a2:72:be:0e:29:f4:6c:79:96:33:07:3c:25:
        e6:f3:c9:57:f5:4d:fc:23:1f:e9:4d:f9:5c:39:27:73:
        16:ac:bd:07:02:af:f7:18:61:cc:45:2a:bb:7a:2f:ba:
        1f:86:99:f1:7f:8a:09:5a:95:a9:a1:d9:c2:df:cd:74:
        ee:d2:f1:93:5c:94:62:f3:be:a4:c0:69:f6:b6:fa:a7:
        f6:76:b9:26:4a:16:ef:1c:cc:5f:5a:c7:4a:74:6d:61:
        d8:94:a2:74:ef:56:dc:b5:2b:ab:b5:26:3d:5e:c8:96:
        25:d5:19:43:84:e3:91:87:44:a4:5a:6c:8f:2e:8c:a0:
        b4:60:4e:c3:a6:3b:93:5e:a9:aa:a1:48:79:4a:a6:f0:
        a4:9b:e2:e7:a9:7f:cb:76:5f:17:0b:15:35:79:ba:9c:
        86:76:77:27:9b:98:df:91:e2:45:3e:b8:bf:4e:6f:d9:
        b2:0f:24:88:0d:4b:a9:a8:9f:e0:d5:58:82:c1:94:b7:
        04:b4:d9:d4:cc:18:c2:7e:95:89:76:c9:1c:80:86:17:
        03:e9:70:ee:5d:3b:da:23:ab:0e:b6:d9:be:c3:bf:51:
        05:04:24:9d:38:c7:63:d6:ab:4c:13:3a:30:78:ea:bb
    Fingerprint (SHA-256):
        70:E6:16:75:C5:62:49:03:63:46:80:2F:35:30:FD:FC:20:23:B1:A8:D4:B2:2D:C3:AB:E8:37:FB:CD:98:36:A3
    Fingerprint (SHA1):
        F3:59:5D:2A:1E:62:07:06:DC:12:56:05:65:75:3D:6B:22:AB:E5:9C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7957: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7958: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #7959: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806236040 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7960: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #7961: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7962: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7963: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 806236041   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7964: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7965: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #7966: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7967: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 806236042   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7968: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7969: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #7970: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7971: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 806236043   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7972: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7973: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7974: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7975: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 806236044   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7976: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7977: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #7978: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7979: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 806236045   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7980: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7981: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #7982: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7983: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 806236046   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7984: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7985: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7986: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7987: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 806236047   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7988: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7989: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #7990: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7991: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 806236048   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7992: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7993: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #7994: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7995: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 806236049   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7996: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7997: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #7998: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7999: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 806236050   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8000: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8001: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #8002: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8003: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 806236051   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8004: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8005: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #8006: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8007: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 806236052   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8008: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8009: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #8010: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8011: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 806236053   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8012: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8013: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #8014: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8015: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 806236054   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8016: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8017: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #8018: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8019: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 806236055   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8020: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8021: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #8022: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8023: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 806236056   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8024: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8025: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #8026: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8027: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 806236057   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #8028: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8029: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #8030: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8031: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 806236058   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8032: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8033: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #8034: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8035: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 806236059   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8036: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8037: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #8038: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8039: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 806236060   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8040: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8041: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #8042: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8043: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 806236061   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8044: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8045: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #8046: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8047: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 806236062   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8048: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8049: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #8050: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8051: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 806236063   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8052: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8053: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #8054: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8055: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 806236064   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8056: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8057: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #8058: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8059: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 806236065   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8060: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8061: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #8062: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8063: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 806236066   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8064: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8065: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #8066: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8067: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 806236067   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8068: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8069: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #8070: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8071: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 806236068   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8072: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8073: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #8074: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8075: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 806236069   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8076: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8077: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #8078: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236040 (0x300e2f88)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:57 2017
            Not After : Sat Aug 06 23:59:57 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    eb:cf:44:5e:1c:67:27:a8:9d:db:7b:d1:91:40:b2:16:
                    bd:8b:3e:49:e6:7a:93:ac:43:bf:62:79:c8:bf:e0:ea:
                    75:79:aa:ae:62:2d:39:f1:25:24:d6:f9:be:f6:0f:c8:
                    b4:c2:3f:73:1e:88:a8:cc:43:90:07:70:1f:7e:8d:76:
                    d2:5d:75:43:0e:19:c9:db:bf:db:d6:7a:7f:4c:b6:ad:
                    25:8b:74:fe:1a:5c:78:db:34:74:32:be:3e:b7:1a:2e:
                    75:02:6f:09:0c:19:76:89:fa:10:2c:c2:24:99:fe:e7:
                    82:05:b6:90:72:8c:c2:18:85:9a:6e:b6:d3:e9:b4:85:
                    2d:a4:1d:67:d8:06:ee:14:24:0d:c7:b0:ac:c5:c6:12:
                    a5:e5:e4:17:b6:41:a0:41:f4:68:62:5f:5a:ff:e1:16:
                    de:fc:3f:b6:ab:72:c1:93:d0:bd:79:d4:60:7a:af:aa:
                    de:b2:5f:09:eb:c2:74:92:5a:f1:48:3c:8c:62:26:3e:
                    8b:9d:63:e0:4b:25:f7:b0:ac:2c:aa:21:2b:f5:fa:22:
                    d2:ae:66:d7:f7:6c:94:35:ae:ce:c3:b6:f6:b6:d6:62:
                    5c:a4:0e:e9:0e:ac:f7:9c:0f:bc:1b:bc:2b:dd:9a:8f:
                    74:a3:d6:07:55:f6:24:c0:e1:bb:7c:b0:2e:f1:a8:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:a5:c6:a8:26:c0:d2:df:03:53:c3:80:38:68:96:d7:
        3b:ed:94:97:d1:61:89:fc:1b:0b:d7:1f:99:31:be:cc:
        87:ce:d6:68:3b:7a:11:3b:6f:c9:27:0e:f3:a1:20:bc:
        82:cf:0e:7d:a3:68:35:26:3a:fa:6d:73:08:45:5c:b6:
        53:1a:f6:d0:de:c3:0a:cb:ea:72:2e:40:54:a2:8b:1e:
        75:e2:78:69:5d:6f:39:16:1a:01:f5:ef:c0:47:ac:e7:
        17:3e:7e:95:39:d7:8b:2f:f4:10:fc:58:58:59:93:9e:
        a2:1b:55:6b:15:73:f0:e5:23:89:09:7a:ee:c2:28:a7:
        27:eb:d4:b8:a8:a7:d2:d7:5d:37:e3:a3:27:8f:7a:93:
        85:bb:ff:b4:e6:70:6b:fe:3f:47:4c:b9:7f:f0:4e:4a:
        4d:c4:29:e3:d9:d8:3e:0f:78:a5:a8:e8:6c:2e:7a:8f:
        6c:0d:7f:05:56:31:fb:39:dc:d2:0c:19:78:11:18:7c:
        85:91:0e:7e:01:fa:ac:38:85:ec:94:5a:d6:27:f3:26:
        03:32:0f:86:1b:78:53:13:ac:a5:39:2c:df:02:0d:a4:
        6a:e2:f4:28:e8:b9:fc:aa:a7:b6:5c:f3:15:17:0c:31:
        57:cc:33:28:ec:0e:8f:b8:1d:1c:33:69:af:92:81:49
    Fingerprint (SHA-256):
        9B:E3:C0:64:68:77:14:51:D7:A9:8F:DD:CB:9F:4A:A2:53:68:FD:F0:CA:BB:9E:FD:65:0A:EA:E6:8F:86:68:54
    Fingerprint (SHA1):
        5A:E1:AF:37:E1:11:61:AA:DA:6E:BA:C4:DB:0C:49:D2:E3:85:22:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8079: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8080: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236040 (0x300e2f88)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:57 2017
            Not After : Sat Aug 06 23:59:57 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    eb:cf:44:5e:1c:67:27:a8:9d:db:7b:d1:91:40:b2:16:
                    bd:8b:3e:49:e6:7a:93:ac:43:bf:62:79:c8:bf:e0:ea:
                    75:79:aa:ae:62:2d:39:f1:25:24:d6:f9:be:f6:0f:c8:
                    b4:c2:3f:73:1e:88:a8:cc:43:90:07:70:1f:7e:8d:76:
                    d2:5d:75:43:0e:19:c9:db:bf:db:d6:7a:7f:4c:b6:ad:
                    25:8b:74:fe:1a:5c:78:db:34:74:32:be:3e:b7:1a:2e:
                    75:02:6f:09:0c:19:76:89:fa:10:2c:c2:24:99:fe:e7:
                    82:05:b6:90:72:8c:c2:18:85:9a:6e:b6:d3:e9:b4:85:
                    2d:a4:1d:67:d8:06:ee:14:24:0d:c7:b0:ac:c5:c6:12:
                    a5:e5:e4:17:b6:41:a0:41:f4:68:62:5f:5a:ff:e1:16:
                    de:fc:3f:b6:ab:72:c1:93:d0:bd:79:d4:60:7a:af:aa:
                    de:b2:5f:09:eb:c2:74:92:5a:f1:48:3c:8c:62:26:3e:
                    8b:9d:63:e0:4b:25:f7:b0:ac:2c:aa:21:2b:f5:fa:22:
                    d2:ae:66:d7:f7:6c:94:35:ae:ce:c3:b6:f6:b6:d6:62:
                    5c:a4:0e:e9:0e:ac:f7:9c:0f:bc:1b:bc:2b:dd:9a:8f:
                    74:a3:d6:07:55:f6:24:c0:e1:bb:7c:b0:2e:f1:a8:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:a5:c6:a8:26:c0:d2:df:03:53:c3:80:38:68:96:d7:
        3b:ed:94:97:d1:61:89:fc:1b:0b:d7:1f:99:31:be:cc:
        87:ce:d6:68:3b:7a:11:3b:6f:c9:27:0e:f3:a1:20:bc:
        82:cf:0e:7d:a3:68:35:26:3a:fa:6d:73:08:45:5c:b6:
        53:1a:f6:d0:de:c3:0a:cb:ea:72:2e:40:54:a2:8b:1e:
        75:e2:78:69:5d:6f:39:16:1a:01:f5:ef:c0:47:ac:e7:
        17:3e:7e:95:39:d7:8b:2f:f4:10:fc:58:58:59:93:9e:
        a2:1b:55:6b:15:73:f0:e5:23:89:09:7a:ee:c2:28:a7:
        27:eb:d4:b8:a8:a7:d2:d7:5d:37:e3:a3:27:8f:7a:93:
        85:bb:ff:b4:e6:70:6b:fe:3f:47:4c:b9:7f:f0:4e:4a:
        4d:c4:29:e3:d9:d8:3e:0f:78:a5:a8:e8:6c:2e:7a:8f:
        6c:0d:7f:05:56:31:fb:39:dc:d2:0c:19:78:11:18:7c:
        85:91:0e:7e:01:fa:ac:38:85:ec:94:5a:d6:27:f3:26:
        03:32:0f:86:1b:78:53:13:ac:a5:39:2c:df:02:0d:a4:
        6a:e2:f4:28:e8:b9:fc:aa:a7:b6:5c:f3:15:17:0c:31:
        57:cc:33:28:ec:0e:8f:b8:1d:1c:33:69:af:92:81:49
    Fingerprint (SHA-256):
        9B:E3:C0:64:68:77:14:51:D7:A9:8F:DD:CB:9F:4A:A2:53:68:FD:F0:CA:BB:9E:FD:65:0A:EA:E6:8F:86:68:54
    Fingerprint (SHA1):
        5A:E1:AF:37:E1:11:61:AA:DA:6E:BA:C4:DB:0C:49:D2:E3:85:22:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8081: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8082: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8083: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8084: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236040 (0x300e2f88)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:57 2017
            Not After : Sat Aug 06 23:59:57 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    eb:cf:44:5e:1c:67:27:a8:9d:db:7b:d1:91:40:b2:16:
                    bd:8b:3e:49:e6:7a:93:ac:43:bf:62:79:c8:bf:e0:ea:
                    75:79:aa:ae:62:2d:39:f1:25:24:d6:f9:be:f6:0f:c8:
                    b4:c2:3f:73:1e:88:a8:cc:43:90:07:70:1f:7e:8d:76:
                    d2:5d:75:43:0e:19:c9:db:bf:db:d6:7a:7f:4c:b6:ad:
                    25:8b:74:fe:1a:5c:78:db:34:74:32:be:3e:b7:1a:2e:
                    75:02:6f:09:0c:19:76:89:fa:10:2c:c2:24:99:fe:e7:
                    82:05:b6:90:72:8c:c2:18:85:9a:6e:b6:d3:e9:b4:85:
                    2d:a4:1d:67:d8:06:ee:14:24:0d:c7:b0:ac:c5:c6:12:
                    a5:e5:e4:17:b6:41:a0:41:f4:68:62:5f:5a:ff:e1:16:
                    de:fc:3f:b6:ab:72:c1:93:d0:bd:79:d4:60:7a:af:aa:
                    de:b2:5f:09:eb:c2:74:92:5a:f1:48:3c:8c:62:26:3e:
                    8b:9d:63:e0:4b:25:f7:b0:ac:2c:aa:21:2b:f5:fa:22:
                    d2:ae:66:d7:f7:6c:94:35:ae:ce:c3:b6:f6:b6:d6:62:
                    5c:a4:0e:e9:0e:ac:f7:9c:0f:bc:1b:bc:2b:dd:9a:8f:
                    74:a3:d6:07:55:f6:24:c0:e1:bb:7c:b0:2e:f1:a8:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:a5:c6:a8:26:c0:d2:df:03:53:c3:80:38:68:96:d7:
        3b:ed:94:97:d1:61:89:fc:1b:0b:d7:1f:99:31:be:cc:
        87:ce:d6:68:3b:7a:11:3b:6f:c9:27:0e:f3:a1:20:bc:
        82:cf:0e:7d:a3:68:35:26:3a:fa:6d:73:08:45:5c:b6:
        53:1a:f6:d0:de:c3:0a:cb:ea:72:2e:40:54:a2:8b:1e:
        75:e2:78:69:5d:6f:39:16:1a:01:f5:ef:c0:47:ac:e7:
        17:3e:7e:95:39:d7:8b:2f:f4:10:fc:58:58:59:93:9e:
        a2:1b:55:6b:15:73:f0:e5:23:89:09:7a:ee:c2:28:a7:
        27:eb:d4:b8:a8:a7:d2:d7:5d:37:e3:a3:27:8f:7a:93:
        85:bb:ff:b4:e6:70:6b:fe:3f:47:4c:b9:7f:f0:4e:4a:
        4d:c4:29:e3:d9:d8:3e:0f:78:a5:a8:e8:6c:2e:7a:8f:
        6c:0d:7f:05:56:31:fb:39:dc:d2:0c:19:78:11:18:7c:
        85:91:0e:7e:01:fa:ac:38:85:ec:94:5a:d6:27:f3:26:
        03:32:0f:86:1b:78:53:13:ac:a5:39:2c:df:02:0d:a4:
        6a:e2:f4:28:e8:b9:fc:aa:a7:b6:5c:f3:15:17:0c:31:
        57:cc:33:28:ec:0e:8f:b8:1d:1c:33:69:af:92:81:49
    Fingerprint (SHA-256):
        9B:E3:C0:64:68:77:14:51:D7:A9:8F:DD:CB:9F:4A:A2:53:68:FD:F0:CA:BB:9E:FD:65:0A:EA:E6:8F:86:68:54
    Fingerprint (SHA1):
        5A:E1:AF:37:E1:11:61:AA:DA:6E:BA:C4:DB:0C:49:D2:E3:85:22:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8085: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8086: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8087: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8088: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236040 (0x300e2f88)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:57 2017
            Not After : Sat Aug 06 23:59:57 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    eb:cf:44:5e:1c:67:27:a8:9d:db:7b:d1:91:40:b2:16:
                    bd:8b:3e:49:e6:7a:93:ac:43:bf:62:79:c8:bf:e0:ea:
                    75:79:aa:ae:62:2d:39:f1:25:24:d6:f9:be:f6:0f:c8:
                    b4:c2:3f:73:1e:88:a8:cc:43:90:07:70:1f:7e:8d:76:
                    d2:5d:75:43:0e:19:c9:db:bf:db:d6:7a:7f:4c:b6:ad:
                    25:8b:74:fe:1a:5c:78:db:34:74:32:be:3e:b7:1a:2e:
                    75:02:6f:09:0c:19:76:89:fa:10:2c:c2:24:99:fe:e7:
                    82:05:b6:90:72:8c:c2:18:85:9a:6e:b6:d3:e9:b4:85:
                    2d:a4:1d:67:d8:06:ee:14:24:0d:c7:b0:ac:c5:c6:12:
                    a5:e5:e4:17:b6:41:a0:41:f4:68:62:5f:5a:ff:e1:16:
                    de:fc:3f:b6:ab:72:c1:93:d0:bd:79:d4:60:7a:af:aa:
                    de:b2:5f:09:eb:c2:74:92:5a:f1:48:3c:8c:62:26:3e:
                    8b:9d:63:e0:4b:25:f7:b0:ac:2c:aa:21:2b:f5:fa:22:
                    d2:ae:66:d7:f7:6c:94:35:ae:ce:c3:b6:f6:b6:d6:62:
                    5c:a4:0e:e9:0e:ac:f7:9c:0f:bc:1b:bc:2b:dd:9a:8f:
                    74:a3:d6:07:55:f6:24:c0:e1:bb:7c:b0:2e:f1:a8:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:a5:c6:a8:26:c0:d2:df:03:53:c3:80:38:68:96:d7:
        3b:ed:94:97:d1:61:89:fc:1b:0b:d7:1f:99:31:be:cc:
        87:ce:d6:68:3b:7a:11:3b:6f:c9:27:0e:f3:a1:20:bc:
        82:cf:0e:7d:a3:68:35:26:3a:fa:6d:73:08:45:5c:b6:
        53:1a:f6:d0:de:c3:0a:cb:ea:72:2e:40:54:a2:8b:1e:
        75:e2:78:69:5d:6f:39:16:1a:01:f5:ef:c0:47:ac:e7:
        17:3e:7e:95:39:d7:8b:2f:f4:10:fc:58:58:59:93:9e:
        a2:1b:55:6b:15:73:f0:e5:23:89:09:7a:ee:c2:28:a7:
        27:eb:d4:b8:a8:a7:d2:d7:5d:37:e3:a3:27:8f:7a:93:
        85:bb:ff:b4:e6:70:6b:fe:3f:47:4c:b9:7f:f0:4e:4a:
        4d:c4:29:e3:d9:d8:3e:0f:78:a5:a8:e8:6c:2e:7a:8f:
        6c:0d:7f:05:56:31:fb:39:dc:d2:0c:19:78:11:18:7c:
        85:91:0e:7e:01:fa:ac:38:85:ec:94:5a:d6:27:f3:26:
        03:32:0f:86:1b:78:53:13:ac:a5:39:2c:df:02:0d:a4:
        6a:e2:f4:28:e8:b9:fc:aa:a7:b6:5c:f3:15:17:0c:31:
        57:cc:33:28:ec:0e:8f:b8:1d:1c:33:69:af:92:81:49
    Fingerprint (SHA-256):
        9B:E3:C0:64:68:77:14:51:D7:A9:8F:DD:CB:9F:4A:A2:53:68:FD:F0:CA:BB:9E:FD:65:0A:EA:E6:8F:86:68:54
    Fingerprint (SHA1):
        5A:E1:AF:37:E1:11:61:AA:DA:6E:BA:C4:DB:0C:49:D2:E3:85:22:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8089: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236040 (0x300e2f88)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:57 2017
            Not After : Sat Aug 06 23:59:57 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    eb:cf:44:5e:1c:67:27:a8:9d:db:7b:d1:91:40:b2:16:
                    bd:8b:3e:49:e6:7a:93:ac:43:bf:62:79:c8:bf:e0:ea:
                    75:79:aa:ae:62:2d:39:f1:25:24:d6:f9:be:f6:0f:c8:
                    b4:c2:3f:73:1e:88:a8:cc:43:90:07:70:1f:7e:8d:76:
                    d2:5d:75:43:0e:19:c9:db:bf:db:d6:7a:7f:4c:b6:ad:
                    25:8b:74:fe:1a:5c:78:db:34:74:32:be:3e:b7:1a:2e:
                    75:02:6f:09:0c:19:76:89:fa:10:2c:c2:24:99:fe:e7:
                    82:05:b6:90:72:8c:c2:18:85:9a:6e:b6:d3:e9:b4:85:
                    2d:a4:1d:67:d8:06:ee:14:24:0d:c7:b0:ac:c5:c6:12:
                    a5:e5:e4:17:b6:41:a0:41:f4:68:62:5f:5a:ff:e1:16:
                    de:fc:3f:b6:ab:72:c1:93:d0:bd:79:d4:60:7a:af:aa:
                    de:b2:5f:09:eb:c2:74:92:5a:f1:48:3c:8c:62:26:3e:
                    8b:9d:63:e0:4b:25:f7:b0:ac:2c:aa:21:2b:f5:fa:22:
                    d2:ae:66:d7:f7:6c:94:35:ae:ce:c3:b6:f6:b6:d6:62:
                    5c:a4:0e:e9:0e:ac:f7:9c:0f:bc:1b:bc:2b:dd:9a:8f:
                    74:a3:d6:07:55:f6:24:c0:e1:bb:7c:b0:2e:f1:a8:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:a5:c6:a8:26:c0:d2:df:03:53:c3:80:38:68:96:d7:
        3b:ed:94:97:d1:61:89:fc:1b:0b:d7:1f:99:31:be:cc:
        87:ce:d6:68:3b:7a:11:3b:6f:c9:27:0e:f3:a1:20:bc:
        82:cf:0e:7d:a3:68:35:26:3a:fa:6d:73:08:45:5c:b6:
        53:1a:f6:d0:de:c3:0a:cb:ea:72:2e:40:54:a2:8b:1e:
        75:e2:78:69:5d:6f:39:16:1a:01:f5:ef:c0:47:ac:e7:
        17:3e:7e:95:39:d7:8b:2f:f4:10:fc:58:58:59:93:9e:
        a2:1b:55:6b:15:73:f0:e5:23:89:09:7a:ee:c2:28:a7:
        27:eb:d4:b8:a8:a7:d2:d7:5d:37:e3:a3:27:8f:7a:93:
        85:bb:ff:b4:e6:70:6b:fe:3f:47:4c:b9:7f:f0:4e:4a:
        4d:c4:29:e3:d9:d8:3e:0f:78:a5:a8:e8:6c:2e:7a:8f:
        6c:0d:7f:05:56:31:fb:39:dc:d2:0c:19:78:11:18:7c:
        85:91:0e:7e:01:fa:ac:38:85:ec:94:5a:d6:27:f3:26:
        03:32:0f:86:1b:78:53:13:ac:a5:39:2c:df:02:0d:a4:
        6a:e2:f4:28:e8:b9:fc:aa:a7:b6:5c:f3:15:17:0c:31:
        57:cc:33:28:ec:0e:8f:b8:1d:1c:33:69:af:92:81:49
    Fingerprint (SHA-256):
        9B:E3:C0:64:68:77:14:51:D7:A9:8F:DD:CB:9F:4A:A2:53:68:FD:F0:CA:BB:9E:FD:65:0A:EA:E6:8F:86:68:54
    Fingerprint (SHA1):
        5A:E1:AF:37:E1:11:61:AA:DA:6E:BA:C4:DB:0C:49:D2:E3:85:22:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8090: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8091: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236040 (0x300e2f88)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:57 2017
            Not After : Sat Aug 06 23:59:57 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    eb:cf:44:5e:1c:67:27:a8:9d:db:7b:d1:91:40:b2:16:
                    bd:8b:3e:49:e6:7a:93:ac:43:bf:62:79:c8:bf:e0:ea:
                    75:79:aa:ae:62:2d:39:f1:25:24:d6:f9:be:f6:0f:c8:
                    b4:c2:3f:73:1e:88:a8:cc:43:90:07:70:1f:7e:8d:76:
                    d2:5d:75:43:0e:19:c9:db:bf:db:d6:7a:7f:4c:b6:ad:
                    25:8b:74:fe:1a:5c:78:db:34:74:32:be:3e:b7:1a:2e:
                    75:02:6f:09:0c:19:76:89:fa:10:2c:c2:24:99:fe:e7:
                    82:05:b6:90:72:8c:c2:18:85:9a:6e:b6:d3:e9:b4:85:
                    2d:a4:1d:67:d8:06:ee:14:24:0d:c7:b0:ac:c5:c6:12:
                    a5:e5:e4:17:b6:41:a0:41:f4:68:62:5f:5a:ff:e1:16:
                    de:fc:3f:b6:ab:72:c1:93:d0:bd:79:d4:60:7a:af:aa:
                    de:b2:5f:09:eb:c2:74:92:5a:f1:48:3c:8c:62:26:3e:
                    8b:9d:63:e0:4b:25:f7:b0:ac:2c:aa:21:2b:f5:fa:22:
                    d2:ae:66:d7:f7:6c:94:35:ae:ce:c3:b6:f6:b6:d6:62:
                    5c:a4:0e:e9:0e:ac:f7:9c:0f:bc:1b:bc:2b:dd:9a:8f:
                    74:a3:d6:07:55:f6:24:c0:e1:bb:7c:b0:2e:f1:a8:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:a5:c6:a8:26:c0:d2:df:03:53:c3:80:38:68:96:d7:
        3b:ed:94:97:d1:61:89:fc:1b:0b:d7:1f:99:31:be:cc:
        87:ce:d6:68:3b:7a:11:3b:6f:c9:27:0e:f3:a1:20:bc:
        82:cf:0e:7d:a3:68:35:26:3a:fa:6d:73:08:45:5c:b6:
        53:1a:f6:d0:de:c3:0a:cb:ea:72:2e:40:54:a2:8b:1e:
        75:e2:78:69:5d:6f:39:16:1a:01:f5:ef:c0:47:ac:e7:
        17:3e:7e:95:39:d7:8b:2f:f4:10:fc:58:58:59:93:9e:
        a2:1b:55:6b:15:73:f0:e5:23:89:09:7a:ee:c2:28:a7:
        27:eb:d4:b8:a8:a7:d2:d7:5d:37:e3:a3:27:8f:7a:93:
        85:bb:ff:b4:e6:70:6b:fe:3f:47:4c:b9:7f:f0:4e:4a:
        4d:c4:29:e3:d9:d8:3e:0f:78:a5:a8:e8:6c:2e:7a:8f:
        6c:0d:7f:05:56:31:fb:39:dc:d2:0c:19:78:11:18:7c:
        85:91:0e:7e:01:fa:ac:38:85:ec:94:5a:d6:27:f3:26:
        03:32:0f:86:1b:78:53:13:ac:a5:39:2c:df:02:0d:a4:
        6a:e2:f4:28:e8:b9:fc:aa:a7:b6:5c:f3:15:17:0c:31:
        57:cc:33:28:ec:0e:8f:b8:1d:1c:33:69:af:92:81:49
    Fingerprint (SHA-256):
        9B:E3:C0:64:68:77:14:51:D7:A9:8F:DD:CB:9F:4A:A2:53:68:FD:F0:CA:BB:9E:FD:65:0A:EA:E6:8F:86:68:54
    Fingerprint (SHA1):
        5A:E1:AF:37:E1:11:61:AA:DA:6E:BA:C4:DB:0C:49:D2:E3:85:22:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8092: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8093: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8094: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8095: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236040 (0x300e2f88)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:57 2017
            Not After : Sat Aug 06 23:59:57 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    eb:cf:44:5e:1c:67:27:a8:9d:db:7b:d1:91:40:b2:16:
                    bd:8b:3e:49:e6:7a:93:ac:43:bf:62:79:c8:bf:e0:ea:
                    75:79:aa:ae:62:2d:39:f1:25:24:d6:f9:be:f6:0f:c8:
                    b4:c2:3f:73:1e:88:a8:cc:43:90:07:70:1f:7e:8d:76:
                    d2:5d:75:43:0e:19:c9:db:bf:db:d6:7a:7f:4c:b6:ad:
                    25:8b:74:fe:1a:5c:78:db:34:74:32:be:3e:b7:1a:2e:
                    75:02:6f:09:0c:19:76:89:fa:10:2c:c2:24:99:fe:e7:
                    82:05:b6:90:72:8c:c2:18:85:9a:6e:b6:d3:e9:b4:85:
                    2d:a4:1d:67:d8:06:ee:14:24:0d:c7:b0:ac:c5:c6:12:
                    a5:e5:e4:17:b6:41:a0:41:f4:68:62:5f:5a:ff:e1:16:
                    de:fc:3f:b6:ab:72:c1:93:d0:bd:79:d4:60:7a:af:aa:
                    de:b2:5f:09:eb:c2:74:92:5a:f1:48:3c:8c:62:26:3e:
                    8b:9d:63:e0:4b:25:f7:b0:ac:2c:aa:21:2b:f5:fa:22:
                    d2:ae:66:d7:f7:6c:94:35:ae:ce:c3:b6:f6:b6:d6:62:
                    5c:a4:0e:e9:0e:ac:f7:9c:0f:bc:1b:bc:2b:dd:9a:8f:
                    74:a3:d6:07:55:f6:24:c0:e1:bb:7c:b0:2e:f1:a8:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:a5:c6:a8:26:c0:d2:df:03:53:c3:80:38:68:96:d7:
        3b:ed:94:97:d1:61:89:fc:1b:0b:d7:1f:99:31:be:cc:
        87:ce:d6:68:3b:7a:11:3b:6f:c9:27:0e:f3:a1:20:bc:
        82:cf:0e:7d:a3:68:35:26:3a:fa:6d:73:08:45:5c:b6:
        53:1a:f6:d0:de:c3:0a:cb:ea:72:2e:40:54:a2:8b:1e:
        75:e2:78:69:5d:6f:39:16:1a:01:f5:ef:c0:47:ac:e7:
        17:3e:7e:95:39:d7:8b:2f:f4:10:fc:58:58:59:93:9e:
        a2:1b:55:6b:15:73:f0:e5:23:89:09:7a:ee:c2:28:a7:
        27:eb:d4:b8:a8:a7:d2:d7:5d:37:e3:a3:27:8f:7a:93:
        85:bb:ff:b4:e6:70:6b:fe:3f:47:4c:b9:7f:f0:4e:4a:
        4d:c4:29:e3:d9:d8:3e:0f:78:a5:a8:e8:6c:2e:7a:8f:
        6c:0d:7f:05:56:31:fb:39:dc:d2:0c:19:78:11:18:7c:
        85:91:0e:7e:01:fa:ac:38:85:ec:94:5a:d6:27:f3:26:
        03:32:0f:86:1b:78:53:13:ac:a5:39:2c:df:02:0d:a4:
        6a:e2:f4:28:e8:b9:fc:aa:a7:b6:5c:f3:15:17:0c:31:
        57:cc:33:28:ec:0e:8f:b8:1d:1c:33:69:af:92:81:49
    Fingerprint (SHA-256):
        9B:E3:C0:64:68:77:14:51:D7:A9:8F:DD:CB:9F:4A:A2:53:68:FD:F0:CA:BB:9E:FD:65:0A:EA:E6:8F:86:68:54
    Fingerprint (SHA1):
        5A:E1:AF:37:E1:11:61:AA:DA:6E:BA:C4:DB:0C:49:D2:E3:85:22:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8096: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236040 (0x300e2f88)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:57 2017
            Not After : Sat Aug 06 23:59:57 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    eb:cf:44:5e:1c:67:27:a8:9d:db:7b:d1:91:40:b2:16:
                    bd:8b:3e:49:e6:7a:93:ac:43:bf:62:79:c8:bf:e0:ea:
                    75:79:aa:ae:62:2d:39:f1:25:24:d6:f9:be:f6:0f:c8:
                    b4:c2:3f:73:1e:88:a8:cc:43:90:07:70:1f:7e:8d:76:
                    d2:5d:75:43:0e:19:c9:db:bf:db:d6:7a:7f:4c:b6:ad:
                    25:8b:74:fe:1a:5c:78:db:34:74:32:be:3e:b7:1a:2e:
                    75:02:6f:09:0c:19:76:89:fa:10:2c:c2:24:99:fe:e7:
                    82:05:b6:90:72:8c:c2:18:85:9a:6e:b6:d3:e9:b4:85:
                    2d:a4:1d:67:d8:06:ee:14:24:0d:c7:b0:ac:c5:c6:12:
                    a5:e5:e4:17:b6:41:a0:41:f4:68:62:5f:5a:ff:e1:16:
                    de:fc:3f:b6:ab:72:c1:93:d0:bd:79:d4:60:7a:af:aa:
                    de:b2:5f:09:eb:c2:74:92:5a:f1:48:3c:8c:62:26:3e:
                    8b:9d:63:e0:4b:25:f7:b0:ac:2c:aa:21:2b:f5:fa:22:
                    d2:ae:66:d7:f7:6c:94:35:ae:ce:c3:b6:f6:b6:d6:62:
                    5c:a4:0e:e9:0e:ac:f7:9c:0f:bc:1b:bc:2b:dd:9a:8f:
                    74:a3:d6:07:55:f6:24:c0:e1:bb:7c:b0:2e:f1:a8:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:a5:c6:a8:26:c0:d2:df:03:53:c3:80:38:68:96:d7:
        3b:ed:94:97:d1:61:89:fc:1b:0b:d7:1f:99:31:be:cc:
        87:ce:d6:68:3b:7a:11:3b:6f:c9:27:0e:f3:a1:20:bc:
        82:cf:0e:7d:a3:68:35:26:3a:fa:6d:73:08:45:5c:b6:
        53:1a:f6:d0:de:c3:0a:cb:ea:72:2e:40:54:a2:8b:1e:
        75:e2:78:69:5d:6f:39:16:1a:01:f5:ef:c0:47:ac:e7:
        17:3e:7e:95:39:d7:8b:2f:f4:10:fc:58:58:59:93:9e:
        a2:1b:55:6b:15:73:f0:e5:23:89:09:7a:ee:c2:28:a7:
        27:eb:d4:b8:a8:a7:d2:d7:5d:37:e3:a3:27:8f:7a:93:
        85:bb:ff:b4:e6:70:6b:fe:3f:47:4c:b9:7f:f0:4e:4a:
        4d:c4:29:e3:d9:d8:3e:0f:78:a5:a8:e8:6c:2e:7a:8f:
        6c:0d:7f:05:56:31:fb:39:dc:d2:0c:19:78:11:18:7c:
        85:91:0e:7e:01:fa:ac:38:85:ec:94:5a:d6:27:f3:26:
        03:32:0f:86:1b:78:53:13:ac:a5:39:2c:df:02:0d:a4:
        6a:e2:f4:28:e8:b9:fc:aa:a7:b6:5c:f3:15:17:0c:31:
        57:cc:33:28:ec:0e:8f:b8:1d:1c:33:69:af:92:81:49
    Fingerprint (SHA-256):
        9B:E3:C0:64:68:77:14:51:D7:A9:8F:DD:CB:9F:4A:A2:53:68:FD:F0:CA:BB:9E:FD:65:0A:EA:E6:8F:86:68:54
    Fingerprint (SHA1):
        5A:E1:AF:37:E1:11:61:AA:DA:6E:BA:C4:DB:0C:49:D2:E3:85:22:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #8097: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236040 (0x300e2f88)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:57 2017
            Not After : Sat Aug 06 23:59:57 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    eb:cf:44:5e:1c:67:27:a8:9d:db:7b:d1:91:40:b2:16:
                    bd:8b:3e:49:e6:7a:93:ac:43:bf:62:79:c8:bf:e0:ea:
                    75:79:aa:ae:62:2d:39:f1:25:24:d6:f9:be:f6:0f:c8:
                    b4:c2:3f:73:1e:88:a8:cc:43:90:07:70:1f:7e:8d:76:
                    d2:5d:75:43:0e:19:c9:db:bf:db:d6:7a:7f:4c:b6:ad:
                    25:8b:74:fe:1a:5c:78:db:34:74:32:be:3e:b7:1a:2e:
                    75:02:6f:09:0c:19:76:89:fa:10:2c:c2:24:99:fe:e7:
                    82:05:b6:90:72:8c:c2:18:85:9a:6e:b6:d3:e9:b4:85:
                    2d:a4:1d:67:d8:06:ee:14:24:0d:c7:b0:ac:c5:c6:12:
                    a5:e5:e4:17:b6:41:a0:41:f4:68:62:5f:5a:ff:e1:16:
                    de:fc:3f:b6:ab:72:c1:93:d0:bd:79:d4:60:7a:af:aa:
                    de:b2:5f:09:eb:c2:74:92:5a:f1:48:3c:8c:62:26:3e:
                    8b:9d:63:e0:4b:25:f7:b0:ac:2c:aa:21:2b:f5:fa:22:
                    d2:ae:66:d7:f7:6c:94:35:ae:ce:c3:b6:f6:b6:d6:62:
                    5c:a4:0e:e9:0e:ac:f7:9c:0f:bc:1b:bc:2b:dd:9a:8f:
                    74:a3:d6:07:55:f6:24:c0:e1:bb:7c:b0:2e:f1:a8:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:a5:c6:a8:26:c0:d2:df:03:53:c3:80:38:68:96:d7:
        3b:ed:94:97:d1:61:89:fc:1b:0b:d7:1f:99:31:be:cc:
        87:ce:d6:68:3b:7a:11:3b:6f:c9:27:0e:f3:a1:20:bc:
        82:cf:0e:7d:a3:68:35:26:3a:fa:6d:73:08:45:5c:b6:
        53:1a:f6:d0:de:c3:0a:cb:ea:72:2e:40:54:a2:8b:1e:
        75:e2:78:69:5d:6f:39:16:1a:01:f5:ef:c0:47:ac:e7:
        17:3e:7e:95:39:d7:8b:2f:f4:10:fc:58:58:59:93:9e:
        a2:1b:55:6b:15:73:f0:e5:23:89:09:7a:ee:c2:28:a7:
        27:eb:d4:b8:a8:a7:d2:d7:5d:37:e3:a3:27:8f:7a:93:
        85:bb:ff:b4:e6:70:6b:fe:3f:47:4c:b9:7f:f0:4e:4a:
        4d:c4:29:e3:d9:d8:3e:0f:78:a5:a8:e8:6c:2e:7a:8f:
        6c:0d:7f:05:56:31:fb:39:dc:d2:0c:19:78:11:18:7c:
        85:91:0e:7e:01:fa:ac:38:85:ec:94:5a:d6:27:f3:26:
        03:32:0f:86:1b:78:53:13:ac:a5:39:2c:df:02:0d:a4:
        6a:e2:f4:28:e8:b9:fc:aa:a7:b6:5c:f3:15:17:0c:31:
        57:cc:33:28:ec:0e:8f:b8:1d:1c:33:69:af:92:81:49
    Fingerprint (SHA-256):
        9B:E3:C0:64:68:77:14:51:D7:A9:8F:DD:CB:9F:4A:A2:53:68:FD:F0:CA:BB:9E:FD:65:0A:EA:E6:8F:86:68:54
    Fingerprint (SHA1):
        5A:E1:AF:37:E1:11:61:AA:DA:6E:BA:C4:DB:0C:49:D2:E3:85:22:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #8098: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236040 (0x300e2f88)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:57 2017
            Not After : Sat Aug 06 23:59:57 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    eb:cf:44:5e:1c:67:27:a8:9d:db:7b:d1:91:40:b2:16:
                    bd:8b:3e:49:e6:7a:93:ac:43:bf:62:79:c8:bf:e0:ea:
                    75:79:aa:ae:62:2d:39:f1:25:24:d6:f9:be:f6:0f:c8:
                    b4:c2:3f:73:1e:88:a8:cc:43:90:07:70:1f:7e:8d:76:
                    d2:5d:75:43:0e:19:c9:db:bf:db:d6:7a:7f:4c:b6:ad:
                    25:8b:74:fe:1a:5c:78:db:34:74:32:be:3e:b7:1a:2e:
                    75:02:6f:09:0c:19:76:89:fa:10:2c:c2:24:99:fe:e7:
                    82:05:b6:90:72:8c:c2:18:85:9a:6e:b6:d3:e9:b4:85:
                    2d:a4:1d:67:d8:06:ee:14:24:0d:c7:b0:ac:c5:c6:12:
                    a5:e5:e4:17:b6:41:a0:41:f4:68:62:5f:5a:ff:e1:16:
                    de:fc:3f:b6:ab:72:c1:93:d0:bd:79:d4:60:7a:af:aa:
                    de:b2:5f:09:eb:c2:74:92:5a:f1:48:3c:8c:62:26:3e:
                    8b:9d:63:e0:4b:25:f7:b0:ac:2c:aa:21:2b:f5:fa:22:
                    d2:ae:66:d7:f7:6c:94:35:ae:ce:c3:b6:f6:b6:d6:62:
                    5c:a4:0e:e9:0e:ac:f7:9c:0f:bc:1b:bc:2b:dd:9a:8f:
                    74:a3:d6:07:55:f6:24:c0:e1:bb:7c:b0:2e:f1:a8:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:a5:c6:a8:26:c0:d2:df:03:53:c3:80:38:68:96:d7:
        3b:ed:94:97:d1:61:89:fc:1b:0b:d7:1f:99:31:be:cc:
        87:ce:d6:68:3b:7a:11:3b:6f:c9:27:0e:f3:a1:20:bc:
        82:cf:0e:7d:a3:68:35:26:3a:fa:6d:73:08:45:5c:b6:
        53:1a:f6:d0:de:c3:0a:cb:ea:72:2e:40:54:a2:8b:1e:
        75:e2:78:69:5d:6f:39:16:1a:01:f5:ef:c0:47:ac:e7:
        17:3e:7e:95:39:d7:8b:2f:f4:10:fc:58:58:59:93:9e:
        a2:1b:55:6b:15:73:f0:e5:23:89:09:7a:ee:c2:28:a7:
        27:eb:d4:b8:a8:a7:d2:d7:5d:37:e3:a3:27:8f:7a:93:
        85:bb:ff:b4:e6:70:6b:fe:3f:47:4c:b9:7f:f0:4e:4a:
        4d:c4:29:e3:d9:d8:3e:0f:78:a5:a8:e8:6c:2e:7a:8f:
        6c:0d:7f:05:56:31:fb:39:dc:d2:0c:19:78:11:18:7c:
        85:91:0e:7e:01:fa:ac:38:85:ec:94:5a:d6:27:f3:26:
        03:32:0f:86:1b:78:53:13:ac:a5:39:2c:df:02:0d:a4:
        6a:e2:f4:28:e8:b9:fc:aa:a7:b6:5c:f3:15:17:0c:31:
        57:cc:33:28:ec:0e:8f:b8:1d:1c:33:69:af:92:81:49
    Fingerprint (SHA-256):
        9B:E3:C0:64:68:77:14:51:D7:A9:8F:DD:CB:9F:4A:A2:53:68:FD:F0:CA:BB:9E:FD:65:0A:EA:E6:8F:86:68:54
    Fingerprint (SHA1):
        5A:E1:AF:37:E1:11:61:AA:DA:6E:BA:C4:DB:0C:49:D2:E3:85:22:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #8099: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236040 (0x300e2f88)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:57 2017
            Not After : Sat Aug 06 23:59:57 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    eb:cf:44:5e:1c:67:27:a8:9d:db:7b:d1:91:40:b2:16:
                    bd:8b:3e:49:e6:7a:93:ac:43:bf:62:79:c8:bf:e0:ea:
                    75:79:aa:ae:62:2d:39:f1:25:24:d6:f9:be:f6:0f:c8:
                    b4:c2:3f:73:1e:88:a8:cc:43:90:07:70:1f:7e:8d:76:
                    d2:5d:75:43:0e:19:c9:db:bf:db:d6:7a:7f:4c:b6:ad:
                    25:8b:74:fe:1a:5c:78:db:34:74:32:be:3e:b7:1a:2e:
                    75:02:6f:09:0c:19:76:89:fa:10:2c:c2:24:99:fe:e7:
                    82:05:b6:90:72:8c:c2:18:85:9a:6e:b6:d3:e9:b4:85:
                    2d:a4:1d:67:d8:06:ee:14:24:0d:c7:b0:ac:c5:c6:12:
                    a5:e5:e4:17:b6:41:a0:41:f4:68:62:5f:5a:ff:e1:16:
                    de:fc:3f:b6:ab:72:c1:93:d0:bd:79:d4:60:7a:af:aa:
                    de:b2:5f:09:eb:c2:74:92:5a:f1:48:3c:8c:62:26:3e:
                    8b:9d:63:e0:4b:25:f7:b0:ac:2c:aa:21:2b:f5:fa:22:
                    d2:ae:66:d7:f7:6c:94:35:ae:ce:c3:b6:f6:b6:d6:62:
                    5c:a4:0e:e9:0e:ac:f7:9c:0f:bc:1b:bc:2b:dd:9a:8f:
                    74:a3:d6:07:55:f6:24:c0:e1:bb:7c:b0:2e:f1:a8:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:a5:c6:a8:26:c0:d2:df:03:53:c3:80:38:68:96:d7:
        3b:ed:94:97:d1:61:89:fc:1b:0b:d7:1f:99:31:be:cc:
        87:ce:d6:68:3b:7a:11:3b:6f:c9:27:0e:f3:a1:20:bc:
        82:cf:0e:7d:a3:68:35:26:3a:fa:6d:73:08:45:5c:b6:
        53:1a:f6:d0:de:c3:0a:cb:ea:72:2e:40:54:a2:8b:1e:
        75:e2:78:69:5d:6f:39:16:1a:01:f5:ef:c0:47:ac:e7:
        17:3e:7e:95:39:d7:8b:2f:f4:10:fc:58:58:59:93:9e:
        a2:1b:55:6b:15:73:f0:e5:23:89:09:7a:ee:c2:28:a7:
        27:eb:d4:b8:a8:a7:d2:d7:5d:37:e3:a3:27:8f:7a:93:
        85:bb:ff:b4:e6:70:6b:fe:3f:47:4c:b9:7f:f0:4e:4a:
        4d:c4:29:e3:d9:d8:3e:0f:78:a5:a8:e8:6c:2e:7a:8f:
        6c:0d:7f:05:56:31:fb:39:dc:d2:0c:19:78:11:18:7c:
        85:91:0e:7e:01:fa:ac:38:85:ec:94:5a:d6:27:f3:26:
        03:32:0f:86:1b:78:53:13:ac:a5:39:2c:df:02:0d:a4:
        6a:e2:f4:28:e8:b9:fc:aa:a7:b6:5c:f3:15:17:0c:31:
        57:cc:33:28:ec:0e:8f:b8:1d:1c:33:69:af:92:81:49
    Fingerprint (SHA-256):
        9B:E3:C0:64:68:77:14:51:D7:A9:8F:DD:CB:9F:4A:A2:53:68:FD:F0:CA:BB:9E:FD:65:0A:EA:E6:8F:86:68:54
    Fingerprint (SHA1):
        5A:E1:AF:37:E1:11:61:AA:DA:6E:BA:C4:DB:0C:49:D2:E3:85:22:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #8100: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236040 (0x300e2f88)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sun Aug 06 23:59:57 2017
            Not After : Sat Aug 06 23:59:57 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    eb:cf:44:5e:1c:67:27:a8:9d:db:7b:d1:91:40:b2:16:
                    bd:8b:3e:49:e6:7a:93:ac:43:bf:62:79:c8:bf:e0:ea:
                    75:79:aa:ae:62:2d:39:f1:25:24:d6:f9:be:f6:0f:c8:
                    b4:c2:3f:73:1e:88:a8:cc:43:90:07:70:1f:7e:8d:76:
                    d2:5d:75:43:0e:19:c9:db:bf:db:d6:7a:7f:4c:b6:ad:
                    25:8b:74:fe:1a:5c:78:db:34:74:32:be:3e:b7:1a:2e:
                    75:02:6f:09:0c:19:76:89:fa:10:2c:c2:24:99:fe:e7:
                    82:05:b6:90:72:8c:c2:18:85:9a:6e:b6:d3:e9:b4:85:
                    2d:a4:1d:67:d8:06:ee:14:24:0d:c7:b0:ac:c5:c6:12:
                    a5:e5:e4:17:b6:41:a0:41:f4:68:62:5f:5a:ff:e1:16:
                    de:fc:3f:b6:ab:72:c1:93:d0:bd:79:d4:60:7a:af:aa:
                    de:b2:5f:09:eb:c2:74:92:5a:f1:48:3c:8c:62:26:3e:
                    8b:9d:63:e0:4b:25:f7:b0:ac:2c:aa:21:2b:f5:fa:22:
                    d2:ae:66:d7:f7:6c:94:35:ae:ce:c3:b6:f6:b6:d6:62:
                    5c:a4:0e:e9:0e:ac:f7:9c:0f:bc:1b:bc:2b:dd:9a:8f:
                    74:a3:d6:07:55:f6:24:c0:e1:bb:7c:b0:2e:f1:a8:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:a5:c6:a8:26:c0:d2:df:03:53:c3:80:38:68:96:d7:
        3b:ed:94:97:d1:61:89:fc:1b:0b:d7:1f:99:31:be:cc:
        87:ce:d6:68:3b:7a:11:3b:6f:c9:27:0e:f3:a1:20:bc:
        82:cf:0e:7d:a3:68:35:26:3a:fa:6d:73:08:45:5c:b6:
        53:1a:f6:d0:de:c3:0a:cb:ea:72:2e:40:54:a2:8b:1e:
        75:e2:78:69:5d:6f:39:16:1a:01:f5:ef:c0:47:ac:e7:
        17:3e:7e:95:39:d7:8b:2f:f4:10:fc:58:58:59:93:9e:
        a2:1b:55:6b:15:73:f0:e5:23:89:09:7a:ee:c2:28:a7:
        27:eb:d4:b8:a8:a7:d2:d7:5d:37:e3:a3:27:8f:7a:93:
        85:bb:ff:b4:e6:70:6b:fe:3f:47:4c:b9:7f:f0:4e:4a:
        4d:c4:29:e3:d9:d8:3e:0f:78:a5:a8:e8:6c:2e:7a:8f:
        6c:0d:7f:05:56:31:fb:39:dc:d2:0c:19:78:11:18:7c:
        85:91:0e:7e:01:fa:ac:38:85:ec:94:5a:d6:27:f3:26:
        03:32:0f:86:1b:78:53:13:ac:a5:39:2c:df:02:0d:a4:
        6a:e2:f4:28:e8:b9:fc:aa:a7:b6:5c:f3:15:17:0c:31:
        57:cc:33:28:ec:0e:8f:b8:1d:1c:33:69:af:92:81:49
    Fingerprint (SHA-256):
        9B:E3:C0:64:68:77:14:51:D7:A9:8F:DD:CB:9F:4A:A2:53:68:FD:F0:CA:BB:9E:FD:65:0A:EA:E6:8F:86:68:54
    Fingerprint (SHA1):
        5A:E1:AF:37:E1:11:61:AA:DA:6E:BA:C4:DB:0C:49:D2:E3:85:22:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #8101: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8102: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #8103: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806236070 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8104: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #8105: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #8106: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8107: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 806236071   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8108: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8109: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #8110: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8111: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 806236072   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8112: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8113: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #8114: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8115: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 806236073   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8116: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8117: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #8118: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8119: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 806236074   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8120: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8121: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #8122: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8123: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 806236075   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8124: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8125: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #8126: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8127: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 806236076   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8128: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8129: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #8130: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236070 (0x300e2fa6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:05 2017
            Not After : Sun Aug 07 00:00:05 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:b6:6d:9b:d1:c9:75:e5:95:9c:5e:02:03:db:09:f1:
                    6e:aa:f9:98:19:40:ec:ff:37:15:09:89:e8:f3:cd:1c:
                    d5:46:f0:e3:96:83:83:9c:fb:06:27:94:2e:a8:1c:0d:
                    57:48:d5:56:3a:d8:d8:da:47:d9:ea:5e:a9:2a:69:6e:
                    84:44:d8:d7:ec:88:2a:ba:ec:4e:76:7b:a4:37:87:d5:
                    82:bf:77:5b:56:9d:2f:0e:b0:4b:6e:66:96:c6:d0:56:
                    94:a0:53:d3:1f:77:50:3f:de:ea:4a:81:7b:f0:08:5d:
                    8d:b2:16:bc:69:de:7c:e7:3b:71:77:5b:9f:03:42:5b:
                    c9:1d:5d:df:04:9c:a4:8d:c8:d4:f3:c5:c8:ba:ea:29:
                    ae:ef:5b:f9:66:3b:96:27:ea:68:aa:ef:0c:9b:0b:e0:
                    85:9f:b9:37:9d:f4:3b:4b:9a:93:f3:39:92:0d:9c:95:
                    04:2b:e9:c5:6b:fb:d6:1b:a4:58:38:77:c2:d2:14:e0:
                    be:00:46:b3:29:aa:58:9d:71:70:96:75:a3:3e:c3:07:
                    cf:46:30:93:26:89:a0:56:2f:81:ae:65:41:62:0d:e0:
                    8b:a8:b0:24:60:ef:96:ff:b0:15:e0:d8:85:87:9a:50:
                    28:b0:8b:6c:36:8c:1a:0a:ab:bf:ad:74:14:30:91:d1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        97:4a:2e:41:95:03:e8:df:dc:2d:ff:01:c1:77:50:9a:
        39:20:1c:ec:65:38:20:62:4c:3d:9b:d2:31:26:8b:45:
        58:20:6a:6e:4a:50:24:3e:ef:72:ab:ea:db:d6:af:24:
        00:cc:d0:34:fd:6a:f6:70:47:38:a1:aa:60:41:6e:30:
        8f:3d:9b:49:a5:3a:98:69:8f:69:91:f3:f9:74:4e:cb:
        c4:38:7e:9f:be:b8:86:80:69:0a:23:a8:7a:e8:b1:c9:
        e7:f6:4e:98:a8:25:73:1f:4c:89:2a:2d:e1:38:07:3c:
        a0:97:be:b0:bd:da:cb:3d:b0:6f:df:1f:b8:82:77:c8:
        e6:4d:0c:68:6a:18:a1:61:76:50:35:39:2e:ba:c8:e6:
        b4:5f:b3:3a:3a:99:62:e8:9c:0d:cf:e5:fe:98:0e:a8:
        73:68:e5:c9:60:fd:56:ad:d8:02:69:c9:09:06:16:e3:
        b7:7e:92:a3:a2:10:0c:41:e5:77:cd:d7:05:9c:ce:f6:
        64:dd:cb:35:6d:2f:a1:e9:42:94:74:7d:92:cf:b9:d1:
        7c:b6:5c:c1:8a:f7:f7:1b:91:7a:99:ea:76:11:0f:00:
        4d:5d:9c:30:5c:f4:7b:da:de:93:39:d5:bc:dc:46:f4:
        bb:00:21:3a:82:66:ff:b5:05:ee:0c:93:76:63:e8:e9
    Fingerprint (SHA-256):
        4D:32:02:71:49:CC:DE:51:A6:23:FB:9C:6B:70:5D:97:60:02:62:18:89:E7:D7:3F:EF:7B:3E:6D:8F:CA:55:2E
    Fingerprint (SHA1):
        60:2A:27:D6:B1:23:0B:53:F1:2F:BB:B5:75:E7:3A:6A:3E:00:61:D4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #8131: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8132: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8133: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #8134: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236070 (0x300e2fa6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:05 2017
            Not After : Sun Aug 07 00:00:05 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:b6:6d:9b:d1:c9:75:e5:95:9c:5e:02:03:db:09:f1:
                    6e:aa:f9:98:19:40:ec:ff:37:15:09:89:e8:f3:cd:1c:
                    d5:46:f0:e3:96:83:83:9c:fb:06:27:94:2e:a8:1c:0d:
                    57:48:d5:56:3a:d8:d8:da:47:d9:ea:5e:a9:2a:69:6e:
                    84:44:d8:d7:ec:88:2a:ba:ec:4e:76:7b:a4:37:87:d5:
                    82:bf:77:5b:56:9d:2f:0e:b0:4b:6e:66:96:c6:d0:56:
                    94:a0:53:d3:1f:77:50:3f:de:ea:4a:81:7b:f0:08:5d:
                    8d:b2:16:bc:69:de:7c:e7:3b:71:77:5b:9f:03:42:5b:
                    c9:1d:5d:df:04:9c:a4:8d:c8:d4:f3:c5:c8:ba:ea:29:
                    ae:ef:5b:f9:66:3b:96:27:ea:68:aa:ef:0c:9b:0b:e0:
                    85:9f:b9:37:9d:f4:3b:4b:9a:93:f3:39:92:0d:9c:95:
                    04:2b:e9:c5:6b:fb:d6:1b:a4:58:38:77:c2:d2:14:e0:
                    be:00:46:b3:29:aa:58:9d:71:70:96:75:a3:3e:c3:07:
                    cf:46:30:93:26:89:a0:56:2f:81:ae:65:41:62:0d:e0:
                    8b:a8:b0:24:60:ef:96:ff:b0:15:e0:d8:85:87:9a:50:
                    28:b0:8b:6c:36:8c:1a:0a:ab:bf:ad:74:14:30:91:d1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        97:4a:2e:41:95:03:e8:df:dc:2d:ff:01:c1:77:50:9a:
        39:20:1c:ec:65:38:20:62:4c:3d:9b:d2:31:26:8b:45:
        58:20:6a:6e:4a:50:24:3e:ef:72:ab:ea:db:d6:af:24:
        00:cc:d0:34:fd:6a:f6:70:47:38:a1:aa:60:41:6e:30:
        8f:3d:9b:49:a5:3a:98:69:8f:69:91:f3:f9:74:4e:cb:
        c4:38:7e:9f:be:b8:86:80:69:0a:23:a8:7a:e8:b1:c9:
        e7:f6:4e:98:a8:25:73:1f:4c:89:2a:2d:e1:38:07:3c:
        a0:97:be:b0:bd:da:cb:3d:b0:6f:df:1f:b8:82:77:c8:
        e6:4d:0c:68:6a:18:a1:61:76:50:35:39:2e:ba:c8:e6:
        b4:5f:b3:3a:3a:99:62:e8:9c:0d:cf:e5:fe:98:0e:a8:
        73:68:e5:c9:60:fd:56:ad:d8:02:69:c9:09:06:16:e3:
        b7:7e:92:a3:a2:10:0c:41:e5:77:cd:d7:05:9c:ce:f6:
        64:dd:cb:35:6d:2f:a1:e9:42:94:74:7d:92:cf:b9:d1:
        7c:b6:5c:c1:8a:f7:f7:1b:91:7a:99:ea:76:11:0f:00:
        4d:5d:9c:30:5c:f4:7b:da:de:93:39:d5:bc:dc:46:f4:
        bb:00:21:3a:82:66:ff:b5:05:ee:0c:93:76:63:e8:e9
    Fingerprint (SHA-256):
        4D:32:02:71:49:CC:DE:51:A6:23:FB:9C:6B:70:5D:97:60:02:62:18:89:E7:D7:3F:EF:7B:3E:6D:8F:CA:55:2E
    Fingerprint (SHA1):
        60:2A:27:D6:B1:23:0B:53:F1:2F:BB:B5:75:E7:3A:6A:3E:00:61:D4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #8135: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8136: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8137: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #8138: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806236077 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8139: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #8140: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #8141: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8142: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 806236078   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #8143: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8144: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #8145: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8146: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 806236079   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8147: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8148: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #8149: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8150: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 806236080   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8151: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8152: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #8153: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #8154: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #8155: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #8156: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236077 (0x300e2fad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:07 2017
            Not After : Sun Aug 07 00:00:07 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:4f:22:aa:18:bb:e3:fd:5b:df:ab:63:d7:78:b8:a8:
                    8c:9f:3c:92:f1:41:fb:5f:24:c7:df:c2:f3:a5:4f:be:
                    c0:b6:96:d2:0e:86:ef:cb:d6:94:d7:da:bb:17:13:a2:
                    86:29:cd:2c:68:e2:dd:28:71:3c:d9:8a:ab:a0:16:fc:
                    fc:ea:ba:a8:57:90:8b:e3:4c:25:17:0f:b1:99:bc:0e:
                    8e:7b:e8:73:08:60:61:cc:c5:ef:8d:de:c3:b5:94:63:
                    e8:85:56:9f:76:ee:99:fa:41:e8:88:84:5b:8a:6d:f4:
                    cd:88:6c:9e:b4:c0:cc:c7:b4:e5:e1:c5:54:57:4a:84:
                    b8:68:eb:b6:14:99:2a:3c:51:e5:16:f8:10:5c:89:d3:
                    fa:28:64:bd:9f:c6:6a:50:e8:3f:65:8a:83:64:e1:57:
                    5f:8f:48:6b:7a:93:67:8f:03:cb:04:e1:85:99:f4:0c:
                    f6:a2:d9:2c:0a:66:ea:b5:19:73:4e:a9:ab:cf:f1:19:
                    b3:bd:aa:fa:11:b5:c4:3b:5b:ad:fc:31:d1:f7:05:86:
                    21:9f:9a:93:e1:77:e3:dd:78:53:28:67:0f:9c:d9:b4:
                    75:c4:6e:41:3e:b3:74:1d:90:77:0f:bf:d4:e6:5e:8c:
                    b3:80:20:17:4f:dd:34:ed:56:dd:a5:bc:21:57:c7:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9b:dd:99:06:65:9f:45:f1:b4:db:a8:f9:46:cd:d7:90:
        7f:d6:23:5c:3b:80:f1:41:ff:ff:15:c1:3b:ee:e8:d5:
        3d:ce:4f:ff:46:e2:81:1f:ba:ae:e8:d4:5f:11:8e:72:
        5b:42:6b:83:1d:ff:5e:24:7d:11:37:55:6c:40:f3:b9:
        5a:06:45:51:78:eb:7e:ed:b6:e3:75:d8:e2:e4:1b:95:
        1f:a2:1a:d9:8f:c6:45:57:1c:a1:94:08:60:56:59:aa:
        51:75:d5:db:38:3c:01:e0:b6:83:44:8f:c7:8c:de:94:
        83:c5:0b:58:0b:e2:61:08:28:7d:3b:d1:78:7d:c4:aa:
        3c:95:99:08:eb:49:d9:0d:88:da:57:6b:a0:38:e5:de:
        09:c4:9a:85:0f:90:6c:0b:8c:b5:c1:f4:96:f3:eb:cd:
        5e:57:98:fc:35:e3:c5:2c:31:02:42:41:c1:e0:6e:0d:
        52:a4:6f:96:1a:24:de:6c:8f:60:37:a7:e9:00:c1:be:
        2c:c0:b5:c0:af:b1:5e:dd:42:be:35:d2:08:5f:4d:e6:
        5a:8e:52:ba:b3:56:51:e8:e0:f7:1d:64:8a:44:a2:d5:
        81:00:e5:77:63:48:93:fe:b2:19:5e:ef:98:61:3b:cb:
        ef:24:bc:c1:87:3f:51:eb:28:5d:50:74:ef:dd:60:28
    Fingerprint (SHA-256):
        FF:0C:7C:66:7D:1C:6F:8E:C3:67:8D:34:3C:7E:AF:4C:6F:DA:6D:1A:E8:1B:BA:6C:82:2D:AE:A6:A9:00:1F:B0
    Fingerprint (SHA1):
        59:98:BF:63:C8:28:77:4A:4A:A4:43:6D:06:60:24:A0:46:4D:79:1B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8157: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8158: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8159: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236078 (0x300e2fae)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:07 2017
            Not After : Sun Aug 07 00:00:07 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:d0:78:d4:60:cf:03:20:5c:4e:fa:64:67:84:3d:5e:
                    db:8e:0b:50:a3:67:78:ef:5a:58:a7:f7:23:c0:f6:41:
                    a0:ff:43:ea:41:89:cf:44:ed:8b:2b:04:10:5f:e7:ab:
                    86:07:77:13:08:e5:c2:58:d7:6f:c0:c2:a0:c9:b4:d5:
                    28:8b:7c:bd:b3:09:7a:5b:c3:ac:07:d6:01:a4:c2:6f:
                    66:39:be:c0:8f:ba:a1:25:90:c0:ab:8d:54:5e:ea:86:
                    b0:6e:89:f0:67:e7:c3:0f:e1:79:f3:40:6c:31:d1:5d:
                    e5:52:5b:4e:98:b2:ec:e7:04:5e:ad:2d:8e:6e:0d:c2:
                    3f:b1:ee:30:9d:f8:26:82:61:55:c8:ce:c7:60:a0:18:
                    91:3e:e4:0e:64:67:f4:a6:bd:7f:78:39:a2:9b:7b:f7:
                    84:29:d6:78:cd:a0:8b:7f:b5:30:17:23:06:aa:c1:cc:
                    e7:54:10:ff:66:a2:45:f5:a7:6f:37:4d:b1:50:a7:f5:
                    3b:3d:cf:02:f0:c2:81:23:72:f9:af:50:ac:a8:71:f9:
                    4f:cf:b3:54:b1:4d:9d:a4:d5:3b:77:10:ea:77:81:b3:
                    3c:b7:4d:a4:43:52:dd:1e:04:e7:77:af:5b:0d:17:d9:
                    6f:b6:54:45:6f:2a:ef:1a:a5:ee:0e:70:1f:e5:c5:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b9:98:8e:1d:cf:54:8b:b4:fe:7c:63:58:dc:82:1e:66:
        74:63:e0:52:21:db:d3:47:5f:49:94:65:dd:4c:e6:c9:
        3b:a7:5a:82:17:1e:7c:ef:f8:fa:02:a4:a1:ac:78:ee:
        78:51:60:cf:c0:3f:32:ef:bb:4f:23:fd:5d:71:63:d1:
        13:e6:b8:fe:09:6d:61:b5:67:c8:4e:91:98:a4:e7:b9:
        ba:26:ed:cf:cc:0a:d2:8e:1d:af:3a:3c:31:6d:de:9f:
        c5:1c:87:76:fe:d3:5e:c9:9f:2f:c1:99:2d:2a:70:7c:
        30:86:f4:33:17:75:87:9c:dc:64:a3:33:60:87:3c:b0:
        51:4a:c7:c4:fa:6f:b3:e8:04:71:65:70:67:0c:2d:2d:
        1c:c2:c2:a0:db:74:05:b2:73:99:0d:87:f2:d6:a0:fc:
        f2:0f:26:d4:05:43:12:4b:e7:a6:dd:39:b8:a8:63:52:
        7a:da:6a:be:71:df:0b:6f:7a:ac:23:14:d8:dc:ab:b5:
        ec:8c:3f:79:c4:b1:fb:af:7b:9d:a3:77:63:87:a4:99:
        65:6e:a8:f6:35:7b:ac:48:c6:3b:05:c8:89:0c:a1:b9:
        f3:b3:57:b1:75:06:a9:2f:c4:af:39:27:70:af:63:05:
        fa:c7:b8:5e:0d:65:86:45:e9:54:d1:6a:3f:4f:f4:97
    Fingerprint (SHA-256):
        65:6A:14:97:B2:B4:93:3C:24:AD:F6:4F:E0:91:C6:AD:16:30:05:C5:7E:44:3F:B1:0D:36:E3:B2:75:F5:31:09
    Fingerprint (SHA1):
        6F:A3:FE:58:F7:BA:72:0C:B1:3A:91:87:F6:D2:43:78:7A:2F:8C:E0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #8160: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8161: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236079 (0x300e2faf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:07 2017
            Not After : Sun Aug 07 00:00:07 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:ee:c7:9f:4a:a9:8e:01:68:3b:64:fb:2e:96:83:48:
                    b8:a2:d8:74:99:c7:bd:dd:2d:96:e6:72:d7:ec:cd:1f:
                    15:2a:85:d7:4f:1d:86:af:19:e3:1c:af:72:44:70:bb:
                    79:27:9c:94:51:63:c1:15:27:04:6d:28:c9:58:77:1d:
                    71:f4:d3:31:ef:0a:9e:59:ab:b2:0e:17:e2:71:54:e0:
                    79:ec:df:16:1a:e1:17:88:ab:77:52:6b:eb:9b:e0:60:
                    01:b8:fd:c3:15:97:82:e2:73:d8:7c:d6:e2:2f:67:f3:
                    5a:03:82:29:ac:40:d5:7f:3b:ef:0f:e2:dc:0b:69:a5:
                    85:03:a2:06:63:15:3d:8f:84:9d:0f:60:6a:80:3f:96:
                    35:1a:81:e8:1e:4c:1d:c2:1d:0e:65:7e:62:53:c6:a0:
                    e9:ef:b9:76:09:a8:e1:62:fa:00:23:31:94:cb:ba:82:
                    10:0a:af:90:a3:c8:22:78:8d:f1:b8:b2:f2:16:46:0a:
                    a0:b2:80:03:60:45:db:94:e2:67:ae:90:90:b6:69:88:
                    6a:2b:2c:88:1f:53:a7:03:25:b5:29:b4:9b:2b:4d:bd:
                    2d:a2:00:c7:ce:bc:91:2f:bd:08:14:17:ae:98:2f:66:
                    67:0c:57:18:a0:94:51:7d:b2:6a:41:e0:3c:0d:c6:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        70:0b:a6:6f:b2:f5:9d:7b:ef:bd:f6:c7:1d:68:4b:df:
        a5:a3:d8:9c:2f:ff:16:be:35:13:10:83:03:e6:3d:ed:
        36:5a:84:00:7b:a4:8d:c1:69:70:ef:7a:03:92:45:47:
        7e:96:4d:01:f9:f9:15:f8:a9:76:d4:73:cd:6a:30:e8:
        77:3e:69:62:33:b8:2d:b1:12:20:f5:a5:98:93:57:84:
        7a:3f:98:43:27:32:d1:f0:63:cf:46:17:20:80:6c:10:
        4f:f6:04:e6:82:2b:30:af:99:d7:c7:f3:92:1a:41:de:
        08:e5:a4:47:65:35:65:f7:5f:03:ac:c7:ff:70:ba:f9:
        6e:7c:81:dc:e2:f3:2e:7f:84:2b:e6:6e:d2:b4:94:58:
        17:21:8a:d5:e2:75:f9:71:83:09:6f:df:d8:36:86:4e:
        f6:3d:6d:98:76:0f:94:3a:f5:f0:68:cf:eb:b9:c7:9f:
        3a:d7:f7:77:ef:a5:f1:c3:44:bf:1f:6d:00:44:6f:81:
        a0:12:a6:ae:a7:74:c0:59:89:2a:6e:22:ac:85:cd:12:
        66:90:2c:61:81:d3:05:a5:13:88:a5:55:99:cc:84:73:
        60:85:bb:63:3c:64:c6:f2:b5:fc:f5:a9:21:5b:5e:f7:
        e7:3a:54:df:00:16:ac:60:8e:95:cc:ef:58:8a:af:33
    Fingerprint (SHA-256):
        20:E3:8C:41:3E:DD:14:11:22:FB:61:DC:96:2D:87:09:C1:1F:00:B1:45:0A:2D:E6:73:1A:66:CE:3A:A2:53:5A
    Fingerprint (SHA1):
        84:E8:BD:4C:67:A5:4B:BC:7A:C6:9D:D8:92:90:7A:D5:CB:EB:73:91
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #8162: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #8163: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806236081 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8164: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #8165: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #8166: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8167: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 806236082   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8168: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8169: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #8170: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8171: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 806236083   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #8172: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8173: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #8174: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8175: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 806236084   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8176: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8177: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #8178: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8179: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 806236085   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8180: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8181: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #8182: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #8183: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #8184: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #8185: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #8186: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236081 (0x300e2fb1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:08 2017
            Not After : Sun Aug 07 00:00:08 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:35:60:7b:8e:13:92:81:98:9a:c8:ef:8d:1d:09:ad:
                    e3:bc:6a:c4:62:f5:05:ae:4d:cc:35:28:83:c6:a3:cb:
                    fd:2f:f4:a4:48:ad:b2:8c:bc:8d:3b:7d:0c:77:ac:eb:
                    79:3a:9e:d5:b5:c2:2c:d5:9a:b3:9e:f3:61:c6:47:7f:
                    95:1e:14:e5:1a:5e:d0:5d:6d:5d:d6:4d:e6:36:8e:67:
                    1c:52:29:89:8b:48:c5:1d:df:c9:5b:fa:d8:d8:1f:16:
                    8c:ad:7b:15:e2:a1:ba:ba:06:6c:8b:cf:52:7f:c4:15:
                    0d:01:e6:09:9e:5b:89:bb:17:62:38:bc:1b:12:07:7a:
                    27:a2:a1:5d:23:32:11:22:5c:11:e6:1b:c6:1c:e1:4e:
                    dd:57:02:d2:a5:3f:4b:91:c5:6f:c2:d2:b5:b7:ef:ad:
                    25:c4:d0:de:4b:67:ff:9b:98:02:98:2d:c1:e6:8f:56:
                    91:b0:47:3d:f5:c0:db:67:3c:18:89:9f:45:b7:19:81:
                    3d:34:37:b7:e6:cd:37:47:8f:99:ec:e7:31:02:7a:fe:
                    dd:d6:49:b1:0a:06:1c:f9:5c:6c:3f:f6:6b:e2:42:4c:
                    7f:fa:75:aa:68:f1:31:5d:7d:d8:e2:99:1c:be:dd:0b:
                    96:f4:29:e7:99:5a:c1:81:5f:57:6d:d6:7a:33:46:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:8a:69:2e:c5:79:15:c7:e2:ed:76:9e:c0:6a:27:48:
        cf:f0:26:76:44:f1:d7:58:cc:76:df:2c:8e:3b:7b:ec:
        44:4d:8d:2a:06:6b:46:2c:3e:3f:0e:e1:f5:35:6c:99:
        29:d1:c2:b3:c3:50:a7:6d:db:70:2d:c8:88:3a:07:23:
        e8:7c:7b:9c:f2:7b:71:9e:0c:34:0a:7a:dc:fa:7b:03:
        ea:5a:e1:0c:bb:ad:94:6f:2b:0d:50:ce:87:3d:39:78:
        29:66:d7:8a:d3:a2:48:fb:28:cd:1c:d8:6c:14:45:4e:
        de:71:de:88:ad:86:72:38:79:2f:b3:7c:be:9a:b2:38:
        57:a4:33:8c:92:b7:8e:47:cf:8b:b3:48:dd:16:5f:85:
        73:bf:9a:d4:58:7f:6d:0a:25:f9:ee:0b:f2:dd:aa:15:
        84:f2:47:a1:b2:92:95:ec:e2:b7:fb:4c:04:b1:3d:e9:
        af:de:1b:5f:71:5b:f3:94:95:fc:94:96:0b:ba:55:cb:
        32:af:bc:27:90:31:ec:a1:f5:56:23:0e:1b:46:ae:a7:
        7d:af:2b:45:7d:23:1e:6d:13:a2:59:80:66:e7:1c:e0:
        73:04:79:60:87:12:d2:64:75:bd:64:d0:c2:aa:cc:98:
        fc:ed:f5:a4:d6:2d:38:db:e8:5f:f7:fc:a1:cd:2c:d5
    Fingerprint (SHA-256):
        35:10:10:78:1E:D3:CB:F7:43:EA:46:CF:DE:14:A7:88:DF:80:24:29:DC:B7:0E:0E:B3:4C:2B:E6:C6:91:4F:B6
    Fingerprint (SHA1):
        03:FD:E2:E8:00:EB:6E:51:BD:1E:1A:6C:F0:65:A8:B5:B8:7F:54:1F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8187: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8188: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236082 (0x300e2fb2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:08 2017
            Not After : Sun Aug 07 00:00:08 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:7e:a3:7f:5e:a8:0f:19:e5:a3:cf:fe:8f:69:1a:2f:
                    4b:19:41:8f:35:25:d3:7d:e0:40:30:bb:05:80:3d:4e:
                    7a:b0:8d:a0:7b:9c:51:4b:07:e0:14:f2:07:ad:f5:da:
                    14:5c:55:e4:f2:f3:72:86:19:b9:21:e7:e1:95:16:4f:
                    2e:c1:5d:d8:4e:ce:eb:03:5e:67:4c:e8:eb:f0:dc:bc:
                    90:5c:30:60:8b:35:bc:1e:a9:73:e2:83:80:36:bc:67:
                    d3:a8:76:a8:e8:e8:29:53:06:08:d7:75:b9:5c:25:80:
                    48:1d:0c:88:45:cd:6c:39:e6:90:ba:6a:87:8f:dc:fd:
                    d5:1b:56:32:8c:e8:10:8a:e3:fb:fa:02:ea:e8:d5:8d:
                    a6:11:96:01:48:3a:97:2a:28:5d:04:b6:db:c3:d6:98:
                    3a:96:6f:b5:88:aa:7d:40:0b:22:f5:40:f2:ff:3a:1d:
                    7b:ad:ad:a3:71:a4:58:f8:4b:f0:36:cf:be:eb:e5:c1:
                    e6:de:f8:a7:3c:a1:73:65:61:57:d9:88:4d:4e:30:3b:
                    ff:03:7e:ba:50:ed:11:a4:c3:26:db:05:00:22:e0:0c:
                    c5:16:26:93:89:f2:ac:7b:04:88:c4:5b:a3:8e:35:b5:
                    ca:27:89:78:59:62:b5:26:9f:78:13:ed:83:10:f1:8b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:fa:6e:5b:dd:c4:4d:7a:a3:84:5f:9b:71:9e:37:77:
        a5:10:ff:a7:cb:e8:5f:cd:bb:d8:80:24:20:4e:d8:b1:
        75:7f:4e:79:75:8b:04:c7:b3:f2:23:29:d6:4c:31:1f:
        24:41:e7:b2:14:da:de:e1:45:06:11:9e:9c:d6:7d:20:
        39:bb:5f:0c:57:0a:76:45:78:78:45:09:cf:e8:24:01:
        60:c0:58:02:4f:4b:ac:5b:11:60:6b:28:eb:31:88:19:
        69:02:67:03:13:97:27:e4:c9:38:99:d9:ee:40:47:45:
        e6:b2:2f:30:b8:98:49:a9:5b:69:d4:29:46:1b:c5:03:
        ef:5b:41:01:b6:c3:27:a3:9b:b9:17:36:37:46:b6:ca:
        66:ae:9c:eb:0a:bf:26:b8:c6:53:8c:96:24:6d:b9:79:
        6d:d2:da:f9:d5:d3:f6:fa:06:a9:02:d2:d6:56:05:1e:
        7c:db:14:b7:4d:ea:19:41:5d:f3:63:ad:ea:ac:0c:6d:
        21:a2:6f:b9:2a:e7:ef:b4:e6:99:42:ac:f7:49:22:2e:
        a5:e6:cd:74:59:ec:4f:c3:a5:c8:8a:85:26:6f:80:7e:
        37:49:64:cf:d8:94:56:3a:6d:da:5f:91:c8:57:d6:5b:
        a3:8d:18:c2:9b:02:53:f5:34:0d:aa:c4:24:1c:5d:51
    Fingerprint (SHA-256):
        A9:6C:C6:48:13:94:8B:7D:CD:30:7B:AE:1C:60:4D:BF:46:C1:CE:83:65:E7:DF:A6:38:EA:B5:8D:A1:C3:B2:EF
    Fingerprint (SHA1):
        3C:ED:E0:8F:16:4A:28:1D:01:AF:D1:32:FF:62:2A:82:22:42:27:79
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #8189: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8190: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8191: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236083 (0x300e2fb3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:08 2017
            Not After : Sun Aug 07 00:00:08 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:e6:0c:40:af:9d:15:96:c3:44:03:28:4d:3b:f2:48:
                    5d:7d:dd:d7:e2:7e:0d:0e:64:4d:9c:7e:42:0e:d5:58:
                    f1:e3:80:b0:67:b5:f0:2e:ba:82:f7:c0:06:f0:ef:58:
                    b6:af:66:59:2f:95:e7:90:d6:ef:a8:f6:d2:41:b3:f5:
                    6a:ea:27:17:01:c4:65:2f:de:ed:7c:dc:50:67:50:91:
                    91:c3:90:8b:7a:f8:bf:ee:04:49:47:da:02:a8:4c:fc:
                    db:57:b2:71:ec:53:15:e5:91:e5:8f:9e:23:b8:c3:8b:
                    44:4b:06:d8:00:79:20:d6:6b:ac:49:12:e4:4b:30:db:
                    24:62:76:98:f1:2a:14:67:70:78:a6:d7:0c:a8:db:e5:
                    bc:88:f7:65:cc:d0:a4:47:34:76:9d:83:46:aa:32:fd:
                    0d:f0:5e:d6:99:0f:f6:16:40:d3:28:ef:11:12:e1:c2:
                    36:23:91:a1:6e:6a:55:0c:38:a5:1f:ce:52:a9:f7:d3:
                    db:5b:0f:8f:81:e6:d8:a2:e4:5d:2c:c3:de:f2:9a:fa:
                    81:c1:ae:be:d9:1d:06:7c:4a:78:df:08:d2:c7:e9:64:
                    ea:92:6e:c8:e7:93:98:88:73:fb:a6:83:5a:c3:91:18:
                    23:3b:7e:b8:9e:8a:eb:e9:b5:36:a7:e2:e1:08:bd:c7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        58:2e:47:d7:5f:80:26:40:c0:e0:db:58:02:04:fc:7d:
        3e:5d:b0:3b:97:1a:a6:2f:8f:8c:9c:3e:81:af:01:cd:
        28:ea:b3:0f:a7:49:7f:6c:fc:fd:0b:6c:9b:91:b7:6a:
        42:4a:9a:51:5c:d1:3e:3e:33:ca:0c:4f:f0:28:b1:ab:
        8a:d9:63:9b:56:29:f2:5c:50:29:90:47:8c:6b:d8:19:
        5a:12:3e:d3:6a:4e:1e:04:dd:cc:01:17:d0:68:c1:b0:
        f3:0e:73:f2:bd:e7:4e:8d:1a:d9:bb:7a:18:fa:c7:27:
        be:99:e1:bc:9c:86:ad:f6:f2:0e:69:29:83:e6:9a:15:
        57:cb:13:09:33:05:43:29:40:de:92:5a:df:c2:f6:a7:
        22:51:a3:b6:21:1e:93:79:f0:cd:ea:4e:8f:00:23:ab:
        14:07:0f:0c:c8:99:50:a1:e5:dc:71:f3:7c:a1:d9:9f:
        43:52:1c:d5:2a:e9:13:51:74:4c:2f:4a:d8:62:20:2a:
        81:3d:45:83:b1:a9:71:b9:d1:a3:85:e3:b9:a7:9d:08:
        70:9e:b9:4d:73:ab:76:b4:89:76:f0:5f:32:51:3e:87:
        b3:05:cc:d4:ac:94:c0:30:a7:bd:e3:f1:37:08:02:7c:
        6e:41:d1:3b:af:95:1c:a5:9f:74:78:f9:2d:7a:fb:ae
    Fingerprint (SHA-256):
        81:CD:03:2C:BD:BC:E1:E5:7D:AD:8D:B5:8C:96:A6:B7:56:7B:D1:EB:B7:1C:31:36:B3:71:F8:B0:AA:9E:C1:E1
    Fingerprint (SHA1):
        A4:89:DC:DF:6D:CF:A6:48:FE:77:5D:4C:3D:43:88:82:7A:C1:77:11
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #8192: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #8193: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806236086 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8194: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #8195: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #8196: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8197: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 806236087   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8198: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8199: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #8200: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8201: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 806236088   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA1Root-806235865.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #8202: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8203: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #8204: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8205: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 806236089   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8206: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8207: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #8208: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236086 (0x300e2fb6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:09 2017
            Not After : Sun Aug 07 00:00:09 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:15:e7:bd:37:1d:c4:e9:63:72:f5:58:f7:a6:99:22:
                    74:0e:a7:d0:96:d9:bc:b1:10:cd:fb:43:e4:e0:6d:83:
                    9e:33:77:be:b7:91:fc:92:28:39:6c:53:5e:a4:c0:61:
                    a8:cd:59:78:fd:93:00:45:ec:34:df:93:4d:f1:dc:fc:
                    99:6f:24:c6:25:76:18:1f:6b:3b:7f:58:c0:1b:af:f4:
                    2d:9a:ad:9f:b9:30:68:e2:90:1c:fb:29:49:a7:c4:d0:
                    30:91:b6:ba:7a:67:d4:81:14:d9:c6:98:e7:e5:39:ca:
                    e8:76:8b:5d:75:6a:d7:6c:1b:0d:0a:2e:34:97:77:92:
                    d7:00:cb:97:6b:6c:76:3d:79:04:a5:3a:cd:9b:10:c4:
                    5e:63:69:a3:ff:e9:97:45:44:e3:df:16:7e:ca:9a:68:
                    52:9f:33:c1:3b:8f:97:4f:63:29:a3:49:70:5c:8c:c5:
                    63:e5:6b:c3:af:98:03:b4:a5:60:4a:c2:ac:f1:10:54:
                    2d:e1:00:b3:8e:ca:b6:14:d1:df:81:81:61:b9:0f:79:
                    03:7c:48:47:74:56:37:75:82:43:cb:c4:50:0c:f6:0e:
                    1f:1d:a1:5d:52:70:db:f9:0f:c0:26:99:79:40:d5:b6:
                    34:cc:9e:e4:1c:9a:1d:56:6b:c1:81:63:47:98:99:bd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c9:26:82:ed:75:2d:7b:72:c4:6f:00:2c:b1:2b:84:c4:
        35:d3:61:e7:33:67:b0:03:88:75:10:1c:e3:83:fa:90:
        f0:4d:3c:f7:6c:f8:14:0d:6d:2a:e8:f0:59:4c:89:f9:
        4f:21:7c:5c:41:4b:15:ba:24:92:c4:93:41:6f:e7:8e:
        67:90:61:86:a4:fd:de:3e:75:e1:7f:b1:f9:dd:22:e1:
        35:14:f2:7c:56:a1:86:92:4a:bb:9e:e7:65:3f:2a:20:
        35:f1:be:d9:07:f5:ef:af:6d:c9:11:31:94:dc:13:2b:
        5a:9c:69:88:de:7f:88:d8:3d:0c:06:a6:f2:c9:ce:7a:
        f0:63:8d:5d:ed:77:de:91:32:e2:4a:88:ff:1d:3f:72:
        f7:a7:a8:9b:6d:72:bb:fa:52:e9:ca:fa:6d:f0:59:82:
        00:44:03:24:28:85:2e:6d:32:92:9d:fb:48:67:4e:0e:
        a7:e8:de:67:96:35:a7:db:c9:bb:b0:54:e3:df:ef:2f:
        c7:9e:77:71:63:95:a1:b8:d6:96:7a:c5:c6:d6:8c:a4:
        32:42:e1:de:13:5b:b4:1f:40:6d:2e:37:8d:12:e4:83:
        de:a1:3d:38:5e:40:3a:fe:65:df:91:4c:15:12:ee:43:
        36:db:41:a0:52:89:84:b4:f7:23:58:33:56:32:22:ae
    Fingerprint (SHA-256):
        A6:AC:12:D1:AD:B9:51:F2:81:09:1A:82:A2:07:E8:F4:A7:74:B3:32:9E:51:B4:E9:E3:BD:5A:A0:FA:EE:50:CE
    Fingerprint (SHA1):
        2A:B2:BB:CF:F5:74:18:90:52:92:72:44:B7:41:08:4E:13:AD:85:14
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8209: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #8210: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806236090 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8211: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #8212: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #8213: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806236091 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8214: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #8215: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #8216: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8217: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 806236092 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8218: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8219: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 806236093 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8220: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8221: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #8222: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #8223: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8224: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 806236094   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-Bridge-806235866.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #8225: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8226: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #8227: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8228: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 806236095   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8229: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8230: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #8231: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #8232: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236091 (0x300e2fbb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:10 2017
            Not After : Sun Aug 07 00:00:10 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:6e:8d:2d:32:5e:c2:ca:7b:0c:12:d4:ab:00:3a:ff:
                    60:06:18:5e:f8:36:75:26:03:c4:6d:6c:a6:22:57:9a:
                    6c:41:47:74:97:8c:5f:e2:d5:70:0a:48:6c:c7:25:e7:
                    dd:92:54:fc:23:cd:68:e4:42:75:89:c4:b1:0e:2f:fb:
                    a7:ee:78:5b:95:43:ce:16:0f:70:14:54:4b:fd:45:20:
                    72:11:2c:7b:5d:ab:7b:9d:7d:da:11:5d:d7:5e:8d:13:
                    7f:98:ee:96:d6:60:f9:16:9f:b2:48:f3:93:05:97:bb:
                    8a:6c:89:94:e5:72:68:e3:12:97:e9:75:2e:ad:33:27:
                    52:08:e2:1d:ee:16:b6:9e:b2:ce:e1:91:16:f1:17:7b:
                    2e:fe:a6:79:52:a5:8d:5e:7c:b2:37:ab:84:85:6d:ee:
                    d1:cf:27:10:55:0f:7a:9c:f7:f8:42:27:4c:28:70:7f:
                    de:40:d5:d0:b2:fd:34:f5:7b:cf:53:d1:51:66:77:47:
                    8c:b5:aa:22:54:d0:07:e5:96:6b:dc:c7:60:b1:54:f5:
                    98:19:73:0a:b2:70:3f:b0:81:83:33:ff:30:c1:b7:b6:
                    3d:e3:91:6e:30:4b:e8:15:12:f4:9a:b2:97:f8:f0:1a:
                    a1:6d:60:b2:d6:0c:d0:ff:3a:14:b4:3c:5b:d1:4b:c9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        58:ca:13:01:7b:db:f6:be:d5:97:97:0a:b8:a3:b3:c7:
        df:2a:e2:6b:a9:ec:85:89:a8:07:2c:15:6d:d4:c3:9d:
        93:13:36:bd:f4:12:0b:cc:79:d9:e6:aa:7a:c8:11:e6:
        48:63:93:96:79:1f:ac:46:48:23:06:33:8c:16:aa:ae:
        8c:75:39:5c:57:52:ba:f8:bd:0f:26:4d:4c:c5:33:b0:
        56:35:50:3c:ad:4a:44:dc:14:6a:44:43:29:8f:a8:cd:
        06:58:53:7a:64:03:cb:7c:cf:45:70:de:e2:05:3a:fc:
        ab:04:18:3f:69:7c:c3:47:ce:2d:9d:4e:5f:f5:57:06:
        e1:45:51:d2:c2:25:ea:b6:8c:45:69:60:0b:91:58:82:
        45:35:a4:51:33:74:eb:40:91:36:11:12:fa:c9:04:7f:
        cb:3a:f5:fa:93:65:7f:6e:b0:25:4e:57:98:67:16:c4:
        d0:2d:7c:38:fd:29:98:d7:9f:bf:f9:23:e9:9d:68:a7:
        c9:1a:cb:9b:4c:70:44:1a:4c:36:a2:a4:d5:bf:9e:87:
        e9:ea:49:61:44:23:7c:2e:b8:f0:82:47:52:33:8d:e0:
        15:fa:99:35:91:42:46:0c:e1:e6:64:0b:d9:ea:60:15:
        80:e1:2a:a1:32:0c:8a:71:dd:de:33:82:9b:34:5b:a5
    Fingerprint (SHA-256):
        D2:FE:A3:84:AA:58:7C:12:A1:B9:01:F2:25:0D:87:19:43:F6:21:A0:DA:11:9D:51:C7:AC:8C:A7:66:99:6E:EA
    Fingerprint (SHA1):
        42:B6:F0:82:5D:84:D8:96:49:0E:D3:71:AE:7C:6E:A2:45:AB:B6:78
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #8233: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236091 (0x300e2fbb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:10 2017
            Not After : Sun Aug 07 00:00:10 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:6e:8d:2d:32:5e:c2:ca:7b:0c:12:d4:ab:00:3a:ff:
                    60:06:18:5e:f8:36:75:26:03:c4:6d:6c:a6:22:57:9a:
                    6c:41:47:74:97:8c:5f:e2:d5:70:0a:48:6c:c7:25:e7:
                    dd:92:54:fc:23:cd:68:e4:42:75:89:c4:b1:0e:2f:fb:
                    a7:ee:78:5b:95:43:ce:16:0f:70:14:54:4b:fd:45:20:
                    72:11:2c:7b:5d:ab:7b:9d:7d:da:11:5d:d7:5e:8d:13:
                    7f:98:ee:96:d6:60:f9:16:9f:b2:48:f3:93:05:97:bb:
                    8a:6c:89:94:e5:72:68:e3:12:97:e9:75:2e:ad:33:27:
                    52:08:e2:1d:ee:16:b6:9e:b2:ce:e1:91:16:f1:17:7b:
                    2e:fe:a6:79:52:a5:8d:5e:7c:b2:37:ab:84:85:6d:ee:
                    d1:cf:27:10:55:0f:7a:9c:f7:f8:42:27:4c:28:70:7f:
                    de:40:d5:d0:b2:fd:34:f5:7b:cf:53:d1:51:66:77:47:
                    8c:b5:aa:22:54:d0:07:e5:96:6b:dc:c7:60:b1:54:f5:
                    98:19:73:0a:b2:70:3f:b0:81:83:33:ff:30:c1:b7:b6:
                    3d:e3:91:6e:30:4b:e8:15:12:f4:9a:b2:97:f8:f0:1a:
                    a1:6d:60:b2:d6:0c:d0:ff:3a:14:b4:3c:5b:d1:4b:c9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        58:ca:13:01:7b:db:f6:be:d5:97:97:0a:b8:a3:b3:c7:
        df:2a:e2:6b:a9:ec:85:89:a8:07:2c:15:6d:d4:c3:9d:
        93:13:36:bd:f4:12:0b:cc:79:d9:e6:aa:7a:c8:11:e6:
        48:63:93:96:79:1f:ac:46:48:23:06:33:8c:16:aa:ae:
        8c:75:39:5c:57:52:ba:f8:bd:0f:26:4d:4c:c5:33:b0:
        56:35:50:3c:ad:4a:44:dc:14:6a:44:43:29:8f:a8:cd:
        06:58:53:7a:64:03:cb:7c:cf:45:70:de:e2:05:3a:fc:
        ab:04:18:3f:69:7c:c3:47:ce:2d:9d:4e:5f:f5:57:06:
        e1:45:51:d2:c2:25:ea:b6:8c:45:69:60:0b:91:58:82:
        45:35:a4:51:33:74:eb:40:91:36:11:12:fa:c9:04:7f:
        cb:3a:f5:fa:93:65:7f:6e:b0:25:4e:57:98:67:16:c4:
        d0:2d:7c:38:fd:29:98:d7:9f:bf:f9:23:e9:9d:68:a7:
        c9:1a:cb:9b:4c:70:44:1a:4c:36:a2:a4:d5:bf:9e:87:
        e9:ea:49:61:44:23:7c:2e:b8:f0:82:47:52:33:8d:e0:
        15:fa:99:35:91:42:46:0c:e1:e6:64:0b:d9:ea:60:15:
        80:e1:2a:a1:32:0c:8a:71:dd:de:33:82:9b:34:5b:a5
    Fingerprint (SHA-256):
        D2:FE:A3:84:AA:58:7C:12:A1:B9:01:F2:25:0D:87:19:43:F6:21:A0:DA:11:9D:51:C7:AC:8C:A7:66:99:6E:EA
    Fingerprint (SHA1):
        42:B6:F0:82:5D:84:D8:96:49:0E:D3:71:AE:7C:6E:A2:45:AB:B6:78
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #8234: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #8235: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806236096 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8236: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #8237: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #8238: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806236097 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8239: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #8240: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #8241: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8242: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 806236098 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8243: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8244: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 806236099 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8245: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8246: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #8247: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #8248: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8249: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 806236100   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-Bridge-806235867.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #8250: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8251: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #8252: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8253: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 806236101   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8254: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8255: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #8256: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8257: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 806236102   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-BridgeNavy-806235868.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #8258: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8259: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #8260: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8261: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 806236103   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8262: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8263: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #8264: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #8265: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236097 (0x300e2fc1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:12 2017
            Not After : Sun Aug 07 00:00:12 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:b6:70:04:d6:29:2f:a1:f0:79:b3:cc:04:a9:19:32:
                    52:95:5e:3a:be:5b:30:40:e1:15:b7:da:87:a8:a4:05:
                    cb:f3:56:1f:6d:0b:53:97:a0:83:a6:6a:e1:b7:19:cc:
                    9d:d9:a1:fb:26:dc:b2:f2:5f:69:ad:31:2e:59:e4:88:
                    74:92:82:e2:ba:dd:82:8f:78:5e:d7:c7:ee:da:41:5d:
                    3a:e3:09:e2:39:91:e6:90:ba:6f:33:3a:7f:26:5d:93:
                    a7:c9:74:10:5c:87:47:90:e0:ef:e3:77:6f:aa:0f:67:
                    fd:88:00:96:14:a6:0f:48:e4:df:90:84:7b:e6:cf:16:
                    33:b5:8e:95:bb:3e:d0:ee:89:16:1d:8c:48:b8:f7:2b:
                    5b:7c:67:ad:e6:65:9d:cd:f2:4d:9f:24:18:0e:88:40:
                    b7:4c:16:78:dc:13:f4:d5:34:a7:cc:f9:f5:96:a2:47:
                    bd:ef:8f:fe:40:ec:cc:23:95:96:38:df:2f:c9:a1:1f:
                    a0:a1:d9:17:e8:83:f2:a6:f0:28:2c:92:64:4c:da:dd:
                    27:89:35:05:19:f3:1c:32:c3:74:07:50:fb:81:ff:4e:
                    6b:15:8d:34:11:47:b3:99:29:1f:1d:75:e5:8b:e7:f6:
                    2e:3f:8c:dd:d8:9d:ca:98:83:5c:3a:e0:98:50:de:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:f2:d3:9d:5f:6a:86:2d:16:42:c5:b6:65:67:85:c4:
        58:d8:f3:f6:51:95:05:e7:f7:4a:a6:7f:a7:54:a9:d6:
        20:3d:e4:d6:cf:e4:93:5f:24:e0:b8:74:de:57:38:06:
        8a:49:38:fc:ec:de:1b:cd:0a:3e:54:f5:32:1a:66:af:
        40:75:cc:f8:85:7a:a5:4c:30:24:be:e3:67:0e:4a:1e:
        ec:b5:66:54:86:12:3d:b7:1c:73:da:5a:87:46:69:4d:
        de:9c:bc:bf:6d:9e:74:09:70:13:e9:85:21:a4:9f:45:
        47:12:2a:31:1a:67:89:4a:b1:de:59:ee:cd:6e:63:55:
        0a:2d:46:c5:76:85:87:2b:2b:05:0d:07:5e:b3:e4:2f:
        b4:a7:39:38:b9:ac:30:fa:36:54:ae:ee:77:58:a5:ab:
        2e:de:a9:dc:91:d0:a4:d3:ec:67:ca:3d:85:4f:76:37:
        95:c4:3b:60:20:dc:d4:84:b6:a0:45:40:52:be:af:af:
        d8:e4:92:db:07:72:0a:56:5a:53:69:63:3d:3e:d0:94:
        05:9f:8e:be:9e:d9:fc:ae:30:fa:39:ea:02:77:a7:e5:
        14:e5:21:14:c9:af:1d:bf:f8:90:15:3d:20:b6:a0:3e:
        aa:e8:41:83:7c:ec:73:24:ef:63:9c:fe:71:9d:b2:67
    Fingerprint (SHA-256):
        FF:5D:3A:48:72:4C:92:20:42:00:C2:45:14:99:EF:7D:F4:C1:BA:4D:71:F5:EB:1B:D7:43:A9:94:6B:46:02:35
    Fingerprint (SHA1):
        0E:A2:2A:1F:54:6C:FF:C9:36:93:68:35:2D:07:EC:46:A5:3B:A8:B6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #8266: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236097 (0x300e2fc1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:12 2017
            Not After : Sun Aug 07 00:00:12 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:b6:70:04:d6:29:2f:a1:f0:79:b3:cc:04:a9:19:32:
                    52:95:5e:3a:be:5b:30:40:e1:15:b7:da:87:a8:a4:05:
                    cb:f3:56:1f:6d:0b:53:97:a0:83:a6:6a:e1:b7:19:cc:
                    9d:d9:a1:fb:26:dc:b2:f2:5f:69:ad:31:2e:59:e4:88:
                    74:92:82:e2:ba:dd:82:8f:78:5e:d7:c7:ee:da:41:5d:
                    3a:e3:09:e2:39:91:e6:90:ba:6f:33:3a:7f:26:5d:93:
                    a7:c9:74:10:5c:87:47:90:e0:ef:e3:77:6f:aa:0f:67:
                    fd:88:00:96:14:a6:0f:48:e4:df:90:84:7b:e6:cf:16:
                    33:b5:8e:95:bb:3e:d0:ee:89:16:1d:8c:48:b8:f7:2b:
                    5b:7c:67:ad:e6:65:9d:cd:f2:4d:9f:24:18:0e:88:40:
                    b7:4c:16:78:dc:13:f4:d5:34:a7:cc:f9:f5:96:a2:47:
                    bd:ef:8f:fe:40:ec:cc:23:95:96:38:df:2f:c9:a1:1f:
                    a0:a1:d9:17:e8:83:f2:a6:f0:28:2c:92:64:4c:da:dd:
                    27:89:35:05:19:f3:1c:32:c3:74:07:50:fb:81:ff:4e:
                    6b:15:8d:34:11:47:b3:99:29:1f:1d:75:e5:8b:e7:f6:
                    2e:3f:8c:dd:d8:9d:ca:98:83:5c:3a:e0:98:50:de:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:f2:d3:9d:5f:6a:86:2d:16:42:c5:b6:65:67:85:c4:
        58:d8:f3:f6:51:95:05:e7:f7:4a:a6:7f:a7:54:a9:d6:
        20:3d:e4:d6:cf:e4:93:5f:24:e0:b8:74:de:57:38:06:
        8a:49:38:fc:ec:de:1b:cd:0a:3e:54:f5:32:1a:66:af:
        40:75:cc:f8:85:7a:a5:4c:30:24:be:e3:67:0e:4a:1e:
        ec:b5:66:54:86:12:3d:b7:1c:73:da:5a:87:46:69:4d:
        de:9c:bc:bf:6d:9e:74:09:70:13:e9:85:21:a4:9f:45:
        47:12:2a:31:1a:67:89:4a:b1:de:59:ee:cd:6e:63:55:
        0a:2d:46:c5:76:85:87:2b:2b:05:0d:07:5e:b3:e4:2f:
        b4:a7:39:38:b9:ac:30:fa:36:54:ae:ee:77:58:a5:ab:
        2e:de:a9:dc:91:d0:a4:d3:ec:67:ca:3d:85:4f:76:37:
        95:c4:3b:60:20:dc:d4:84:b6:a0:45:40:52:be:af:af:
        d8:e4:92:db:07:72:0a:56:5a:53:69:63:3d:3e:d0:94:
        05:9f:8e:be:9e:d9:fc:ae:30:fa:39:ea:02:77:a7:e5:
        14:e5:21:14:c9:af:1d:bf:f8:90:15:3d:20:b6:a0:3e:
        aa:e8:41:83:7c:ec:73:24:ef:63:9c:fe:71:9d:b2:67
    Fingerprint (SHA-256):
        FF:5D:3A:48:72:4C:92:20:42:00:C2:45:14:99:EF:7D:F4:C1:BA:4D:71:F5:EB:1B:D7:43:A9:94:6B:46:02:35
    Fingerprint (SHA1):
        0E:A2:2A:1F:54:6C:FF:C9:36:93:68:35:2D:07:EC:46:A5:3B:A8:B6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #8267: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #8268: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236096 (0x300e2fc0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:11 2017
            Not After : Sun Aug 07 00:00:11 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:4e:98:2a:66:cd:92:b5:4b:c5:4c:78:08:d4:86:6e:
                    6e:ff:ff:3e:57:e6:aa:cd:8c:09:60:30:ca:29:e5:6e:
                    df:ef:c9:e5:de:1a:2a:48:b9:4f:4a:b6:6c:d3:0e:37:
                    a5:76:fa:08:60:e9:f7:70:10:01:8b:c5:1d:55:e9:1c:
                    aa:2b:10:4d:d1:60:7d:4f:a8:70:60:d6:4d:34:62:6e:
                    63:e0:26:67:3d:fe:61:2d:17:fe:20:bb:39:bf:cc:74:
                    9c:60:97:1e:46:9c:98:17:af:19:d5:51:5c:fd:f5:b3:
                    70:93:6c:a5:2f:7a:e2:79:6e:f9:e3:bc:53:49:f7:22:
                    b3:16:b6:c2:2f:8f:c4:9f:39:3f:68:0a:ca:60:4d:6f:
                    af:70:c1:50:11:53:20:71:9a:6b:3b:23:e0:25:f2:66:
                    c3:63:cc:eb:1e:8a:1d:03:79:3e:24:76:b0:fc:c7:2e:
                    3b:31:a2:00:45:bd:1a:22:e9:af:6a:3b:a2:08:6e:91:
                    18:39:02:65:2a:e8:f8:d2:bd:f7:99:db:33:6a:8e:0b:
                    b6:b1:b4:7f:4e:77:35:5e:db:15:d9:41:40:a0:d5:25:
                    b2:d0:06:59:7f:79:33:df:d8:41:4a:63:22:f7:4d:64:
                    6e:f2:bd:d5:11:16:83:f1:d7:0b:cf:e9:5c:33:0e:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0e:fe:6b:de:a9:76:1b:08:4b:ef:38:0e:9e:a2:3d:16:
        2d:e5:d7:6c:a8:c5:e1:a5:ec:1c:ea:83:97:d0:d5:2d:
        d7:79:5b:2e:48:33:18:59:f9:a6:53:be:30:f3:28:6c:
        d6:6a:3b:c5:64:a5:58:f7:84:5c:1f:d4:1f:87:8f:c0:
        38:ef:20:0f:9a:d4:d8:69:55:66:16:fc:8e:d9:70:0a:
        61:02:2e:7f:ef:07:0a:81:50:85:c3:4e:c5:17:08:9b:
        a6:c9:20:36:ef:6b:3c:50:9f:51:e7:7f:61:5b:8f:42:
        12:61:c3:b2:95:13:0c:ba:00:7f:9b:62:f6:2e:24:bc:
        4b:24:48:4d:b8:06:b3:b7:21:8c:28:3a:ee:6f:dc:d8:
        89:55:73:04:d6:35:b0:6f:db:f9:77:c5:3b:25:f2:b4:
        70:36:23:6e:d3:c5:61:f1:a8:94:39:08:2c:e3:50:3d:
        df:71:77:c4:70:91:75:67:15:67:2b:64:fb:41:7a:08:
        30:92:d7:90:ec:f7:4b:fb:a9:89:02:cb:87:60:0d:dd:
        32:83:b5:e2:f7:96:2c:20:e3:71:3e:f4:4c:78:bb:cc:
        30:9c:48:13:3e:2f:c8:23:00:05:df:9c:d3:76:ea:9a:
        d2:03:02:f3:7f:93:c4:ab:70:7c:5b:e9:c2:df:bf:db
    Fingerprint (SHA-256):
        03:3D:EF:AD:5F:DE:AA:C7:B3:C5:3B:EE:E2:23:EF:5E:6D:62:AB:A1:B6:F3:86:3B:00:E9:DA:22:B3:24:C6:49
    Fingerprint (SHA1):
        C1:B0:25:ED:46:98:68:F0:A3:D9:DE:6B:9E:85:06:AE:F4:AC:89:24
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #8269: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236097 (0x300e2fc1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:12 2017
            Not After : Sun Aug 07 00:00:12 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:b6:70:04:d6:29:2f:a1:f0:79:b3:cc:04:a9:19:32:
                    52:95:5e:3a:be:5b:30:40:e1:15:b7:da:87:a8:a4:05:
                    cb:f3:56:1f:6d:0b:53:97:a0:83:a6:6a:e1:b7:19:cc:
                    9d:d9:a1:fb:26:dc:b2:f2:5f:69:ad:31:2e:59:e4:88:
                    74:92:82:e2:ba:dd:82:8f:78:5e:d7:c7:ee:da:41:5d:
                    3a:e3:09:e2:39:91:e6:90:ba:6f:33:3a:7f:26:5d:93:
                    a7:c9:74:10:5c:87:47:90:e0:ef:e3:77:6f:aa:0f:67:
                    fd:88:00:96:14:a6:0f:48:e4:df:90:84:7b:e6:cf:16:
                    33:b5:8e:95:bb:3e:d0:ee:89:16:1d:8c:48:b8:f7:2b:
                    5b:7c:67:ad:e6:65:9d:cd:f2:4d:9f:24:18:0e:88:40:
                    b7:4c:16:78:dc:13:f4:d5:34:a7:cc:f9:f5:96:a2:47:
                    bd:ef:8f:fe:40:ec:cc:23:95:96:38:df:2f:c9:a1:1f:
                    a0:a1:d9:17:e8:83:f2:a6:f0:28:2c:92:64:4c:da:dd:
                    27:89:35:05:19:f3:1c:32:c3:74:07:50:fb:81:ff:4e:
                    6b:15:8d:34:11:47:b3:99:29:1f:1d:75:e5:8b:e7:f6:
                    2e:3f:8c:dd:d8:9d:ca:98:83:5c:3a:e0:98:50:de:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:f2:d3:9d:5f:6a:86:2d:16:42:c5:b6:65:67:85:c4:
        58:d8:f3:f6:51:95:05:e7:f7:4a:a6:7f:a7:54:a9:d6:
        20:3d:e4:d6:cf:e4:93:5f:24:e0:b8:74:de:57:38:06:
        8a:49:38:fc:ec:de:1b:cd:0a:3e:54:f5:32:1a:66:af:
        40:75:cc:f8:85:7a:a5:4c:30:24:be:e3:67:0e:4a:1e:
        ec:b5:66:54:86:12:3d:b7:1c:73:da:5a:87:46:69:4d:
        de:9c:bc:bf:6d:9e:74:09:70:13:e9:85:21:a4:9f:45:
        47:12:2a:31:1a:67:89:4a:b1:de:59:ee:cd:6e:63:55:
        0a:2d:46:c5:76:85:87:2b:2b:05:0d:07:5e:b3:e4:2f:
        b4:a7:39:38:b9:ac:30:fa:36:54:ae:ee:77:58:a5:ab:
        2e:de:a9:dc:91:d0:a4:d3:ec:67:ca:3d:85:4f:76:37:
        95:c4:3b:60:20:dc:d4:84:b6:a0:45:40:52:be:af:af:
        d8:e4:92:db:07:72:0a:56:5a:53:69:63:3d:3e:d0:94:
        05:9f:8e:be:9e:d9:fc:ae:30:fa:39:ea:02:77:a7:e5:
        14:e5:21:14:c9:af:1d:bf:f8:90:15:3d:20:b6:a0:3e:
        aa:e8:41:83:7c:ec:73:24:ef:63:9c:fe:71:9d:b2:67
    Fingerprint (SHA-256):
        FF:5D:3A:48:72:4C:92:20:42:00:C2:45:14:99:EF:7D:F4:C1:BA:4D:71:F5:EB:1B:D7:43:A9:94:6B:46:02:35
    Fingerprint (SHA1):
        0E:A2:2A:1F:54:6C:FF:C9:36:93:68:35:2D:07:EC:46:A5:3B:A8:B6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #8270: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236097 (0x300e2fc1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:12 2017
            Not After : Sun Aug 07 00:00:12 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:b6:70:04:d6:29:2f:a1:f0:79:b3:cc:04:a9:19:32:
                    52:95:5e:3a:be:5b:30:40:e1:15:b7:da:87:a8:a4:05:
                    cb:f3:56:1f:6d:0b:53:97:a0:83:a6:6a:e1:b7:19:cc:
                    9d:d9:a1:fb:26:dc:b2:f2:5f:69:ad:31:2e:59:e4:88:
                    74:92:82:e2:ba:dd:82:8f:78:5e:d7:c7:ee:da:41:5d:
                    3a:e3:09:e2:39:91:e6:90:ba:6f:33:3a:7f:26:5d:93:
                    a7:c9:74:10:5c:87:47:90:e0:ef:e3:77:6f:aa:0f:67:
                    fd:88:00:96:14:a6:0f:48:e4:df:90:84:7b:e6:cf:16:
                    33:b5:8e:95:bb:3e:d0:ee:89:16:1d:8c:48:b8:f7:2b:
                    5b:7c:67:ad:e6:65:9d:cd:f2:4d:9f:24:18:0e:88:40:
                    b7:4c:16:78:dc:13:f4:d5:34:a7:cc:f9:f5:96:a2:47:
                    bd:ef:8f:fe:40:ec:cc:23:95:96:38:df:2f:c9:a1:1f:
                    a0:a1:d9:17:e8:83:f2:a6:f0:28:2c:92:64:4c:da:dd:
                    27:89:35:05:19:f3:1c:32:c3:74:07:50:fb:81:ff:4e:
                    6b:15:8d:34:11:47:b3:99:29:1f:1d:75:e5:8b:e7:f6:
                    2e:3f:8c:dd:d8:9d:ca:98:83:5c:3a:e0:98:50:de:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:f2:d3:9d:5f:6a:86:2d:16:42:c5:b6:65:67:85:c4:
        58:d8:f3:f6:51:95:05:e7:f7:4a:a6:7f:a7:54:a9:d6:
        20:3d:e4:d6:cf:e4:93:5f:24:e0:b8:74:de:57:38:06:
        8a:49:38:fc:ec:de:1b:cd:0a:3e:54:f5:32:1a:66:af:
        40:75:cc:f8:85:7a:a5:4c:30:24:be:e3:67:0e:4a:1e:
        ec:b5:66:54:86:12:3d:b7:1c:73:da:5a:87:46:69:4d:
        de:9c:bc:bf:6d:9e:74:09:70:13:e9:85:21:a4:9f:45:
        47:12:2a:31:1a:67:89:4a:b1:de:59:ee:cd:6e:63:55:
        0a:2d:46:c5:76:85:87:2b:2b:05:0d:07:5e:b3:e4:2f:
        b4:a7:39:38:b9:ac:30:fa:36:54:ae:ee:77:58:a5:ab:
        2e:de:a9:dc:91:d0:a4:d3:ec:67:ca:3d:85:4f:76:37:
        95:c4:3b:60:20:dc:d4:84:b6:a0:45:40:52:be:af:af:
        d8:e4:92:db:07:72:0a:56:5a:53:69:63:3d:3e:d0:94:
        05:9f:8e:be:9e:d9:fc:ae:30:fa:39:ea:02:77:a7:e5:
        14:e5:21:14:c9:af:1d:bf:f8:90:15:3d:20:b6:a0:3e:
        aa:e8:41:83:7c:ec:73:24:ef:63:9c:fe:71:9d:b2:67
    Fingerprint (SHA-256):
        FF:5D:3A:48:72:4C:92:20:42:00:C2:45:14:99:EF:7D:F4:C1:BA:4D:71:F5:EB:1B:D7:43:A9:94:6B:46:02:35
    Fingerprint (SHA1):
        0E:A2:2A:1F:54:6C:FF:C9:36:93:68:35:2D:07:EC:46:A5:3B:A8:B6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #8271: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #8272: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806236104 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8273: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #8274: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #8275: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806236105 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8276: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #8277: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #8278: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8279: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 806236106   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8280: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8281: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #8282: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8283: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 806236107   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8284: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8285: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #8286: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8287: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 806236108 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #8288: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8289: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 806236109 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #8290: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8291: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #8292: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #8293: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8294: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 806236110   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8295: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8296: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #8297: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8298: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 806236111   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8299: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8300: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #8301: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8302: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 806236112   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8303: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8304: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #8305: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8306: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 806236113   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8307: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8308: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8309: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236104 (0x300e2fc8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:14 2017
            Not After : Sun Aug 07 00:00:14 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:6f:bc:70:bd:d4:c9:0b:85:ab:38:84:7e:af:0a:48:
                    89:be:4a:5f:d0:f9:e7:ab:52:d3:a4:d9:6f:b5:7e:91:
                    a3:f7:39:c6:1c:21:2b:69:ad:c0:c0:d9:9c:cd:7e:57:
                    1f:58:fe:4f:e2:39:ef:39:f7:f7:76:25:9c:6f:a4:92:
                    bb:e2:77:bc:2e:e4:7c:05:5b:a2:e0:44:f0:20:bc:e8:
                    28:6e:e1:7f:59:7f:74:9c:23:d4:a3:32:2a:ec:fb:f3:
                    2e:f2:7e:ac:59:7f:f0:83:e6:5a:9a:c3:f4:b4:5d:54:
                    a1:ee:f7:6f:5b:ab:bc:fa:d1:42:f0:96:67:54:78:96:
                    85:9b:71:46:a8:5b:53:a7:e4:f8:44:47:ae:04:81:28:
                    9e:6f:d7:c9:00:c8:8e:8c:e4:5d:14:97:45:98:73:26:
                    ed:69:6c:a9:3b:36:85:eb:a3:01:7f:eb:2a:98:a6:96:
                    d6:da:a6:21:ec:cd:7b:d5:f2:a5:71:71:38:94:c0:ef:
                    8f:ea:da:58:a5:95:a6:b5:1b:c1:cd:f5:52:d7:1f:39:
                    26:7e:88:02:a8:fb:97:94:6c:e6:c5:04:4b:1c:c5:e1:
                    37:82:7a:22:42:77:36:54:65:83:26:a2:89:10:2f:3b:
                    54:70:50:bc:47:d4:8d:e0:54:c5:55:e2:b4:59:34:c9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:2c:fe:34:7d:63:9f:c1:0f:7c:0f:18:61:53:2c:b4:
        cf:e5:44:a4:fb:13:87:78:d0:5e:90:9a:dd:4b:8b:eb:
        79:4b:9d:69:58:ec:15:d0:0a:05:33:d5:14:39:f6:c9:
        a0:16:52:b0:d1:fb:35:d1:19:44:00:3b:40:d7:21:4b:
        6b:47:60:b3:c1:88:24:0f:d2:97:9f:e9:5b:6e:8d:23:
        69:70:f1:92:66:06:67:4e:22:da:c1:4f:d6:74:a9:6a:
        f2:a5:cf:40:1e:8e:34:25:3c:74:dd:ed:9c:81:95:05:
        91:1e:8d:0a:39:e4:cf:49:20:ab:fa:bf:e0:34:e2:0d:
        c5:bd:8c:21:3b:8c:d8:46:78:83:7c:3a:49:77:fb:32:
        a3:c2:86:43:9c:b2:56:0d:55:fa:35:54:14:b3:66:bd:
        ac:0a:da:ed:c8:bb:fc:09:ad:aa:12:d6:e2:48:be:49:
        0d:db:99:dc:87:ab:68:15:5a:94:b5:f8:90:5b:d7:ca:
        a5:a9:84:b8:1e:11:f8:c7:41:9b:ed:9f:9d:d0:35:35:
        dc:0a:0e:51:b9:de:03:70:36:8f:79:58:e0:83:7d:32:
        f5:9e:c6:ed:ba:38:b3:be:ea:97:87:a0:ec:32:ec:de:
        1d:5a:94:4b:48:07:c8:a0:3c:f4:08:41:1c:a5:ae:ad
    Fingerprint (SHA-256):
        2B:0D:0B:4C:A5:93:43:60:A2:13:A7:61:AE:66:A1:AF:63:79:DB:80:0C:E0:30:38:25:C7:0D:AA:92:EE:56:CD
    Fingerprint (SHA1):
        58:D4:8E:67:B8:90:85:CA:91:75:07:AB:22:F9:FD:7B:18:CB:84:F2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #8310: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8311: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8312: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8313: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8314: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8315: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8316: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8317: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8318: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236105 (0x300e2fc9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:14 2017
            Not After : Sun Aug 07 00:00:14 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:91:a4:01:dc:09:80:03:62:fc:be:96:22:4a:5f:71:
                    1c:e4:a8:64:bf:55:05:38:6f:84:86:aa:82:28:e3:46:
                    72:95:da:f8:26:ac:ec:5b:3c:35:99:4e:e7:d7:e5:ea:
                    7f:54:25:08:08:19:ec:25:17:32:ab:d6:22:e8:6e:14:
                    e6:10:32:95:c4:c0:d7:4c:6b:f4:84:af:b4:af:78:97:
                    24:b7:39:4f:ef:ff:bc:39:20:a4:58:a1:cd:9a:95:e0:
                    0e:94:ea:0c:18:d2:f8:cd:18:58:18:26:07:7d:69:b9:
                    0f:35:f2:a2:57:df:4e:32:fd:de:34:c5:f6:1c:72:0d:
                    5d:cd:cf:db:82:95:a5:58:a4:15:45:34:65:ef:12:cd:
                    fd:a0:2d:0f:f7:41:dc:06:99:4b:d9:31:eb:3d:81:95:
                    6d:c0:dd:8b:70:c1:76:5c:94:99:10:5d:f4:d1:c8:c1:
                    4f:4f:a3:62:e2:52:de:64:9e:81:e8:ee:ce:2a:ff:2e:
                    c7:0f:68:7e:df:30:23:24:1d:1f:74:90:e8:29:85:3d:
                    f5:1c:e9:bf:23:33:cb:1e:72:bd:01:a6:d3:95:ea:d3:
                    4b:ab:6d:d0:bc:6b:a7:c6:af:b1:4d:eb:86:00:a8:c3:
                    60:c7:eb:ec:77:a9:24:86:73:9c:ae:34:fc:33:10:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        01:8f:9f:5d:0d:ee:88:45:6f:a1:9f:85:32:d4:3f:a8:
        60:0e:a3:14:3d:72:e2:de:b8:b3:2a:fe:d7:26:92:41:
        4d:43:3f:6b:21:78:46:a6:f4:58:70:44:bc:db:b2:3b:
        5e:4f:12:ab:a8:0b:58:c9:87:32:ad:cd:d7:bf:55:ec:
        90:38:5d:e5:f3:c1:df:55:11:72:59:f1:a5:21:70:f2:
        4a:b2:47:ad:38:cf:12:f6:06:c6:d9:7d:21:50:60:84:
        f0:d7:bd:af:7c:bd:fd:f6:7f:a3:02:ea:3f:8f:aa:6c:
        c5:03:0e:07:95:fe:d8:b8:58:6f:f6:b3:51:92:d1:db:
        d3:83:91:e8:44:de:d0:ec:d1:c0:01:49:d7:52:be:5d:
        0d:45:0b:be:57:7c:48:7a:e8:9b:07:12:1a:5e:be:ed:
        1c:40:8e:8a:99:df:38:73:58:85:ed:81:43:ac:ac:ac:
        9a:5d:93:cc:f0:d5:c0:c0:b3:ac:82:f7:2f:40:95:45:
        dc:c8:3e:61:93:8d:01:c8:5b:66:8d:bb:a9:09:60:ee:
        af:b5:f3:bf:81:0e:cc:eb:a0:24:c0:a7:85:df:41:7c:
        48:18:35:29:12:2e:61:b7:c2:a7:b8:73:e2:a8:e7:05:
        ea:b8:82:54:91:30:5c:e4:81:51:92:06:db:c0:44:bd
    Fingerprint (SHA-256):
        41:7F:5D:8F:77:4F:CE:46:24:68:25:8B:C8:5B:2F:B3:5C:DB:03:D8:24:47:26:AF:93:2B:BF:81:38:A2:D9:81
    Fingerprint (SHA1):
        CD:47:D1:7E:A7:32:97:D4:9B:10:65:3C:FC:79:B1:A5:24:0A:A0:40
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #8319: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8320: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8321: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8322: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8323: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8324: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #8325: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #8326: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #8327: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #8328: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #8329: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #8330: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #8331: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #8332: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #8333: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #8334: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #8335: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #8336: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #8337: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806236114 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8338: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #8339: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #8340: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8341: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 806236115   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8342: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8343: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #8344: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8345: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 806236116   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8346: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8347: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #8348: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8349: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 806236117   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8350: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8351: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #8352: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8353: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 806236118   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8354: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8355: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #8356: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8357: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 806236119   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8358: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8359: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #8360: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8361: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 806236120   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8362: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8363: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #8364: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8365: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 806236121   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8366: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8367: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #8368: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8369: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 806236122   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8370: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8371: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #8372: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236114 (0x300e2fd2)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:17 2017
            Not After : Sun Aug 07 00:00:17 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    af:c0:49:e9:ae:28:5b:e0:37:6c:3f:52:e2:10:55:44:
                    3f:ec:02:f4:c7:bd:b1:24:52:ab:cb:78:60:e9:ae:11:
                    9a:ed:84:e6:9f:d0:97:ff:37:64:b5:c1:45:e2:22:d6:
                    d7:7e:f8:61:ec:f5:29:2e:4a:3b:56:9e:3a:03:7f:25:
                    4d:78:20:e1:34:c0:09:9c:46:71:84:4c:39:53:11:b8:
                    0a:64:87:72:28:79:50:4e:21:27:4b:f1:8d:e0:43:d6:
                    3f:38:e7:fb:45:23:70:bc:8d:ce:bb:38:0c:f3:c9:12:
                    d4:0a:78:1e:98:a2:10:98:a0:7a:30:4a:77:7f:17:54:
                    3c:6c:27:90:c8:26:8b:77:2a:e3:a7:76:56:d5:3e:0c:
                    41:88:9c:fd:ae:cf:01:ce:70:1c:22:5b:47:e1:aa:5e:
                    d9:5e:de:8d:cc:81:02:b7:50:79:09:63:20:33:c6:a0:
                    58:c4:2c:6c:5d:c6:9a:79:9a:c3:7c:ab:2e:2e:3c:a7:
                    23:76:df:73:b7:7d:27:10:28:a6:f0:ed:5a:15:42:12:
                    28:47:a4:72:b1:96:38:99:1e:61:c6:86:26:c3:83:67:
                    02:33:54:2a:29:a9:0f:b6:2a:e2:5d:4c:2c:58:b0:4e:
                    aa:92:7d:d1:2f:78:9e:5e:e1:b8:a7:66:fe:59:3a:be
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3e:02:1d:00:af:64:a3:88:66:8e:74:ab:f2:03:72:
        66:9b:e8:79:7e:8c:a5:4f:f5:8a:75:9d:39:89:a5:44:
        90:02:1d:00:97:04:93:41:0f:6b:24:65:60:ce:9a:ff:
        e4:aa:9c:8e:35:cf:ed:a7:de:b4:cf:11:1d:97:a9:0a
    Fingerprint (SHA-256):
        A3:69:28:FC:90:15:A6:EA:A4:6B:BD:2E:44:7F:5D:56:A5:E3:A2:57:86:51:79:3A:E2:23:DE:B0:CC:0A:C7:B9
    Fingerprint (SHA1):
        E5:D5:10:7A:51:BA:25:47:C7:DB:3A:67:F1:AC:FC:44:83:42:FB:D9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8373: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236114 (0x300e2fd2)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:17 2017
            Not After : Sun Aug 07 00:00:17 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    af:c0:49:e9:ae:28:5b:e0:37:6c:3f:52:e2:10:55:44:
                    3f:ec:02:f4:c7:bd:b1:24:52:ab:cb:78:60:e9:ae:11:
                    9a:ed:84:e6:9f:d0:97:ff:37:64:b5:c1:45:e2:22:d6:
                    d7:7e:f8:61:ec:f5:29:2e:4a:3b:56:9e:3a:03:7f:25:
                    4d:78:20:e1:34:c0:09:9c:46:71:84:4c:39:53:11:b8:
                    0a:64:87:72:28:79:50:4e:21:27:4b:f1:8d:e0:43:d6:
                    3f:38:e7:fb:45:23:70:bc:8d:ce:bb:38:0c:f3:c9:12:
                    d4:0a:78:1e:98:a2:10:98:a0:7a:30:4a:77:7f:17:54:
                    3c:6c:27:90:c8:26:8b:77:2a:e3:a7:76:56:d5:3e:0c:
                    41:88:9c:fd:ae:cf:01:ce:70:1c:22:5b:47:e1:aa:5e:
                    d9:5e:de:8d:cc:81:02:b7:50:79:09:63:20:33:c6:a0:
                    58:c4:2c:6c:5d:c6:9a:79:9a:c3:7c:ab:2e:2e:3c:a7:
                    23:76:df:73:b7:7d:27:10:28:a6:f0:ed:5a:15:42:12:
                    28:47:a4:72:b1:96:38:99:1e:61:c6:86:26:c3:83:67:
                    02:33:54:2a:29:a9:0f:b6:2a:e2:5d:4c:2c:58:b0:4e:
                    aa:92:7d:d1:2f:78:9e:5e:e1:b8:a7:66:fe:59:3a:be
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3e:02:1d:00:af:64:a3:88:66:8e:74:ab:f2:03:72:
        66:9b:e8:79:7e:8c:a5:4f:f5:8a:75:9d:39:89:a5:44:
        90:02:1d:00:97:04:93:41:0f:6b:24:65:60:ce:9a:ff:
        e4:aa:9c:8e:35:cf:ed:a7:de:b4:cf:11:1d:97:a9:0a
    Fingerprint (SHA-256):
        A3:69:28:FC:90:15:A6:EA:A4:6B:BD:2E:44:7F:5D:56:A5:E3:A2:57:86:51:79:3A:E2:23:DE:B0:CC:0A:C7:B9
    Fingerprint (SHA1):
        E5:D5:10:7A:51:BA:25:47:C7:DB:3A:67:F1:AC:FC:44:83:42:FB:D9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #8374: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236114 (0x300e2fd2)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:17 2017
            Not After : Sun Aug 07 00:00:17 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    af:c0:49:e9:ae:28:5b:e0:37:6c:3f:52:e2:10:55:44:
                    3f:ec:02:f4:c7:bd:b1:24:52:ab:cb:78:60:e9:ae:11:
                    9a:ed:84:e6:9f:d0:97:ff:37:64:b5:c1:45:e2:22:d6:
                    d7:7e:f8:61:ec:f5:29:2e:4a:3b:56:9e:3a:03:7f:25:
                    4d:78:20:e1:34:c0:09:9c:46:71:84:4c:39:53:11:b8:
                    0a:64:87:72:28:79:50:4e:21:27:4b:f1:8d:e0:43:d6:
                    3f:38:e7:fb:45:23:70:bc:8d:ce:bb:38:0c:f3:c9:12:
                    d4:0a:78:1e:98:a2:10:98:a0:7a:30:4a:77:7f:17:54:
                    3c:6c:27:90:c8:26:8b:77:2a:e3:a7:76:56:d5:3e:0c:
                    41:88:9c:fd:ae:cf:01:ce:70:1c:22:5b:47:e1:aa:5e:
                    d9:5e:de:8d:cc:81:02:b7:50:79:09:63:20:33:c6:a0:
                    58:c4:2c:6c:5d:c6:9a:79:9a:c3:7c:ab:2e:2e:3c:a7:
                    23:76:df:73:b7:7d:27:10:28:a6:f0:ed:5a:15:42:12:
                    28:47:a4:72:b1:96:38:99:1e:61:c6:86:26:c3:83:67:
                    02:33:54:2a:29:a9:0f:b6:2a:e2:5d:4c:2c:58:b0:4e:
                    aa:92:7d:d1:2f:78:9e:5e:e1:b8:a7:66:fe:59:3a:be
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3e:02:1d:00:af:64:a3:88:66:8e:74:ab:f2:03:72:
        66:9b:e8:79:7e:8c:a5:4f:f5:8a:75:9d:39:89:a5:44:
        90:02:1d:00:97:04:93:41:0f:6b:24:65:60:ce:9a:ff:
        e4:aa:9c:8e:35:cf:ed:a7:de:b4:cf:11:1d:97:a9:0a
    Fingerprint (SHA-256):
        A3:69:28:FC:90:15:A6:EA:A4:6B:BD:2E:44:7F:5D:56:A5:E3:A2:57:86:51:79:3A:E2:23:DE:B0:CC:0A:C7:B9
    Fingerprint (SHA1):
        E5:D5:10:7A:51:BA:25:47:C7:DB:3A:67:F1:AC:FC:44:83:42:FB:D9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #8375: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236114 (0x300e2fd2)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:17 2017
            Not After : Sun Aug 07 00:00:17 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    af:c0:49:e9:ae:28:5b:e0:37:6c:3f:52:e2:10:55:44:
                    3f:ec:02:f4:c7:bd:b1:24:52:ab:cb:78:60:e9:ae:11:
                    9a:ed:84:e6:9f:d0:97:ff:37:64:b5:c1:45:e2:22:d6:
                    d7:7e:f8:61:ec:f5:29:2e:4a:3b:56:9e:3a:03:7f:25:
                    4d:78:20:e1:34:c0:09:9c:46:71:84:4c:39:53:11:b8:
                    0a:64:87:72:28:79:50:4e:21:27:4b:f1:8d:e0:43:d6:
                    3f:38:e7:fb:45:23:70:bc:8d:ce:bb:38:0c:f3:c9:12:
                    d4:0a:78:1e:98:a2:10:98:a0:7a:30:4a:77:7f:17:54:
                    3c:6c:27:90:c8:26:8b:77:2a:e3:a7:76:56:d5:3e:0c:
                    41:88:9c:fd:ae:cf:01:ce:70:1c:22:5b:47:e1:aa:5e:
                    d9:5e:de:8d:cc:81:02:b7:50:79:09:63:20:33:c6:a0:
                    58:c4:2c:6c:5d:c6:9a:79:9a:c3:7c:ab:2e:2e:3c:a7:
                    23:76:df:73:b7:7d:27:10:28:a6:f0:ed:5a:15:42:12:
                    28:47:a4:72:b1:96:38:99:1e:61:c6:86:26:c3:83:67:
                    02:33:54:2a:29:a9:0f:b6:2a:e2:5d:4c:2c:58:b0:4e:
                    aa:92:7d:d1:2f:78:9e:5e:e1:b8:a7:66:fe:59:3a:be
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3e:02:1d:00:af:64:a3:88:66:8e:74:ab:f2:03:72:
        66:9b:e8:79:7e:8c:a5:4f:f5:8a:75:9d:39:89:a5:44:
        90:02:1d:00:97:04:93:41:0f:6b:24:65:60:ce:9a:ff:
        e4:aa:9c:8e:35:cf:ed:a7:de:b4:cf:11:1d:97:a9:0a
    Fingerprint (SHA-256):
        A3:69:28:FC:90:15:A6:EA:A4:6B:BD:2E:44:7F:5D:56:A5:E3:A2:57:86:51:79:3A:E2:23:DE:B0:CC:0A:C7:B9
    Fingerprint (SHA1):
        E5:D5:10:7A:51:BA:25:47:C7:DB:3A:67:F1:AC:FC:44:83:42:FB:D9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #8376: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #8377: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 10 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8378: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #8379: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #8380: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8381: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8382: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8383: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #8384: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8385: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8386: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8387: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #8388: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8389: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8390: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8391: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #8392: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8393: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8394: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8395: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #8396: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8397: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8398: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8399: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #8400: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8401: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8402: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8403: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170807000020Z
nextupdate=20180807000020Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Mon Aug 07 00:00:20 2017
    Next Update: Tue Aug 07 00:00:20 2018
    CRL Extensions:
chains.sh: #8404: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170807000020Z
nextupdate=20180807000020Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Mon Aug 07 00:00:20 2017
    Next Update: Tue Aug 07 00:00:20 2018
    CRL Extensions:
chains.sh: #8405: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170807000020Z
nextupdate=20180807000020Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Mon Aug 07 00:00:20 2017
    Next Update: Tue Aug 07 00:00:20 2018
    CRL Extensions:
chains.sh: #8406: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170807000020Z
nextupdate=20180807000020Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Mon Aug 07 00:00:20 2017
    Next Update: Tue Aug 07 00:00:20 2018
    CRL Extensions:
chains.sh: #8407: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170807000021Z
addcert 14 20170807000021Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Mon Aug 07 00:00:21 2017
    Next Update: Tue Aug 07 00:00:20 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Mon Aug 07 00:00:21 2017
    CRL Extensions:
chains.sh: #8408: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170807000022Z
addcert 15 20170807000022Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Mon Aug 07 00:00:22 2017
    Next Update: Tue Aug 07 00:00:20 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Mon Aug 07 00:00:22 2017
    CRL Extensions:
chains.sh: #8409: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #8410: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8411: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #8412: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #8413: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #8414: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #8415: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #8416: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #8417: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #8418: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:18 2017
            Not After : Sun Aug 07 00:00:18 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:42:70:a4:d4:72:c8:3d:7c:d2:e6:51:0a:3e:80:c5:
                    79:12:3a:c8:16:14:98:d3:b6:37:99:6b:4a:53:34:22:
                    d2:7b:88:f5:c0:b6:c7:b4:46:40:57:1b:bf:bd:3e:0c:
                    1e:31:80:b7:b1:c4:51:bc:4a:1b:83:9c:80:c9:3c:ac:
                    d3:ef:3c:be:d5:f0:de:c3:31:3f:f9:8a:09:f3:f5:98:
                    43:34:ab:18:f1:5b:10:c0:62:2d:57:76:26:3f:ce:e8:
                    d3:ee:b4:39:b4:17:74:3f:77:8c:96:b3:5e:e4:19:9c:
                    3a:d6:02:77:3f:8f:6d:7e:cc:1c:ce:94:85:49:28:67:
                    9c:1a:7a:9c:08:5b:70:4f:a0:93:66:2a:f6:61:da:e9:
                    9d:8a:b1:ec:34:6e:21:37:b2:e0:c7:51:52:51:d9:b8:
                    a9:5b:0c:d6:1b:5c:da:9b:e6:46:a3:bc:d0:56:a1:8f:
                    14:b5:a0:af:12:47:6e:e5:e1:8d:35:88:5b:3d:cd:68:
                    51:ff:33:ae:35:9b:2f:d7:23:72:7a:16:df:27:de:f1:
                    78:de:b3:bd:99:ca:f0:e9:4e:ab:76:e9:e4:c3:bb:69:
                    ab:59:ce:e3:47:3d:67:b5:9b:78:78:25:12:ba:73:26:
                    d7:31:24:ac:9b:43:ea:76:50:54:61:49:51:98:c0:97
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:be:2c:be:1b:b0:74:7d:ee:28:3d:a7:e6:49:9f:84:
        ba:02:b7:77:d2:ca:28:27:5a:11:74:43:94:1f:e1:76:
        91:e0:fb:18:93:14:c2:ac:90:6f:24:e0:43:1c:e4:7d:
        14:70:f2:e8:13:86:12:8e:e0:da:0b:68:0a:70:f3:c8:
        f0:de:2e:0b:a2:ec:80:d6:29:92:6a:6c:95:d7:74:28:
        5f:a7:c7:57:b1:c9:cf:19:95:24:07:4c:b3:6b:d6:3d:
        2a:6e:26:79:9c:d5:9a:43:00:9e:dd:73:9c:05:55:cb:
        3c:74:83:05:f7:6e:12:33:03:b5:ef:ec:f2:98:79:3b:
        90:c5:7b:2f:e1:f6:df:b2:df:da:e9:87:e9:48:4f:25:
        19:eb:27:bf:77:d6:52:9d:87:df:88:55:a6:60:e6:4a:
        2e:cf:fe:26:a2:ec:29:fe:c7:f9:6e:67:0b:58:8b:64:
        88:65:f8:66:be:1d:9d:1f:a2:a0:bc:a7:bb:a1:46:11:
        5c:dc:26:c5:da:b7:38:39:73:02:f0:66:58:3e:90:bc:
        d6:af:b1:7c:94:ce:c3:fc:59:fc:37:5c:a2:9f:5d:a0:
        ff:0f:e5:e7:78:40:24:4d:f1:8a:60:e8:32:1b:86:fa:
        af:8b:ae:d6:d0:12:2e:60:59:0c:2a:1e:b3:69:33:18
    Fingerprint (SHA-256):
        56:93:C8:B8:2F:9B:93:5D:DD:1E:47:B9:78:A1:CB:96:E1:70:48:D0:E3:F3:0C:A8:85:EE:E3:FE:9D:2B:DB:47
    Fingerprint (SHA1):
        FE:35:1C:13:3C:C6:90:40:7A:47:1E:8F:58:00:7C:E8:10:1E:20:CF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #8419: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #8420: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:18 2017
            Not After : Sun Aug 07 00:00:18 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:42:70:a4:d4:72:c8:3d:7c:d2:e6:51:0a:3e:80:c5:
                    79:12:3a:c8:16:14:98:d3:b6:37:99:6b:4a:53:34:22:
                    d2:7b:88:f5:c0:b6:c7:b4:46:40:57:1b:bf:bd:3e:0c:
                    1e:31:80:b7:b1:c4:51:bc:4a:1b:83:9c:80:c9:3c:ac:
                    d3:ef:3c:be:d5:f0:de:c3:31:3f:f9:8a:09:f3:f5:98:
                    43:34:ab:18:f1:5b:10:c0:62:2d:57:76:26:3f:ce:e8:
                    d3:ee:b4:39:b4:17:74:3f:77:8c:96:b3:5e:e4:19:9c:
                    3a:d6:02:77:3f:8f:6d:7e:cc:1c:ce:94:85:49:28:67:
                    9c:1a:7a:9c:08:5b:70:4f:a0:93:66:2a:f6:61:da:e9:
                    9d:8a:b1:ec:34:6e:21:37:b2:e0:c7:51:52:51:d9:b8:
                    a9:5b:0c:d6:1b:5c:da:9b:e6:46:a3:bc:d0:56:a1:8f:
                    14:b5:a0:af:12:47:6e:e5:e1:8d:35:88:5b:3d:cd:68:
                    51:ff:33:ae:35:9b:2f:d7:23:72:7a:16:df:27:de:f1:
                    78:de:b3:bd:99:ca:f0:e9:4e:ab:76:e9:e4:c3:bb:69:
                    ab:59:ce:e3:47:3d:67:b5:9b:78:78:25:12:ba:73:26:
                    d7:31:24:ac:9b:43:ea:76:50:54:61:49:51:98:c0:97
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:be:2c:be:1b:b0:74:7d:ee:28:3d:a7:e6:49:9f:84:
        ba:02:b7:77:d2:ca:28:27:5a:11:74:43:94:1f:e1:76:
        91:e0:fb:18:93:14:c2:ac:90:6f:24:e0:43:1c:e4:7d:
        14:70:f2:e8:13:86:12:8e:e0:da:0b:68:0a:70:f3:c8:
        f0:de:2e:0b:a2:ec:80:d6:29:92:6a:6c:95:d7:74:28:
        5f:a7:c7:57:b1:c9:cf:19:95:24:07:4c:b3:6b:d6:3d:
        2a:6e:26:79:9c:d5:9a:43:00:9e:dd:73:9c:05:55:cb:
        3c:74:83:05:f7:6e:12:33:03:b5:ef:ec:f2:98:79:3b:
        90:c5:7b:2f:e1:f6:df:b2:df:da:e9:87:e9:48:4f:25:
        19:eb:27:bf:77:d6:52:9d:87:df:88:55:a6:60:e6:4a:
        2e:cf:fe:26:a2:ec:29:fe:c7:f9:6e:67:0b:58:8b:64:
        88:65:f8:66:be:1d:9d:1f:a2:a0:bc:a7:bb:a1:46:11:
        5c:dc:26:c5:da:b7:38:39:73:02:f0:66:58:3e:90:bc:
        d6:af:b1:7c:94:ce:c3:fc:59:fc:37:5c:a2:9f:5d:a0:
        ff:0f:e5:e7:78:40:24:4d:f1:8a:60:e8:32:1b:86:fa:
        af:8b:ae:d6:d0:12:2e:60:59:0c:2a:1e:b3:69:33:18
    Fingerprint (SHA-256):
        56:93:C8:B8:2F:9B:93:5D:DD:1E:47:B9:78:A1:CB:96:E1:70:48:D0:E3:F3:0C:A8:85:EE:E3:FE:9D:2B:DB:47
    Fingerprint (SHA1):
        FE:35:1C:13:3C:C6:90:40:7A:47:1E:8F:58:00:7C:E8:10:1E:20:CF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #8421: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #8422: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #8423: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806236123 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8424: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #8425: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #8426: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8427: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 806236124   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8428: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8429: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #8430: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9019/localhost-8843-CA0-806235895.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8431: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0Root-806235869.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #8432: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8433: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #8434: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0-806235895.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8435: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 806236125   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8436: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8437: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #8438: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9019/localhost-8843-CA0-806235895.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8439: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0Root-806235870.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #8440: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8441: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #8442: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8443: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 806236126   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8444: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8445: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #8446: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0-806235895.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8447: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0Root-806235871.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #8448: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8449: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #8450: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0-806235895.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8451: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0Root-806235872.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #8452: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8453: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170807000024Z
nextupdate=20180807000024Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Mon Aug 07 00:00:24 2017
    Next Update: Tue Aug 07 00:00:24 2018
    CRL Extensions:
chains.sh: #8454: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170807000024Z
nextupdate=20180807000024Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Mon Aug 07 00:00:24 2017
    Next Update: Tue Aug 07 00:00:24 2018
    CRL Extensions:
chains.sh: #8455: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170807000024Z
nextupdate=20180807000024Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Mon Aug 07 00:00:24 2017
    Next Update: Tue Aug 07 00:00:24 2018
    CRL Extensions:
chains.sh: #8456: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170807000024Z
nextupdate=20180807000024Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Mon Aug 07 00:00:24 2017
    Next Update: Tue Aug 07 00:00:24 2018
    CRL Extensions:
chains.sh: #8457: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170807000025Z
addcert 20 20170807000025Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Mon Aug 07 00:00:25 2017
    Next Update: Tue Aug 07 00:00:24 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Mon Aug 07 00:00:25 2017
    CRL Extensions:
chains.sh: #8458: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170807000026Z
addcert 40 20170807000026Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Mon Aug 07 00:00:26 2017
    Next Update: Tue Aug 07 00:00:24 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Mon Aug 07 00:00:25 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Mon Aug 07 00:00:26 2017
    CRL Extensions:
chains.sh: #8459: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #8460: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8461: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #8462: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236123 (0x300e2fdb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:22 2017
            Not After : Sun Aug 07 00:00:22 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:c0:99:c3:86:22:dd:2a:c6:1e:78:cf:eb:87:fa:2d:
                    29:89:b7:58:32:9a:16:7a:f9:47:7f:0f:db:60:45:32:
                    18:57:2b:01:0b:9f:bb:45:5b:be:27:31:7e:57:b8:0d:
                    b6:85:48:2c:99:1d:b4:9f:23:53:43:f9:38:d6:7e:af:
                    15:85:75:e6:f3:53:2b:83:0a:a8:75:2b:88:5a:d4:6b:
                    34:dd:fd:39:c4:a4:e9:b1:af:c4:fa:6e:db:a5:d0:3c:
                    c9:ad:46:03:d2:98:92:e0:a4:cc:a2:9d:69:3e:be:6c:
                    bd:4b:39:00:49:21:ca:67:2e:0a:fb:7d:7b:c8:78:c4:
                    41:41:8c:ff:b3:b5:00:cb:e0:15:50:b3:09:18:17:46:
                    08:21:3a:1c:51:55:43:81:1a:f8:04:b5:15:18:bf:46:
                    55:70:a6:e2:3c:01:94:47:a9:bd:31:74:84:b9:8a:f9:
                    4f:b1:6f:fa:9f:1c:a9:ae:ac:5e:1b:b4:82:9b:d2:48:
                    aa:43:0d:e1:46:ee:50:60:58:0f:9e:3f:46:6a:67:73:
                    b8:7a:74:6c:c5:2a:83:3f:be:df:4a:b7:93:03:03:2d:
                    d8:11:64:8a:a5:3f:34:f1:2c:6f:75:68:37:3b:34:47:
                    c6:f5:18:2f:9b:9e:14:6e:85:a5:7e:cb:bf:ac:af:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        36:e0:d1:6e:c1:df:35:9c:41:30:25:a4:1a:1c:40:b6:
        6c:ae:b3:3e:b6:f6:a4:20:2c:ac:48:de:59:b8:02:0c:
        18:61:69:2a:73:05:71:04:ec:e0:e5:3f:bf:83:2c:dd:
        8f:77:58:3a:8b:f5:b9:44:2a:0b:d7:ec:02:32:98:c9:
        d1:b1:8a:07:10:d5:39:10:fb:4d:87:ee:88:86:7e:01:
        c3:fe:bd:1c:ca:0d:a0:d3:0f:ba:36:5c:95:03:e2:13:
        50:6c:65:7f:9b:e3:f7:f2:31:ff:74:75:b6:f2:b0:ac:
        0b:33:20:c3:86:88:7f:bd:6d:39:dc:4d:22:f1:e4:a0:
        d9:a3:19:87:3c:15:37:f1:b7:02:b2:1d:4b:2b:5e:a0:
        fa:85:13:48:2f:49:c9:c2:8a:d6:8e:61:d0:ba:2a:a2:
        43:5e:e3:89:4f:60:49:7f:a5:d1:a0:cf:eb:33:ad:fa:
        62:60:88:ac:99:bb:e2:a3:91:dc:21:a7:1f:59:9f:a3:
        e4:59:d4:78:82:0d:cc:aa:9a:51:6b:ec:1f:12:ea:b5:
        87:f5:76:b6:be:9a:ec:e3:73:41:42:4c:1f:d1:0e:b2:
        2f:b1:9f:14:71:00:91:85:f9:5c:0e:bc:a0:30:c8:ac:
        d2:d1:d2:1e:e7:41:64:56:14:c1:3b:d0:96:7b:99:4b
    Fingerprint (SHA-256):
        B0:A2:45:39:56:6B:71:56:53:C1:26:EE:67:C0:FF:EF:EF:EF:50:4F:8F:C3:24:E0:7E:41:F6:1C:32:2B:C9:6C
    Fingerprint (SHA1):
        7E:8D:2B:78:07:97:39:0D:D6:62:EB:C9:F9:97:1A:0E:A2:3C:2E:F2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #8463: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #8464: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236123 (0x300e2fdb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:22 2017
            Not After : Sun Aug 07 00:00:22 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:c0:99:c3:86:22:dd:2a:c6:1e:78:cf:eb:87:fa:2d:
                    29:89:b7:58:32:9a:16:7a:f9:47:7f:0f:db:60:45:32:
                    18:57:2b:01:0b:9f:bb:45:5b:be:27:31:7e:57:b8:0d:
                    b6:85:48:2c:99:1d:b4:9f:23:53:43:f9:38:d6:7e:af:
                    15:85:75:e6:f3:53:2b:83:0a:a8:75:2b:88:5a:d4:6b:
                    34:dd:fd:39:c4:a4:e9:b1:af:c4:fa:6e:db:a5:d0:3c:
                    c9:ad:46:03:d2:98:92:e0:a4:cc:a2:9d:69:3e:be:6c:
                    bd:4b:39:00:49:21:ca:67:2e:0a:fb:7d:7b:c8:78:c4:
                    41:41:8c:ff:b3:b5:00:cb:e0:15:50:b3:09:18:17:46:
                    08:21:3a:1c:51:55:43:81:1a:f8:04:b5:15:18:bf:46:
                    55:70:a6:e2:3c:01:94:47:a9:bd:31:74:84:b9:8a:f9:
                    4f:b1:6f:fa:9f:1c:a9:ae:ac:5e:1b:b4:82:9b:d2:48:
                    aa:43:0d:e1:46:ee:50:60:58:0f:9e:3f:46:6a:67:73:
                    b8:7a:74:6c:c5:2a:83:3f:be:df:4a:b7:93:03:03:2d:
                    d8:11:64:8a:a5:3f:34:f1:2c:6f:75:68:37:3b:34:47:
                    c6:f5:18:2f:9b:9e:14:6e:85:a5:7e:cb:bf:ac:af:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        36:e0:d1:6e:c1:df:35:9c:41:30:25:a4:1a:1c:40:b6:
        6c:ae:b3:3e:b6:f6:a4:20:2c:ac:48:de:59:b8:02:0c:
        18:61:69:2a:73:05:71:04:ec:e0:e5:3f:bf:83:2c:dd:
        8f:77:58:3a:8b:f5:b9:44:2a:0b:d7:ec:02:32:98:c9:
        d1:b1:8a:07:10:d5:39:10:fb:4d:87:ee:88:86:7e:01:
        c3:fe:bd:1c:ca:0d:a0:d3:0f:ba:36:5c:95:03:e2:13:
        50:6c:65:7f:9b:e3:f7:f2:31:ff:74:75:b6:f2:b0:ac:
        0b:33:20:c3:86:88:7f:bd:6d:39:dc:4d:22:f1:e4:a0:
        d9:a3:19:87:3c:15:37:f1:b7:02:b2:1d:4b:2b:5e:a0:
        fa:85:13:48:2f:49:c9:c2:8a:d6:8e:61:d0:ba:2a:a2:
        43:5e:e3:89:4f:60:49:7f:a5:d1:a0:cf:eb:33:ad:fa:
        62:60:88:ac:99:bb:e2:a3:91:dc:21:a7:1f:59:9f:a3:
        e4:59:d4:78:82:0d:cc:aa:9a:51:6b:ec:1f:12:ea:b5:
        87:f5:76:b6:be:9a:ec:e3:73:41:42:4c:1f:d1:0e:b2:
        2f:b1:9f:14:71:00:91:85:f9:5c:0e:bc:a0:30:c8:ac:
        d2:d1:d2:1e:e7:41:64:56:14:c1:3b:d0:96:7b:99:4b
    Fingerprint (SHA-256):
        B0:A2:45:39:56:6B:71:56:53:C1:26:EE:67:C0:FF:EF:EF:EF:50:4F:8F:C3:24:E0:7E:41:F6:1C:32:2B:C9:6C
    Fingerprint (SHA1):
        7E:8D:2B:78:07:97:39:0D:D6:62:EB:C9:F9:97:1A:0E:A2:3C:2E:F2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #8465: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #8466: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #8467: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806236127 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8468: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #8469: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #8470: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8471: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 806236128   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8472: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8473: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #8474: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8475: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 806236129   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8476: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8477: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #8478: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8479: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 806236130   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8480: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8481: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #8482: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 806236131 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8483: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #8484: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #8485: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8486: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 806236132   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8487: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8488: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #8489: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8490: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 806236133   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8491: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8492: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #8493: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #8494: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #8495: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236127 (0x300e2fdf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:27 2017
            Not After : Sun Aug 07 00:00:27 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:a0:b3:74:ab:78:d4:2e:2f:84:60:70:92:f5:52:4a:
                    46:e9:52:6d:68:c2:43:56:0d:68:c9:c1:52:fc:18:17:
                    87:79:60:40:a9:14:34:bf:1f:8d:9d:cc:80:2a:71:13:
                    e6:ee:4c:58:89:88:5e:33:91:0e:21:32:41:10:fb:fb:
                    16:51:12:61:e9:7a:5c:cc:7f:f1:b5:d7:58:6c:23:32:
                    bb:52:12:f8:27:dd:9f:15:58:b7:8f:78:3d:08:11:db:
                    72:69:50:65:8e:cd:ca:57:a5:4f:cf:25:72:0c:6c:9a:
                    a4:78:98:49:57:4e:64:73:96:5d:61:c0:a0:29:56:91:
                    c2:40:20:ef:be:c9:8d:4f:fd:d1:3e:4e:96:73:06:0f:
                    84:25:d9:f5:12:7a:fd:9e:d1:e3:f2:c3:ba:6c:55:91:
                    bd:6d:5e:2e:01:2e:f8:a8:af:f5:05:8e:7b:01:f7:6f:
                    6c:16:cb:9d:49:26:4e:56:01:fc:fd:1d:05:78:d8:91:
                    41:36:7f:f9:a4:8e:e8:1f:c0:32:e8:f7:ac:b7:0a:c3:
                    03:f2:4a:fb:13:11:05:a9:66:bc:60:1b:ae:2e:2f:e7:
                    cd:c4:ef:f9:b3:19:e8:a6:dc:3b:c0:36:bf:15:99:be:
                    d4:08:1e:a0:25:0e:b7:d0:a9:90:d2:8c:8c:94:53:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        73:4f:8b:13:1c:45:99:71:0e:7a:97:a6:f2:54:a5:0e:
        69:36:5a:41:d4:96:38:e8:9b:8e:7b:1b:e4:be:af:83:
        f3:94:a2:d1:09:d4:52:9d:7a:22:29:a2:b3:e0:02:3b:
        ab:64:80:92:9e:76:83:b6:89:c4:2f:21:e6:bb:fa:7e:
        75:c3:7d:08:fc:e5:ee:37:88:81:e4:48:a3:ab:0c:04:
        45:6f:b2:08:d4:87:ba:26:46:75:13:21:2f:fa:5c:b4:
        e9:84:44:49:2f:03:40:a1:9e:e7:52:28:16:23:11:76:
        87:f2:f1:9f:9e:5c:7e:1e:c9:c4:24:2a:a5:19:0b:c0:
        41:9d:ba:be:a9:3a:38:0e:c4:e5:46:24:8b:23:c8:7d:
        4d:81:c5:d6:15:4e:0a:02:31:52:9c:d7:0b:8e:be:ad:
        6a:b6:00:f5:08:49:24:c2:ed:d8:15:42:bf:fd:e9:02:
        00:79:a1:a0:60:3c:af:59:7a:f9:f2:8f:b2:d1:96:62:
        1c:b2:34:de:f5:62:20:f3:4b:9f:1c:79:57:2a:da:50:
        68:22:56:26:46:5b:be:7c:3b:31:f0:f8:7e:db:9b:3c:
        9d:75:af:3c:f5:bc:75:86:2f:4b:3b:65:47:2d:8d:e7:
        90:86:2b:ec:0a:0f:67:c7:09:a6:10:51:8f:e5:09:b8
    Fingerprint (SHA-256):
        94:17:60:67:0C:7C:FD:B5:22:3B:8E:63:48:CA:58:58:27:E7:6C:54:D3:C9:EC:00:6E:FD:77:5B:E7:B1:D3:02
    Fingerprint (SHA1):
        26:FA:D2:22:EF:B4:62:85:F7:F7:B1:4C:62:06:F6:4F:98:A4:10:C4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8496: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236129 (0x300e2fe1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:27 2017
            Not After : Sun Aug 07 00:00:27 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:72:0d:a2:ec:24:d0:72:64:58:81:14:bd:2f:6f:bb:
                    f7:c6:96:f0:26:7a:59:e9:da:a5:14:38:ff:e0:c7:15:
                    e9:82:2c:bd:4c:f2:8e:77:08:24:14:18:a8:c7:a2:a2:
                    15:a7:ad:e9:6a:47:35:39:f3:57:8d:38:21:2b:41:6f:
                    7c:42:21:8f:c9:42:06:f9:0b:e5:fa:c8:5f:c8:9e:54:
                    fa:c9:f8:30:39:cd:ec:3c:2f:15:3b:2d:9a:1d:4d:6c:
                    a5:6e:37:f5:2b:8e:79:c7:34:51:ab:d2:ad:22:11:ff:
                    9c:61:7a:91:bb:ec:e0:54:df:59:eb:8e:9a:83:03:08:
                    5c:6f:f3:d4:b7:da:28:bd:5a:f6:09:81:5f:16:14:93:
                    19:b0:a8:7b:fd:37:eb:cf:87:34:74:39:a3:c8:3d:b3:
                    09:81:6b:6b:0c:b0:c8:31:d7:ef:1f:42:64:15:d3:eb:
                    bc:9a:b0:11:e6:f8:65:2d:77:ef:93:d3:77:e0:f3:77:
                    10:5e:6b:db:62:67:0b:9c:91:3a:a4:b7:7e:bd:fb:19:
                    53:7e:37:95:bc:99:9c:77:5f:5d:d9:c8:f8:e8:99:2f:
                    f5:3b:b9:f9:62:da:31:04:32:9a:b9:dc:af:f4:0c:07:
                    7c:e8:ea:bc:e2:f0:f8:26:42:ec:6b:04:73:d2:bc:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:5c:50:ca:fa:bc:38:43:ab:27:55:0a:d7:aa:7c:1e:
        51:a9:63:d8:0a:ce:2b:79:fc:81:eb:a9:59:32:f5:6b:
        dc:5f:c9:57:e2:c3:9f:54:e3:a5:20:b1:7f:78:e7:3d:
        83:fa:09:f6:bb:4f:62:c4:50:fb:ae:00:5f:43:af:3a:
        cd:b4:24:9f:eb:75:b4:b4:5e:ce:d0:64:a7:50:63:68:
        25:dc:58:e1:d4:10:0b:f9:c5:b4:1f:da:27:a1:29:64:
        61:75:d6:e1:a6:32:a1:1a:fb:e7:69:a1:62:bd:a1:0a:
        be:ca:f4:9e:4b:22:62:0a:99:8f:70:38:73:0e:69:da:
        2d:2d:11:b9:c0:e0:f3:2f:ee:68:b7:b0:41:31:79:6a:
        2c:37:29:20:2f:66:ba:f5:ca:05:42:fa:84:c3:ae:c4:
        08:54:77:b7:a2:b1:33:d5:5f:b7:a2:47:fa:54:99:5d:
        5b:26:59:8d:82:1f:53:28:44:93:d0:27:b0:82:40:98:
        36:91:e5:8c:ac:40:1b:ff:ec:09:71:15:a0:72:20:41:
        bd:fc:ee:2a:ad:8c:c3:a1:28:a1:76:c9:a6:42:e9:82:
        fa:e3:a4:95:e7:b6:fd:e0:6b:aa:2f:e3:c4:f6:22:46:
        93:88:88:65:a5:45:e4:74:50:95:b2:41:f9:a7:78:c3
    Fingerprint (SHA-256):
        AC:7E:DF:38:48:EA:0D:F2:92:FD:61:AD:3E:9F:53:FA:71:AA:DB:AF:9C:41:33:AF:AC:0B:83:DF:A5:8C:79:EF
    Fingerprint (SHA1):
        D3:F6:98:B7:56:D8:8A:47:59:51:20:76:DE:57:04:AC:A0:90:44:3E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8497: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236127 (0x300e2fdf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:27 2017
            Not After : Sun Aug 07 00:00:27 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:a0:b3:74:ab:78:d4:2e:2f:84:60:70:92:f5:52:4a:
                    46:e9:52:6d:68:c2:43:56:0d:68:c9:c1:52:fc:18:17:
                    87:79:60:40:a9:14:34:bf:1f:8d:9d:cc:80:2a:71:13:
                    e6:ee:4c:58:89:88:5e:33:91:0e:21:32:41:10:fb:fb:
                    16:51:12:61:e9:7a:5c:cc:7f:f1:b5:d7:58:6c:23:32:
                    bb:52:12:f8:27:dd:9f:15:58:b7:8f:78:3d:08:11:db:
                    72:69:50:65:8e:cd:ca:57:a5:4f:cf:25:72:0c:6c:9a:
                    a4:78:98:49:57:4e:64:73:96:5d:61:c0:a0:29:56:91:
                    c2:40:20:ef:be:c9:8d:4f:fd:d1:3e:4e:96:73:06:0f:
                    84:25:d9:f5:12:7a:fd:9e:d1:e3:f2:c3:ba:6c:55:91:
                    bd:6d:5e:2e:01:2e:f8:a8:af:f5:05:8e:7b:01:f7:6f:
                    6c:16:cb:9d:49:26:4e:56:01:fc:fd:1d:05:78:d8:91:
                    41:36:7f:f9:a4:8e:e8:1f:c0:32:e8:f7:ac:b7:0a:c3:
                    03:f2:4a:fb:13:11:05:a9:66:bc:60:1b:ae:2e:2f:e7:
                    cd:c4:ef:f9:b3:19:e8:a6:dc:3b:c0:36:bf:15:99:be:
                    d4:08:1e:a0:25:0e:b7:d0:a9:90:d2:8c:8c:94:53:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        73:4f:8b:13:1c:45:99:71:0e:7a:97:a6:f2:54:a5:0e:
        69:36:5a:41:d4:96:38:e8:9b:8e:7b:1b:e4:be:af:83:
        f3:94:a2:d1:09:d4:52:9d:7a:22:29:a2:b3:e0:02:3b:
        ab:64:80:92:9e:76:83:b6:89:c4:2f:21:e6:bb:fa:7e:
        75:c3:7d:08:fc:e5:ee:37:88:81:e4:48:a3:ab:0c:04:
        45:6f:b2:08:d4:87:ba:26:46:75:13:21:2f:fa:5c:b4:
        e9:84:44:49:2f:03:40:a1:9e:e7:52:28:16:23:11:76:
        87:f2:f1:9f:9e:5c:7e:1e:c9:c4:24:2a:a5:19:0b:c0:
        41:9d:ba:be:a9:3a:38:0e:c4:e5:46:24:8b:23:c8:7d:
        4d:81:c5:d6:15:4e:0a:02:31:52:9c:d7:0b:8e:be:ad:
        6a:b6:00:f5:08:49:24:c2:ed:d8:15:42:bf:fd:e9:02:
        00:79:a1:a0:60:3c:af:59:7a:f9:f2:8f:b2:d1:96:62:
        1c:b2:34:de:f5:62:20:f3:4b:9f:1c:79:57:2a:da:50:
        68:22:56:26:46:5b:be:7c:3b:31:f0:f8:7e:db:9b:3c:
        9d:75:af:3c:f5:bc:75:86:2f:4b:3b:65:47:2d:8d:e7:
        90:86:2b:ec:0a:0f:67:c7:09:a6:10:51:8f:e5:09:b8
    Fingerprint (SHA-256):
        94:17:60:67:0C:7C:FD:B5:22:3B:8E:63:48:CA:58:58:27:E7:6C:54:D3:C9:EC:00:6E:FD:77:5B:E7:B1:D3:02
    Fingerprint (SHA1):
        26:FA:D2:22:EF:B4:62:85:F7:F7:B1:4C:62:06:F6:4F:98:A4:10:C4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8498: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #8499: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236127 (0x300e2fdf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:27 2017
            Not After : Sun Aug 07 00:00:27 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:a0:b3:74:ab:78:d4:2e:2f:84:60:70:92:f5:52:4a:
                    46:e9:52:6d:68:c2:43:56:0d:68:c9:c1:52:fc:18:17:
                    87:79:60:40:a9:14:34:bf:1f:8d:9d:cc:80:2a:71:13:
                    e6:ee:4c:58:89:88:5e:33:91:0e:21:32:41:10:fb:fb:
                    16:51:12:61:e9:7a:5c:cc:7f:f1:b5:d7:58:6c:23:32:
                    bb:52:12:f8:27:dd:9f:15:58:b7:8f:78:3d:08:11:db:
                    72:69:50:65:8e:cd:ca:57:a5:4f:cf:25:72:0c:6c:9a:
                    a4:78:98:49:57:4e:64:73:96:5d:61:c0:a0:29:56:91:
                    c2:40:20:ef:be:c9:8d:4f:fd:d1:3e:4e:96:73:06:0f:
                    84:25:d9:f5:12:7a:fd:9e:d1:e3:f2:c3:ba:6c:55:91:
                    bd:6d:5e:2e:01:2e:f8:a8:af:f5:05:8e:7b:01:f7:6f:
                    6c:16:cb:9d:49:26:4e:56:01:fc:fd:1d:05:78:d8:91:
                    41:36:7f:f9:a4:8e:e8:1f:c0:32:e8:f7:ac:b7:0a:c3:
                    03:f2:4a:fb:13:11:05:a9:66:bc:60:1b:ae:2e:2f:e7:
                    cd:c4:ef:f9:b3:19:e8:a6:dc:3b:c0:36:bf:15:99:be:
                    d4:08:1e:a0:25:0e:b7:d0:a9:90:d2:8c:8c:94:53:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        73:4f:8b:13:1c:45:99:71:0e:7a:97:a6:f2:54:a5:0e:
        69:36:5a:41:d4:96:38:e8:9b:8e:7b:1b:e4:be:af:83:
        f3:94:a2:d1:09:d4:52:9d:7a:22:29:a2:b3:e0:02:3b:
        ab:64:80:92:9e:76:83:b6:89:c4:2f:21:e6:bb:fa:7e:
        75:c3:7d:08:fc:e5:ee:37:88:81:e4:48:a3:ab:0c:04:
        45:6f:b2:08:d4:87:ba:26:46:75:13:21:2f:fa:5c:b4:
        e9:84:44:49:2f:03:40:a1:9e:e7:52:28:16:23:11:76:
        87:f2:f1:9f:9e:5c:7e:1e:c9:c4:24:2a:a5:19:0b:c0:
        41:9d:ba:be:a9:3a:38:0e:c4:e5:46:24:8b:23:c8:7d:
        4d:81:c5:d6:15:4e:0a:02:31:52:9c:d7:0b:8e:be:ad:
        6a:b6:00:f5:08:49:24:c2:ed:d8:15:42:bf:fd:e9:02:
        00:79:a1:a0:60:3c:af:59:7a:f9:f2:8f:b2:d1:96:62:
        1c:b2:34:de:f5:62:20:f3:4b:9f:1c:79:57:2a:da:50:
        68:22:56:26:46:5b:be:7c:3b:31:f0:f8:7e:db:9b:3c:
        9d:75:af:3c:f5:bc:75:86:2f:4b:3b:65:47:2d:8d:e7:
        90:86:2b:ec:0a:0f:67:c7:09:a6:10:51:8f:e5:09:b8
    Fingerprint (SHA-256):
        94:17:60:67:0C:7C:FD:B5:22:3B:8E:63:48:CA:58:58:27:E7:6C:54:D3:C9:EC:00:6E:FD:77:5B:E7:B1:D3:02
    Fingerprint (SHA1):
        26:FA:D2:22:EF:B4:62:85:F7:F7:B1:4C:62:06:F6:4F:98:A4:10:C4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8500: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236129 (0x300e2fe1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:27 2017
            Not After : Sun Aug 07 00:00:27 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:72:0d:a2:ec:24:d0:72:64:58:81:14:bd:2f:6f:bb:
                    f7:c6:96:f0:26:7a:59:e9:da:a5:14:38:ff:e0:c7:15:
                    e9:82:2c:bd:4c:f2:8e:77:08:24:14:18:a8:c7:a2:a2:
                    15:a7:ad:e9:6a:47:35:39:f3:57:8d:38:21:2b:41:6f:
                    7c:42:21:8f:c9:42:06:f9:0b:e5:fa:c8:5f:c8:9e:54:
                    fa:c9:f8:30:39:cd:ec:3c:2f:15:3b:2d:9a:1d:4d:6c:
                    a5:6e:37:f5:2b:8e:79:c7:34:51:ab:d2:ad:22:11:ff:
                    9c:61:7a:91:bb:ec:e0:54:df:59:eb:8e:9a:83:03:08:
                    5c:6f:f3:d4:b7:da:28:bd:5a:f6:09:81:5f:16:14:93:
                    19:b0:a8:7b:fd:37:eb:cf:87:34:74:39:a3:c8:3d:b3:
                    09:81:6b:6b:0c:b0:c8:31:d7:ef:1f:42:64:15:d3:eb:
                    bc:9a:b0:11:e6:f8:65:2d:77:ef:93:d3:77:e0:f3:77:
                    10:5e:6b:db:62:67:0b:9c:91:3a:a4:b7:7e:bd:fb:19:
                    53:7e:37:95:bc:99:9c:77:5f:5d:d9:c8:f8:e8:99:2f:
                    f5:3b:b9:f9:62:da:31:04:32:9a:b9:dc:af:f4:0c:07:
                    7c:e8:ea:bc:e2:f0:f8:26:42:ec:6b:04:73:d2:bc:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:5c:50:ca:fa:bc:38:43:ab:27:55:0a:d7:aa:7c:1e:
        51:a9:63:d8:0a:ce:2b:79:fc:81:eb:a9:59:32:f5:6b:
        dc:5f:c9:57:e2:c3:9f:54:e3:a5:20:b1:7f:78:e7:3d:
        83:fa:09:f6:bb:4f:62:c4:50:fb:ae:00:5f:43:af:3a:
        cd:b4:24:9f:eb:75:b4:b4:5e:ce:d0:64:a7:50:63:68:
        25:dc:58:e1:d4:10:0b:f9:c5:b4:1f:da:27:a1:29:64:
        61:75:d6:e1:a6:32:a1:1a:fb:e7:69:a1:62:bd:a1:0a:
        be:ca:f4:9e:4b:22:62:0a:99:8f:70:38:73:0e:69:da:
        2d:2d:11:b9:c0:e0:f3:2f:ee:68:b7:b0:41:31:79:6a:
        2c:37:29:20:2f:66:ba:f5:ca:05:42:fa:84:c3:ae:c4:
        08:54:77:b7:a2:b1:33:d5:5f:b7:a2:47:fa:54:99:5d:
        5b:26:59:8d:82:1f:53:28:44:93:d0:27:b0:82:40:98:
        36:91:e5:8c:ac:40:1b:ff:ec:09:71:15:a0:72:20:41:
        bd:fc:ee:2a:ad:8c:c3:a1:28:a1:76:c9:a6:42:e9:82:
        fa:e3:a4:95:e7:b6:fd:e0:6b:aa:2f:e3:c4:f6:22:46:
        93:88:88:65:a5:45:e4:74:50:95:b2:41:f9:a7:78:c3
    Fingerprint (SHA-256):
        AC:7E:DF:38:48:EA:0D:F2:92:FD:61:AD:3E:9F:53:FA:71:AA:DB:AF:9C:41:33:AF:AC:0B:83:DF:A5:8C:79:EF
    Fingerprint (SHA1):
        D3:F6:98:B7:56:D8:8A:47:59:51:20:76:DE:57:04:AC:A0:90:44:3E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8501: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #8502: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #8503: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #8504: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236127 (0x300e2fdf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:27 2017
            Not After : Sun Aug 07 00:00:27 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:a0:b3:74:ab:78:d4:2e:2f:84:60:70:92:f5:52:4a:
                    46:e9:52:6d:68:c2:43:56:0d:68:c9:c1:52:fc:18:17:
                    87:79:60:40:a9:14:34:bf:1f:8d:9d:cc:80:2a:71:13:
                    e6:ee:4c:58:89:88:5e:33:91:0e:21:32:41:10:fb:fb:
                    16:51:12:61:e9:7a:5c:cc:7f:f1:b5:d7:58:6c:23:32:
                    bb:52:12:f8:27:dd:9f:15:58:b7:8f:78:3d:08:11:db:
                    72:69:50:65:8e:cd:ca:57:a5:4f:cf:25:72:0c:6c:9a:
                    a4:78:98:49:57:4e:64:73:96:5d:61:c0:a0:29:56:91:
                    c2:40:20:ef:be:c9:8d:4f:fd:d1:3e:4e:96:73:06:0f:
                    84:25:d9:f5:12:7a:fd:9e:d1:e3:f2:c3:ba:6c:55:91:
                    bd:6d:5e:2e:01:2e:f8:a8:af:f5:05:8e:7b:01:f7:6f:
                    6c:16:cb:9d:49:26:4e:56:01:fc:fd:1d:05:78:d8:91:
                    41:36:7f:f9:a4:8e:e8:1f:c0:32:e8:f7:ac:b7:0a:c3:
                    03:f2:4a:fb:13:11:05:a9:66:bc:60:1b:ae:2e:2f:e7:
                    cd:c4:ef:f9:b3:19:e8:a6:dc:3b:c0:36:bf:15:99:be:
                    d4:08:1e:a0:25:0e:b7:d0:a9:90:d2:8c:8c:94:53:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        73:4f:8b:13:1c:45:99:71:0e:7a:97:a6:f2:54:a5:0e:
        69:36:5a:41:d4:96:38:e8:9b:8e:7b:1b:e4:be:af:83:
        f3:94:a2:d1:09:d4:52:9d:7a:22:29:a2:b3:e0:02:3b:
        ab:64:80:92:9e:76:83:b6:89:c4:2f:21:e6:bb:fa:7e:
        75:c3:7d:08:fc:e5:ee:37:88:81:e4:48:a3:ab:0c:04:
        45:6f:b2:08:d4:87:ba:26:46:75:13:21:2f:fa:5c:b4:
        e9:84:44:49:2f:03:40:a1:9e:e7:52:28:16:23:11:76:
        87:f2:f1:9f:9e:5c:7e:1e:c9:c4:24:2a:a5:19:0b:c0:
        41:9d:ba:be:a9:3a:38:0e:c4:e5:46:24:8b:23:c8:7d:
        4d:81:c5:d6:15:4e:0a:02:31:52:9c:d7:0b:8e:be:ad:
        6a:b6:00:f5:08:49:24:c2:ed:d8:15:42:bf:fd:e9:02:
        00:79:a1:a0:60:3c:af:59:7a:f9:f2:8f:b2:d1:96:62:
        1c:b2:34:de:f5:62:20:f3:4b:9f:1c:79:57:2a:da:50:
        68:22:56:26:46:5b:be:7c:3b:31:f0:f8:7e:db:9b:3c:
        9d:75:af:3c:f5:bc:75:86:2f:4b:3b:65:47:2d:8d:e7:
        90:86:2b:ec:0a:0f:67:c7:09:a6:10:51:8f:e5:09:b8
    Fingerprint (SHA-256):
        94:17:60:67:0C:7C:FD:B5:22:3B:8E:63:48:CA:58:58:27:E7:6C:54:D3:C9:EC:00:6E:FD:77:5B:E7:B1:D3:02
    Fingerprint (SHA1):
        26:FA:D2:22:EF:B4:62:85:F7:F7:B1:4C:62:06:F6:4F:98:A4:10:C4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8505: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236131 (0x300e2fe3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:28 2017
            Not After : Sun Aug 07 00:00:28 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:f6:f7:16:ef:a9:bf:0d:3c:02:11:c9:9b:52:67:c4:
                    dd:3b:dd:59:f4:02:17:3e:7b:34:23:95:8a:6c:3e:42:
                    f4:e5:c1:9a:c8:b8:fb:93:f6:f9:46:83:fc:7d:78:96:
                    68:e0:b3:cf:5d:66:3c:c6:0b:8f:d6:9e:cc:92:3d:d8:
                    f7:0a:4f:e8:dd:ec:da:09:c4:42:5e:f0:67:65:a8:ec:
                    e8:45:30:95:72:45:a7:5e:5f:1d:f5:5e:78:c1:2b:a6:
                    94:fe:6c:87:cd:7d:44:29:73:d8:9f:1e:06:2e:f3:52:
                    f0:56:70:e4:11:17:01:a5:17:51:c3:a6:ca:85:73:15:
                    a2:f2:c3:40:ac:08:fb:0a:e6:cd:d1:8a:c7:b5:a4:27:
                    13:4f:62:be:85:3d:04:73:04:01:04:c4:77:1d:88:82:
                    c6:96:40:14:08:6c:a2:db:53:51:79:a1:cd:93:fb:78:
                    db:2d:82:d8:61:31:38:12:85:bf:73:1e:72:6f:5f:7d:
                    b1:62:3d:61:72:e5:96:4f:25:fb:72:73:f0:ed:04:84:
                    0b:9e:3a:5a:b7:0a:d7:08:77:aa:b2:88:04:9c:5f:13:
                    e1:37:ee:aa:58:f5:2e:62:fd:f9:79:be:49:1b:08:8a:
                    64:c4:07:b9:0f:cb:31:aa:73:e3:ae:8c:b4:7f:d4:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:0d:a4:2e:73:dc:17:1d:4c:f4:ee:54:dd:7f:da:a1:
        b6:51:6e:c5:81:13:92:42:df:e0:53:81:2d:41:5e:17:
        5e:5f:31:e8:0d:42:48:cf:e7:3d:b7:9f:be:25:d6:f1:
        4c:3d:d2:bb:f0:24:e1:8e:01:b4:f3:f5:8a:f0:d9:a1:
        64:af:de:2c:f3:a8:ba:f8:80:e0:2c:7e:bb:86:f8:72:
        c2:24:53:33:56:98:06:53:26:92:f0:07:52:d1:11:ca:
        95:ae:27:7e:28:4a:0a:6b:6d:35:b1:a2:fc:6d:08:d9:
        8e:96:6a:31:86:c4:92:e7:69:2d:e2:d0:12:9b:fd:74:
        9d:a4:d5:b1:04:7f:44:f3:63:b7:d4:9b:7b:a8:68:32:
        87:77:ab:1f:8d:67:05:9b:ec:de:38:d8:3c:9a:87:53:
        29:96:72:81:84:d0:34:e0:f9:50:35:40:15:f8:00:d3:
        a0:be:30:ad:69:a0:0b:97:20:20:ca:d4:63:61:0e:fd:
        9a:b5:9e:c9:ef:61:2a:c7:18:aa:63:c8:7e:38:52:07:
        24:95:d4:03:d7:65:36:94:49:39:ab:98:1f:06:02:f6:
        2f:67:5c:f0:2a:3f:a0:e0:1a:46:1f:f9:b0:bc:84:58:
        dd:31:33:d9:26:ac:76:46:25:f5:d9:b1:da:6c:a7:6b
    Fingerprint (SHA-256):
        E0:F2:75:55:EC:A5:F6:F1:8C:C1:F9:0F:86:DC:82:4C:AF:2B:97:1C:25:B3:55:6E:A4:03:77:AF:6F:47:1F:B5
    Fingerprint (SHA1):
        14:60:4D:B8:85:26:49:B2:FD:E3:90:BA:1E:99:52:33:CD:06:18:7A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #8506: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236127 (0x300e2fdf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:27 2017
            Not After : Sun Aug 07 00:00:27 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:a0:b3:74:ab:78:d4:2e:2f:84:60:70:92:f5:52:4a:
                    46:e9:52:6d:68:c2:43:56:0d:68:c9:c1:52:fc:18:17:
                    87:79:60:40:a9:14:34:bf:1f:8d:9d:cc:80:2a:71:13:
                    e6:ee:4c:58:89:88:5e:33:91:0e:21:32:41:10:fb:fb:
                    16:51:12:61:e9:7a:5c:cc:7f:f1:b5:d7:58:6c:23:32:
                    bb:52:12:f8:27:dd:9f:15:58:b7:8f:78:3d:08:11:db:
                    72:69:50:65:8e:cd:ca:57:a5:4f:cf:25:72:0c:6c:9a:
                    a4:78:98:49:57:4e:64:73:96:5d:61:c0:a0:29:56:91:
                    c2:40:20:ef:be:c9:8d:4f:fd:d1:3e:4e:96:73:06:0f:
                    84:25:d9:f5:12:7a:fd:9e:d1:e3:f2:c3:ba:6c:55:91:
                    bd:6d:5e:2e:01:2e:f8:a8:af:f5:05:8e:7b:01:f7:6f:
                    6c:16:cb:9d:49:26:4e:56:01:fc:fd:1d:05:78:d8:91:
                    41:36:7f:f9:a4:8e:e8:1f:c0:32:e8:f7:ac:b7:0a:c3:
                    03:f2:4a:fb:13:11:05:a9:66:bc:60:1b:ae:2e:2f:e7:
                    cd:c4:ef:f9:b3:19:e8:a6:dc:3b:c0:36:bf:15:99:be:
                    d4:08:1e:a0:25:0e:b7:d0:a9:90:d2:8c:8c:94:53:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        73:4f:8b:13:1c:45:99:71:0e:7a:97:a6:f2:54:a5:0e:
        69:36:5a:41:d4:96:38:e8:9b:8e:7b:1b:e4:be:af:83:
        f3:94:a2:d1:09:d4:52:9d:7a:22:29:a2:b3:e0:02:3b:
        ab:64:80:92:9e:76:83:b6:89:c4:2f:21:e6:bb:fa:7e:
        75:c3:7d:08:fc:e5:ee:37:88:81:e4:48:a3:ab:0c:04:
        45:6f:b2:08:d4:87:ba:26:46:75:13:21:2f:fa:5c:b4:
        e9:84:44:49:2f:03:40:a1:9e:e7:52:28:16:23:11:76:
        87:f2:f1:9f:9e:5c:7e:1e:c9:c4:24:2a:a5:19:0b:c0:
        41:9d:ba:be:a9:3a:38:0e:c4:e5:46:24:8b:23:c8:7d:
        4d:81:c5:d6:15:4e:0a:02:31:52:9c:d7:0b:8e:be:ad:
        6a:b6:00:f5:08:49:24:c2:ed:d8:15:42:bf:fd:e9:02:
        00:79:a1:a0:60:3c:af:59:7a:f9:f2:8f:b2:d1:96:62:
        1c:b2:34:de:f5:62:20:f3:4b:9f:1c:79:57:2a:da:50:
        68:22:56:26:46:5b:be:7c:3b:31:f0:f8:7e:db:9b:3c:
        9d:75:af:3c:f5:bc:75:86:2f:4b:3b:65:47:2d:8d:e7:
        90:86:2b:ec:0a:0f:67:c7:09:a6:10:51:8f:e5:09:b8
    Fingerprint (SHA-256):
        94:17:60:67:0C:7C:FD:B5:22:3B:8E:63:48:CA:58:58:27:E7:6C:54:D3:C9:EC:00:6E:FD:77:5B:E7:B1:D3:02
    Fingerprint (SHA1):
        26:FA:D2:22:EF:B4:62:85:F7:F7:B1:4C:62:06:F6:4F:98:A4:10:C4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8507: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #8508: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #8509: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #8510: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #8511: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #8512: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 806236132 (0x300e2fe4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Mon Aug 07 00:00:28 2017
            Not After : Sun Aug 07 00:00:28 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:70:a7:7c:9d:e7:00:6a:56:d0:85:ae:1b:f6:3a:cc:
                    2a:9b:a8:1e:1f:b7:38:6a:8e:96:be:81:c9:c3:9d:64:
                    17:04:51:06:dc:c1:49:bd:c6:d2:04:49:05:1e:4c:35:
                    bb:df:8d:d4:55:44:ac:6f:aa:58:ca:17:3e:6f:7c:70:
                    b8:c2:92:5f:58:d0:73:92:51:a6:be:35:4a:1f:ff:62:
                    f0:1a:32:6b:26:12:45:93:71:36:20:f7:a5:58:2f:76:
                    e2:2e:fd:ae:da:5b:68:94:a0:db:be:bd:79:6b:bd:f2:
                    d6:02:e7:14:5f:d8:cd:9e:63:32:05:b5:c1:af:c2:b5:
                    74:54:05:36:cb:82:31:12:62:41:1f:4f:1e:fc:6d:a7:
                    48:40:3b:d3:81:99:fd:8a:75:82:6f:49:5b:46:22:7b:
                    ac:d8:06:ab:c2:21:b3:4a:84:f0:1e:31:1a:cc:fa:60:
                    1f:61:3f:4f:3f:24:88:22:c8:cc:70:93:30:eb:87:c8:
                    16:cf:17:ab:7c:c6:ca:84:ee:ed:17:56:0c:ee:b0:e3:
                    dd:0e:f4:ad:54:95:62:8b:fc:61:cb:03:36:ba:d6:28:
                    96:5a:97:6d:9e:2a:96:c9:11:82:bd:c9:79:09:0f:4b:
                    26:bc:27:8c:1c:17:f8:05:30:b7:7e:41:bb:15:ed:b9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:b7:40:a8:1e:6e:aa:d6:c9:bd:2d:42:a9:d2:44:f3:
        0f:2a:0c:32:fd:b0:27:16:9b:71:f2:f6:d4:0a:97:13:
        96:5f:9c:ba:ac:0b:d1:0a:9d:52:2c:22:56:51:ff:36:
        71:06:ac:7e:d6:5f:5f:3d:66:f6:3b:39:84:59:b0:05:
        df:d7:3a:e7:76:3d:5d:74:a2:ce:05:f5:91:26:84:d3:
        bd:2b:97:bb:02:10:a0:dd:82:d1:2e:0c:bc:70:ac:26:
        d5:6f:0b:27:6c:dd:07:f7:6a:c4:92:4e:04:65:36:07:
        5d:4e:8e:65:46:5d:fb:ee:be:ff:0e:0b:bf:31:c5:0c:
        88:cc:59:54:c3:36:50:fe:26:a1:f6:df:7c:81:a2:fc:
        e0:dd:10:da:63:4f:fe:f7:7b:0a:29:3f:9c:9a:db:b7:
        f2:f7:aa:df:44:d7:5a:a8:20:c6:51:84:40:77:ad:d0:
        41:f7:7b:cf:5e:6e:9c:be:2b:9e:10:bc:f4:dd:9b:2e:
        af:25:91:54:60:38:4a:b6:8d:c0:2f:99:05:8b:20:d9:
        9c:d9:46:e3:0a:48:e2:73:d2:78:92:da:52:2a:d8:b1:
        d2:ef:7f:de:36:db:7a:1a:79:1e:a9:3c:2f:62:7c:b8:
        4e:69:b3:0f:90:2b:a2:89:ea:9c:1d:8c:9b:f2:b6:24
    Fingerprint (SHA-256):
        C4:CE:0A:F6:5B:55:3B:68:C5:50:EB:68:C6:B1:5C:E5:4E:AB:23:19:9A:08:6F:5B:4E:7E:6B:D6:EA:CB:F0:76
    Fingerprint (SHA1):
        E0:99:8F:A5:68:7D:F3:BF:DF:05:9B:DF:E1:10:E6:5A:FD:C6:61:D8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #8513: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #8514: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #8515: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #8516: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #8517: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #8518: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #8519: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #8520: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #8521: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #8522: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #8523: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #8524: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #8525: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #8526: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #8527: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #8528: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #8529: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #8530: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #8531: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #8532: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #8533: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #8534: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #8535: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #8536: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 14056 at Mon Aug  7 00:00:30 UTC 2017
kill -USR1 14056
httpserv: normal termination
httpserv -b -p 9019 2>/dev/null;
httpserv with PID 14056 killed at Mon Aug  7 00:00:30 UTC 2017
TIMESTAMP chains END: Mon Aug  7 00:00:30 UTC 2017
Running tests for ec
TIMESTAMP ec BEGIN: Mon Aug  7 00:00:30 UTC 2017
Running ec tests for ecperf
TIMESTAMP ecperf BEGIN: Mon Aug  7 00:00:30 UTC 2017
ecperf.sh: ecperf test ===============================
./ecperf.sh: line 43: ecperf: command not found
ecperf.sh: #8537: ec(perf) test - PASSED
TIMESTAMP ecperf END: Mon Aug  7 00:00:30 UTC 2017
Running ec tests for ectest
TIMESTAMP ectest BEGIN: Mon Aug  7 00:00:30 UTC 2017
ectest.sh: freebl and pk11 ectest tests ===============================
No password file "../tests.pw" exists.
Test curve25519 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #8538: ec test certutil keygen - curve25519 - PASSED
Test secp256r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #8539: ec test certutil keygen - secp256r1 - PASSED
Test secp384r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #8540: ec test certutil keygen - secp384r1 - PASSED
Test secp521r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #8541: ec test certutil keygen - secp521r1 - PASSED
Test sect571r1 key generation using certutil that should fail because it's not implemented ...
Generating key.  This may take a few moments...
certutil: unable to generate key(s)
: SEC_ERROR_INVALID_KEY: The key does not support the requested operation.
ectest.sh: #8542: ec test certutil keygen - secp521r1 - PASSED
ectest.sh: #8543: pk11 ec tests - PASSED
TIMESTAMP ectest END: Mon Aug  7 00:00:30 UTC 2017
TIMESTAMP ec END: Mon Aug  7 00:00:30 UTC 2017
Running tests for gtests
TIMESTAMP gtests BEGIN: Mon Aug  7 00:00:30 UTC 2017
gtests: der_gtest pk11_gtest
gtests.sh: der_gtest ===============================
executing der_gtest
[==========] Running 16 tests from 2 test cases.
[----------] Global test environment set-up.
[----------] 13 tests from DERIntegerDecodingTest
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus126
[       OK ] DERIntegerDecodingTest.DecodeLongMinus126 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130
[       OK ] DERIntegerDecodingTest.DecodeLong130 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130Padded
[       OK ] DERIntegerDecodingTest.DecodeLong130Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong0
[       OK ] DERIntegerDecodingTest.DecodeLong0 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong1
[       OK ] DERIntegerDecodingTest.DecodeLong1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1Padded
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMax
[       OK ] DERIntegerDecodingTest.DecodeLongMax (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMin
[       OK ] DERIntegerDecodingTest.DecodeLongMin (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinPlus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxPlus1 (0 ms)
[----------] 13 tests from DERIntegerDecodingTest (1 ms total)
[----------] 3 tests from DERPrivateKeyImportTest
[ RUN      ] DERPrivateKeyImportTest.ImportPrivateRSAKey
[       OK ] DERPrivateKeyImportTest.ImportPrivateRSAKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportInvalidPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportInvalidPrivateKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey (0 ms)
[----------] 3 tests from DERPrivateKeyImportTest (0 ms total)
[----------] Global test environment tear-down
[==========] 16 tests from 2 test cases ran. (1 ms total)
[  PASSED  ] 16 tests.
gtests.sh: #8544: der_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/der_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #8545: 'DERIntegerDecodingTest: DecodeLongMinus126' - PASSED
gtests.sh: #8546: 'DERIntegerDecodingTest: DecodeLong130' - PASSED
gtests.sh: #8547: 'DERIntegerDecodingTest: DecodeLong130Padded' - PASSED
gtests.sh: #8548: 'DERIntegerDecodingTest: DecodeLong0' - PASSED
gtests.sh: #8549: 'DERIntegerDecodingTest: DecodeLong1' - PASSED
gtests.sh: #8550: 'DERIntegerDecodingTest: DecodeLongMinus1' - PASSED
gtests.sh: #8551: 'DERIntegerDecodingTest: DecodeLongMinus1Padded' - PASSED
gtests.sh: #8552: 'DERIntegerDecodingTest: DecodeLongMax' - PASSED
gtests.sh: #8553: 'DERIntegerDecodingTest: DecodeLongMin' - PASSED
gtests.sh: #8554: 'DERIntegerDecodingTest: DecodeLongMaxMinus1' - PASSED
gtests.sh: #8555: 'DERIntegerDecodingTest: DecodeLongMinPlus1' - PASSED
gtests.sh: #8556: 'DERIntegerDecodingTest: DecodeLongMinMinus1' - PASSED
gtests.sh: #8557: 'DERIntegerDecodingTest: DecodeLongMaxPlus1' - PASSED
gtests.sh: #8558: 'DERPrivateKeyImportTest: ImportPrivateRSAKey' - PASSED
gtests.sh: #8559: 'DERPrivateKeyImportTest: ImportInvalidPrivateKey' - PASSED
gtests.sh: #8560: 'DERPrivateKeyImportTest: ImportZeroLengthPrivateKey' - PASSED
gtests.sh: pk11_gtest ===============================
executing pk11_gtest
[==========] Running 21 tests from 7 test cases.
[----------] Global test environment set-up.
[----------] 6 tests from Pkcs11AESKeyWrapTest
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest1
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest1 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest2
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest2 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest3
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest3 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest4
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest4 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest5
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest5 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest6
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest6 (0 ms)
[----------] 6 tests from Pkcs11AESKeyWrapTest (0 ms total)
[----------] 3 tests from Pkcs11ChaCha20Poly1305Test
[ RUN      ] Pkcs11ChaCha20Poly1305Test.GenerateEncryptDecrypt
[       OK ] Pkcs11ChaCha20Poly1305Test.GenerateEncryptDecrypt (0 ms)
[ RUN      ] Pkcs11ChaCha20Poly1305Test.CheckTestVector1
[       OK ] Pkcs11ChaCha20Poly1305Test.CheckTestVector1 (0 ms)
[ RUN      ] Pkcs11ChaCha20Poly1305Test.CheckTestVector2
[       OK ] Pkcs11ChaCha20Poly1305Test.CheckTestVector2 (1 ms)
[----------] 3 tests from Pkcs11ChaCha20Poly1305Test (1 ms total)
[----------] 2 tests from Pkcs11ExportTest
[ RUN      ] Pkcs11ExportTest.DeriveNonExport
[       OK ] Pkcs11ExportTest.DeriveNonExport (0 ms)
[ RUN      ] Pkcs11ExportTest.DeriveExport
[       OK ] Pkcs11ExportTest.DeriveExport (0 ms)
[----------] 2 tests from Pkcs11ExportTest (0 ms total)
[----------] 2 tests from Pkcs11Pbkdf2Test
[ RUN      ] Pkcs11Pbkdf2Test.DeriveKnown1
[       OK ] Pkcs11Pbkdf2Test.DeriveKnown1 (43 ms)
[ RUN      ] Pkcs11Pbkdf2Test.DeriveKnown2
[       OK ] Pkcs11Pbkdf2Test.DeriveKnown2 (87 ms)
[----------] 2 tests from Pkcs11Pbkdf2Test (130 ms total)
[----------] 5 tests from TlsPrfTest
[ RUN      ] TlsPrfTest.ExtendedMsParamErr
[       OK ] TlsPrfTest.ExtendedMsParamErr (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsDhTlsPrf
[       OK ] TlsPrfTest.ExtendedMsDhTlsPrf (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsRsaTlsPrf
[       OK ] TlsPrfTest.ExtendedMsRsaTlsPrf (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsDhSha256
[       OK ] TlsPrfTest.ExtendedMsDhSha256 (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsRsaSha256
[       OK ] TlsPrfTest.ExtendedMsRsaSha256 (0 ms)
[----------] 5 tests from TlsPrfTest (0 ms total)
[----------] 1 test from Pkcs11RsaPssTest
[ RUN      ] Pkcs11RsaPssTest.GenerateAndSignAndVerify
[       OK ] Pkcs11RsaPssTest.GenerateAndSignAndVerify (17 ms)
[----------] 1 test from Pkcs11RsaPssTest (17 ms total)
[----------] 2 tests from Pkcs11RsaPssVectorTest
[ RUN      ] Pkcs11RsaPssVectorTest.VerifyKnownSignature1
[       OK ] Pkcs11RsaPssVectorTest.VerifyKnownSignature1 (0 ms)
[ RUN      ] Pkcs11RsaPssVectorTest.VerifyKnownSignature2
[       OK ] Pkcs11RsaPssVectorTest.VerifyKnownSignature2 (0 ms)
[----------] 2 tests from Pkcs11RsaPssVectorTest (0 ms total)
[----------] Global test environment tear-down
[==========] 21 tests from 7 test cases ran. (148 ms total)
[  PASSED  ] 21 tests.
gtests.sh: #8561: pk11_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/pk11_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #8562: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest1' - PASSED
gtests.sh: #8563: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest2' - PASSED
gtests.sh: #8564: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest3' - PASSED
gtests.sh: #8565: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest4' - PASSED
gtests.sh: #8566: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest5' - PASSED
gtests.sh: #8567: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest6' - PASSED
gtests.sh: #8568: 'Pkcs11ChaCha20Poly1305Test: GenerateEncryptDecrypt' - PASSED
gtests.sh: #8569: 'Pkcs11ChaCha20Poly1305Test: CheckTestVector1' - PASSED
gtests.sh: #8570: 'Pkcs11ChaCha20Poly1305Test: CheckTestVector2' - PASSED
gtests.sh: #8571: 'Pkcs11ExportTest: DeriveNonExport' - PASSED
gtests.sh: #8572: 'Pkcs11ExportTest: DeriveExport' - PASSED
gtests.sh: #8573: 'Pkcs11Pbkdf2Test: DeriveKnown1' - PASSED
gtests.sh: #8574: 'Pkcs11Pbkdf2Test: DeriveKnown2' - PASSED
gtests.sh: #8575: 'TlsPrfTest: ExtendedMsParamErr' - PASSED
gtests.sh: #8576: 'TlsPrfTest: ExtendedMsDhTlsPrf' - PASSED
gtests.sh: #8577: 'TlsPrfTest: ExtendedMsRsaTlsPrf' - PASSED
gtests.sh: #8578: 'TlsPrfTest: ExtendedMsDhSha256' - PASSED
gtests.sh: #8579: 'TlsPrfTest: ExtendedMsRsaSha256' - PASSED
gtests.sh: #8580: 'Pkcs11RsaPssTest: GenerateAndSignAndVerify' - PASSED
gtests.sh: #8581: 'Pkcs11RsaPssVectorTest: VerifyKnownSignature1' - PASSED
gtests.sh: #8582: 'Pkcs11RsaPssVectorTest: VerifyKnownSignature2' - PASSED
TIMESTAMP gtests END: Mon Aug  7 00:00:30 UTC 2017
Running tests for ssl_gtests
TIMESTAMP ssl_gtests BEGIN: Mon Aug  7 00:00:30 UTC 2017
ssl_gtest.sh: SSL Gtests ===============================
ssl_gtest.sh: #8583: create ssl_gtest database  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8584: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8585: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8586: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8587: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8588: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8589: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8590: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8591: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8592: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8593: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8594: create certificate: ca  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8595: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8596: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8597: create certificate: sign  - PASSED
executing ssl_gtest
[==========] Running 816 tests from 15 test cases.
[----------] Global test environment set-up.
[----------] 60 tests from CipherSuiteRC4/TlsCipherSuiteTest
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/0 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/1 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/2 (7 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/3 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/4 (5 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/5 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/6 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/7 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/8 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/9 (5 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/10 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/11 (7 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/12 (7 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/13 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/14 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/0 (12 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/1 (15 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/2 (13 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/3 (15 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/4 (13 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/5 (12 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/6 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/7 (13 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/8 (15 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/9 (13 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/10 (12 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/11 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/12 (13 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/13 (15 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/14 (12 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/0 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/1 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/2 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/3 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/4 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/5 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/6 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/7 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/8 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/9 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/10 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/11 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/12 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/13 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/14 (5 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/0 (3 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/1 (7 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/2 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/3 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/4 (5 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/5 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/6 (7 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/7 (7 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/8 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/9 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/10 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/11 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/12 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/13 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/14 (4 ms)
[----------] 60 tests from CipherSuiteRC4/TlsCipherSuiteTest (480 ms total)
[----------] 48 tests from CipherSuiteAEAD12/TlsCipherSuiteTest
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/0 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/1 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/2 (10 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/3 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/4 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/5 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/6 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/7 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/8 (10 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/9 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/10 (7 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/11 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/0 (12 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/1 (12 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/2 (0 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/3 (0 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/4 (13 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/5 (13 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/6 (12 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/7 (12 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/8 (0 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/9 (0 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/10 (13 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/11 (14 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/0 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/1 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/2 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/3 (10 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/4 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/5 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/6 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/7 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/8 (10 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/9 (10 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/10 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/11 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/0 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/1 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/2 (10 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/3 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/4 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/5 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/6 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/7 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/8 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/9 (10 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/10 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/11 (4 ms)
[----------] 48 tests from CipherSuiteAEAD12/TlsCipherSuiteTest (329 ms total)
[----------] 72 tests from CipherSuiteAEAD/TlsCipherSuiteTest
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/0 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/1 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/2 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/3 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/4 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/5 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/6 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/7 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/8 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/9 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/10 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/11 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/12 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/13 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/14 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/15 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/16 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/17 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/0 (12 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/1 (13 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/2 (12 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/3 (13 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/4 (15 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/5 (16 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/6 (12 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/7 (13 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/8 (15 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/9 (13 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/10 (12 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/11 (13 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/12 (13 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/13 (15 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/14 (16 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/15 (12 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/16 (13 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/17 (15 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/0 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/1 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/2 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/3 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/4 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/5 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/6 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/7 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/8 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/9 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/10 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/11 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/12 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/13 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/14 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/15 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/16 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/17 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/0 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/1 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/2 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/3 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/4 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/5 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/6 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/7 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/8 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/9 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/10 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/11 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/12 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/13 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/14 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/15 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/16 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/17 (7 ms)
[----------] 72 tests from CipherSuiteAEAD/TlsCipherSuiteTest (568 ms total)
[----------] 64 tests from CipherSuiteCBC12/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/0 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/1 (3 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/2 (7 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/3 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/4 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/5 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/6 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/7 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/8 (7 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/9 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/10 (7 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/11 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/12 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/13 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/14 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/15 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/0 (16 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/1 (12 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/2 (13 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/3 (15 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/4 (16 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/5 (12 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/6 (0 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/7 (0 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/8 (16 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/9 (11 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/10 (12 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/11 (13 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/12 (17 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/13 (12 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/14 (0 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/15 (0 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/0 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/1 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/2 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/3 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/4 (7 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/5 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/6 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/7 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/8 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/9 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/10 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/11 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/12 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/13 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/14 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/15 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/0 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/1 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/2 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/3 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/4 (7 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/5 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/6 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/7 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/8 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/9 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/10 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/11 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/12 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/13 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/14 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/15 (10 ms)
[----------] 64 tests from CipherSuiteCBC12/TlsCipherSuiteTest (490 ms total)
[----------] 192 tests from CipherSuiteCBCStream/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/0 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/1 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/2 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/3 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/4 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/5 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/6 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/7 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/8 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/9 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/10 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/11 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/12 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/13 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/14 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/15 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/16 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/17 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/18 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/19 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/20 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/21 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/22 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/23 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/24 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/25 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/26 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/27 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/28 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/29 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/30 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/31 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/32 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/33 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/34 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/35 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/36 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/37 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/38 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/39 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/40 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/41 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/42 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/43 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/44 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/45 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/46 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/47 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/0 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/1 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/2 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/3 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/4 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/5 (12 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/6 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/7 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/8 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/9 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/10 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/11 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/12 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/13 (12 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/14 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/15 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/16 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/17 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/18 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/19 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/20 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/21 (12 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/22 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/23 (12 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/24 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/25 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/26 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/27 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/28 (12 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/29 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/30 (12 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/31 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/32 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/33 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/34 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/35 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/36 (12 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/37 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/38 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/39 (12 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/40 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/41 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/42 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/43 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/44 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/45 (12 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/46 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/47 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/0 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/1 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/2 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/3 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/4 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/5 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/6 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/7 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/8 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/9 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/10 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/11 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/12 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/13 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/14 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/15 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/16 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/17 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/18 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/19 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/20 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/21 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/22 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/23 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/24 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/25 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/26 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/27 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/28 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/29 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/30 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/31 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/32 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/33 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/34 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/35 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/36 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/37 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/38 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/39 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/40 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/41 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/42 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/43 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/44 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/45 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/46 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/47 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/0 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/1 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/2 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/3 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/4 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/5 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/6 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/7 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/8 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/9 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/10 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/11 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/12 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/13 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/14 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/15 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/16 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/17 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/18 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/19 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/20 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/21 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/22 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/23 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/24 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/25 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/26 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/27 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/28 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/29 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/30 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/31 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/32 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/33 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/34 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/35 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/36 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/37 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/38 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/39 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/40 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/41 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/42 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/43 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/44 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/45 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/46 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/47 (4 ms)
[----------] 192 tests from CipherSuiteCBCStream/TlsCipherSuiteTest (1587 ms total)
[----------] 96 tests from CipherSuiteCBCDatagram/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/0 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/1 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/2 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/3 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/4 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/5 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/6 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/7 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/8 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/9 (4 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/10 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/11 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/12 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/13 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/14 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/15 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/16 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/17 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/18 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/19 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/20 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/21 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/22 (4 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/23 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/0 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/1 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/2 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/3 (12 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/4 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/5 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/6 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/7 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/8 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/9 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/10 (12 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/11 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/12 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/13 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/14 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/15 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/16 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/17 (12 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/18 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/19 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/20 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/21 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/22 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/23 (12 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/0 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/1 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/2 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/3 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/4 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/5 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/6 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/7 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/8 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/9 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/10 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/11 (4 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/12 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/13 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/14 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/15 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/16 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/17 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/18 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/19 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/20 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/21 (4 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/22 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/23 (4 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/0 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/1 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/2 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/3 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/4 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/5 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/6 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/7 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/8 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/9 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/10 (4 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/11 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/12 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/13 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/14 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/15 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/16 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/17 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/18 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/19 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/20 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/21 (4 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/22 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/23 (4 ms)
[----------] 96 tests from CipherSuiteCBCDatagram/TlsCipherSuiteTest (798 ms total)
[----------] 8 tests from TestSecurityStatus/SecurityStatusTest
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/0
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/0 (5 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/1
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/1 (3 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/2 (5 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/3
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/3 (4 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/4
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/4 (4 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/5 (4 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/6
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/6 (4 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/7 (4 ms)
[----------] 8 tests from TestSecurityStatus/SecurityStatusTest (33 ms total)
[----------] 72 tests from DamageYStream/TlsDamageDHYTest
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301b6fae955595afe9e9d969d45e03a6cf72f26fd34e13459cc2391...
record new: [1184] 020000510301b6fae955595afe9e9d969d45e03a6cf72f26fd34e13459cc2391...
server: Original packet: [1189] 16030104a0020000510301b6fae955595afe9e9d969d45e03a6cf72f26fd34e1...
server: Filtered packet: [1189] 16030104a0020000510301b6fae955595afe9e9d969d45e03a6cf72f26fd34e1...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/0 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/1
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103012045074dcad41abdd6f3d26d0c58a03a9192f1b7fbd72ac56795...
record new: [1184] 0200005103012045074dcad41abdd6f3d26d0c58a03a9192f1b7fbd72ac56795...
server: Original packet: [1189] 16030104a00200005103012045074dcad41abdd6f3d26d0c58a03a9192f1b7fb...
server: Filtered packet: [1189] 16030104a00200005103012045074dcad41abdd6f3d26d0c58a03a9192f1b7fb...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/1 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/2
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301d50a0844d3f0f9f65e1340e91c19b589a81f291c6d3650306532...
record new: [1184] 020000510301d50a0844d3f0f9f65e1340e91c19b589a81f291c6d3650306532...
server: Original packet: [1189] 16030104a0020000510301d50a0844d3f0f9f65e1340e91c19b589a81f291c6d...
server: Filtered packet: [1189] 16030104a0020000510301d50a0844d3f0f9f65e1340e91c19b589a81f291c6d...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/2 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/3
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103012a568ff09f17c389afa113eb5db921418e472938b72495a6f62a...
record new: [1184] 0200005103012a568ff09f17c389afa113eb5db921418e472938b72495a6f62a...
server: Original packet: [1189] 16030104a00200005103012a568ff09f17c389afa113eb5db921418e472938b7...
server: Filtered packet: [1189] 16030104a00200005103012a568ff09f17c389afa113eb5db921418e472938b7...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/3 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/4
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103017ff7b874918a3a1c19c51d86679bd91d7e283079aca0d00586ba...
record new: [1184] 0200005103017ff7b874918a3a1c19c51d86679bd91d7e283079aca0d00586ba...
server: Original packet: [1189] 16030104a00200005103017ff7b874918a3a1c19c51d86679bd91d7e283079ac...
server: Filtered packet: [1189] 16030104a00200005103017ff7b874918a3a1c19c51d86679bd91d7e283079ac...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/4 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/5
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103019ae219daf31291a6024d5127a5e04375e5ff3713145d15562173...
record new: [1184] 0200005103019ae219daf31291a6024d5127a5e04375e5ff3713145d15562173...
server: Original packet: [1189] 16030104a00200005103019ae219daf31291a6024d5127a5e04375e5ff371314...
server: Filtered packet: [1189] 16030104a00200005103019ae219daf31291a6024d5127a5e04375e5ff371314...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/5 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/6
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301b64c38c4055e9bb14009d1159c80e62c9a7812b7f46748845b64...
record new: [1184] 020000510301b64c38c4055e9bb14009d1159c80e62c9a7812b7f46748845b64...
server: Original packet: [1189] 16030104a0020000510301b64c38c4055e9bb14009d1159c80e62c9a7812b7f4...
server: Filtered packet: [1189] 16030104a0020000510301b64c38c4055e9bb14009d1159c80e62c9a7812b7f4...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/6 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/7
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301d8e3caa53f2eab6aaa4497fae238e837cb3ae8ea02054cccc3b7...
record new: [1184] 020000510301d8e3caa53f2eab6aaa4497fae238e837cb3ae8ea02054cccc3b7...
server: Original packet: [1189] 16030104a0020000510301d8e3caa53f2eab6aaa4497fae238e837cb3ae8ea02...
server: Filtered packet: [1189] 16030104a0020000510301d8e3caa53f2eab6aaa4497fae238e837cb3ae8ea02...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/7 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/8
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030185dfbb8ec23a54e8081508188dacccb67ba821053566c3d424c2...
record new: [1185] 02000051030185dfbb8ec23a54e8081508188dacccb67ba821053566c3d424c2...
server: Original packet: [1189] 16030104a002000051030185dfbb8ec23a54e8081508188dacccb67ba8210535...
server: Filtered packet: [1190] 16030104a102000051030185dfbb8ec23a54e8081508188dacccb67ba8210535...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/8 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/9
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103010cb7ee90673d931abfa2d87968191f75a53e77ec4e6ced6fed1f...
record new: [1185] 0200005103010cb7ee90673d931abfa2d87968191f75a53e77ec4e6ced6fed1f...
server: Original packet: [1189] 16030104a00200005103010cb7ee90673d931abfa2d87968191f75a53e77ec4e...
server: Filtered packet: [1190] 16030104a10200005103010cb7ee90673d931abfa2d87968191f75a53e77ec4e...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/9 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/10
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301652bddb78e9ae64ad09b0f01ede06da86dc713232658933bea64...
record new: [1185] 020000510301652bddb78e9ae64ad09b0f01ede06da86dc713232658933bea64...
server: Original packet: [1189] 16030104a0020000510301652bddb78e9ae64ad09b0f01ede06da86dc7132326...
server: Filtered packet: [1190] 16030104a1020000510301652bddb78e9ae64ad09b0f01ede06da86dc7132326...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/10 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/11
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103019b0ace6515eef1d33d19d0053e6ce9cb8759f9db4c0bededbeed...
record new: [1185] 0200005103019b0ace6515eef1d33d19d0053e6ce9cb8759f9db4c0bededbeed...
server: Original packet: [1189] 16030104a00200005103019b0ace6515eef1d33d19d0053e6ce9cb8759f9db4c...
server: Filtered packet: [1190] 16030104a10200005103019b0ace6515eef1d33d19d0053e6ce9cb8759f9db4c...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/11 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/12
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103024053f09ead06e92e6309fdd647e7546a0bcc0dc62af6d8fa9e87...
record new: [1184] 0200005103024053f09ead06e92e6309fdd647e7546a0bcc0dc62af6d8fa9e87...
server: Original packet: [1189] 16030204a00200005103024053f09ead06e92e6309fdd647e7546a0bcc0dc62a...
server: Filtered packet: [1189] 16030204a00200005103024053f09ead06e92e6309fdd647e7546a0bcc0dc62a...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/12 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/13
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302f75b7220829d214e5cb83f0e5572802e5e02c145969f42612f46...
record new: [1184] 020000510302f75b7220829d214e5cb83f0e5572802e5e02c145969f42612f46...
server: Original packet: [1189] 16030204a0020000510302f75b7220829d214e5cb83f0e5572802e5e02c14596...
server: Filtered packet: [1189] 16030204a0020000510302f75b7220829d214e5cb83f0e5572802e5e02c14596...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/13 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/14
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302a1b0a1bbef0b3a1f71e042bbb21816d1d525522919dbf59e3cb9...
record new: [1184] 020000510302a1b0a1bbef0b3a1f71e042bbb21816d1d525522919dbf59e3cb9...
server: Original packet: [1189] 16030204a0020000510302a1b0a1bbef0b3a1f71e042bbb21816d1d525522919...
server: Filtered packet: [1189] 16030204a0020000510302a1b0a1bbef0b3a1f71e042bbb21816d1d525522919...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/14 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/15
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030210cb791a4d4e2ebbaa4c822c52b1e2f9c377b5b778843e45069f...
record new: [1184] 02000051030210cb791a4d4e2ebbaa4c822c52b1e2f9c377b5b778843e45069f...
server: Original packet: [1189] 16030204a002000051030210cb791a4d4e2ebbaa4c822c52b1e2f9c377b5b778...
server: Filtered packet: [1189] 16030204a002000051030210cb791a4d4e2ebbaa4c822c52b1e2f9c377b5b778...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/15 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/16
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103029a8a2ecabb2e389df49c04fe642468ca0320eff93c517e90eca2...
record new: [1184] 0200005103029a8a2ecabb2e389df49c04fe642468ca0320eff93c517e90eca2...
server: Original packet: [1189] 16030204a00200005103029a8a2ecabb2e389df49c04fe642468ca0320eff93c...
server: Filtered packet: [1189] 16030204a00200005103029a8a2ecabb2e389df49c04fe642468ca0320eff93c...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/16 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/17
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302a2f2ac79786642f449a03d7b89d2c8d4f530e46a2a729a79a0bf...
record new: [1184] 020000510302a2f2ac79786642f449a03d7b89d2c8d4f530e46a2a729a79a0bf...
server: Original packet: [1189] 16030204a0020000510302a2f2ac79786642f449a03d7b89d2c8d4f530e46a2a...
server: Filtered packet: [1189] 16030204a0020000510302a2f2ac79786642f449a03d7b89d2c8d4f530e46a2a...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/17 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/18
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302c77b7e17505dc85cfa38f9d88be9d83f4228618a7bcc1ba1766a...
record new: [1184] 020000510302c77b7e17505dc85cfa38f9d88be9d83f4228618a7bcc1ba1766a...
server: Original packet: [1189] 16030204a0020000510302c77b7e17505dc85cfa38f9d88be9d83f4228618a7b...
server: Filtered packet: [1189] 16030204a0020000510302c77b7e17505dc85cfa38f9d88be9d83f4228618a7b...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/18 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/19
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302d2a84a83bb9552c779543739c2e501061e758134d9dc4e0f0868...
record new: [1184] 020000510302d2a84a83bb9552c779543739c2e501061e758134d9dc4e0f0868...
server: Original packet: [1189] 16030204a0020000510302d2a84a83bb9552c779543739c2e501061e758134d9...
server: Filtered packet: [1189] 16030204a0020000510302d2a84a83bb9552c779543739c2e501061e758134d9...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/19 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/20
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103024825b36596348f848b63fc7d320979029bb1c487c2791ea6c6d1...
record new: [1185] 0200005103024825b36596348f848b63fc7d320979029bb1c487c2791ea6c6d1...
server: Original packet: [1189] 16030204a00200005103024825b36596348f848b63fc7d320979029bb1c487c2...
server: Filtered packet: [1190] 16030204a10200005103024825b36596348f848b63fc7d320979029bb1c487c2...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/20 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/21
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103021527c28c1201fc9f2c332f2b1262e9aea6ffe64a2aa26cd3931c...
record new: [1185] 0200005103021527c28c1201fc9f2c332f2b1262e9aea6ffe64a2aa26cd3931c...
server: Original packet: [1189] 16030204a00200005103021527c28c1201fc9f2c332f2b1262e9aea6ffe64a2a...
server: Filtered packet: [1190] 16030204a10200005103021527c28c1201fc9f2c332f2b1262e9aea6ffe64a2a...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/21 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/22
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302208af4416c58f5a3a9b5de0d34b0460c8225390bceefc1dae95b...
record new: [1185] 020000510302208af4416c58f5a3a9b5de0d34b0460c8225390bceefc1dae95b...
server: Original packet: [1189] 16030204a0020000510302208af4416c58f5a3a9b5de0d34b0460c8225390bce...
server: Filtered packet: [1190] 16030204a1020000510302208af4416c58f5a3a9b5de0d34b0460c8225390bce...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/22 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/23
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302789f27c4e2d151295acd88461a7afea377cc6180e48c6d2efba2...
record new: [1185] 020000510302789f27c4e2d151295acd88461a7afea377cc6180e48c6d2efba2...
server: Original packet: [1189] 16030204a0020000510302789f27c4e2d151295acd88461a7afea377cc6180e4...
server: Filtered packet: [1190] 16030204a1020000510302789f27c4e2d151295acd88461a7afea377cc6180e4...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/23 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/24
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303d14872f1be1d773a9ff8eca9a66d63355904ea52c969b3ee8735...
record new: [1186] 020000510303d14872f1be1d773a9ff8eca9a66d63355904ea52c969b3ee8735...
server: Original packet: [1191] 16030304a2020000510303d14872f1be1d773a9ff8eca9a66d63355904ea52c9...
server: Filtered packet: [1191] 16030304a2020000510303d14872f1be1d773a9ff8eca9a66d63355904ea52c9...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/24 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/25
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303356690b840d5f47c87d6f89ed61b0147d4a3ed4c0871f6fcc751...
record new: [1186] 020000510303356690b840d5f47c87d6f89ed61b0147d4a3ed4c0871f6fcc751...
server: Original packet: [1191] 16030304a2020000510303356690b840d5f47c87d6f89ed61b0147d4a3ed4c08...
server: Filtered packet: [1191] 16030304a2020000510303356690b840d5f47c87d6f89ed61b0147d4a3ed4c08...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/25 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/26
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103038246eb29826e78cd5aef1e4df565328fa1139002aea4bd44aa09...
record new: [1186] 0200005103038246eb29826e78cd5aef1e4df565328fa1139002aea4bd44aa09...
server: Original packet: [1191] 16030304a20200005103038246eb29826e78cd5aef1e4df565328fa1139002ae...
server: Filtered packet: [1191] 16030304a20200005103038246eb29826e78cd5aef1e4df565328fa1139002ae...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/26 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/27
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 02000051030315dd1fa30ab4d183c927ee6754c75e4dc4a0dca095c754012644...
record new: [1186] 02000051030315dd1fa30ab4d183c927ee6754c75e4dc4a0dca095c754012644...
server: Original packet: [1191] 16030304a202000051030315dd1fa30ab4d183c927ee6754c75e4dc4a0dca095...
server: Filtered packet: [1191] 16030304a202000051030315dd1fa30ab4d183c927ee6754c75e4dc4a0dca095...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/27 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/28
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303b3861704e748da2799313a31f40f57aa4381b41870d7a62ecd29...
record new: [1186] 020000510303b3861704e748da2799313a31f40f57aa4381b41870d7a62ecd29...
server: Original packet: [1191] 16030304a2020000510303b3861704e748da2799313a31f40f57aa4381b41870...
server: Filtered packet: [1191] 16030304a2020000510303b3861704e748da2799313a31f40f57aa4381b41870...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/28 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/29
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303c3cfc8add4904fc903f13a62688126cc82de455daba1dd3f0e38...
record new: [1186] 020000510303c3cfc8add4904fc903f13a62688126cc82de455daba1dd3f0e38...
server: Original packet: [1191] 16030304a2020000510303c3cfc8add4904fc903f13a62688126cc82de455dab...
server: Filtered packet: [1191] 16030304a2020000510303c3cfc8add4904fc903f13a62688126cc82de455dab...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/29 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/30
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303e8a651cc3cf236b1d761191a5c20e05c70120d49e55624e0af24...
record new: [1186] 020000510303e8a651cc3cf236b1d761191a5c20e05c70120d49e55624e0af24...
server: Original packet: [1191] 16030304a2020000510303e8a651cc3cf236b1d761191a5c20e05c70120d49e5...
server: Filtered packet: [1191] 16030304a2020000510303e8a651cc3cf236b1d761191a5c20e05c70120d49e5...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/30 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/31
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103030176c4b74bb84f544ca1a411099d3e0ab472dc9b61deffb52df5...
record new: [1186] 0200005103030176c4b74bb84f544ca1a411099d3e0ab472dc9b61deffb52df5...
server: Original packet: [1191] 16030304a20200005103030176c4b74bb84f544ca1a411099d3e0ab472dc9b61...
server: Filtered packet: [1191] 16030304a20200005103030176c4b74bb84f544ca1a411099d3e0ab472dc9b61...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/31 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/32
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103036f132c347f64b2b76abfa8ff5acb389e586c502840857903276b...
record new: [1187] 0200005103036f132c347f64b2b76abfa8ff5acb389e586c502840857903276b...
server: Original packet: [1191] 16030304a20200005103036f132c347f64b2b76abfa8ff5acb389e586c502840...
server: Filtered packet: [1192] 16030304a30200005103036f132c347f64b2b76abfa8ff5acb389e586c502840...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/32 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/33
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103039374d445c9d46ce0711387cf92e0265583cf093318cfe4cc9cef...
record new: [1187] 0200005103039374d445c9d46ce0711387cf92e0265583cf093318cfe4cc9cef...
server: Original packet: [1191] 16030304a20200005103039374d445c9d46ce0711387cf92e0265583cf093318...
server: Filtered packet: [1192] 16030304a30200005103039374d445c9d46ce0711387cf92e0265583cf093318...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/33 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/34
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 02000051030314ad09832320daa86cd01f58186b7dff304d9efc53efbb268f74...
record new: [1187] 02000051030314ad09832320daa86cd01f58186b7dff304d9efc53efbb268f74...
server: Original packet: [1191] 16030304a202000051030314ad09832320daa86cd01f58186b7dff304d9efc53...
server: Filtered packet: [1192] 16030304a302000051030314ad09832320daa86cd01f58186b7dff304d9efc53...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/34 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/35
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303804ff726b901c6bf959ae368f9352e68cd2e0a9f6d63e253a339...
record new: [1187] 020000510303804ff726b901c6bf959ae368f9352e68cd2e0a9f6d63e253a339...
server: Original packet: [1191] 16030304a2020000510303804ff726b901c6bf959ae368f9352e68cd2e0a9f6d...
server: Filtered packet: [1192] 16030304a3020000510303804ff726b901c6bf959ae368f9352e68cd2e0a9f6d...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/35 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100637080e92cf7fc013f744ea90992aebb4a75a31fafd0832ba118fb8ac7b5...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100637080e92cf7fc013f744ea90992aebb4a75a31fafd0832ba118...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 1603010106100001020100637080e92cf7fc013f744ea90992aebb4a75a31faf...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/0 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/1
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100f49d24b6ee9f95f6a329b225d3bfb6620702f076144895ea0fbf63c76088...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100f49d24b6ee9f95f6a329b225d3bfb6620702f076144895ea0fbf...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 1603010106100001020100f49d24b6ee9f95f6a329b225d3bfb6620702f07614...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/1 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/2
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01000c88e1c650bf3d29864201cd617d2909d37caa41532f4f29c05783f2f700...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201000c88e1c650bf3d29864201cd617d2909d37caa41532f4f29c057...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 16030101061000010201000c88e1c650bf3d29864201cd617d2909d37caa4153...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/2 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/3
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01005ebf6e277313e7b75ada63b75061c026bab6519ac8b0166e01ab09dc2577...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201005ebf6e277313e7b75ada63b75061c026bab6519ac8b0166e01ab...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 16030101061000010201005ebf6e277313e7b75ada63b75061c026bab6519ac8...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/3 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/4
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100f516b7b9da3080fbf5bc66d3043c591acfeeb5f5e0969618bbb10dffaae8...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100f516b7b9da3080fbf5bc66d3043c591acfeeb5f5e0969618bbb1...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [326] 1603010106100001020100f516b7b9da3080fbf5bc66d3043c591acfeeb5f5e0...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/4 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/5
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100dc1c7771b9470905a6ac6277b1253b2a638cb606218feb73a1e3b6298221...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100dc1c7771b9470905a6ac6277b1253b2a638cb606218feb73a1e3...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [326] 1603010106100001020100dc1c7771b9470905a6ac6277b1253b2a638cb60621...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/5 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/6
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010046c2698c2d3f586f5ef2c253a38dbd3943aa49adfca7dc08ee9b2bc85867...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 10000102010046c2698c2d3f586f5ef2c253a38dbd3943aa49adfca7dc08ee9b...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [326] 160301010610000102010046c2698c2d3f586f5ef2c253a38dbd3943aa49adfc...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/6 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/7
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100d2b55d6e1688b64c64fbfc4c8a08874cb9f78295ba00931e54b7d6a096d0...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100d2b55d6e1688b64c64fbfc4c8a08874cb9f78295ba00931e54b7...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [326] 1603010106100001020100d2b55d6e1688b64c64fbfc4c8a08874cb9f78295ba...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/7 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/8
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a0ed3aee2577ca7200c071ca1110e3bbfb3cf05d4a0ac41eb9457b051063...
handshake new: [259] 010101a0ed3aee2577ca7200c071ca1110e3bbfb3cf05d4a0ac41eb9457b0510...
record old: [262] 100001020100a0ed3aee2577ca7200c071ca1110e3bbfb3cf05d4a0ac41eb945...
record new: [263] 10000103010101a0ed3aee2577ca7200c071ca1110e3bbfb3cf05d4a0ac41eb9...
client: Original packet: [326] 1603010106100001020100a0ed3aee2577ca7200c071ca1110e3bbfb3cf05d4a...
client: Filtered packet: [327] 160301010710000103010101a0ed3aee2577ca7200c071ca1110e3bbfb3cf05d...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/8 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/9
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01007f78eb3b52f54be9a3d26eef055e9acfc294a38a1b7566211c8454e15da9...
handshake new: [259] 0101017f78eb3b52f54be9a3d26eef055e9acfc294a38a1b7566211c8454e15d...
record old: [262] 1000010201007f78eb3b52f54be9a3d26eef055e9acfc294a38a1b7566211c84...
record new: [263] 100001030101017f78eb3b52f54be9a3d26eef055e9acfc294a38a1b7566211c...
client: Original packet: [326] 16030101061000010201007f78eb3b52f54be9a3d26eef055e9acfc294a38a1b...
client: Filtered packet: [327] 1603010107100001030101017f78eb3b52f54be9a3d26eef055e9acfc294a38a...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/9 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/10
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100f2a3191150559915790aa64e10e2d8f767692c50521baa9b8855cdb6bea5...
handshake new: [259] 010100f2a3191150559915790aa64e10e2d8f767692c50521baa9b8855cdb6be...
record old: [262] 100001020100f2a3191150559915790aa64e10e2d8f767692c50521baa9b8855...
record new: [263] 10000103010100f2a3191150559915790aa64e10e2d8f767692c50521baa9b88...
client: Original packet: [326] 1603010106100001020100f2a3191150559915790aa64e10e2d8f767692c5052...
client: Filtered packet: [327] 160301010710000103010100f2a3191150559915790aa64e10e2d8f767692c50...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/10 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/11
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a6355550caac0e3d4928c477b41d9e91b24bd8a6cc716c18edde6e750efc...
handshake new: [259] 010100a6355550caac0e3d4928c477b41d9e91b24bd8a6cc716c18edde6e750e...
record old: [262] 100001020100a6355550caac0e3d4928c477b41d9e91b24bd8a6cc716c18edde...
record new: [263] 10000103010100a6355550caac0e3d4928c477b41d9e91b24bd8a6cc716c18ed...
client: Original packet: [326] 1603010106100001020100a6355550caac0e3d4928c477b41d9e91b24bd8a6cc...
client: Filtered packet: [327] 160301010710000103010100a6355550caac0e3d4928c477b41d9e91b24bd8a6...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/11 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/12
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010020b634f7555f47625567b516f03c747bd62157e59220ce334649216b8dec...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 10000102010020b634f7555f47625567b516f03c747bd62157e59220ce334649...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 160302010610000102010020b634f7555f47625567b516f03c747bd62157e592...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/12 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/13
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100366c901c44623b3650a139a79ed65e2c63fd6608acf984dc26f49a3fc10d...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100366c901c44623b3650a139a79ed65e2c63fd6608acf984dc26f4...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 1603020106100001020100366c901c44623b3650a139a79ed65e2c63fd6608ac...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/13 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/14
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01001f077eed27ea5c0d6ded8941b2af754f51644f0ca3c6c91e76a7782fb6f6...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201001f077eed27ea5c0d6ded8941b2af754f51644f0ca3c6c91e76a7...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 16030201061000010201001f077eed27ea5c0d6ded8941b2af754f51644f0ca3...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/14 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/15
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01004fe15810371c6fd93829502b9e9de03bd3a7121bc901514287d8f1a70410...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201004fe15810371c6fd93829502b9e9de03bd3a7121bc901514287d8...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 16030201061000010201004fe15810371c6fd93829502b9e9de03bd3a7121bc9...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/15 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/16
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e02d2d68576968f8826b3eba975fef055fb8ae98926a101be7975fcb1c55...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100e02d2d68576968f8826b3eba975fef055fb8ae98926a101be797...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [342] 1603020106100001020100e02d2d68576968f8826b3eba975fef055fb8ae9892...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/16 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/17
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010072e873481345b0a9e3d18e78889e065fde6a0dba8c411e030a6b91754276...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 10000102010072e873481345b0a9e3d18e78889e065fde6a0dba8c411e030a6b...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [342] 160302010610000102010072e873481345b0a9e3d18e78889e065fde6a0dba8c...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/17 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/18
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010029885bfef9a2823774db1d0ee3a4df439bd8c9030df8f919f36478f477b2...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 10000102010029885bfef9a2823774db1d0ee3a4df439bd8c9030df8f919f364...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [342] 160302010610000102010029885bfef9a2823774db1d0ee3a4df439bd8c9030d...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/18 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/19
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010092bb924109d2fe7c74b0c99c63a5f64abac5ba443cf01b7eecaa61bb25dc...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 10000102010092bb924109d2fe7c74b0c99c63a5f64abac5ba443cf01b7eecaa...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [342] 160302010610000102010092bb924109d2fe7c74b0c99c63a5f64abac5ba443c...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/19 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/20
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01006fa8e976bbdd18367d6a7c16ca4403cca50fbb1a7af6a09adfcdd5640ad1...
handshake new: [259] 0101016fa8e976bbdd18367d6a7c16ca4403cca50fbb1a7af6a09adfcdd5640a...
record old: [262] 1000010201006fa8e976bbdd18367d6a7c16ca4403cca50fbb1a7af6a09adfcd...
record new: [263] 100001030101016fa8e976bbdd18367d6a7c16ca4403cca50fbb1a7af6a09adf...
client: Original packet: [342] 16030201061000010201006fa8e976bbdd18367d6a7c16ca4403cca50fbb1a7a...
client: Filtered packet: [343] 1603020107100001030101016fa8e976bbdd18367d6a7c16ca4403cca50fbb1a...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/20 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/21
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100853466435c75fa7118af44a6703af7127843aa9fb35539a066f3bdd3f5cb...
handshake new: [259] 010101853466435c75fa7118af44a6703af7127843aa9fb35539a066f3bdd3f5...
record old: [262] 100001020100853466435c75fa7118af44a6703af7127843aa9fb35539a066f3...
record new: [263] 10000103010101853466435c75fa7118af44a6703af7127843aa9fb35539a066...
client: Original packet: [342] 1603020106100001020100853466435c75fa7118af44a6703af7127843aa9fb3...
client: Filtered packet: [343] 160302010710000103010101853466435c75fa7118af44a6703af7127843aa9f...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/21 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/22
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c1fec810ca106cf4f831faee8537e3fd1b68b7605ef74fea2195b4db2c0f...
handshake new: [259] 010100c1fec810ca106cf4f831faee8537e3fd1b68b7605ef74fea2195b4db2c...
record old: [262] 100001020100c1fec810ca106cf4f831faee8537e3fd1b68b7605ef74fea2195...
record new: [263] 10000103010100c1fec810ca106cf4f831faee8537e3fd1b68b7605ef74fea21...
client: Original packet: [342] 1603020106100001020100c1fec810ca106cf4f831faee8537e3fd1b68b7605e...
client: Filtered packet: [343] 160302010710000103010100c1fec810ca106cf4f831faee8537e3fd1b68b760...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/22 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/23
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100368b76fde9040be022e4feb805ccfc0fe80c89b9d2b35ed42f46962645d5...
handshake new: [259] 010100368b76fde9040be022e4feb805ccfc0fe80c89b9d2b35ed42f46962645...
record old: [262] 100001020100368b76fde9040be022e4feb805ccfc0fe80c89b9d2b35ed42f46...
record new: [263] 10000103010100368b76fde9040be022e4feb805ccfc0fe80c89b9d2b35ed42f...
client: Original packet: [342] 1603020106100001020100368b76fde9040be022e4feb805ccfc0fe80c89b9d2...
client: Filtered packet: [343] 160302010710000103010100368b76fde9040be022e4feb805ccfc0fe80c89b9...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/23 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/24
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01002d2faf38b036bc44fbdeb56f03da02658da9e83e85552098c9f4c5c67b76...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201002d2faf38b036bc44fbdeb56f03da02658da9e83e85552098c9f4...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 16030301061000010201002d2faf38b036bc44fbdeb56f03da02658da9e83e85...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/24 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/25
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010073a23859cfbc7732d12a202d587094f8c70a176682a8db47d7543c77e3a8...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 10000102010073a23859cfbc7732d12a202d587094f8c70a176682a8db47d754...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 160303010610000102010073a23859cfbc7732d12a202d587094f8c70a176682...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/25 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/26
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100542471322e3aab675190438b585bb4b8be99c6d9fb94a5e523a306ca7076...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100542471322e3aab675190438b585bb4b8be99c6d9fb94a5e523a3...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 1603030106100001020100542471322e3aab675190438b585bb4b8be99c6d9fb...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/26 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/27
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100438338dae2e6b05c3543bda2361b50711ea709ed28d8f72c88efb250718b...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100438338dae2e6b05c3543bda2361b50711ea709ed28d8f72c88ef...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 1603030106100001020100438338dae2e6b05c3543bda2361b50711ea709ed28...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/27 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/28
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100f504f88dfdc5cce1618b5ca9480beefdf46a4c48f01de668de1186ed056a...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100f504f88dfdc5cce1618b5ca9480beefdf46a4c48f01de668de11...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [318] 1603030106100001020100f504f88dfdc5cce1618b5ca9480beefdf46a4c48f0...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/28 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/29
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01009227f6cffc6dfa5c71f88239f961e336e4fadfeebd6509eb36864f145ba6...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 1000010201009227f6cffc6dfa5c71f88239f961e336e4fadfeebd6509eb3686...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [318] 16030301061000010201009227f6cffc6dfa5c71f88239f961e336e4fadfeebd...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/29 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/30
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100361c5a9f605e90fe9f6d7b3ff71b5ad0434fa35fb64ac8dc79581da84d93...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100361c5a9f605e90fe9f6d7b3ff71b5ad0434fa35fb64ac8dc7958...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [318] 1603030106100001020100361c5a9f605e90fe9f6d7b3ff71b5ad0434fa35fb6...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/30 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/31
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100073441a988a559ebac6250fb722c648a1363da573110967dc85e85104b32...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100073441a988a559ebac6250fb722c648a1363da573110967dc85e...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [318] 1603030106100001020100073441a988a559ebac6250fb722c648a1363da5731...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/31 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/32
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010020ebc6a6d526ecbd79f91f1dabd80b1c9e2a473a2ae9051ecc9b59545beb...
handshake new: [259] 01010120ebc6a6d526ecbd79f91f1dabd80b1c9e2a473a2ae9051ecc9b59545b...
record old: [262] 10000102010020ebc6a6d526ecbd79f91f1dabd80b1c9e2a473a2ae9051ecc9b...
record new: [263] 1000010301010120ebc6a6d526ecbd79f91f1dabd80b1c9e2a473a2ae9051ecc...
client: Original packet: [318] 160303010610000102010020ebc6a6d526ecbd79f91f1dabd80b1c9e2a473a2a...
client: Filtered packet: [319] 16030301071000010301010120ebc6a6d526ecbd79f91f1dabd80b1c9e2a473a...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/32 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/33
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e86f424ec9078c41a57a92137f09daa690dbcda9cfa1959cb672439328cd...
handshake new: [259] 010101e86f424ec9078c41a57a92137f09daa690dbcda9cfa1959cb672439328...
record old: [262] 100001020100e86f424ec9078c41a57a92137f09daa690dbcda9cfa1959cb672...
record new: [263] 10000103010101e86f424ec9078c41a57a92137f09daa690dbcda9cfa1959cb6...
client: Original packet: [318] 1603030106100001020100e86f424ec9078c41a57a92137f09daa690dbcda9cf...
client: Filtered packet: [319] 160303010710000103010101e86f424ec9078c41a57a92137f09daa690dbcda9...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/33 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/34
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010004eba742745d861cd49b41cb969d7805da6fb95571da7040a3561c42c7c3...
handshake new: [259] 01010004eba742745d861cd49b41cb969d7805da6fb95571da7040a3561c42c7...
record old: [262] 10000102010004eba742745d861cd49b41cb969d7805da6fb95571da7040a356...
record new: [263] 1000010301010004eba742745d861cd49b41cb969d7805da6fb95571da7040a3...
client: Original packet: [318] 160303010610000102010004eba742745d861cd49b41cb969d7805da6fb95571...
client: Filtered packet: [319] 16030301071000010301010004eba742745d861cd49b41cb969d7805da6fb955...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/34 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/35
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010098480b30144a489b08dfad0bf43394e608bd3bd1ca9140ef1a718018857f...
handshake new: [259] 01010098480b30144a489b08dfad0bf43394e608bd3bd1ca9140ef1a71801885...
record old: [262] 10000102010098480b30144a489b08dfad0bf43394e608bd3bd1ca9140ef1a71...
record new: [263] 1000010301010098480b30144a489b08dfad0bf43394e608bd3bd1ca9140ef1a...
client: Original packet: [318] 160303010610000102010098480b30144a489b08dfad0bf43394e608bd3bd1ca...
client: Filtered packet: [319] 16030301071000010301010098480b30144a489b08dfad0bf43394e608bd3bd1...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/35 (7 ms)
[----------] 72 tests from DamageYStream/TlsDamageDHYTest (405 ms total)
[----------] 48 tests from DamageYDatagram/TlsDamageDHYTest
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/0
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffdfbbd73c73...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feffdfbbd73c73...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/0 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/1
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff88012c10bb...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff88012c10bb...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/1 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff7140a93880...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff7140a93880...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/2 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffff39ab1eff...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feffff39ab1eff...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/3 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/4
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff0dcdc29718...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff0dcdc29718...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/4 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/5
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff5d613b1f2e...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff5d613b1f2e...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/5 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/6
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffd9ba4e6f28...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feffd9ba4e6f28...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/6 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/7
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff0f265ef778...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff0f265ef778...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/7 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/8
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff4e839e4c01...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feff4e839e4c01...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/8 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/9
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffa2d46b6e07...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feffa2d46b6e07...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/9 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/10
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffc87a0b5152...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feffc87a0b5152...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/10 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/11
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffffc0fb3e83...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feffffc0fb3e83...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/11 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/12
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd2acdab5b80...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd2acdab5b80...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/12 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/13
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd2ea8d864ce...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd2ea8d864ce...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/13 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/14
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd27785a4b23...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd27785a4b23...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/14 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/15
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd4260d98d00...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd4260d98d00...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/15 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/16
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd73a23a0104...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd73a23a0104...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/16 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/17
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdf522a37bfc...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdf522a37bfc...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/17 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/18
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd4223a8779b...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd4223a8779b...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/18 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/19
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd1620afd24d...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd1620afd24d...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/19 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/20
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd5162776d6d...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefd5162776d6d...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/20 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/21
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdb320f474a1...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefdb320f474a1...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/21 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/22
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd9e75166de0...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefd9e75166de0...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/22 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/23
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd5cab88ad62...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefd5cab88ad62...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/23 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/0
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c2e07900bed7efd3b1dfc73d5663a479259ab8cac3a0de11d5b1d2d097c9...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100c2e07900bed7efd3b1dfc73d5663a479259a...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100c2e07900be...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/0 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/1
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100936f67f09839b74f5d22452e02e3d4cd805bd1fdd267fc52df3e8cd56398...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100936f67f09839b74f5d22452e02e3d4cd805b...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100936f67f098...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/1 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01005058fca25999db1955c486b65818d6c9f3d30f0ee56fb4467f7d0da6d5ed...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 10000102000100000000010201005058fca25999db1955c486b65818d6c9f3d3...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201005058fca259...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/2 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100ff07abe97dd0ff47105fcefad00ea558d006dd6258c4294a1a03cb61eeb9...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100ff07abe97dd0ff47105fcefad00ea558d006...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100ff07abe97d...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/3 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/4
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100edbc0fbb4613feff05ed86dafd761702d45fae5bfebca55f4ab8b2d7357c...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 1000010200010000000001020100edbc0fbb4613feff05ed86dafd761702d45f...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100edbc0fbb46...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/4 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/5
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c2ab7fd5a05de96e6783f0b8a56a89368bc3df5412e1073260978012c661...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 1000010200010000000001020100c2ab7fd5a05de96e6783f0b8a56a89368bc3...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100c2ab7fd5a0...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/5 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/6
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100ddacd19750e24a74909b4a518299a8f498a3a04a873e898de1eda59a2691...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 1000010200010000000001020100ddacd19750e24a74909b4a518299a8f498a3...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100ddacd19750...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/6 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/7
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010066dbf0608b49e74bc8c8795efa6d4fdc260a1ec538a4dedbf711a07a8d19...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 100001020001000000000102010066dbf0608b49e74bc8c8795efa6d4fdc260a...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [374] 16feff0000000000000001010e100001020001000000000102010066dbf0608b...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/7 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/8
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100aef4fe7824f43bf64608a5951e0b04aac47b71b5ddadddbe7d2a0da84129...
handshake new: [259] 010101aef4fe7824f43bf64608a5951e0b04aac47b71b5ddadddbe7d2a0da841...
record old: [270] 1000010200010000000001020100aef4fe7824f43bf64608a5951e0b04aac47b...
record new: [271] 100001030001000000000103010101aef4fe7824f43bf64608a5951e0b04aac4...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100aef4fe7824...
client: Filtered packet: [375] 16feff0000000000000001010f100001030001000000000103010101aef4fe78...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/8 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/9
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01004d308305773ead0ebc0f64987743b70b3a0cd30a40590fa682bb1b1ed94d...
handshake new: [259] 0101014d308305773ead0ebc0f64987743b70b3a0cd30a40590fa682bb1b1ed9...
record old: [270] 10000102000100000000010201004d308305773ead0ebc0f64987743b70b3a0c...
record new: [271] 1000010300010000000001030101014d308305773ead0ebc0f64987743b70b3a...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201004d30830577...
client: Filtered packet: [375] 16feff0000000000000001010f1000010300010000000001030101014d308305...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/9 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/10
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01005e7ee12e262a41337900a9d11d3eb252b9f35f32b1fa623f41df39293f5b...
handshake new: [259] 0101005e7ee12e262a41337900a9d11d3eb252b9f35f32b1fa623f41df39293f...
record old: [270] 10000102000100000000010201005e7ee12e262a41337900a9d11d3eb252b9f3...
record new: [271] 1000010300010000000001030101005e7ee12e262a41337900a9d11d3eb252b9...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201005e7ee12e26...
client: Filtered packet: [375] 16feff0000000000000001010f1000010300010000000001030101005e7ee12e...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/10 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/11
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100da68257ac01f87ed425456062761d7ae0352abed58384dfa524aa880fef9...
handshake new: [259] 010100da68257ac01f87ed425456062761d7ae0352abed58384dfa524aa880fe...
record old: [270] 1000010200010000000001020100da68257ac01f87ed425456062761d7ae0352...
record new: [271] 100001030001000000000103010100da68257ac01f87ed425456062761d7ae03...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100da68257ac0...
client: Filtered packet: [375] 16feff0000000000000001010f100001030001000000000103010100da68257a...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/11 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/12
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100eb6124f54b5331744f6eb1b261f022f434f3da7e8eb8c838d1a573363382...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100eb6124f54b5331744f6eb1b261f022f434f3...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100eb6124f54b...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/12 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/13
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100ab263c53d9ef17c74cea92bd5595f6051ebd6b9e188fdfa14cd51d575012...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100ab263c53d9ef17c74cea92bd5595f6051ebd...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ab263c53d9...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/13 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/14
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100794afafab48dc1adef08bb0bf2ad4adc82060cbf312c75f40d07c5822ca0...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100794afafab48dc1adef08bb0bf2ad4adc8206...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100794afafab4...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/14 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/15
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100f51eebe243179d76526bc756c32382f8745f7e641a5b04aeadc8a27a008f...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100f51eebe243179d76526bc756c32382f8745f...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100f51eebe243...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/15 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/16
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010047da992b896b242e1ae185094846468a7523c6c2f61c3b8fe8c258114b9b...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 100001020001000000000102010047da992b896b242e1ae185094846468a7523...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [358] 16fefd0000000000000001010e100001020001000000000102010047da992b89...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/16 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/17
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010097469ff94573a917b538240e18bb5034b71c1347da04f3f73db324cd1dc3...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 100001020001000000000102010097469ff94573a917b538240e18bb5034b71c...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [358] 16fefd0000000000000001010e100001020001000000000102010097469ff945...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/17 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/18
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100eb1d1c8fe11a7d08e75867fec12b1b4c10a1f620a354d83f8a747fe0a958...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 1000010200010000000001020100eb1d1c8fe11a7d08e75867fec12b1b4c10a1...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100eb1d1c8fe1...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/18 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/19
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100acadea6a6b6e87f359bf26ae17c161335e8beefa63a333a6312e2553880e...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 1000010200010000000001020100acadea6a6b6e87f359bf26ae17c161335e8b...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100acadea6a6b...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/19 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/20
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01001ce03b7eb86f80be14f262bf04473f5df0b77c4fc6af8126177de5288dc1...
handshake new: [259] 0101011ce03b7eb86f80be14f262bf04473f5df0b77c4fc6af8126177de5288d...
record old: [270] 10000102000100000000010201001ce03b7eb86f80be14f262bf04473f5df0b7...
record new: [271] 1000010300010000000001030101011ce03b7eb86f80be14f262bf04473f5df0...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201001ce03b7eb8...
client: Filtered packet: [359] 16fefd0000000000000001010f1000010300010000000001030101011ce03b7e...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/20 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/21
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010081269065cf0bbb88205f68b1b8d39ee600a9f933925fc39813c44a5b0316...
handshake new: [259] 01010181269065cf0bbb88205f68b1b8d39ee600a9f933925fc39813c44a5b03...
record old: [270] 100001020001000000000102010081269065cf0bbb88205f68b1b8d39ee600a9...
record new: [271] 10000103000100000000010301010181269065cf0bbb88205f68b1b8d39ee600...
client: Original packet: [358] 16fefd0000000000000001010e100001020001000000000102010081269065cf...
client: Filtered packet: [359] 16fefd0000000000000001010f10000103000100000000010301010181269065...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/21 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/22
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100d204afc4f57ce5080cc74d61231047d09304f1ba13538c9f683a3a3977f9...
handshake new: [259] 010100d204afc4f57ce5080cc74d61231047d09304f1ba13538c9f683a3a3977...
record old: [270] 1000010200010000000001020100d204afc4f57ce5080cc74d61231047d09304...
record new: [271] 100001030001000000000103010100d204afc4f57ce5080cc74d61231047d093...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100d204afc4f5...
client: Filtered packet: [359] 16fefd0000000000000001010f100001030001000000000103010100d204afc4...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/22 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/23
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010075835725713fb010701e5301123c892043d2801b871bd7cc1f3055b1080e...
handshake new: [259] 01010075835725713fb010701e5301123c892043d2801b871bd7cc1f3055b108...
record old: [270] 100001020001000000000102010075835725713fb010701e5301123c892043d2...
record new: [271] 10000103000100000000010301010075835725713fb010701e5301123c892043...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201007583572571...
client: Filtered packet: [359] 16fefd0000000000000001010f10000103000100000000010301010075835725...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/23 (8 ms)
[----------] 48 tests from DamageYDatagram/TlsDamageDHYTest (270 ms total)
[----------] 2 tests from Datagram12Plus/TlsConnectDatagram12Plus
[ RUN      ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindow/0
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindow/0 (4 ms)
[ RUN      ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindowAndOne/0
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindowAndOne/0 (4 ms)
[----------] 2 tests from Datagram12Plus/TlsConnectDatagram12Plus (9 ms total)
[----------] 16 tests from KeyExchangeTest/TlsKeyExchangeTest
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/0 (16 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/1 (13 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/2 (13 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/3 (13 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/0 (14 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/1 (13 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/2 (13 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/3 (13 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/0 (13 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/1 (14 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/2 (13 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/3 (13 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/0 (6 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/1 (6 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/2 (7 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/3 (6 ms)
[----------] 16 tests from KeyExchangeTest/TlsKeyExchangeTest (186 ms total)
[----------] 88 tests from TlsPadding/TlsPaddingTest
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fefefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.Correct/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0e0e
[       OK ] TlsPadding/TlsPaddingTest.Correct/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fcfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.Correct/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0c0c
[       OK ] TlsPadding/TlsPaddingTest.Correct/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fbfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.Correct/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0b0b
[       OK ] TlsPadding/TlsPaddingTest.Correct/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f1f1...
[       OK ] TlsPadding/TlsPaddingTest.Correct/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410101
[       OK ] TlsPadding/TlsPaddingTest.Correct/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f0...
[       OK ] TlsPadding/TlsPaddingTest.Correct/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/9
Content length=31 padding length=0 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141414100
[       OK ] TlsPadding/TlsPaddingTest.Correct/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/19
Content length=287 padding length=0 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/0
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0e10
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/2
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0c20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/4
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0b20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/6
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410120
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/8
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/9
Content length=31 padding length=0 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141414120
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/10
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/12
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/14
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/15
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/16
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/17
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/18
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/19
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/21
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fffefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410f0e0e0e0e0e0e0e0e0e0e0e0e0e0e
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fdfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410d0c0c0c0c0c0c0c0c0c0c0c0c
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fcfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410c0b0b0b0b0b0b0b0b0b0b0b
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f2f1...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410201
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f1...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/9
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/17 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/19
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fefefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0f0e
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fcfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0d0c
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fbfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0c0b
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f1f1...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410201
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f0...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/9
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/19
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/21 (0 ms)
[----------] 88 tests from TlsPadding/TlsPaddingTest (2 ms total)
[----------] 8 tests from SkipTls10/TlsSkipTest
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateRsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 02000051030162e68b6712bf12704aab3f12fb2db8d37cea37074dab644978d6...
record new: [89] 02000051030162e68b6712bf12704aab3f12fb2db8d37cea37074dab644978d6...
server: Original packet: [536] 160301021302000051030162e68b6712bf12704aab3f12fb2db8d37cea37074d...
server: Filtered packet: [94] 160301005902000051030162e68b6712bf12704aab3f12fb2db8d37cea37074d...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateRsa/0 (4 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateDhe/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 0200005703011654d580ad60bb72fa72284c12fb6ec000481c04ab727f436a7d...
record new: [265] 0200005703011654d580ad60bb72fa72284c12fb6ec000481c04ab727f436a7d...
server: Original packet: [712] 16030102c30200005703011654d580ad60bb72fa72284c12fb6ec000481c04ab...
server: Filtered packet: [270] 16030101090200005703011654d580ad60bb72fa72284c12fb6ec000481c04ab...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateDhe/0 (3 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateEcdhe/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570301347311ec53e4c1c234f6d0c3e3032182c43ded790f139eed0082...
record new: [265] 020000570301347311ec53e4c1c234f6d0c3e3032182c43ded790f139eed0082...
server: Original packet: [712] 16030102c3020000570301347311ec53e4c1c234f6d0c3e3032182c43ded790f...
server: Filtered packet: [270] 1603010109020000570301347311ec53e4c1c234f6d0c3e3032182c43ded790f...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateEcdhe/0 (4 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [523] 020000570301162a0df75c1a01901cd24f5d0f9322a09f23b4b9b6f51d85ccb3...
record new: [207] 020000570301162a0df75c1a01901cd24f5d0f9322a09f23b4b9b6f51d85ccb3...
server: Original packet: [528] 160301020b020000570301162a0df75c1a01901cd24f5d0f9322a09f23b4b9b6...
server: Filtered packet: [212] 16030100cf020000570301162a0df75c1a01901cd24f5d0f9322a09f23b4b9b6...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateEcdsa/0 (1 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipServerKeyExchange/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [707] 02000057030154673d604ddf3ce7256bd247894726f724415166f144caf98377...
record new: [537] 02000057030154673d604ddf3ce7256bd247894726f724415166f144caf98377...
server: Original packet: [712] 16030102c302000057030154673d604ddf3ce7256bd247894726f724415166f1...
server: Filtered packet: [542] 160301021902000057030154673d604ddf3ce7256bd247894726f724415166f1...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipServerKeyExchange/0 (3 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipServerKeyExchangeEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [524] 020000570301b3cbc267288c3d00fa4b92c89033f7cb6997ab74a46f477dfb2c...
record new: [411] 020000570301b3cbc267288c3d00fa4b92c89033f7cb6997ab74a46f477dfb2c...
server: Original packet: [529] 160301020c020000570301b3cbc267288c3d00fa4b92c89033f7cb6997ab74a4...
server: Filtered packet: [416] 160301019b020000570301b3cbc267288c3d00fa4b92c89033f7cb6997ab74a4...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipServerKeyExchangeEcdsa/0 (2 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertAndKeyExch/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570301e15c1a83078a1010b26b16859d8cb2ad9442fa800719be59920b...
record new: [265] 020000570301e15c1a83078a1010b26b16859d8cb2ad9442fa800719be59920b...
Dropping handshake: 12
record old: [265] 020000570301e15c1a83078a1010b26b16859d8cb2ad9442fa800719be59920b...
record new: [95] 020000570301e15c1a83078a1010b26b16859d8cb2ad9442fa800719be59920b...
server: Original packet: [712] 16030102c3020000570301e15c1a83078a1010b26b16859d8cb2ad9442fa8007...
server: Filtered packet: [100] 160301005f020000570301e15c1a83078a1010b26b16859d8cb2ad9442fa8007...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertAndKeyExch/0 (3 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertAndKeyExchEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [524] 020000570301e29c7a071fd9d50534cc965ac811183568902ee57c6958e80665...
record new: [208] 020000570301e29c7a071fd9d50534cc965ac811183568902ee57c6958e80665...
Dropping handshake: 12
record old: [208] 020000570301e29c7a071fd9d50534cc965ac811183568902ee57c6958e80665...
record new: [95] 020000570301e29c7a071fd9d50534cc965ac811183568902ee57c6958e80665...
server: Original packet: [529] 160301020c020000570301e29c7a071fd9d50534cc965ac811183568902ee57c...
server: Filtered packet: [100] 160301005f020000570301e29c7a071fd9d50534cc965ac811183568902ee57c...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertAndKeyExchEcdsa/0 (2 ms)
[----------] 8 tests from SkipTls10/TlsSkipTest (23 ms total)
[----------] 32 tests from SkipVariants/TlsSkipTest
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 020000510302d2a4316afbc1481efcabf5e1131a7375dac5eabf67603a1eba60...
record new: [89] 020000510302d2a4316afbc1481efcabf5e1131a7375dac5eabf67603a1eba60...
server: Original packet: [536] 1603020213020000510302d2a4316afbc1481efcabf5e1131a7375dac5eabf67...
server: Filtered packet: [94] 1603020059020000510302d2a4316afbc1481efcabf5e1131a7375dac5eabf67...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/0 (3 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 0200005103038016262bdc9010f7018a241d9f379c4787f0389897920c888579...
record new: [89] 0200005103038016262bdc9010f7018a241d9f379c4787f0389897920c888579...
server: Original packet: [536] 16030302130200005103038016262bdc9010f7018a241d9f379c4787f0389897...
server: Filtered packet: [94] 16030300590200005103038016262bdc9010f7018a241d9f379c4787f0389897...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/1 (3 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [594] 16feff0000000000000000005d020000510000000000000051fefffbf94c0750...
server: Filtered packet: [144] 16feff0000000000000000005d020000510000000000000051fefffbf94c0750...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/2 (3 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [594] 16fefd0000000000000000005d020000510000000000000051fefdcdded4402e...
server: Filtered packet: [144] 16fefd0000000000000000005d020000510000000000000051fefdcdded4402e...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/3 (3 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570302eec8b52a1ce5dbd67838230f6a07042d16f1ad7b8c4359fa99ae...
record new: [265] 020000570302eec8b52a1ce5dbd67838230f6a07042d16f1ad7b8c4359fa99ae...
server: Original packet: [712] 16030202c3020000570302eec8b52a1ce5dbd67838230f6a07042d16f1ad7b8c...
server: Filtered packet: [270] 1603020109020000570302eec8b52a1ce5dbd67838230f6a07042d16f1ad7b8c...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/0 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 020000570303a2c2716c9e2db3bb86508ca3c3d8c8902cee33cc860d173ee649...
record new: [267] 020000570303a2c2716c9e2db3bb86508ca3c3d8c8902cee33cc860d173ee649...
server: Original packet: [714] 16030302c5020000570303a2c2716c9e2db3bb86508ca3c3d8c8902cee33cc86...
server: Filtered packet: [272] 160303010b020000570303a2c2716c9e2db3bb86508ca3c3d8c8902cee33cc86...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/1 (3 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d20c1f77a86e6a80f385cbf62aaf34d5667...
record new: [178] 0c0000a600010000000000a603001d20c1f77a86e6a80f385cbf62aaf34d5667...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff3f37be518f...
server: Filtered packet: [341] 16feff00000000000000000063020000570000000000000057feff3f37be518f...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/2 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d20c1f77a86e6a80f385cbf62aaf34d5667...
record new: [180] 0c0000a800010000000000a803001d20c1f77a86e6a80f385cbf62aaf34d5667...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefd49553a54a2...
server: Filtered packet: [343] 16fefd00000000000000000063020000570000000000000057fefd49553a54a2...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/3 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570302b142832bfbfec025dd8a51107f1d28a0f2c31727a66a14b08d0e...
record new: [265] 020000570302b142832bfbfec025dd8a51107f1d28a0f2c31727a66a14b08d0e...
server: Original packet: [712] 16030202c3020000570302b142832bfbfec025dd8a51107f1d28a0f2c31727a6...
server: Filtered packet: [270] 1603020109020000570302b142832bfbfec025dd8a51107f1d28a0f2c31727a6...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/0 (3 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 020000570303e55ddce0fe3ca81ad7ae3dc45e2e5f79ca9d8d2018281b57245c...
record new: [267] 020000570303e55ddce0fe3ca81ad7ae3dc45e2e5f79ca9d8d2018281b57245c...
server: Original packet: [714] 16030302c5020000570303e55ddce0fe3ca81ad7ae3dc45e2e5f79ca9d8d2018...
server: Filtered packet: [272] 160303010b020000570303e55ddce0fe3ca81ad7ae3dc45e2e5f79ca9d8d2018...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/1 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d20c1f77a86e6a80f385cbf62aaf34d5667...
record new: [178] 0c0000a600010000000000a603001d20c1f77a86e6a80f385cbf62aaf34d5667...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff648da70fe2...
server: Filtered packet: [341] 16feff00000000000000000063020000570000000000000057feff648da70fe2...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/2 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d20c1f77a86e6a80f385cbf62aaf34d5667...
record new: [180] 0c0000a800010000000000a803001d20c1f77a86e6a80f385cbf62aaf34d5667...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefdd8b6c62724...
server: Filtered packet: [343] 16fefd00000000000000000063020000570000000000000057fefdd8b6c62724...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/3 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [523] 0200005703021985cb4ab836dcd1bdba7d4d2c50ba37dd6a666c713eb5b2232c...
record new: [207] 0200005703021985cb4ab836dcd1bdba7d4d2c50ba37dd6a666c713eb5b2232c...
server: Original packet: [528] 160302020b0200005703021985cb4ab836dcd1bdba7d4d2c50ba37dd6a666c71...
server: Filtered packet: [212] 16030200cf0200005703021985cb4ab836dcd1bdba7d4d2c50ba37dd6a666c71...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/0 (1 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [526] 02000057030398dbbccf2685152bd15896fe7439fa843e5ff6d73ecae812ad18...
record new: [210] 02000057030398dbbccf2685152bd15896fe7439fa843e5ff6d73ecae812ad18...
server: Original packet: [531] 160303020e02000057030398dbbccf2685152bd15896fe7439fa843e5ff6d73e...
server: Filtered packet: [215] 16030300d202000057030398dbbccf2685152bd15896fe7439fa843e5ff6d73e...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/1 (2 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [324] 0b00013800010000000001380001350001323082012e3081d5a0030201020201...
record new: [0] 
record old: [121] 0c00006d000200000000006d03001d20c1f77a86e6a80f385cbf62aaf34d5667...
record new: [121] 0c00006d000100000000006d03001d20c1f77a86e6a80f385cbf62aaf34d5667...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [608] 16feff00000000000000000063020000570000000000000057feff626130764a...
server: Filtered packet: [284] 16feff00000000000000000063020000570000000000000057feff626130764a...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/2 (1 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [324] 0b00013800010000000001380001350001323082012e3081d5a0030201020201...
record new: [0] 
record old: [123] 0c00006f000200000000006f03001d20c1f77a86e6a80f385cbf62aaf34d5667...
record new: [123] 0c00006f000100000000006f03001d20c1f77a86e6a80f385cbf62aaf34d5667...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [610] 16fefd00000000000000000063020000570000000000000057fefdcec7509d43...
server: Filtered packet: [286] 16fefd00000000000000000063020000570000000000000057fefdcec7509d43...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/3 (2 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [707] 02000057030265c49529bd43b547411112d1fa99fe63e12b9e6f5bf8138b0bfd...
record new: [537] 02000057030265c49529bd43b547411112d1fa99fe63e12b9e6f5bf8138b0bfd...
server: Original packet: [712] 16030202c302000057030265c49529bd43b547411112d1fa99fe63e12b9e6f5b...
server: Filtered packet: [542] 160302021902000057030265c49529bd43b547411112d1fa99fe63e12b9e6f5b...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/0 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [709] 020000570303bad9cc0780ff17e3ad973e6b9192c3652e8c93426e2e5cabdfdc...
record new: [537] 020000570303bad9cc0780ff17e3ad973e6b9192c3652e8c93426e2e5cabdfdc...
server: Original packet: [714] 16030302c5020000570303bad9cc0780ff17e3ad973e6b9192c3652e8c93426e...
server: Filtered packet: [542] 1603030219020000570303bad9cc0780ff17e3ad973e6b9192c3652e8c93426e...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/1 (3 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [178] 0c0000a600020000000000a603001d20c1f77a86e6a80f385cbf62aaf34d5667...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff41bf09796e...
server: Filtered packet: [613] 16feff00000000000000000063020000570000000000000057feff41bf09796e...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/2 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [180] 0c0000a800020000000000a803001d20c1f77a86e6a80f385cbf62aaf34d5667...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefdea62d8db00...
server: Filtered packet: [613] 16fefd00000000000000000063020000570000000000000057fefdea62d8db00...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/3 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [524] 02000057030267d566eac9af4339c64ddbac552d30eb631e499836e5ac5e3926...
record new: [411] 02000057030267d566eac9af4339c64ddbac552d30eb631e499836e5ac5e3926...
server: Original packet: [529] 160302020c02000057030267d566eac9af4339c64ddbac552d30eb631e499836...
server: Filtered packet: [416] 160302019b02000057030267d566eac9af4339c64ddbac552d30eb631e499836...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/0 (2 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [526] 020000570303400c87121ac6dd8582825e861874db8629eaee047fc6daf4204b...
record new: [411] 020000570303400c87121ac6dd8582825e861874db8629eaee047fc6daf4204b...
server: Original packet: [531] 160303020e020000570303400c87121ac6dd8582825e861874db8629eaee047f...
server: Filtered packet: [416] 160303019b020000570303400c87121ac6dd8582825e861874db8629eaee047f...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/1 (1 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [122] 0c00006e000200000000006e03001d20c1f77a86e6a80f385cbf62aaf34d5667...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [609] 16feff00000000000000000063020000570000000000000057feff13121496e7...
server: Filtered packet: [487] 16feff00000000000000000063020000570000000000000057feff13121496e7...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/2 (2 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [124] 0c000070000200000000007003001d20c1f77a86e6a80f385cbf62aaf34d5667...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [611] 16fefd00000000000000000063020000570000000000000057fefdc35ebdf0ec...
server: Filtered packet: [487] 16fefd00000000000000000063020000570000000000000057fefdc35ebdf0ec...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/3 (1 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570302fb783ff27eaed8b244b08fa72c4e2073edef477230cfd11d960a...
record new: [265] 020000570302fb783ff27eaed8b244b08fa72c4e2073edef477230cfd11d960a...
Dropping handshake: 12
record old: [265] 020000570302fb783ff27eaed8b244b08fa72c4e2073edef477230cfd11d960a...
record new: [95] 020000570302fb783ff27eaed8b244b08fa72c4e2073edef477230cfd11d960a...
server: Original packet: [712] 16030202c3020000570302fb783ff27eaed8b244b08fa72c4e2073edef477230...
server: Filtered packet: [100] 160302005f020000570302fb783ff27eaed8b244b08fa72c4e2073edef477230...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/0 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 0200005703037c1ad0ec79145183143f327a7ad70675f9085980b64e2f8ce3e2...
record new: [267] 0200005703037c1ad0ec79145183143f327a7ad70675f9085980b64e2f8ce3e2...
Dropping handshake: 12
record old: [267] 0200005703037c1ad0ec79145183143f327a7ad70675f9085980b64e2f8ce3e2...
record new: [95] 0200005703037c1ad0ec79145183143f327a7ad70675f9085980b64e2f8ce3e2...
server: Original packet: [714] 16030302c50200005703037c1ad0ec79145183143f327a7ad70675f9085980b6...
server: Filtered packet: [100] 160303005f0200005703037c1ad0ec79145183143f327a7ad70675f9085980b6...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/1 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d20c1f77a86e6a80f385cbf62aaf34d5667...
record new: [178] 0c0000a600010000000000a603001d20c1f77a86e6a80f385cbf62aaf34d5667...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [178] 0c0000a600010000000000a603001d20c1f77a86e6a80f385cbf62aaf34d5667...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff8097bc9ed2...
server: Filtered packet: [163] 16feff00000000000000000063020000570000000000000057feff8097bc9ed2...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/2 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d20c1f77a86e6a80f385cbf62aaf34d5667...
record new: [180] 0c0000a800010000000000a803001d20c1f77a86e6a80f385cbf62aaf34d5667...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [180] 0c0000a800010000000000a803001d20c1f77a86e6a80f385cbf62aaf34d5667...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefd8a14a0b953...
server: Filtered packet: [163] 16fefd00000000000000000063020000570000000000000057fefd8a14a0b953...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/3 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [524] 0200005703026990fbd69ac6abbe45816a75222267511494737c9d0ec2d3c1b5...
record new: [208] 0200005703026990fbd69ac6abbe45816a75222267511494737c9d0ec2d3c1b5...
Dropping handshake: 12
record old: [208] 0200005703026990fbd69ac6abbe45816a75222267511494737c9d0ec2d3c1b5...
record new: [95] 0200005703026990fbd69ac6abbe45816a75222267511494737c9d0ec2d3c1b5...
server: Original packet: [529] 160302020c0200005703026990fbd69ac6abbe45816a75222267511494737c9d...
server: Filtered packet: [100] 160302005f0200005703026990fbd69ac6abbe45816a75222267511494737c9d...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/0 (1 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [525] 0200005703035073802066b4fd266d2f85e82c14fbcf22eff0114b8dc21ac8b5...
record new: [209] 0200005703035073802066b4fd266d2f85e82c14fbcf22eff0114b8dc21ac8b5...
Dropping handshake: 12
record old: [209] 0200005703035073802066b4fd266d2f85e82c14fbcf22eff0114b8dc21ac8b5...
record new: [95] 0200005703035073802066b4fd266d2f85e82c14fbcf22eff0114b8dc21ac8b5...
server: Original packet: [530] 160303020d0200005703035073802066b4fd266d2f85e82c14fbcf22eff0114b...
server: Filtered packet: [100] 160303005f0200005703035073802066b4fd266d2f85e82c14fbcf22eff0114b...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/1 (2 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [324] 0b00013800010000000001380001350001323082012e3081d5a0030201020201...
record new: [0] 
record old: [121] 0c00006d000200000000006d03001d20c1f77a86e6a80f385cbf62aaf34d5667...
record new: [121] 0c00006d000100000000006d03001d20c1f77a86e6a80f385cbf62aaf34d5667...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [121] 0c00006d000100000000006d03001d20c1f77a86e6a80f385cbf62aaf34d5667...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [608] 16feff00000000000000000063020000570000000000000057feff4755c4d51c...
server: Filtered packet: [163] 16feff00000000000000000063020000570000000000000057feff4755c4d51c...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/2 (2 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [324] 0b00013800010000000001380001350001323082012e3081d5a0030201020201...
record new: [0] 
record old: [124] 0c000070000200000000007003001d20c1f77a86e6a80f385cbf62aaf34d5667...
record new: [124] 0c000070000100000000007003001d20c1f77a86e6a80f385cbf62aaf34d5667...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [124] 0c000070000100000000007003001d20c1f77a86e6a80f385cbf62aaf34d5667...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [611] 16fefd00000000000000000063020000570000000000000057fefd573f9b6299...
server: Filtered packet: [163] 16fefd00000000000000000063020000570000000000000057fefd573f9b6299...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/3 (1 ms)
[----------] 32 tests from SkipVariants/TlsSkipTest (91 ms total)
[----------] 10 tests from AllHashFuncs/TlsHkdfTest
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/0
Hash = SHA-256
Output: [32] 33ad0a1c607ec03b09e6cd9893680ce210adf300aa1f2660e1b22e10f170f92a
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/1
Hash = SHA-384
Output: [48] 7ee8206f5570023e6dc7519eb1073bc4e791ad37b5c382aa10ba18e2357e7169...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/1 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/0
Hash = SHA-256
Output: [32] 11873828a9197811339124b58a1bb09f7f0d8dbb10f49c54bd1fd885cd153033
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/0 (1 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/1
Hash = SHA-384
Output: [48] 51b1d5b4597979084a15b2db84d3d6bcfc9345d9dc74da1a57c2769f3f83452f...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/1 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/0
Hash = SHA-256
Output: [32] 2f5f78d0a4c436ee6c8a4ef9d043810213fd4783633ad2e1406d2d9800fdc187
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/1
Hash = SHA-384
Output: [48] 7b40f9ef91ffc9d129245cbff8827668ae4b63e803dd39a8d46af6e5eceaf87d...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/1 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/0
Hash = SHA-256
Output: [32] 7953b8dd6b98ce00b7dce803708ce3ac068b22fd0e3448e6e5e08ad61618e548
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/1
Hash = SHA-384
Output: [48] 0193c0073f6a830e2e4fb258e400085c689c37320037ffc31c5b980b02923ffd...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/1 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/0
Hash = SHA-256
Output: [32] 347c6780ff0bbad71c283b16eb2f9cf62d24e6cdb613d51776548cb07dcde74c
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/1
Hash = SHA-384
Output: [48] 4b1e5ec1493078ea35bd3f0104e61aea14cc182ad1c47621c464c04e4b361605...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/1 (0 ms)
[----------] 10 tests from AllHashFuncs/TlsHkdfTest (1 ms total)
[----------] Global test environment tear-down
[==========] 816 tests from 15 test cases ran. (5272 ms total)
[  PASSED  ] 816 tests.
ssl_gtest.sh: #8598: ssl_gtest run successfully  - PASSED
executing sed to parse the xml report
processing the parsed report
ssl_gtest.sh: #8599: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8600: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8601: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8602: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8603: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8604: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8605: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8606: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8607: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8608: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8609: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8610: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8611: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8612: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8613: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8614: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8615: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8616: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8617: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8618: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8619: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8620: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8621: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8622: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8623: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8624: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8625: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8626: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8627: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8628: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8629: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8630: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8631: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8632: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8633: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8634: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8635: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8636: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8637: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8638: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8639: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8640: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8641: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8642: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8643: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8644: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8645: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8646: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8647: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8648: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8649: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8650: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8651: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8652: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8653: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8654: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8655: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8656: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8657: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8658: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8659: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #8660: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #8661: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #8662: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #8663: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #8664: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #8665: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #8666: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #8667: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #8668: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #8669: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #8670: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #8671: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #8672: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #8673: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #8674: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #8675: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #8676: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #8677: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #8678: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #8679: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #8680: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #8681: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #8682: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #8683: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #8684: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #8685: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #8686: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #8687: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #8688: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #8689: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #8690: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #8691: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #8692: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #8693: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #8694: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #8695: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #8696: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #8697: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #8698: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #8699: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #8700: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #8701: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #8702: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #8703: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #8704: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #8705: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #8706: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #8707: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #8708: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #8709: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #8710: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #8711: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #8712: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #8713: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #8714: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #8715: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #8716: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #8717: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #8718: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #8719: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #8720: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #8721: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #8722: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #8723: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #8724: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #8725: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #8726: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #8727: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #8728: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #8729: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #8730: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #8731: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #8732: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #8733: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #8734: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #8735: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #8736: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #8737: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #8738: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #8739: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #8740: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #8741: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #8742: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #8743: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #8744: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #8745: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #8746: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #8747: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #8748: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #8749: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #8750: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #8751: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #8752: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #8753: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #8754: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #8755: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #8756: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #8757: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #8758: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #8759: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #8760: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #8761: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #8762: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #8763: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #8764: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #8765: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #8766: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #8767: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #8768: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #8769: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #8770: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #8771: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #8772: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #8773: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #8774: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #8775: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #8776: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #8777: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #8778: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #8779: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #8780: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #8781: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #8782: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #8783: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #8784: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #8785: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #8786: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #8787: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #8788: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #8789: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #8790: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #8791: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #8792: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #8793: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #8794: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #8795: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #8796: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #8797: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #8798: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #8799: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #8800: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #8801: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #8802: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #8803: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #8804: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #8805: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #8806: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #8807: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #8808: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #8809: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #8810: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #8811: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #8812: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #8813: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #8814: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #8815: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #8816: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #8817: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #8818: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #8819: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #8820: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #8821: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #8822: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #8823: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #8824: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #8825: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #8826: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #8827: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #8828: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #8829: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #8830: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #8831: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #8832: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #8833: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #8834: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #8835: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #8836: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #8837: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #8838: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #8839: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #8840: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #8841: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #8842: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #8843: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #8844: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #8845: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #8846: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #8847: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #8848: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #8849: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #8850: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #8851: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #8852: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #8853: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #8854: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #8855: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #8856: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #8857: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #8858: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #8859: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #8860: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #8861: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #8862: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #8863: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #8864: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #8865: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #8866: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #8867: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #8868: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #8869: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #8870: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #8871: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #8872: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #8873: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #8874: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #8875: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #8876: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #8877: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #8878: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #8879: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #8880: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #8881: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #8882: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #8883: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #8884: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #8885: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #8886: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #8887: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #8888: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #8889: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #8890: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #8891: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #8892: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #8893: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #8894: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #8895: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #8896: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #8897: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #8898: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #8899: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #8900: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #8901: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #8902: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #8903: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #8904: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #8905: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #8906: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #8907: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #8908: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #8909: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #8910: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #8911: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #8912: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #8913: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #8914: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #8915: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #8916: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #8917: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #8918: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #8919: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #8920: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #8921: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #8922: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #8923: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #8924: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #8925: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #8926: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #8927: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #8928: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #8929: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #8930: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #8931: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #8932: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #8933: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #8934: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #8935: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #8936: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #8937: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #8938: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #8939: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #8940: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #8941: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #8942: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #8943: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #8944: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #8945: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #8946: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #8947: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #8948: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #8949: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #8950: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #8951: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #8952: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #8953: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #8954: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #8955: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #8956: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #8957: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #8958: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #8959: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #8960: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #8961: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #8962: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #8963: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #8964: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #8965: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #8966: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #8967: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #8968: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #8969: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #8970: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #8971: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #8972: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #8973: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #8974: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #8975: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #8976: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #8977: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #8978: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #8979: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #8980: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #8981: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #8982: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #8983: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #8984: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #8985: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #8986: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #8987: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #8988: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #8989: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #8990: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #8991: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #8992: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #8993: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #8994: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #8995: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #8996: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #8997: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #8998: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #8999: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #9000: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #9001: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #9002: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #9003: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #9004: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #9005: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #9006: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #9007: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #9008: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #9009: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #9010: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #9011: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #9012: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #9013: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #9014: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #9015: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #9016: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #9017: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #9018: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #9019: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #9020: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #9021: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #9022: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #9023: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #9024: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #9025: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #9026: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #9027: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #9028: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #9029: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #9030: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #9031: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #9032: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #9033: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #9034: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #9035: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #9036: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #9037: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #9038: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #9039: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #9040: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #9041: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #9042: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #9043: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #9044: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #9045: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #9046: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #9047: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #9048: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #9049: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #9050: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #9051: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #9052: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #9053: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #9054: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #9055: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #9056: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #9057: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #9058: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #9059: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #9060: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #9061: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #9062: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #9063: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #9064: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #9065: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #9066: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #9067: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #9068: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #9069: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #9070: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #9071: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #9072: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #9073: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #9074: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #9075: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #9076: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #9077: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #9078: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #9079: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #9080: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #9081: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #9082: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #9083: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #9084: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #9085: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #9086: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #9087: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #9088: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #9089: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #9090: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #9091: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #9092: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #9093: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #9094: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #9095: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #9096: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #9097: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #9098: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #9099: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #9100: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #9101: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #9102: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #9103: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #9104: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #9105: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #9106: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #9107: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #9108: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #9109: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #9110: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #9111: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #9112: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #9113: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #9114: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #9115: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #9116: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #9117: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #9118: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #9119: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #9120: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #9121: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #9122: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #9123: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #9124: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #9125: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #9126: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #9127: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #9128: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #9129: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #9130: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #9131: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/0 TLS 1.0, TLS_ECDHE_RSA_WITH_NULL_SHA, name = &quot;NULL&quot;, key size = 0' - PASSED
ssl_gtest.sh: #9132: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/1 TLS 1.0, TLS_RSA_WITH_RC4_128_SHA, name = &quot;RC4&quot;, key size = 128' - PASSED
ssl_gtest.sh: #9133: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/2 TLS 1.0, TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA, name = &quot;3DES-EDE-CBC&quot;, key size = 168' - PASSED
ssl_gtest.sh: #9134: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/3 TLS 1.0, TLS_RSA_WITH_AES_128_CBC_SHA, name = &quot;AES-128&quot;, key size = 128' - PASSED
ssl_gtest.sh: #9135: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/4 TLS 1.2, TLS_RSA_WITH_AES_256_CBC_SHA256, name = &quot;AES-256&quot;, key size = 256' - PASSED
ssl_gtest.sh: #9136: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/5 TLS 1.2, TLS_RSA_WITH_AES_128_GCM_SHA256, name = &quot;AES-128-GCM&quot;, key size = 128' - PASSED
ssl_gtest.sh: #9137: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/6 TLS 1.2, TLS_RSA_WITH_AES_256_GCM_SHA384, name = &quot;AES-256-GCM&quot;, key size = 256' - PASSED
ssl_gtest.sh: #9138: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/7 TLS 1.2, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256, name = &quot;ChaCha20-Poly1305&quot;, key size = 256' - PASSED
ssl_gtest.sh: #9139: 'DamageYStream/TlsDamageDHYTest: DamageServerY/0 (&quot;TLS&quot;, 769, 0, true)' - PASSED
ssl_gtest.sh: #9140: 'DamageYStream/TlsDamageDHYTest: DamageServerY/1 (&quot;TLS&quot;, 769, 0, false)' - PASSED
ssl_gtest.sh: #9141: 'DamageYStream/TlsDamageDHYTest: DamageServerY/2 (&quot;TLS&quot;, 769, 1, true)' - PASSED
ssl_gtest.sh: #9142: 'DamageYStream/TlsDamageDHYTest: DamageServerY/3 (&quot;TLS&quot;, 769, 1, false)' - PASSED
ssl_gtest.sh: #9143: 'DamageYStream/TlsDamageDHYTest: DamageServerY/4 (&quot;TLS&quot;, 769, 2, true)' - PASSED
ssl_gtest.sh: #9144: 'DamageYStream/TlsDamageDHYTest: DamageServerY/5 (&quot;TLS&quot;, 769, 2, false)' - PASSED
ssl_gtest.sh: #9145: 'DamageYStream/TlsDamageDHYTest: DamageServerY/6 (&quot;TLS&quot;, 769, 3, true)' - PASSED
ssl_gtest.sh: #9146: 'DamageYStream/TlsDamageDHYTest: DamageServerY/7 (&quot;TLS&quot;, 769, 3, false)' - PASSED
ssl_gtest.sh: #9147: 'DamageYStream/TlsDamageDHYTest: DamageServerY/8 (&quot;TLS&quot;, 769, 4, true)' - PASSED
ssl_gtest.sh: #9148: 'DamageYStream/TlsDamageDHYTest: DamageServerY/9 (&quot;TLS&quot;, 769, 4, false)' - PASSED
ssl_gtest.sh: #9149: 'DamageYStream/TlsDamageDHYTest: DamageServerY/10 (&quot;TLS&quot;, 769, 5, true)' - PASSED
ssl_gtest.sh: #9150: 'DamageYStream/TlsDamageDHYTest: DamageServerY/11 (&quot;TLS&quot;, 769, 5, false)' - PASSED
ssl_gtest.sh: #9151: 'DamageYStream/TlsDamageDHYTest: DamageServerY/12 (&quot;TLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #9152: 'DamageYStream/TlsDamageDHYTest: DamageServerY/13 (&quot;TLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #9153: 'DamageYStream/TlsDamageDHYTest: DamageServerY/14 (&quot;TLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #9154: 'DamageYStream/TlsDamageDHYTest: DamageServerY/15 (&quot;TLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #9155: 'DamageYStream/TlsDamageDHYTest: DamageServerY/16 (&quot;TLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #9156: 'DamageYStream/TlsDamageDHYTest: DamageServerY/17 (&quot;TLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #9157: 'DamageYStream/TlsDamageDHYTest: DamageServerY/18 (&quot;TLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #9158: 'DamageYStream/TlsDamageDHYTest: DamageServerY/19 (&quot;TLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #9159: 'DamageYStream/TlsDamageDHYTest: DamageServerY/20 (&quot;TLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #9160: 'DamageYStream/TlsDamageDHYTest: DamageServerY/21 (&quot;TLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #9161: 'DamageYStream/TlsDamageDHYTest: DamageServerY/22 (&quot;TLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #9162: 'DamageYStream/TlsDamageDHYTest: DamageServerY/23 (&quot;TLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #9163: 'DamageYStream/TlsDamageDHYTest: DamageServerY/24 (&quot;TLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #9164: 'DamageYStream/TlsDamageDHYTest: DamageServerY/25 (&quot;TLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #9165: 'DamageYStream/TlsDamageDHYTest: DamageServerY/26 (&quot;TLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #9166: 'DamageYStream/TlsDamageDHYTest: DamageServerY/27 (&quot;TLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #9167: 'DamageYStream/TlsDamageDHYTest: DamageServerY/28 (&quot;TLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #9168: 'DamageYStream/TlsDamageDHYTest: DamageServerY/29 (&quot;TLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #9169: 'DamageYStream/TlsDamageDHYTest: DamageServerY/30 (&quot;TLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #9170: 'DamageYStream/TlsDamageDHYTest: DamageServerY/31 (&quot;TLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #9171: 'DamageYStream/TlsDamageDHYTest: DamageServerY/32 (&quot;TLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #9172: 'DamageYStream/TlsDamageDHYTest: DamageServerY/33 (&quot;TLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #9173: 'DamageYStream/TlsDamageDHYTest: DamageServerY/34 (&quot;TLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #9174: 'DamageYStream/TlsDamageDHYTest: DamageServerY/35 (&quot;TLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #9175: 'DamageYStream/TlsDamageDHYTest: DamageClientY/0 (&quot;TLS&quot;, 769, 0, true)' - PASSED
ssl_gtest.sh: #9176: 'DamageYStream/TlsDamageDHYTest: DamageClientY/1 (&quot;TLS&quot;, 769, 0, false)' - PASSED
ssl_gtest.sh: #9177: 'DamageYStream/TlsDamageDHYTest: DamageClientY/2 (&quot;TLS&quot;, 769, 1, true)' - PASSED
ssl_gtest.sh: #9178: 'DamageYStream/TlsDamageDHYTest: DamageClientY/3 (&quot;TLS&quot;, 769, 1, false)' - PASSED
ssl_gtest.sh: #9179: 'DamageYStream/TlsDamageDHYTest: DamageClientY/4 (&quot;TLS&quot;, 769, 2, true)' - PASSED
ssl_gtest.sh: #9180: 'DamageYStream/TlsDamageDHYTest: DamageClientY/5 (&quot;TLS&quot;, 769, 2, false)' - PASSED
ssl_gtest.sh: #9181: 'DamageYStream/TlsDamageDHYTest: DamageClientY/6 (&quot;TLS&quot;, 769, 3, true)' - PASSED
ssl_gtest.sh: #9182: 'DamageYStream/TlsDamageDHYTest: DamageClientY/7 (&quot;TLS&quot;, 769, 3, false)' - PASSED
ssl_gtest.sh: #9183: 'DamageYStream/TlsDamageDHYTest: DamageClientY/8 (&quot;TLS&quot;, 769, 4, true)' - PASSED
ssl_gtest.sh: #9184: 'DamageYStream/TlsDamageDHYTest: DamageClientY/9 (&quot;TLS&quot;, 769, 4, false)' - PASSED
ssl_gtest.sh: #9185: 'DamageYStream/TlsDamageDHYTest: DamageClientY/10 (&quot;TLS&quot;, 769, 5, true)' - PASSED
ssl_gtest.sh: #9186: 'DamageYStream/TlsDamageDHYTest: DamageClientY/11 (&quot;TLS&quot;, 769, 5, false)' - PASSED
ssl_gtest.sh: #9187: 'DamageYStream/TlsDamageDHYTest: DamageClientY/12 (&quot;TLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #9188: 'DamageYStream/TlsDamageDHYTest: DamageClientY/13 (&quot;TLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #9189: 'DamageYStream/TlsDamageDHYTest: DamageClientY/14 (&quot;TLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #9190: 'DamageYStream/TlsDamageDHYTest: DamageClientY/15 (&quot;TLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #9191: 'DamageYStream/TlsDamageDHYTest: DamageClientY/16 (&quot;TLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #9192: 'DamageYStream/TlsDamageDHYTest: DamageClientY/17 (&quot;TLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #9193: 'DamageYStream/TlsDamageDHYTest: DamageClientY/18 (&quot;TLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #9194: 'DamageYStream/TlsDamageDHYTest: DamageClientY/19 (&quot;TLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #9195: 'DamageYStream/TlsDamageDHYTest: DamageClientY/20 (&quot;TLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #9196: 'DamageYStream/TlsDamageDHYTest: DamageClientY/21 (&quot;TLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #9197: 'DamageYStream/TlsDamageDHYTest: DamageClientY/22 (&quot;TLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #9198: 'DamageYStream/TlsDamageDHYTest: DamageClientY/23 (&quot;TLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #9199: 'DamageYStream/TlsDamageDHYTest: DamageClientY/24 (&quot;TLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #9200: 'DamageYStream/TlsDamageDHYTest: DamageClientY/25 (&quot;TLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #9201: 'DamageYStream/TlsDamageDHYTest: DamageClientY/26 (&quot;TLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #9202: 'DamageYStream/TlsDamageDHYTest: DamageClientY/27 (&quot;TLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #9203: 'DamageYStream/TlsDamageDHYTest: DamageClientY/28 (&quot;TLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #9204: 'DamageYStream/TlsDamageDHYTest: DamageClientY/29 (&quot;TLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #9205: 'DamageYStream/TlsDamageDHYTest: DamageClientY/30 (&quot;TLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #9206: 'DamageYStream/TlsDamageDHYTest: DamageClientY/31 (&quot;TLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #9207: 'DamageYStream/TlsDamageDHYTest: DamageClientY/32 (&quot;TLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #9208: 'DamageYStream/TlsDamageDHYTest: DamageClientY/33 (&quot;TLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #9209: 'DamageYStream/TlsDamageDHYTest: DamageClientY/34 (&quot;TLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #9210: 'DamageYStream/TlsDamageDHYTest: DamageClientY/35 (&quot;TLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #9211: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/0 (&quot;DTLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #9212: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/1 (&quot;DTLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #9213: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/2 (&quot;DTLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #9214: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/3 (&quot;DTLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #9215: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/4 (&quot;DTLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #9216: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/5 (&quot;DTLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #9217: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/6 (&quot;DTLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #9218: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/7 (&quot;DTLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #9219: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/8 (&quot;DTLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #9220: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/9 (&quot;DTLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #9221: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/10 (&quot;DTLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #9222: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/11 (&quot;DTLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #9223: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/12 (&quot;DTLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #9224: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/13 (&quot;DTLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #9225: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/14 (&quot;DTLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #9226: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/15 (&quot;DTLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #9227: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/16 (&quot;DTLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #9228: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/17 (&quot;DTLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #9229: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/18 (&quot;DTLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #9230: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/19 (&quot;DTLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #9231: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/20 (&quot;DTLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #9232: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/21 (&quot;DTLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #9233: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/22 (&quot;DTLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #9234: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/23 (&quot;DTLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #9235: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/0 (&quot;DTLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #9236: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/1 (&quot;DTLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #9237: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/2 (&quot;DTLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #9238: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/3 (&quot;DTLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #9239: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/4 (&quot;DTLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #9240: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/5 (&quot;DTLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #9241: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/6 (&quot;DTLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #9242: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/7 (&quot;DTLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #9243: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/8 (&quot;DTLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #9244: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/9 (&quot;DTLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #9245: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/10 (&quot;DTLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #9246: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/11 (&quot;DTLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #9247: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/12 (&quot;DTLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #9248: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/13 (&quot;DTLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #9249: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/14 (&quot;DTLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #9250: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/15 (&quot;DTLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #9251: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/16 (&quot;DTLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #9252: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/17 (&quot;DTLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #9253: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/18 (&quot;DTLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #9254: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/19 (&quot;DTLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #9255: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/20 (&quot;DTLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #9256: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/21 (&quot;DTLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #9257: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/22 (&quot;DTLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #9258: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/23 (&quot;DTLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #9259: 'Datagram12Plus/TlsConnectDatagram12Plus: MissAWindow/0 771' - PASSED
ssl_gtest.sh: #9260: 'Datagram12Plus/TlsConnectDatagram12Plus: MissAWindowAndOne/0 771' - PASSED
ssl_gtest.sh: #9261: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9262: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9263: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9264: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9265: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9266: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9267: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9268: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9269: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9270: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9271: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9272: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9273: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9274: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9275: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9276: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9277: 'TlsPadding/TlsPaddingTest: Correct/0 (1, true)' - PASSED
ssl_gtest.sh: #9278: 'TlsPadding/TlsPaddingTest: Correct/1 (1, false)' - PASSED
ssl_gtest.sh: #9279: 'TlsPadding/TlsPaddingTest: Correct/2 (19, true)' - PASSED
ssl_gtest.sh: #9280: 'TlsPadding/TlsPaddingTest: Correct/3 (19, false)' - PASSED
ssl_gtest.sh: #9281: 'TlsPadding/TlsPaddingTest: Correct/4 (20, true)' - PASSED
ssl_gtest.sh: #9282: 'TlsPadding/TlsPaddingTest: Correct/5 (20, false)' - PASSED
ssl_gtest.sh: #9283: 'TlsPadding/TlsPaddingTest: Correct/6 (30, true)' - PASSED
ssl_gtest.sh: #9284: 'TlsPadding/TlsPaddingTest: Correct/7 (30, false)' - PASSED
ssl_gtest.sh: #9285: 'TlsPadding/TlsPaddingTest: Correct/8 (31, true)' - PASSED
ssl_gtest.sh: #9286: 'TlsPadding/TlsPaddingTest: Correct/9 (31, false)' - PASSED
ssl_gtest.sh: #9287: 'TlsPadding/TlsPaddingTest: Correct/10 (32, true)' - PASSED
ssl_gtest.sh: #9288: 'TlsPadding/TlsPaddingTest: Correct/11 (32, false)' - PASSED
ssl_gtest.sh: #9289: 'TlsPadding/TlsPaddingTest: Correct/12 (36, true)' - PASSED
ssl_gtest.sh: #9290: 'TlsPadding/TlsPaddingTest: Correct/13 (36, false)' - PASSED
ssl_gtest.sh: #9291: 'TlsPadding/TlsPaddingTest: Correct/14 (256, true)' - PASSED
ssl_gtest.sh: #9292: 'TlsPadding/TlsPaddingTest: Correct/15 (256, false)' - PASSED
ssl_gtest.sh: #9293: 'TlsPadding/TlsPaddingTest: Correct/16 (257, true)' - PASSED
ssl_gtest.sh: #9294: 'TlsPadding/TlsPaddingTest: Correct/17 (257, false)' - PASSED
ssl_gtest.sh: #9295: 'TlsPadding/TlsPaddingTest: Correct/18 (287, true)' - PASSED
ssl_gtest.sh: #9296: 'TlsPadding/TlsPaddingTest: Correct/19 (287, false)' - PASSED
ssl_gtest.sh: #9297: 'TlsPadding/TlsPaddingTest: Correct/20 (288, true)' - PASSED
ssl_gtest.sh: #9298: 'TlsPadding/TlsPaddingTest: Correct/21 (288, false)' - PASSED
ssl_gtest.sh: #9299: 'TlsPadding/TlsPaddingTest: PadTooLong/0 (1, true)' - PASSED
ssl_gtest.sh: #9300: 'TlsPadding/TlsPaddingTest: PadTooLong/1 (1, false)' - PASSED
ssl_gtest.sh: #9301: 'TlsPadding/TlsPaddingTest: PadTooLong/2 (19, true)' - PASSED
ssl_gtest.sh: #9302: 'TlsPadding/TlsPaddingTest: PadTooLong/3 (19, false)' - PASSED
ssl_gtest.sh: #9303: 'TlsPadding/TlsPaddingTest: PadTooLong/4 (20, true)' - PASSED
ssl_gtest.sh: #9304: 'TlsPadding/TlsPaddingTest: PadTooLong/5 (20, false)' - PASSED
ssl_gtest.sh: #9305: 'TlsPadding/TlsPaddingTest: PadTooLong/6 (30, true)' - PASSED
ssl_gtest.sh: #9306: 'TlsPadding/TlsPaddingTest: PadTooLong/7 (30, false)' - PASSED
ssl_gtest.sh: #9307: 'TlsPadding/TlsPaddingTest: PadTooLong/8 (31, true)' - PASSED
ssl_gtest.sh: #9308: 'TlsPadding/TlsPaddingTest: PadTooLong/9 (31, false)' - PASSED
ssl_gtest.sh: #9309: 'TlsPadding/TlsPaddingTest: PadTooLong/10 (32, true)' - PASSED
ssl_gtest.sh: #9310: 'TlsPadding/TlsPaddingTest: PadTooLong/11 (32, false)' - PASSED
ssl_gtest.sh: #9311: 'TlsPadding/TlsPaddingTest: PadTooLong/12 (36, true)' - PASSED
ssl_gtest.sh: #9312: 'TlsPadding/TlsPaddingTest: PadTooLong/13 (36, false)' - PASSED
ssl_gtest.sh: #9313: 'TlsPadding/TlsPaddingTest: PadTooLong/14 (256, true)' - PASSED
ssl_gtest.sh: #9314: 'TlsPadding/TlsPaddingTest: PadTooLong/15 (256, false)' - PASSED
ssl_gtest.sh: #9315: 'TlsPadding/TlsPaddingTest: PadTooLong/16 (257, true)' - PASSED
ssl_gtest.sh: #9316: 'TlsPadding/TlsPaddingTest: PadTooLong/17 (257, false)' - PASSED
ssl_gtest.sh: #9317: 'TlsPadding/TlsPaddingTest: PadTooLong/18 (287, true)' - PASSED
ssl_gtest.sh: #9318: 'TlsPadding/TlsPaddingTest: PadTooLong/19 (287, false)' - PASSED
ssl_gtest.sh: #9319: 'TlsPadding/TlsPaddingTest: PadTooLong/20 (288, true)' - PASSED
ssl_gtest.sh: #9320: 'TlsPadding/TlsPaddingTest: PadTooLong/21 (288, false)' - PASSED
ssl_gtest.sh: #9321: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/0 (1, true)' - PASSED
ssl_gtest.sh: #9322: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/1 (1, false)' - PASSED
ssl_gtest.sh: #9323: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/2 (19, true)' - PASSED
ssl_gtest.sh: #9324: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/3 (19, false)' - PASSED
ssl_gtest.sh: #9325: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/4 (20, true)' - PASSED
ssl_gtest.sh: #9326: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/5 (20, false)' - PASSED
ssl_gtest.sh: #9327: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/6 (30, true)' - PASSED
ssl_gtest.sh: #9328: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/7 (30, false)' - PASSED
ssl_gtest.sh: #9329: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/8 (31, true)' - PASSED
ssl_gtest.sh: #9330: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/9 (31, false)' - PASSED
ssl_gtest.sh: #9331: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/10 (32, true)' - PASSED
ssl_gtest.sh: #9332: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/11 (32, false)' - PASSED
ssl_gtest.sh: #9333: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/12 (36, true)' - PASSED
ssl_gtest.sh: #9334: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/13 (36, false)' - PASSED
ssl_gtest.sh: #9335: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/14 (256, true)' - PASSED
ssl_gtest.sh: #9336: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/15 (256, false)' - PASSED
ssl_gtest.sh: #9337: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/16 (257, true)' - PASSED
ssl_gtest.sh: #9338: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/17 (257, false)' - PASSED
ssl_gtest.sh: #9339: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/18 (287, true)' - PASSED
ssl_gtest.sh: #9340: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/19 (287, false)' - PASSED
ssl_gtest.sh: #9341: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/20 (288, true)' - PASSED
ssl_gtest.sh: #9342: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/21 (288, false)' - PASSED
ssl_gtest.sh: #9343: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/0 (1, true)' - PASSED
ssl_gtest.sh: #9344: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/1 (1, false)' - PASSED
ssl_gtest.sh: #9345: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/2 (19, true)' - PASSED
ssl_gtest.sh: #9346: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/3 (19, false)' - PASSED
ssl_gtest.sh: #9347: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/4 (20, true)' - PASSED
ssl_gtest.sh: #9348: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/5 (20, false)' - PASSED
ssl_gtest.sh: #9349: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/6 (30, true)' - PASSED
ssl_gtest.sh: #9350: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/7 (30, false)' - PASSED
ssl_gtest.sh: #9351: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/8 (31, true)' - PASSED
ssl_gtest.sh: #9352: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/9 (31, false)' - PASSED
ssl_gtest.sh: #9353: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/10 (32, true)' - PASSED
ssl_gtest.sh: #9354: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/11 (32, false)' - PASSED
ssl_gtest.sh: #9355: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/12 (36, true)' - PASSED
ssl_gtest.sh: #9356: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/13 (36, false)' - PASSED
ssl_gtest.sh: #9357: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/14 (256, true)' - PASSED
ssl_gtest.sh: #9358: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/15 (256, false)' - PASSED
ssl_gtest.sh: #9359: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/16 (257, true)' - PASSED
ssl_gtest.sh: #9360: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/17 (257, false)' - PASSED
ssl_gtest.sh: #9361: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/18 (287, true)' - PASSED
ssl_gtest.sh: #9362: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/19 (287, false)' - PASSED
ssl_gtest.sh: #9363: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/20 (288, true)' - PASSED
ssl_gtest.sh: #9364: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/21 (288, false)' - PASSED
ssl_gtest.sh: #9365: 'SkipTls10/TlsSkipTest: SkipCertificateRsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #9366: 'SkipTls10/TlsSkipTest: SkipCertificateDhe/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #9367: 'SkipTls10/TlsSkipTest: SkipCertificateEcdhe/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #9368: 'SkipTls10/TlsSkipTest: SkipCertificateEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #9369: 'SkipTls10/TlsSkipTest: SkipServerKeyExchange/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #9370: 'SkipTls10/TlsSkipTest: SkipServerKeyExchangeEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #9371: 'SkipTls10/TlsSkipTest: SkipCertAndKeyExch/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #9372: 'SkipTls10/TlsSkipTest: SkipCertAndKeyExchEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #9373: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9374: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9375: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9376: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9377: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9378: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9379: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9380: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9381: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9382: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9383: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9384: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9385: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9386: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9387: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9388: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9389: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9390: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9391: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9392: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9393: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9394: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9395: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9396: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9397: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9398: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9399: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9400: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9401: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9402: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9403: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9404: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9405: 'AllHashFuncs/TlsHkdfTest: HkdfNullNull/0 4' - PASSED
ssl_gtest.sh: #9406: 'AllHashFuncs/TlsHkdfTest: HkdfNullNull/1 5' - PASSED
ssl_gtest.sh: #9407: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Only/0 4' - PASSED
ssl_gtest.sh: #9408: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Only/1 5' - PASSED
ssl_gtest.sh: #9409: 'AllHashFuncs/TlsHkdfTest: HkdfKey2Only/0 4' - PASSED
ssl_gtest.sh: #9410: 'AllHashFuncs/TlsHkdfTest: HkdfKey2Only/1 5' - PASSED
ssl_gtest.sh: #9411: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Key2/0 4' - PASSED
ssl_gtest.sh: #9412: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Key2/1 5' - PASSED
ssl_gtest.sh: #9413: 'AllHashFuncs/TlsHkdfTest: HkdfExpandLabel/0 4' - PASSED
ssl_gtest.sh: #9414: 'AllHashFuncs/TlsHkdfTest: HkdfExpandLabel/1 5' - PASSED
TIMESTAMP ssl_gtests END: Mon Aug  7 00:00:41 UTC 2017
ssl_gtests.sh: Testing with upgraded library ===============================
cp: cannot stat '/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert.done': No such file or directory
Running tests for dbupgrade
TIMESTAMP dbupgrade BEGIN: Mon Aug  7 00:00:41 UTC 2017
dbupgrade.sh: DB upgrade tests ===============================
Reset databases to their initial values:
certutil: could not find certificate named "objsigner": SEC_ERROR_BAD_DATABASE: security library: bad database.
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
dbupgrade.sh: Legacy to shared Library update ===============================
alicedir
upgrading db alicedir
Generating key.  This may take a few moments...
dbupgrade.sh: #9415: Upgrading alicedir  - PASSED
bobdir
upgrading db bobdir
Generating key.  This may take a few moments...
dbupgrade.sh: #9416: Upgrading bobdir  - PASSED
CA
upgrading db CA
Generating key.  This may take a few moments...
dbupgrade.sh: #9417: Upgrading CA  - PASSED
cert_extensions
upgrading db cert_extensions
Generating key.  This may take a few moments...
dbupgrade.sh: #9418: Upgrading cert_extensions  - PASSED
client
upgrading db client
Generating key.  This may take a few moments...
dbupgrade.sh: #9419: Upgrading client  - PASSED
clientCA
upgrading db clientCA
Generating key.  This may take a few moments...
dbupgrade.sh: #9420: Upgrading clientCA  - PASSED
dave
upgrading db dave
Generating key.  This may take a few moments...
dbupgrade.sh: #9421: Upgrading dave  - PASSED
eccurves
upgrading db eccurves
Generating key.  This may take a few moments...
dbupgrade.sh: #9422: Upgrading eccurves  - PASSED
eve
upgrading db eve
Generating key.  This may take a few moments...
dbupgrade.sh: #9423: Upgrading eve  - PASSED
ext_client
upgrading db ext_client
Generating key.  This may take a few moments...
dbupgrade.sh: #9424: Upgrading ext_client  - PASSED
ext_server
upgrading db ext_server
Generating key.  This may take a few moments...
dbupgrade.sh: #9425: Upgrading ext_server  - PASSED
SDR
upgrading db SDR
Generating key.  This may take a few moments...
dbupgrade.sh: #9426: Upgrading SDR  - PASSED
server
upgrading db server
Generating key.  This may take a few moments...
dbupgrade.sh: #9427: Upgrading server  - PASSED
serverCA
upgrading db serverCA
Generating key.  This may take a few moments...
dbupgrade.sh: #9428: Upgrading serverCA  - PASSED
ssl_gtests
skipping db ssl_gtests
dbupgrade.sh: #9429: No directory ssl_gtests  - PASSED
stapling
upgrading db stapling
Generating key.  This may take a few moments...
dbupgrade.sh: #9430: Upgrading stapling  - PASSED
tools/copydir
skipping db tools/copydir
dbupgrade.sh: #9431: No directory tools/copydir  - PASSED
upgrading db fips
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
dbupgrade.sh: #9432: Upgrading fips  - PASSED
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
TIMESTAMP dbupgrade END: Mon Aug  7 00:01:08 UTC 2017
Running tests for tools
TIMESTAMP tools BEGIN: Mon Aug  7 00:01:08 UTC 2017
tools.sh: Tools Tests with ECC ===============================
tools.sh: Exporting Alice's email cert & key - default ciphers
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9433: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                34:53:da:b6:59:f4:be:b4:a1:ff:fc:5e:eb:8b:8f:0c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9434: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9435: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's email EC cert & key---------------
pk12util -o Alice-ec.p12 -n "Alice-ec" -d ../alicedir -k ../tests.pw \
         -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9436: Exporting Alice's email EC cert & key (pk12util -o)  - PASSED
tools.sh: Importing Alice's email EC cert & key --------------
pk12util -i Alice-ec.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9437: Importing Alice's email EC cert & key (pk12util -i)  - PASSED
tools.sh: Listing Alice's pk12 EC file -----------------
pk12util -l Alice-ec.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice-ec
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                1d:c7:eb:c8:81:df:0e:7b:81:31:1e:1e:0d:be:b7:72
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: X9.62 ECDSA signature with SHA256
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Sun Aug 06 23:43:25 2017
            Not After : Sat Aug 06 23:43:25 2067
        Subject: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Califor
            nia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:23
            EC Public Key:
                PublicValue:
                    04:00:07:bc:ff:20:10:36:46:e9:73:43:d6:2a:f5:e6:
                    68:d7:85:f5:67:ea:63:60:35:43:7a:57:47:ef:fa:6e:
                    d8:62:0f:96:da:a3:67:da:3f:e2:b9:1c:f0:66:d7:ac:
                    e4:71:81:b2:f5:c5:1b:33:56:d1:7c:8b:0a:de:55:66:
                    f5:f5:29:00:1f:05:ba:8e:4b:ba:16:9c:4d:7e:5b:07:
                    52:ee:85:9f:65:69:ce:9f:5a:74:82:f6:30:68:1f:f8:
                    c1:dc:74:0c:da:bc:73:4c:af:53:7c:79:63:c2:a4:bc:
                    a2:5b:b7:98:99:97:8f:17:74:8d:67:f2:1d:20:6e:01:
                    6f:f7:36:96:e7
                Curve: SECG elliptic curve secp521r1 (aka NIST P-521)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: X9.62 ECDSA signature with SHA256
    Signature:
        30:81:87:02:42:01:50:b7:0f:f6:48:26:65:b2:38:d3:
        81:aa:57:e6:00:98:fd:01:9a:d1:eb:ec:07:ba:a6:28:
        c5:c0:86:35:62:42:45:a4:a1:dc:8e:f8:2d:88:cb:f4:
        7f:61:28:30:21:22:83:2f:8f:2c:00:fb:bc:87:db:a6:
        f8:27:f8:e6:cc:d5:a7:02:41:15:69:15:77:32:f9:d2:
        b0:62:38:86:7f:35:e0:a3:64:35:51:7b:e2:82:b4:d2:
        b7:8d:88:06:02:75:84:dd:5b:84:85:30:44:52:94:ad:
        39:d6:fa:e0:b8:e9:ca:cd:14:71:48:9e:6e:b4:15:8d:
        88:8e:38:63:15:f0:b0:be:3e:ab
    Fingerprint (SHA-256):
        46:01:EA:C7:47:19:53:62:C4:AF:D7:D0:84:D6:D0:C2:6A:4F:45:C3:55:72:DC:24:C0:F8:8C:57:1A:4C:12:54
    Fingerprint (SHA1):
        0E:62:8E:33:AD:A6:06:FC:BE:24:1B:0A:6C:FA:F2:32:66:F2:E0:CD
    Friendly Name: TestCA-ec
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: X9.62 ECDSA signature with SHA256
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice-ec@bogus.com,O=BOGUS NSS,L=Mountain View,S
            T=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:22
            EC Public Key:
                PublicValue:
                    04:51:63:9d:a4:9c:51:10:a6:1c:db:3d:59:ce:d3:44:
                    33:e2:4c:d1:e6:34:64:0a:8c:a1:13:04:82:10:63:5f:
                    36:07:91:e6:66:fe:d6:dc:ea:f1:c9:85:e5:c1:8b:a1:
                    8a:02:7f:2d:83:ad:cc:cf:99:67:7c:30:34:18:b7:db:
                    33:6b:84:eb:ca:68:1d:09:bf:32:ed:00:54:42:01:8a:
                    c3:43:8a:0c:60:30:f4:4c:e0:7c:49:4d:45:ba:a0:01:
                    42
                Curve: SECG elliptic curve secp384r1 (aka NIST P-384)
    Signature Algorithm: X9.62 ECDSA signature with SHA256
    Signature:
        30:81:88:02:42:01:41:3e:89:21:f5:70:97:e5:a6:c1:
        34:f1:a7:71:1b:8d:e7:99:d6:d9:7f:df:56:77:35:8f:
        66:f4:21:32:4a:f1:4a:2a:94:fc:fa:7b:42:30:de:53:
        02:ba:51:0f:44:89:d8:68:c7:76:8f:3f:b0:37:4e:a3:
        d0:c1:cc:39:c5:66:fb:02:42:01:05:14:cc:58:87:44:
        f1:a9:7e:2f:d5:f5:f4:51:c9:f9:0b:37:55:93:6c:94:
        95:dc:4d:d1:d7:36:d2:8a:f7:55:21:14:60:35:8c:c8:
        ff:f5:d5:7c:a6:85:03:6e:12:4b:73:ee:da:a4:70:12:
        64:e6:6b:3e:93:d0:fe:be:31:51:18
    Fingerprint (SHA-256):
        41:5B:9D:7D:FB:1F:02:FA:16:FF:1E:3E:D8:EA:9B:C9:08:7C:A5:9E:20:B5:D9:13:03:8B:01:8E:2F:D4:F8:16
    Fingerprint (SHA1):
        EB:A3:A3:12:D5:67:37:2E:DC:38:F3:83:14:27:16:60:20:A3:40:5F
    Friendly Name: Alice-ec
tools.sh: #9438: Listing Alice's pk12 EC file (pk12util -l)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9439: Exporting with [RC2-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                72:6b:f3:d2:ed:d8:b1:bf:75:60:74:01:54:fb:35:2f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9440: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9441: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9442: Exporting with [RC2-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                b4:8e:89:19:55:20:86:c7:18:9e:ce:52:67:80:40:09
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9443: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9444: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9445: Exporting with [RC2-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                5c:a4:bb:a0:ad:55:d3:bc:ec:33:d6:ad:39:fa:93:c0
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9446: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9447: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9448: Exporting with [RC2-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                8d:0e:b8:0a:c1:66:0a:79:ca:46:50:cf:dd:f1:95:15
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9449: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9450: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9451: Exporting with [RC2-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                32:b0:bc:f0:5f:ac:8d:2f:e5:fd:20:69:cd:66:fd:2f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9452: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9453: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9454: Exporting with [RC2-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                1f:06:99:ee:a4:80:c0:70:1f:fb:48:67:dd:8d:5c:d3
            Iteration Count: 2000 (0x7d0)
tools.sh: #9455: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9456: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9457: Exporting with [DES-EDE3-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                38:77:30:d1:d4:58:cb:16:02:ef:37:ee:1b:20:71:2f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9458: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9459: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9460: Exporting with [DES-EDE3-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                e5:4b:18:8b:37:d9:22:35:f6:2e:18:9f:41:e1:a5:c5
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9461: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9462: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9463: Exporting with [DES-EDE3-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                b4:4a:1a:22:b6:0f:09:a6:5c:eb:6b:1f:b3:d5:28:c0
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9464: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9465: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9466: Exporting with [DES-EDE3-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                81:53:1b:2e:f2:f7:12:2e:1a:6e:44:06:11:97:55:52
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9467: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9468: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9469: Exporting with [DES-EDE3-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                74:f4:00:45:16:ee:f9:2f:a5:36:42:e0:4c:3c:78:b4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9470: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9471: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9472: Exporting with [DES-EDE3-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                3e:79:6e:f6:8d:15:13:83:86:e3:5a:cf:9a:6a:f0:28
            Iteration Count: 2000 (0x7d0)
tools.sh: #9473: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9474: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9475: Exporting with [AES-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        c0:54:bc:d8:bc:76:4d:14:72:e3:8f:d6:48:7b:b3:09
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:46:0f:ba:98:56:a2:61:8f:37:bd:9a:67:f7:eb:
                    59:8c
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9476: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9477: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9478: Exporting with [AES-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        9d:59:49:22:7b:b3:c0:d3:c3:f6:3a:59:8a:4a:0a:3c
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:db:ca:5c:69:43:7b:e5:56:a8:f3:66:59:8e:8b:
                    c4:a6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9479: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9480: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9481: Exporting with [AES-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        31:2e:72:b5:ad:8d:55:c5:24:17:40:8a:df:62:cb:ee
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:4e:53:4c:94:df:4d:82:15:a8:df:f8:cd:06:db:
                    11:7e
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9482: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9483: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9484: Exporting with [AES-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        20:90:6e:09:6c:bf:d1:54:01:d3:2c:37:82:8e:2b:5a
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:40:fd:da:65:b1:cb:1f:10:92:08:8a:2d:38:7f:
                    36:92
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9485: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9486: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9487: Exporting with [AES-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        0f:9c:c2:0e:d1:1d:73:90:3b:c9:22:95:53:f9:d2:dd
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:5e:f6:f7:4a:f1:89:77:1e:4d:3d:a6:99:6f:b9:
                    e8:f6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9488: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9489: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9490: Exporting with [AES-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        27:74:ac:0a:5b:30:b1:8d:19:6d:fa:b8:2a:c5:b3:ad
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:ce:90:7d:74:a2:88:05:40:e3:93:c2:f0:a1:04:
                    48:9a
tools.sh: #9491: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9492: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9493: Exporting with [AES-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        82:f4:0f:40:4f:68:18:81:08:4d:05:75:ab:71:01:d9
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:af:d3:59:10:68:77:73:4e:c7:1d:ac:72:21:10:
                    78:aa
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9494: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9495: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9496: Exporting with [AES-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        a5:4b:f6:3b:c4:80:3f:de:17:4f:4b:e7:01:5d:7c:4b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:dc:e9:05:c8:bf:c2:71:47:5b:c3:00:0b:b6:8c:
                    87:a5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9497: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9498: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9499: Exporting with [AES-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        fe:7f:a0:c0:5b:d8:b5:d0:57:c4:71:d1:94:bb:f0:ce
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:30:4f:d4:92:69:c4:45:f1:a1:bc:0a:6f:14:7d:
                    b9:8d
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9500: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9501: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9502: Exporting with [AES-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        44:7e:d8:ea:1c:8c:1c:5f:11:4f:d9:1d:52:c6:a3:a4
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:5a:a6:4e:0e:c6:93:71:5b:d1:1a:37:4a:81:13:
                    9d:fe
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9503: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9504: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9505: Exporting with [AES-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        75:d2:69:d1:ec:21:93:46:8c:4b:2a:9d:1c:ad:fa:58
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:04:ec:eb:e4:ce:2c:82:66:df:a5:3d:9d:9f:22:
                    ad:81
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9506: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9507: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9508: Exporting with [AES-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        6a:57:3d:3e:16:1e:40:1c:cf:da:f1:94:d3:df:c7:6f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:e0:be:86:d0:77:a8:9e:c1:58:15:f8:16:8b:65:
                    1b:51
tools.sh: #9509: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9510: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9511: Exporting with [AES-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        98:31:9c:8b:06:43:45:34:f4:52:8c:5d:36:98:0e:52
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:ed:73:55:c0:41:ea:13:15:23:45:62:14:5b:36:
                    39:65
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9512: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9513: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9514: Exporting with [AES-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        1c:7e:83:e8:b9:d2:72:5a:e6:5d:07:bf:4e:87:c1:a6
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:39:7b:d2:45:78:d0:38:db:e7:7d:ca:8b:dc:2a:
                    2e:00
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9515: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9516: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9517: Exporting with [AES-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        bf:f8:0e:46:3b:fc:77:82:b9:e6:a5:8a:cf:92:02:7e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:46:22:5a:62:6b:21:34:8a:3b:7a:56:24:e9:0c:
                    c2:40
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9518: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9519: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9520: Exporting with [AES-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        bc:5c:b4:3a:0c:85:5e:7f:38:6d:95:42:d7:c7:6c:a4
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:1b:cd:c8:36:9f:7e:fc:84:62:b2:20:94:7e:82:
                    4f:38
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9521: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9522: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9523: Exporting with [AES-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        9b:81:d6:fe:60:42:bd:14:03:99:61:76:e6:c1:8f:59
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:d2:ba:8e:d7:74:b6:7c:2c:d8:e7:02:ca:cd:4c:
                    8f:55
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9524: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9525: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9526: Exporting with [AES-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        d0:af:2f:2f:d9:a6:2f:61:b0:19:da:51:c5:37:47:cf
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:5c:c5:5b:ba:a5:da:c5:d2:72:d0:f1:16:01:0e:
                    9d:ba
tools.sh: #9527: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9528: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9529: Exporting with [CAMELLIA-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        1b:56:1e:20:ef:78:57:e0:b9:23:ad:fb:2f:9b:98:5e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:51:38:a2:4d:b5:d2:5f:05:3d:8b:4e:dd:71:0b:
                    4f:ec
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9530: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9531: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9532: Exporting with [CAMELLIA-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        16:da:ba:22:f7:06:65:5c:ea:57:61:76:b7:c1:b5:33
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:67:bc:34:be:ca:31:87:ab:db:38:73:c0:a2:50:
                    88:62
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9533: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9534: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9535: Exporting with [CAMELLIA-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        d0:73:20:f4:a1:2b:89:73:86:5e:a7:25:8f:59:fc:5b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:06:4c:09:6a:b3:b9:8f:6e:02:b0:1f:c5:cb:08:
                    9c:0e
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9536: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9537: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9538: Exporting with [CAMELLIA-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e0:09:f2:8a:61:f1:40:bf:34:cf:12:c8:cb:06:d0:6d
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:5d:4f:10:c0:9c:18:56:f3:dd:d2:bd:32:8e:44:
                    a0:f0
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9539: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9540: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9541: Exporting with [CAMELLIA-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        50:ff:fe:61:7a:d4:5e:95:a0:ac:8d:c2:0d:43:e4:c1
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:84:8e:55:ea:80:bf:81:a7:d7:95:1f:9d:61:ae:
                    45:53
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9542: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9543: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9544: Exporting with [CAMELLIA-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        4d:2d:28:ca:f4:c7:c7:5b:92:80:3a:d6:9b:0a:44:c4
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:ab:b0:81:d5:3f:93:15:6f:3e:c0:ac:89:fc:49:
                    98:e2
tools.sh: #9545: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9546: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9547: Exporting with [CAMELLIA-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        fb:b4:fd:d3:fa:e9:52:d1:a4:2b:aa:d8:df:6f:98:3a
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:b9:cd:6b:94:4d:fc:5d:9a:25:7f:a9:a4:ae:41:
                    83:bc
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9548: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9549: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9550: Exporting with [CAMELLIA-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        20:d2:b5:16:98:dd:11:58:da:73:61:13:52:2c:99:ea
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:a1:d4:02:50:3f:77:80:cf:04:5d:07:83:c0:81:
                    56:d0
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9551: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9552: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9553: Exporting with [CAMELLIA-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        16:ea:63:c7:16:7b:d9:36:b7:31:f4:ca:bb:fb:3d:77
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:85:16:b8:28:2c:12:b5:9c:2d:78:38:38:a0:3f:
                    94:bf
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9554: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9555: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9556: Exporting with [CAMELLIA-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ec:ab:4b:c2:8f:8d:2c:fa:7e:4d:d4:48:bc:3d:7e:a4
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:a4:13:00:c2:b3:5a:32:c8:8b:34:c0:b7:4a:54:
                    38:76
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9557: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9558: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9559: Exporting with [CAMELLIA-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        88:43:57:71:89:50:32:27:c7:0d:1a:48:4e:9f:1b:5e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:03:41:72:9a:88:b2:b8:a5:b8:17:31:8d:a6:11:
                    5b:86
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9560: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9561: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9562: Exporting with [CAMELLIA-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e9:31:0f:e3:4a:a1:42:96:91:f2:26:b1:ac:a4:7d:f9
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:bb:ad:cd:17:77:db:fd:ac:0c:e3:11:e5:82:78:
                    24:4a
tools.sh: #9563: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9564: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9565: Exporting with [CAMELLIA-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        46:12:9c:d3:a7:75:aa:2b:94:d5:70:89:9f:09:b6:59
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:54:32:cb:c2:82:22:15:42:04:db:12:81:be:ad:
                    f0:49
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9566: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9567: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9568: Exporting with [CAMELLIA-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        bd:7e:7e:23:47:03:ba:06:98:c8:1d:15:77:c7:70:d2
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:a2:92:5d:22:4e:e3:55:96:20:14:d1:43:3a:bb:
                    d4:1a
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9569: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9570: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9571: Exporting with [CAMELLIA-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        36:e8:10:26:d1:cb:a1:93:dc:8e:49:79:63:0d:c7:bf
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:af:61:22:24:74:00:35:8c:48:27:15:b8:31:47:
                    d6:5e
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9572: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9573: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9574: Exporting with [CAMELLIA-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        14:c9:d9:a7:95:71:09:b6:a4:95:e4:db:cb:05:35:21
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:7a:78:82:32:a8:41:16:b7:80:b7:0a:eb:ae:60:
                    a1:21
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9575: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9576: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9577: Exporting with [CAMELLIA-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        af:c8:5d:13:e1:ac:24:4f:b8:81:83:53:a3:df:b9:c9
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:02:5f:d8:fa:20:e9:fd:df:af:02:69:c9:e1:12:
                    12:21
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9578: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9579: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9580: Exporting with [CAMELLIA-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        d8:bf:17:af:db:1d:74:b9:b9:80:ea:7d:8a:71:27:ad
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:e2:43:64:44:60:a0:9c:60:96:a5:66:f0:95:70:
                    24:ad
tools.sh: #9581: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9582: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9583: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                e0:37:b9:70:10:be:5e:51:0d:88:c1:35:88:2a:24:b9
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9584: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9585: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9586: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                4c:58:9a:65:f4:29:5e:5a:d2:c2:10:a0:63:b9:2b:2c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9587: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9588: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9589: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                9c:23:f7:84:e3:7a:84:50:9e:c8:cc:96:60:f2:83:1f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9590: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9591: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9592: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                2a:ca:f4:d7:a7:7a:74:c3:77:b6:45:d0:1c:27:3c:69
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9593: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9594: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9595: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                6b:5c:18:6a:72:a4:57:4b:15:dd:bc:07:38:af:7d:41
            Iteration Count: 2000 (0x7d0)
tools.sh: #9596: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9597: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9598: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                0f:48:21:93:94:bb:b9:3a:28:7a:c4:72:84:c8:05:f4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9599: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9600: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9601: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                5a:56:8d:4d:39:c8:9b:b7:62:a1:73:57:16:41:57:e6
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9602: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9603: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9604: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                27:17:3b:1c:47:8c:9e:d6:f9:41:9f:54:98:f0:15:13
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9605: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9606: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9607: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                45:8b:8d:97:0d:cb:1b:24:b7:1a:65:30:58:00:5e:c6
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9608: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9609: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9610: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                b4:9f:cf:7e:b4:a7:28:1a:b7:23:23:7b:04:c5:8c:68
            Iteration Count: 2000 (0x7d0)
tools.sh: #9611: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9612: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9613: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                b1:69:f8:e7:69:2e:c1:12:fc:bf:23:90:54:f3:9f:8f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9614: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9615: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9616: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                08:47:e5:e2:62:74:5f:48:6a:df:99:18:bd:51:a6:b3
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9617: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9618: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9619: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                f7:22:7f:e9:66:4a:0c:53:a3:05:a1:62:53:ef:de:11
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9620: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9621: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9622: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                03:6d:3d:84:ab:ea:2e:51:50:86:7a:63:16:83:21:6b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9623: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9624: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9625: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                b7:ac:4d:67:2c:9d:cc:aa:d7:4a:ad:92:83:1a:2d:ae
            Iteration Count: 2000 (0x7d0)
tools.sh: #9626: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9627: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9628: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                b4:21:7f:97:74:d7:52:94:98:c1:74:3f:c6:29:d7:17
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9629: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9630: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9631: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                20:c1:0b:a0:13:ba:72:67:c8:a4:b3:b9:f2:0e:6a:7c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9632: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9633: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9634: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                2b:3b:66:21:4c:85:a0:17:ad:44:55:c1:2a:f8:a4:4d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9635: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9636: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9637: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                e1:7f:66:7a:b0:d3:4e:2c:00:aa:89:89:bc:46:f0:69
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9638: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9639: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:null]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9640: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                45:cc:81:c5:29:0e:9f:97:85:a7:5d:5c:c7:54:5e:53
            Iteration Count: 2000 (0x7d0)
tools.sh: #9641: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9642: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9643: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                24:cb:ea:0a:38:05:40:a0:cb:f8:4a:5a:f1:e7:66:6d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9644: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9645: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9646: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                04:c2:43:d0:af:77:e2:88:b4:9a:e4:f3:0e:e1:86:37
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9647: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9648: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9649: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                30:08:06:dd:61:4e:b9:ad:f4:38:8d:38:fc:37:38:f6
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9650: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9651: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9652: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                0c:c0:a2:85:48:04:a4:cd:d5:f1:45:33:1e:41:06:f4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9653: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9654: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9655: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                1c:d8:dd:32:5f:2b:80:fc:6e:6d:8e:5c:1a:e7:96:dd
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9656: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9657: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9658: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                4c:e4:50:8a:f8:57:32:7e:95:f5:2b:53:5e:28:0a:cd
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9659: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9660: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9661: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                91:cc:ae:6b:3f:a7:0e:a1:47:70:6b:14:cb:e6:48:c7
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9662: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9663: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9664: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                b3:89:3e:0e:ad:89:f3:2f:7d:d1:56:d5:60:26:9a:44
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9665: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9666: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9667: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                e5:7b:81:25:bb:ad:28:8f:f1:92:3b:96:b9:3d:19:f2
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9668: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9669: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9670: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                3d:12:d8:6a:92:e9:23:31:8e:ad:2c:fe:86:b4:88:e2
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:24 2017
            Not After : Sat Aug 06 23:43:24 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:d7:22:f0:44:9f:c1:ab:64:3c:f1:e7:96:de:d7:34:
                    b0:3a:c4:a5:27:78:92:58:88:f5:df:d3:1f:26:28:90:
                    65:19:1f:4e:ef:4e:c0:05:c7:4b:4e:61:a5:d7:67:44:
                    a4:2a:b2:dd:82:23:0d:d0:a5:ee:fc:bf:37:1a:be:4d:
                    34:24:3e:ce:6b:79:20:f6:6b:23:cc:fd:96:9c:0d:0f:
                    ef:5d:6d:f8:1d:19:65:e3:00:29:dd:ee:db:4d:e9:ce:
                    64:df:9c:a1:59:e3:44:bb:06:73:16:d9:83:bd:16:cb:
                    33:e7:8e:53:da:e8:27:58:7c:de:90:4f:2e:81:b5:26:
                    6b:90:a2:f1:ad:19:8c:b1:8e:66:8b:94:3f:f6:f0:90:
                    a7:2e:e6:ca:dd:93:89:47:7e:9e:c0:52:47:c3:94:c4:
                    31:4a:58:72:53:c5:8a:50:da:0a:a1:38:2a:d5:ea:be:
                    ce:b1:a9:a7:24:0e:47:87:c5:37:07:41:cf:9f:9e:d1:
                    0f:e0:78:2c:2d:59:b3:f5:1e:ef:ed:1c:72:3c:f6:dd:
                    9d:2f:cf:1e:63:61:ad:a4:2f:f8:0e:a7:73:61:55:19:
                    49:6f:66:94:89:84:3a:0e:a0:8f:88:87:e0:e7:a3:ba:
                    53:dc:6b:3c:3e:25:29:4f:df:3e:e7:b4:43:79:a2:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:0b:14:8f:5b:61:f8:2d:b2:8e:24:68:bb:ff:7f:dc:
        3b:57:a7:b6:41:ec:e8:aa:5c:fc:79:8e:65:35:30:92:
        60:89:20:e3:9f:ca:6c:94:3a:0d:fb:cb:b0:b0:9f:23:
        14:11:73:ef:b4:57:68:a0:d4:12:8f:37:9a:e2:4e:f6:
        f7:0f:69:cd:b8:8e:03:34:90:6b:15:fa:0c:a9:63:0c:
        17:ca:b1:6c:43:b0:68:18:9b:64:a7:b7:ab:4d:06:5e:
        21:67:5b:06:66:d1:9f:09:14:0d:86:76:bc:0c:08:f0:
        e4:3d:26:6d:7c:0b:81:ba:0d:23:36:60:23:71:cf:aa:
        d2:13:5a:fe:a7:0c:df:bb:89:d9:47:e2:40:3d:72:5b:
        f7:24:35:aa:0c:fd:12:53:12:f3:0d:4c:a3:86:84:cf:
        fe:7d:49:27:7d:2c:a6:8f:09:6c:47:a6:6c:86:e7:24:
        ae:3e:f0:0a:45:90:13:42:eb:6b:c0:b6:bf:38:c7:2a:
        3a:c1:95:8d:97:8a:17:44:4f:a8:b9:ab:3c:55:24:3e:
        73:6c:0c:b4:23:a3:c5:e1:3d:5c:16:02:ba:7b:b0:b4:
        13:3f:47:61:f3:40:ba:60:11:75:13:01:9e:cf:51:27:
        59:02:e8:1b:8a:f5:cc:f8:62:bd:d4:1d:50:44:3e:b5
    Fingerprint (SHA-256):
        FD:CE:57:35:E7:C3:A2:96:DE:8D:6C:F6:D5:04:B0:30:AA:77:C3:62:F2:42:DD:3F:12:8D:8F:63:17:CA:53:BD
    Fingerprint (SHA1):
        B0:EE:3C:EB:EC:EB:D8:48:9D:88:E2:74:0E:B1:32:99:4A:AC:DA:D5
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:29 2017
            Not After : Sat Aug 06 23:43:29 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:e4:e2:93:e5:3f:0f:21:cb:3d:69:06:d6:fc:a4:6f:
                    20:f4:90:f3:39:5e:16:d9:fc:0c:ba:46:f4:81:95:54:
                    83:de:f5:c4:1b:bb:b9:c5:1d:b7:7d:ee:06:43:5c:b7:
                    33:c4:7d:1a:88:09:3e:ff:bf:2a:f3:45:f2:b4:f0:2f:
                    76:e3:21:e4:f7:d7:cb:3d:94:86:c1:c6:60:d3:1b:01:
                    a4:96:73:b9:f9:d0:90:39:22:af:c2:36:b4:4e:b6:36:
                    d5:4c:da:1a:ac:fe:b5:1a:8e:1f:b7:e6:b4:7b:22:c2:
                    28:b9:1e:fa:5c:03:09:62:fc:8c:4f:c2:4f:30:e9:8a:
                    93:65:49:50:76:91:81:bf:26:8a:c8:8d:6f:64:1c:83:
                    ec:13:65:3e:37:cd:89:18:0b:14:62:18:d7:d1:c8:5e:
                    67:53:8f:4c:5a:d2:40:a7:89:87:c7:5e:82:e9:2b:62:
                    30:15:05:b9:0d:df:c8:9d:41:6f:6d:25:b4:35:41:87:
                    c7:48:cf:93:5c:7a:7c:be:b1:dd:70:fc:7a:6b:8c:5b:
                    3d:65:24:a6:c1:fc:c4:35:b5:6f:fd:67:20:9f:f4:22:
                    d5:3f:f4:7f:42:79:23:a0:ba:7f:56:7c:0f:42:9f:50:
                    32:68:66:48:9a:24:17:67:2c:b5:00:9f:4b:34:fb:01
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:d0:75:51:67:63:09:e4:ac:ae:b9:d3:8d:20:73:6c:
        45:16:7c:01:e1:a2:b9:22:91:20:10:ae:e4:42:d7:8a:
        3a:cb:3f:5d:a6:70:af:c8:20:a7:e4:d0:e0:dc:b6:39:
        4d:f2:62:a4:2c:55:f2:c7:56:ab:8d:04:ae:4c:0d:50:
        be:26:36:9f:89:0f:a0:13:32:f9:03:18:50:07:1b:e7:
        34:17:74:71:13:23:db:25:02:9e:a8:ac:c9:e9:c5:c1:
        cc:15:c0:b1:ac:9c:0e:66:76:e6:10:9b:98:65:48:55:
        7f:ff:db:71:57:d1:78:49:52:30:1a:19:6f:9e:e5:5d:
        47:85:c4:9b:a7:90:a2:7f:a1:7b:c1:70:57:87:bb:11:
        7c:15:24:78:c2:81:7b:0e:c9:46:b7:96:53:16:88:86:
        fe:34:73:0e:8a:6b:f3:0e:1e:f4:ec:2b:6d:1d:4c:6f:
        fd:49:e7:80:5c:1d:49:ea:62:2c:7f:cb:36:4e:c8:9e:
        59:f6:ad:79:02:e3:1f:43:ce:08:94:bb:2b:05:de:01:
        f9:9c:89:9a:2d:ca:b4:74:87:50:25:d3:5e:24:48:dc:
        b0:16:d4:c9:4c:cc:de:1d:78:be:e1:a6:f2:9f:c5:db:
        7f:e9:11:8b:2c:48:4a:76:4e:ba:a8:26:fc:2d:bd:e4
    Fingerprint (SHA-256):
        35:CB:A7:FD:08:BA:E5:AA:13:AC:36:27:4A:86:94:B8:3A:54:5E:09:64:18:2C:F9:E6:66:52:B3:76:53:34:E5
    Fingerprint (SHA1):
        69:C8:B2:77:C3:B4:EA:4B:36:A8:B2:F7:18:BE:87:5E:83:CB:EA:69
    Friendly Name: Alice
tools.sh: #9671: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9672: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c null
pk12util: Algorithm: "null": SEC_ERROR_INVALID_ALGORITHM: security library: invalid algorithm.
tools.sh: #9673: Exporting with [null:default] (pk12util -o)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9674: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Create objsign cert -------------------------------
signtool -G "objectsigner" -d ../tools/signdir -p "nss"
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit the browser before continuing this operation. Enter 
"y" to continue, or anything else to abort: 
Enter certificate information.  All fields are optional. Acceptable
characters are numbers, letters, spaces, and apostrophes.
certificate common name: organization: organization unit: state or province: country (must be exactly 2 characters): username: email address: generated public/private key pair
certificate request generated
certificate has been signed
certificate "objsigner" added to database
Exported certificate to x509.raw and x509.cacert.
tools.sh: #9675: Create objsign cert (signtool -G)  - PASSED
tools.sh: Signing a jar of files ----------------------------
signtool -Z nojs.jar -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
adding ../tools/html/sign.html to nojs.jar...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.jar...(deflated 28%)
Generating zigbert.sf file..
adding ../tools/html/META-INF/manifest.mf to nojs.jar...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.jar...(deflated 36%)
adding ../tools/html/META-INF/zigbert.rsa to nojs.jar...(deflated 32%)
tree "../tools/html" signed successfully
tools.sh: #9676: Signing a jar of files (signtool -Z)  - PASSED
tools.sh: Listing signed files in jar ----------------------
signtool -v nojs.jar -d ../tools/signdir -p nss -k objsigner
archive "nojs.jar" has passed crypto verification.
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
found a RSA signature file: META-INF/zigbert.rsa
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #9677: Listing signed files in jar (signtool -v)  - PASSED
tools.sh: Show who signed jar ------------------------------
signtool -w nojs.jar -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #9678: Show who signed jar (signtool -w)  - PASSED
tools.sh: Signing a xpi of files ----------------------------
signtool -Z nojs.xpi -X -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
--> signjs.html
Generating zigbert.sf file..
Creating XPI Compatible Archive 
adding ../tools/html/META-INF/zigbert.rsa to nojs.xpi...(deflated 32%)
--> sign.html
adding ../tools/html/sign.html to nojs.xpi...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.xpi...(deflated 28%)
adding ../tools/html/META-INF/manifest.mf to nojs.xpi...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.xpi...(deflated 36%)
tree "../tools/html" signed successfully
tools.sh: #9679: Signing a xpi of files (signtool -Z -X)  - PASSED
tools.sh: Listing signed files in xpi ----------------------
signtool -v nojs.xpi -d ../tools/signdir -p nss -k objsigner
archive "nojs.xpi" has passed crypto verification.
found a RSA signature file: META-INF/zigbert.rsa
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #9680: Listing signed files in xpi (signtool -v)  - PASSED
tools.sh: Show who signed xpi ------------------------------
signtool -w nojs.xpi -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #9681: Show who signed xpi (signtool -w)  - PASSED
TIMESTAMP tools END: Mon Aug  7 00:01:48 UTC 2017
Running tests for fips
TIMESTAMP fips BEGIN: Mon Aug  7 00:01:48 UTC 2017
fips.sh: FIPS 140 Compliance Tests ===============================
fips.sh: Verify this module is in FIPS mode  -----------------
modutil -dbdir ../fips -list
Listing of PKCS #11 Modules
-----------------------------------------------------------
  1. NSS Internal FIPS PKCS #11 Module
	 slots: 1 slot attached
	status: loaded
	 slot: NSS FIPS 140-2 User Private Key Services
	token: NSS FIPS 140-2 Certificate DB
  2. RootCerts
	library name: /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
	 slots: 1 slot attached
	status: loaded
	 slot: NSS Builtin Objects
	token: Builtin Object Token
-----------------------------------------------------------
FIPS mode enabled.
fips.sh: #9682: Verify this module is in FIPS mode (modutil -chkfips true) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #9683: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys -------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      c4f24205802c27a60638268541dc2e203f03e8b6   FIPS_PUB_140_Test_Certificate
fips.sh: #9684: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Attempt to list FIPS module keys with incorrect password
certutil -d ../fips -K -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/tests.fipsbadpw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
Incorrect password/PIN entered.
certutil: could not authenticate to token NSS FIPS 140-2 Certificate DB.: SEC_ERROR_BAD_PASSWORD: The security password entered is incorrect.
fips.sh: #9685: Attempt to list FIPS module keys with incorrect password (certutil -K) . - PASSED
certutil -K returned 255
fips.sh: Validate the certificate --------------------------
certutil -d ../fips -V -n FIPS_PUB_140_Test_Certificate -u SR -e -f ../tests.fipspw
certutil: certificate is valid
fips.sh: #9686: Validate the certificate (certutil -V -e) . - PASSED
fips.sh: Export the certificate and key as a PKCS#12 file --
pk12util -d ../fips -o fips140.p12 -n FIPS_PUB_140_Test_Certificate -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 EXPORT SUCCESSFUL
fips.sh: #9687: Export the certificate and key as a PKCS#12 file (pk12util -o) . - PASSED
fips.sh: Export the certificate as a DER-encoded file ------
certutil -d ../fips -L -n FIPS_PUB_140_Test_Certificate -r -o fips140.crt
fips.sh: #9688: Export the certificate as a DER (certutil -L -r) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #9689: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Delete the certificate and key from the FIPS module
certutil -d ../fips -F -n FIPS_PUB_140_Test_Certificate -f ../tests.fipspw
fips.sh: #9690: Delete the certificate and key from the FIPS module (certutil -F) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #9691: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys.
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
certutil: no keys found
fips.sh: #9692: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #9693: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #9694: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      c4f24205802c27a60638268541dc2e203f03e8b6   FIPS_PUB_140_Test_Certificate
fips.sh: #9695: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Delete the certificate from the FIPS module
certutil -d ../fips -D -n FIPS_PUB_140_Test_Certificate
fips.sh: #9696: Delete the certificate from the FIPS module (certutil -D) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #9697: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #9698: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #9699: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      c4f24205802c27a60638268541dc2e203f03e8b6   FIPS_PUB_140_Test_Certificate
fips.sh: #9700: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Run PK11MODE in FIPSMODE  -----------------
pk11mode -d ../fips -p fips- -f ../tests.fipspw
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
**** Total number of TESTS ran in FIPS MODE is 106. ****
**** ALL TESTS PASSED ****
fips.sh: #9701: Run PK11MODE in FIPS mode (pk11mode) . - PASSED
fips.sh: Run PK11MODE in Non FIPSMODE  -----------------
pk11mode -d ../fips -p nonfips- -f ../tests.fipspw -n
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
**** Total number of TESTS ran in NON FIPS MODE is 104. ****
**** ALL TESTS PASSED ****
fips.sh: #9702: Run PK11MODE in Non FIPS mode (pk11mode -n) . - PASSED
mkdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
mkdir: cannot create directory '/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle': File exists
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest1.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
fips.sh: Detect mangled softoken--------------------------
mangling /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle/libsoftokn3.so
mangle -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle/libsoftokn3.so -o -8 -b 5
Changing byte 0x0003fd70 (261488): from 20 (32) to 00 (0)
LD_LIBRARY_PATH=/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle dbtest -r -d ../fips
fips.sh: #9703: Init NSS with a corrupted library (dbtest -r) . - PASSED
fips.sh done
TIMESTAMP fips END: Mon Aug  7 00:02:00 UTC 2017
Running tests for crmf
TIMESTAMP crmf BEGIN: Mon Aug  7 00:02:00 UTC 2017
crmf.sh: CRMF/CMMF Tests ===============================
crmf.sh: CRMF/CMMF Tests ------------------------------
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss crmf decode
crmftest v1.0
Generating CRMF request
Decoding CRMF request
crmftest: Processing cert request 0
crmftest: Processing cert request 1
Exiting successfully!!!
crmf.sh: #9704: CRMF test . - PASSED
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss cmmf
crmftest v1.0
Doing CMMF Stuff
Exiting successfully!!!
crmf.sh: #9705: CMMF test . - PASSED
TIMESTAMP crmf END: Mon Aug  7 00:02:00 UTC 2017
Running tests for smime
TIMESTAMP smime BEGIN: Mon Aug  7 00:02:00 UTC 2017
smime.sh: S/MIME Tests with ECC ===============================
smime.sh: Signing Detached Message {SHA1} ------------------
cmsutil -S -T -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA1
smime.sh: #9706: Create Detached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9707: Verifying Alice's Detached Signature (SHA1) . - PASSED
smime.sh: Signing Attached Message (SHA1) ------------------
cmsutil -S -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA1
smime.sh: #9708: Create Attached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.sig.SHA1 -d ../bobdir -o alice.data.SHA1
smime.sh: #9709: Decode Alice's Attached Signature (SHA1) . - PASSED
diff alice.txt alice.data.SHA1
smime.sh: #9710: Compare Attached Signed Data and Original (SHA1) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA1} ------------------
cmsutil -S -T -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA1
smime.sh: #9711: Create Detached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9712: Verifying Alice's Detached Signature (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA1) ------------------
cmsutil -S -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA1
smime.sh: #9713: Create Attached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.sig.SHA1 -d ../bobdir -o alice-ec.data.SHA1
smime.sh: #9714: Decode Alice's Attached Signature (ECDSA w/ SHA1) . - PASSED
diff alice.txt alice-ec.data.SHA1
smime.sh: #9715: Compare Attached Signed Data and Original (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Detached Message {SHA256} ------------------
cmsutil -S -T -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA256
smime.sh: #9716: Create Detached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9717: Verifying Alice's Detached Signature (SHA256) . - PASSED
smime.sh: Signing Attached Message (SHA256) ------------------
cmsutil -S -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA256
smime.sh: #9718: Create Attached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.sig.SHA256 -d ../bobdir -o alice.data.SHA256
smime.sh: #9719: Decode Alice's Attached Signature (SHA256) . - PASSED
diff alice.txt alice.data.SHA256
smime.sh: #9720: Compare Attached Signed Data and Original (SHA256) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA256} ------------------
cmsutil -S -T -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA256
smime.sh: #9721: Create Detached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9722: Verifying Alice's Detached Signature (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA256) ------------------
cmsutil -S -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA256
smime.sh: #9723: Create Attached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.sig.SHA256 -d ../bobdir -o alice-ec.data.SHA256
smime.sh: #9724: Decode Alice's Attached Signature (ECDSA w/ SHA256) . - PASSED
diff alice.txt alice-ec.data.SHA256
smime.sh: #9725: Compare Attached Signed Data and Original (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Detached Message {SHA384} ------------------
cmsutil -S -T -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA384
smime.sh: #9726: Create Detached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9727: Verifying Alice's Detached Signature (SHA384) . - PASSED
smime.sh: Signing Attached Message (SHA384) ------------------
cmsutil -S -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA384
smime.sh: #9728: Create Attached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.sig.SHA384 -d ../bobdir -o alice.data.SHA384
smime.sh: #9729: Decode Alice's Attached Signature (SHA384) . - PASSED
diff alice.txt alice.data.SHA384
smime.sh: #9730: Compare Attached Signed Data and Original (SHA384) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA384} ------------------
cmsutil -S -T -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA384
smime.sh: #9731: Create Detached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9732: Verifying Alice's Detached Signature (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA384) ------------------
cmsutil -S -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA384
smime.sh: #9733: Create Attached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.sig.SHA384 -d ../bobdir -o alice-ec.data.SHA384
smime.sh: #9734: Decode Alice's Attached Signature (ECDSA w/ SHA384) . - PASSED
diff alice.txt alice-ec.data.SHA384
smime.sh: #9735: Compare Attached Signed Data and Original (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Detached Message {SHA512} ------------------
cmsutil -S -T -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA512
smime.sh: #9736: Create Detached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9737: Verifying Alice's Detached Signature (SHA512) . - PASSED
smime.sh: Signing Attached Message (SHA512) ------------------
cmsutil -S -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA512
smime.sh: #9738: Create Attached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.sig.SHA512 -d ../bobdir -o alice.data.SHA512
smime.sh: #9739: Decode Alice's Attached Signature (SHA512) . - PASSED
diff alice.txt alice.data.SHA512
smime.sh: #9740: Compare Attached Signed Data and Original (SHA512) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA512} ------------------
cmsutil -S -T -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA512
smime.sh: #9741: Create Detached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9742: Verifying Alice's Detached Signature (ECDSA w/ SHA512) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA512) ------------------
cmsutil -S -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA512
smime.sh: #9743: Create Attached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.sig.SHA512 -d ../bobdir -o alice-ec.data.SHA512
smime.sh: #9744: Decode Alice's Attached Signature (ECDSA w/ SHA512) . - PASSED
diff alice.txt alice-ec.data.SHA512
smime.sh: #9745: Compare Attached Signed Data and Original (ECDSA w/ SHA512) . - PASSED
smime.sh: Enveloped Data Tests ------------------------------
cmsutil -E -r bob@bogus.com -i alice.txt -d ../alicedir -p nss \
        -o alice.env
smime.sh: #9746: Create Enveloped Data Alice . - PASSED
cmsutil -D -i alice.env -d ../bobdir -p nss -o alice.data1
smime.sh: #9747: Decode Enveloped Data Alice . - PASSED
diff alice.txt alice.data1
smime.sh: #9748: Compare Decoded Enveloped Data and Original . - PASSED
smime.sh: Testing multiple recipients ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o alicecc.env \
        -r bob@bogus.com,dave@bogus.com
smime.sh: #9749: Create Multiple Recipients Enveloped Data Alice . - PASSED
smime.sh: Testing multiple email addrs ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o aliceve.env \
        -r eve@bogus.net
smime.sh: #9750: Encrypt to a Multiple Email cert . - PASSED
cmsutil -D -i alicecc.env -d ../bobdir -p nss -o alice.data2
smime.sh: #9751: Decode Multiple Recipients Enveloped Data Alice by Bob . - PASSED
cmsutil -D -i alicecc.env -d ../dave -p nss -o alice.data3
smime.sh: #9752: Decode Multiple Recipients Enveloped Data Alice by Dave . - PASSED
cmsutil -D -i aliceve.env -d ../eve -p nss -o alice.data4
smime.sh: #9753: Decrypt with a Multiple Email cert . - PASSED
smime.sh: #9754: Compare Decoded Mult. Recipients Enveloped Data Alice/Bob . - PASSED
smime.sh: #9755: Compare Decoded Mult. Recipients Enveloped Data Alice/Dave . - PASSED
smime.sh: #9756: Compare Decoded with Multiple Email cert . - PASSED
smime.sh: Sending CERTS-ONLY Message ------------------------------
cmsutil -O -r "Alice,bob@bogus.com,dave@bogus.com" \
        -d ../alicedir > co.der
smime.sh: #9757: Create Certs-Only Alice . - PASSED
cmsutil -D -i co.der -d ../bobdir
smime.sh: #9758: Verify Certs-Only by CA . - PASSED
smime.sh: Encrypted-Data Message ---------------------------------
cmsutil -C -i alice.txt -e alicehello.env -d ../alicedir \
        -r "bob@bogus.com" > alice.enc
smime.sh: #9759: Create Encrypted-Data . - PASSED
cmsutil -D -i alice.enc -d ../bobdir -e alicehello.env -p nss \
        -o alice.data2
smime.sh: #9760: Decode Encrypted-Data . - PASSED
smime.sh: #9761: Compare Decoded and Original Data . - PASSED
smime.sh: p7 util Data Tests ------------------------------
p7env -d ../alicedir -r Alice -i alice.txt -o alice_p7.env
smime.sh: #9762: Creating envelope for user Alice . - PASSED
p7content -d ../alicedir -i alice.env -o alice_p7.data
smime.sh: #9763: Verifying file delivered to user Alice . - PASSED
diff alice.txt alice_p7.data.sed
smime.sh: #9764: Compare Decoded Enveloped Data and Original . - PASSED
p7sign -d ../alicedir -k Alice -i alice.txt -o alice.sig -p nss -e
smime.sh: #9765: Signing file for user Alice . - PASSED
p7verify -d ../alicedir -c alice.txt -s alice.sig
Signature is valid.
smime.sh: #9766: Verifying file delivered to user Alice . - PASSED
TIMESTAMP smime END: Mon Aug  7 00:02:03 UTC 2017
Running tests for ssl
TIMESTAMP ssl BEGIN: Mon Aug  7 00:02:03 UTC 2017
ssl.sh: SSL tests ===============================
ssl.sh: CRL SSL Client Tests   - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:03 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4448 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4448 found at Mon Aug  7 00:02:03 UTC 2017
selfserv_9009 with PID 4448 started at Mon Aug  7 00:02:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9767: TLS Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 4448 at Mon Aug  7 00:02:03 UTC 2017
kill -USR1 4448
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4448 killed at Mon Aug  7 00:02:03 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:03 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4504 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4504 found at Mon Aug  7 00:02:03 UTC 2017
selfserv_9009 with PID 4504 started at Mon Aug  7 00:02:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9768: TLS Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 4504 at Mon Aug  7 00:02:03 UTC 2017
kill -USR1 4504
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4504 killed at Mon Aug  7 00:02:03 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:03 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4562 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4562 found at Mon Aug  7 00:02:03 UTC 2017
selfserv_9009 with PID 4562 started at Mon Aug  7 00:02:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9769: TLS Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 4562 at Mon Aug  7 00:02:03 UTC 2017
kill -USR1 4562
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4562 killed at Mon Aug  7 00:02:03 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:03 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4630 found at Mon Aug  7 00:02:04 UTC 2017
selfserv_9009 with PID 4630 started at Mon Aug  7 00:02:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9770: TLS Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 4630 at Mon Aug  7 00:02:04 UTC 2017
kill -USR1 4630
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4630 killed at Mon Aug  7 00:02:04 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:04 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4686 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4686 found at Mon Aug  7 00:02:04 UTC 2017
selfserv_9009 with PID 4686 started at Mon Aug  7 00:02:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9771: TLS Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 4686 at Mon Aug  7 00:02:04 UTC 2017
kill -USR1 4686
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4686 killed at Mon Aug  7 00:02:04 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:04 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4743 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4743 found at Mon Aug  7 00:02:04 UTC 2017
selfserv_9009 with PID 4743 started at Mon Aug  7 00:02:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9772: TLS Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 4743 at Mon Aug  7 00:02:04 UTC 2017
kill -USR1 4743
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4743 killed at Mon Aug  7 00:02:04 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:04 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4813 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4813 found at Mon Aug  7 00:02:04 UTC 2017
selfserv_9009 with PID 4813 started at Mon Aug  7 00:02:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9773: TLS Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 4813 at Mon Aug  7 00:02:04 UTC 2017
kill -USR1 4813
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4813 killed at Mon Aug  7 00:02:04 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:04 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4869 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4869 found at Mon Aug  7 00:02:04 UTC 2017
selfserv_9009 with PID 4869 started at Mon Aug  7 00:02:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9774: TLS Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 4869 at Mon Aug  7 00:02:05 UTC 2017
kill -USR1 4869
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4869 killed at Mon Aug  7 00:02:05 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:05 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4925 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4925 found at Mon Aug  7 00:02:05 UTC 2017
selfserv_9009 with PID 4925 started at Mon Aug  7 00:02:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9775: TLS Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 4925 at Mon Aug  7 00:02:05 UTC 2017
kill -USR1 4925
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4925 killed at Mon Aug  7 00:02:05 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:05 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4993 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4993 found at Mon Aug  7 00:02:05 UTC 2017
selfserv_9009 with PID 4993 started at Mon Aug  7 00:02:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9776: TLS Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 4993 at Mon Aug  7 00:02:05 UTC 2017
kill -USR1 4993
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4993 killed at Mon Aug  7 00:02:05 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:05 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5050 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5050 found at Mon Aug  7 00:02:05 UTC 2017
selfserv_9009 with PID 5050 started at Mon Aug  7 00:02:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9777: TLS Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 5050 at Mon Aug  7 00:02:05 UTC 2017
kill -USR1 5050
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 5050 killed at Mon Aug  7 00:02:05 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:05 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5106 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5106 found at Mon Aug  7 00:02:05 UTC 2017
selfserv_9009 with PID 5106 started at Mon Aug  7 00:02:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9778: TLS Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 5106 at Mon Aug  7 00:02:06 UTC 2017
kill -USR1 5106
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 5106 killed at Mon Aug  7 00:02:06 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:06 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5174 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5174 found at Mon Aug  7 00:02:06 UTC 2017
selfserv_9009 with PID 5174 started at Mon Aug  7 00:02:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9779: TLS Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 5174 at Mon Aug  7 00:02:06 UTC 2017
kill -USR1 5174
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 5174 killed at Mon Aug  7 00:02:06 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:06 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5230 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5230 found at Mon Aug  7 00:02:06 UTC 2017
selfserv_9009 with PID 5230 started at Mon Aug  7 00:02:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9780: TLS Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 5230 at Mon Aug  7 00:02:06 UTC 2017
kill -USR1 5230
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 5230 killed at Mon Aug  7 00:02:06 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:06 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5286 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5286 found at Mon Aug  7 00:02:06 UTC 2017
selfserv_9009 with PID 5286 started at Mon Aug  7 00:02:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9781: TLS Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 5286 at Mon Aug  7 00:02:06 UTC 2017
kill -USR1 5286
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 5286 killed at Mon Aug  7 00:02:06 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:06 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5354 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5354 found at Mon Aug  7 00:02:06 UTC 2017
selfserv_9009 with PID 5354 started at Mon Aug  7 00:02:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9782: TLS Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 5354 at Mon Aug  7 00:02:06 UTC 2017
kill -USR1 5354
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 5354 killed at Mon Aug  7 00:02:06 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:07 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5410 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5410 found at Mon Aug  7 00:02:07 UTC 2017
selfserv_9009 with PID 5410 started at Mon Aug  7 00:02:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9783: TLS Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 5410 at Mon Aug  7 00:02:07 UTC 2017
kill -USR1 5410
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 5410 killed at Mon Aug  7 00:02:07 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:07 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5466 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5466 found at Mon Aug  7 00:02:07 UTC 2017
selfserv_9009 with PID 5466 started at Mon Aug  7 00:02:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9784: TLS Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 5466 at Mon Aug  7 00:02:07 UTC 2017
kill -USR1 5466
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 5466 killed at Mon Aug  7 00:02:07 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:07 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5534 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5534 found at Mon Aug  7 00:02:07 UTC 2017
selfserv_9009 with PID 5534 started at Mon Aug  7 00:02:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9785: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 5534 at Mon Aug  7 00:02:07 UTC 2017
kill -USR1 5534
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 5534 killed at Mon Aug  7 00:02:07 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:07 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5590 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5590 found at Mon Aug  7 00:02:07 UTC 2017
selfserv_9009 with PID 5590 started at Mon Aug  7 00:02:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9786: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 5590 at Mon Aug  7 00:02:07 UTC 2017
kill -USR1 5590
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 5590 killed at Mon Aug  7 00:02:07 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:07 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5647 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5647 found at Mon Aug  7 00:02:07 UTC 2017
selfserv_9009 with PID 5647 started at Mon Aug  7 00:02:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9787: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 5647 at Mon Aug  7 00:02:08 UTC 2017
kill -USR1 5647
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 5647 killed at Mon Aug  7 00:02:08 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:08 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5715 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5715 found at Mon Aug  7 00:02:08 UTC 2017
selfserv_9009 with PID 5715 started at Mon Aug  7 00:02:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9788: SSL3 Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 5715 at Mon Aug  7 00:02:08 UTC 2017
kill -USR1 5715
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 5715 killed at Mon Aug  7 00:02:08 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:08 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5771 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5771 found at Mon Aug  7 00:02:08 UTC 2017
selfserv_9009 with PID 5771 started at Mon Aug  7 00:02:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9789: SSL3 Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 5771 at Mon Aug  7 00:02:08 UTC 2017
kill -USR1 5771
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 5771 killed at Mon Aug  7 00:02:08 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:08 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5827 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5827 found at Mon Aug  7 00:02:08 UTC 2017
selfserv_9009 with PID 5827 started at Mon Aug  7 00:02:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9790: SSL3 Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 5827 at Mon Aug  7 00:02:08 UTC 2017
kill -USR1 5827
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 5827 killed at Mon Aug  7 00:02:08 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:08 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5895 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5895 found at Mon Aug  7 00:02:08 UTC 2017
selfserv_9009 with PID 5895 started at Mon Aug  7 00:02:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9791: SSL3 Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 5895 at Mon Aug  7 00:02:08 UTC 2017
kill -USR1 5895
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 5895 killed at Mon Aug  7 00:02:08 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:08 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5951 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 5951 found at Mon Aug  7 00:02:08 UTC 2017
selfserv_9009 with PID 5951 started at Mon Aug  7 00:02:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9792: SSL3 Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 5951 at Mon Aug  7 00:02:09 UTC 2017
kill -USR1 5951
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 5951 killed at Mon Aug  7 00:02:09 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:09 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6007 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6007 found at Mon Aug  7 00:02:09 UTC 2017
selfserv_9009 with PID 6007 started at Mon Aug  7 00:02:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9793: SSL3 Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 6007 at Mon Aug  7 00:02:09 UTC 2017
kill -USR1 6007
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 6007 killed at Mon Aug  7 00:02:09 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:09 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6076 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6076 found at Mon Aug  7 00:02:09 UTC 2017
selfserv_9009 with PID 6076 started at Mon Aug  7 00:02:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9794: SSL3 Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 6076 at Mon Aug  7 00:02:09 UTC 2017
kill -USR1 6076
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 6076 killed at Mon Aug  7 00:02:09 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:09 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6132 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6132 found at Mon Aug  7 00:02:09 UTC 2017
selfserv_9009 with PID 6132 started at Mon Aug  7 00:02:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9795: SSL3 Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 6132 at Mon Aug  7 00:02:09 UTC 2017
kill -USR1 6132
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 6132 killed at Mon Aug  7 00:02:09 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:09 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6188 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6188 found at Mon Aug  7 00:02:09 UTC 2017
selfserv_9009 with PID 6188 started at Mon Aug  7 00:02:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9796: SSL3 Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 6188 at Mon Aug  7 00:02:10 UTC 2017
kill -USR1 6188
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 6188 killed at Mon Aug  7 00:02:10 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:10 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6256 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6256 found at Mon Aug  7 00:02:10 UTC 2017
selfserv_9009 with PID 6256 started at Mon Aug  7 00:02:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9797: SSL3 Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 6256 at Mon Aug  7 00:02:10 UTC 2017
kill -USR1 6256
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 6256 killed at Mon Aug  7 00:02:10 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:10 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6312 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6312 found at Mon Aug  7 00:02:10 UTC 2017
selfserv_9009 with PID 6312 started at Mon Aug  7 00:02:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9798: SSL3 Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 6312 at Mon Aug  7 00:02:10 UTC 2017
kill -USR1 6312
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 6312 killed at Mon Aug  7 00:02:10 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:10 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6368 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6368 found at Mon Aug  7 00:02:10 UTC 2017
selfserv_9009 with PID 6368 started at Mon Aug  7 00:02:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9799: SSL3 Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 6368 at Mon Aug  7 00:02:10 UTC 2017
kill -USR1 6368
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 6368 killed at Mon Aug  7 00:02:10 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:10 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6436 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6436 found at Mon Aug  7 00:02:10 UTC 2017
selfserv_9009 with PID 6436 started at Mon Aug  7 00:02:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9800: SSL3 Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 6436 at Mon Aug  7 00:02:10 UTC 2017
kill -USR1 6436
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 6436 killed at Mon Aug  7 00:02:10 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:10 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6493 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6493 found at Mon Aug  7 00:02:10 UTC 2017
selfserv_9009 with PID 6493 started at Mon Aug  7 00:02:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9801: SSL3 Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 6493 at Mon Aug  7 00:02:11 UTC 2017
kill -USR1 6493
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 6493 killed at Mon Aug  7 00:02:11 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:11 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6549 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6549 found at Mon Aug  7 00:02:11 UTC 2017
selfserv_9009 with PID 6549 started at Mon Aug  7 00:02:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9802: SSL3 Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 6549 at Mon Aug  7 00:02:11 UTC 2017
kill -USR1 6549
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 6549 killed at Mon Aug  7 00:02:11 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:11 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6617 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6617 found at Mon Aug  7 00:02:11 UTC 2017
selfserv_9009 with PID 6617 started at Mon Aug  7 00:02:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9803: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 6617 at Mon Aug  7 00:02:11 UTC 2017
kill -USR1 6617
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 6617 killed at Mon Aug  7 00:02:11 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:11 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6673 found at Mon Aug  7 00:02:11 UTC 2017
selfserv_9009 with PID 6673 started at Mon Aug  7 00:02:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9804: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 6673 at Mon Aug  7 00:02:11 UTC 2017
kill -USR1 6673
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 6673 killed at Mon Aug  7 00:02:11 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:11 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6729 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6729 found at Mon Aug  7 00:02:11 UTC 2017
selfserv_9009 with PID 6729 started at Mon Aug  7 00:02:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9805: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 6729 at Mon Aug  7 00:02:12 UTC 2017
kill -USR1 6729
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 6729 killed at Mon Aug  7 00:02:12 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:12 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:12 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6797 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6797 found at Mon Aug  7 00:02:12 UTC 2017
selfserv_9009 with PID 6797 started at Mon Aug  7 00:02:12 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9806: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 6797 at Mon Aug  7 00:02:12 UTC 2017
kill -USR1 6797
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 6797 killed at Mon Aug  7 00:02:12 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:12 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:12 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6853 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6853 found at Mon Aug  7 00:02:12 UTC 2017
selfserv_9009 with PID 6853 started at Mon Aug  7 00:02:12 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9807: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 6853 at Mon Aug  7 00:02:12 UTC 2017
kill -USR1 6853
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 6853 killed at Mon Aug  7 00:02:12 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:12 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:12 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6909 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6909 found at Mon Aug  7 00:02:12 UTC 2017
selfserv_9009 with PID 6909 started at Mon Aug  7 00:02:12 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9808: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 6909 at Mon Aug  7 00:02:12 UTC 2017
kill -USR1 6909
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 6909 killed at Mon Aug  7 00:02:12 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:12 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:12 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6977 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6977 found at Mon Aug  7 00:02:12 UTC 2017
selfserv_9009 with PID 6977 started at Mon Aug  7 00:02:12 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9809: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 6977 at Mon Aug  7 00:02:13 UTC 2017
kill -USR1 6977
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 6977 killed at Mon Aug  7 00:02:13 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:13 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7033 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7033 found at Mon Aug  7 00:02:13 UTC 2017
selfserv_9009 with PID 7033 started at Mon Aug  7 00:02:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9810: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 7033 at Mon Aug  7 00:02:13 UTC 2017
kill -USR1 7033
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7033 killed at Mon Aug  7 00:02:13 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:13 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7090 found at Mon Aug  7 00:02:13 UTC 2017
selfserv_9009 with PID 7090 started at Mon Aug  7 00:02:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9811: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 7090 at Mon Aug  7 00:02:13 UTC 2017
kill -USR1 7090
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7090 killed at Mon Aug  7 00:02:13 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:13 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7158 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7158 found at Mon Aug  7 00:02:13 UTC 2017
selfserv_9009 with PID 7158 started at Mon Aug  7 00:02:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9812: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 7158 at Mon Aug  7 00:02:13 UTC 2017
kill -USR1 7158
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7158 killed at Mon Aug  7 00:02:13 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:13 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7214 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7214 found at Mon Aug  7 00:02:13 UTC 2017
selfserv_9009 with PID 7214 started at Mon Aug  7 00:02:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9813: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 7214 at Mon Aug  7 00:02:14 UTC 2017
kill -USR1 7214
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7214 killed at Mon Aug  7 00:02:14 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:14 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7270 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7270 found at Mon Aug  7 00:02:14 UTC 2017
selfserv_9009 with PID 7270 started at Mon Aug  7 00:02:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9814: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 7270 at Mon Aug  7 00:02:14 UTC 2017
kill -USR1 7270
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7270 killed at Mon Aug  7 00:02:14 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:14 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7338 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7338 found at Mon Aug  7 00:02:14 UTC 2017
selfserv_9009 with PID 7338 started at Mon Aug  7 00:02:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9815: TLS Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 7338 at Mon Aug  7 00:02:14 UTC 2017
kill -USR1 7338
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7338 killed at Mon Aug  7 00:02:14 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:14 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7394 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7394 found at Mon Aug  7 00:02:14 UTC 2017
selfserv_9009 with PID 7394 started at Mon Aug  7 00:02:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9816: TLS Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 7394 at Mon Aug  7 00:02:14 UTC 2017
kill -USR1 7394
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7394 killed at Mon Aug  7 00:02:14 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:14 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7450 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7450 found at Mon Aug  7 00:02:14 UTC 2017
selfserv_9009 with PID 7450 started at Mon Aug  7 00:02:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9817: TLS Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 7450 at Mon Aug  7 00:02:15 UTC 2017
kill -USR1 7450
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7450 killed at Mon Aug  7 00:02:15 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7518 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7518 found at Mon Aug  7 00:02:15 UTC 2017
selfserv_9009 with PID 7518 started at Mon Aug  7 00:02:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9818: TLS Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 7518 at Mon Aug  7 00:02:15 UTC 2017
kill -USR1 7518
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7518 killed at Mon Aug  7 00:02:15 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7574 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7574 found at Mon Aug  7 00:02:15 UTC 2017
selfserv_9009 with PID 7574 started at Mon Aug  7 00:02:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9819: TLS Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 7574 at Mon Aug  7 00:02:15 UTC 2017
kill -USR1 7574
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7574 killed at Mon Aug  7 00:02:15 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7630 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7630 found at Mon Aug  7 00:02:15 UTC 2017
selfserv_9009 with PID 7630 started at Mon Aug  7 00:02:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9820: TLS Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 7630 at Mon Aug  7 00:02:15 UTC 2017
kill -USR1 7630
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7630 killed at Mon Aug  7 00:02:15 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7698 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7698 found at Mon Aug  7 00:02:15 UTC 2017
selfserv_9009 with PID 7698 started at Mon Aug  7 00:02:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9821: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 7698 at Mon Aug  7 00:02:16 UTC 2017
kill -USR1 7698
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7698 killed at Mon Aug  7 00:02:16 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:16 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7754 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7754 found at Mon Aug  7 00:02:16 UTC 2017
selfserv_9009 with PID 7754 started at Mon Aug  7 00:02:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9822: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 7754 at Mon Aug  7 00:02:16 UTC 2017
kill -USR1 7754
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7754 killed at Mon Aug  7 00:02:16 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:16 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7810 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7810 found at Mon Aug  7 00:02:16 UTC 2017
selfserv_9009 with PID 7810 started at Mon Aug  7 00:02:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9823: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 7810 at Mon Aug  7 00:02:16 UTC 2017
kill -USR1 7810
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7810 killed at Mon Aug  7 00:02:16 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:16 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7878 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7878 found at Mon Aug  7 00:02:16 UTC 2017
selfserv_9009 with PID 7878 started at Mon Aug  7 00:02:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9824: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 7878 at Mon Aug  7 00:02:16 UTC 2017
kill -USR1 7878
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7878 killed at Mon Aug  7 00:02:16 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:16 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7934 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7934 found at Mon Aug  7 00:02:16 UTC 2017
selfserv_9009 with PID 7934 started at Mon Aug  7 00:02:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9825: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 7934 at Mon Aug  7 00:02:17 UTC 2017
kill -USR1 7934
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7934 killed at Mon Aug  7 00:02:17 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:17 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7990 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7990 found at Mon Aug  7 00:02:17 UTC 2017
selfserv_9009 with PID 7990 started at Mon Aug  7 00:02:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9826: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 7990 at Mon Aug  7 00:02:17 UTC 2017
kill -USR1 7990
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7990 killed at Mon Aug  7 00:02:17 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:17 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8058 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8058 found at Mon Aug  7 00:02:17 UTC 2017
selfserv_9009 with PID 8058 started at Mon Aug  7 00:02:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9827: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 8058 at Mon Aug  7 00:02:17 UTC 2017
kill -USR1 8058
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 8058 killed at Mon Aug  7 00:02:17 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:17 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8114 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8114 found at Mon Aug  7 00:02:17 UTC 2017
selfserv_9009 with PID 8114 started at Mon Aug  7 00:02:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9828: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 8114 at Mon Aug  7 00:02:17 UTC 2017
kill -USR1 8114
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 8114 killed at Mon Aug  7 00:02:17 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:17 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8170 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8170 found at Mon Aug  7 00:02:17 UTC 2017
selfserv_9009 with PID 8170 started at Mon Aug  7 00:02:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9829: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 8170 at Mon Aug  7 00:02:18 UTC 2017
kill -USR1 8170
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 8170 killed at Mon Aug  7 00:02:18 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:18 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8239 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8239 found at Mon Aug  7 00:02:18 UTC 2017
selfserv_9009 with PID 8239 started at Mon Aug  7 00:02:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9830: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 8239 at Mon Aug  7 00:02:18 UTC 2017
kill -USR1 8239
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 8239 killed at Mon Aug  7 00:02:18 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:18 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8295 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8295 found at Mon Aug  7 00:02:18 UTC 2017
selfserv_9009 with PID 8295 started at Mon Aug  7 00:02:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9831: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 8295 at Mon Aug  7 00:02:18 UTC 2017
kill -USR1 8295
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 8295 killed at Mon Aug  7 00:02:18 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:18 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8351 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8351 found at Mon Aug  7 00:02:18 UTC 2017
selfserv_9009 with PID 8351 started at Mon Aug  7 00:02:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9832: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 8351 at Mon Aug  7 00:02:18 UTC 2017
kill -USR1 8351
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 8351 killed at Mon Aug  7 00:02:18 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:18 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8419 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8419 found at Mon Aug  7 00:02:18 UTC 2017
selfserv_9009 with PID 8419 started at Mon Aug  7 00:02:18 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9833: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 8419 at Mon Aug  7 00:02:19 UTC 2017
kill -USR1 8419
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 8419 killed at Mon Aug  7 00:02:19 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:19 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8475 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8475 found at Mon Aug  7 00:02:19 UTC 2017
selfserv_9009 with PID 8475 started at Mon Aug  7 00:02:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9834: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 8475 at Mon Aug  7 00:02:19 UTC 2017
kill -USR1 8475
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 8475 killed at Mon Aug  7 00:02:19 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:19 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8531 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8531 found at Mon Aug  7 00:02:19 UTC 2017
selfserv_9009 with PID 8531 started at Mon Aug  7 00:02:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9835: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 8531 at Mon Aug  7 00:02:19 UTC 2017
kill -USR1 8531
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 8531 killed at Mon Aug  7 00:02:19 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:19 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8599 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8599 found at Mon Aug  7 00:02:19 UTC 2017
selfserv_9009 with PID 8599 started at Mon Aug  7 00:02:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9836: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 8599 at Mon Aug  7 00:02:19 UTC 2017
kill -USR1 8599
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 8599 killed at Mon Aug  7 00:02:19 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:19 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8655 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8655 found at Mon Aug  7 00:02:19 UTC 2017
selfserv_9009 with PID 8655 started at Mon Aug  7 00:02:19 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9837: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 8655 at Mon Aug  7 00:02:20 UTC 2017
kill -USR1 8655
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 8655 killed at Mon Aug  7 00:02:20 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:20 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8711 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8711 found at Mon Aug  7 00:02:20 UTC 2017
selfserv_9009 with PID 8711 started at Mon Aug  7 00:02:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9838: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 8711 at Mon Aug  7 00:02:20 UTC 2017
kill -USR1 8711
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 8711 killed at Mon Aug  7 00:02:20 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:20 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8779 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8779 found at Mon Aug  7 00:02:20 UTC 2017
selfserv_9009 with PID 8779 started at Mon Aug  7 00:02:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9839: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 8779 at Mon Aug  7 00:02:20 UTC 2017
kill -USR1 8779
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 8779 killed at Mon Aug  7 00:02:20 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:20 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8836 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8836 found at Mon Aug  7 00:02:20 UTC 2017
selfserv_9009 with PID 8836 started at Mon Aug  7 00:02:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9840: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 8836 at Mon Aug  7 00:02:20 UTC 2017
kill -USR1 8836
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 8836 killed at Mon Aug  7 00:02:20 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:20 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8893 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8893 found at Mon Aug  7 00:02:20 UTC 2017
selfserv_9009 with PID 8893 started at Mon Aug  7 00:02:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9841: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 8893 at Mon Aug  7 00:02:21 UTC 2017
kill -USR1 8893
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 8893 killed at Mon Aug  7 00:02:21 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:21 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8961 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 8961 found at Mon Aug  7 00:02:21 UTC 2017
selfserv_9009 with PID 8961 started at Mon Aug  7 00:02:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9842: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 8961 at Mon Aug  7 00:02:21 UTC 2017
kill -USR1 8961
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 8961 killed at Mon Aug  7 00:02:21 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:21 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9019 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9019 found at Mon Aug  7 00:02:21 UTC 2017
selfserv_9009 with PID 9019 started at Mon Aug  7 00:02:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9843: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 9019 at Mon Aug  7 00:02:21 UTC 2017
kill -USR1 9019
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 9019 killed at Mon Aug  7 00:02:21 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:21 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9075 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9075 found at Mon Aug  7 00:02:21 UTC 2017
selfserv_9009 with PID 9075 started at Mon Aug  7 00:02:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9844: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 9075 at Mon Aug  7 00:02:21 UTC 2017
kill -USR1 9075
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 9075 killed at Mon Aug  7 00:02:21 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:21 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9143 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9143 found at Mon Aug  7 00:02:21 UTC 2017
selfserv_9009 with PID 9143 started at Mon Aug  7 00:02:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9845: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 9143 at Mon Aug  7 00:02:22 UTC 2017
kill -USR1 9143
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 9143 killed at Mon Aug  7 00:02:22 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:22 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9199 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9199 found at Mon Aug  7 00:02:22 UTC 2017
selfserv_9009 with PID 9199 started at Mon Aug  7 00:02:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9846: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 9199 at Mon Aug  7 00:02:22 UTC 2017
kill -USR1 9199
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 9199 killed at Mon Aug  7 00:02:22 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:22 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9256 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9256 found at Mon Aug  7 00:02:22 UTC 2017
selfserv_9009 with PID 9256 started at Mon Aug  7 00:02:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9847: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 9256 at Mon Aug  7 00:02:22 UTC 2017
kill -USR1 9256
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 9256 killed at Mon Aug  7 00:02:22 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:22 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9324 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9324 found at Mon Aug  7 00:02:22 UTC 2017
selfserv_9009 with PID 9324 started at Mon Aug  7 00:02:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9848: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 9324 at Mon Aug  7 00:02:22 UTC 2017
kill -USR1 9324
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 9324 killed at Mon Aug  7 00:02:22 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:22 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9380 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9380 found at Mon Aug  7 00:02:22 UTC 2017
selfserv_9009 with PID 9380 started at Mon Aug  7 00:02:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9849: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 9380 at Mon Aug  7 00:02:22 UTC 2017
kill -USR1 9380
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 9380 killed at Mon Aug  7 00:02:22 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:22 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9437 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9437 found at Mon Aug  7 00:02:22 UTC 2017
selfserv_9009 with PID 9437 started at Mon Aug  7 00:02:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9850: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 9437 at Mon Aug  7 00:02:23 UTC 2017
kill -USR1 9437
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 9437 killed at Mon Aug  7 00:02:23 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:23 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9505 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9505 found at Mon Aug  7 00:02:23 UTC 2017
selfserv_9009 with PID 9505 started at Mon Aug  7 00:02:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9851: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 9505 at Mon Aug  7 00:02:23 UTC 2017
kill -USR1 9505
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 9505 killed at Mon Aug  7 00:02:23 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:23 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9562 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9562 found at Mon Aug  7 00:02:23 UTC 2017
selfserv_9009 with PID 9562 started at Mon Aug  7 00:02:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9852: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 9562 at Mon Aug  7 00:02:23 UTC 2017
kill -USR1 9562
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 9562 killed at Mon Aug  7 00:02:23 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:23 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9618 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9618 found at Mon Aug  7 00:02:23 UTC 2017
selfserv_9009 with PID 9618 started at Mon Aug  7 00:02:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9853: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 9618 at Mon Aug  7 00:02:23 UTC 2017
kill -USR1 9618
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 9618 killed at Mon Aug  7 00:02:23 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:23 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9686 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9686 found at Mon Aug  7 00:02:23 UTC 2017
selfserv_9009 with PID 9686 started at Mon Aug  7 00:02:23 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9854: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 9686 at Mon Aug  7 00:02:24 UTC 2017
kill -USR1 9686
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 9686 killed at Mon Aug  7 00:02:24 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:24 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:24 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9742 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9742 found at Mon Aug  7 00:02:24 UTC 2017
selfserv_9009 with PID 9742 started at Mon Aug  7 00:02:24 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9855: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 9742 at Mon Aug  7 00:02:24 UTC 2017
kill -USR1 9742
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 9742 killed at Mon Aug  7 00:02:24 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:24 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:24 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9798 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9798 found at Mon Aug  7 00:02:24 UTC 2017
selfserv_9009 with PID 9798 started at Mon Aug  7 00:02:24 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9856: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 9798 at Mon Aug  7 00:02:24 UTC 2017
kill -USR1 9798
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 9798 killed at Mon Aug  7 00:02:24 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:24 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:24 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9875 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9875 found at Mon Aug  7 00:02:24 UTC 2017
selfserv_9009 with PID 9875 started at Mon Aug  7 00:02:24 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9857: TLS Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 9875 at Mon Aug  7 00:02:24 UTC 2017
kill -USR1 9875
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 9875 killed at Mon Aug  7 00:02:24 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:24 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:24 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9931 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9931 found at Mon Aug  7 00:02:24 UTC 2017
selfserv_9009 with PID 9931 started at Mon Aug  7 00:02:24 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9858: TLS Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 9931 at Mon Aug  7 00:02:25 UTC 2017
kill -USR1 9931
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 9931 killed at Mon Aug  7 00:02:25 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:25 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:25 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9987 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9987 found at Mon Aug  7 00:02:25 UTC 2017
selfserv_9009 with PID 9987 started at Mon Aug  7 00:02:25 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9859: TLS Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 9987 at Mon Aug  7 00:02:25 UTC 2017
kill -USR1 9987
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 9987 killed at Mon Aug  7 00:02:25 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:25 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:25 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10056 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10056 found at Mon Aug  7 00:02:25 UTC 2017
selfserv_9009 with PID 10056 started at Mon Aug  7 00:02:25 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9860: TLS Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 10056 at Mon Aug  7 00:02:25 UTC 2017
kill -USR1 10056
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 10056 killed at Mon Aug  7 00:02:25 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:25 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:25 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10113 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10113 found at Mon Aug  7 00:02:25 UTC 2017
selfserv_9009 with PID 10113 started at Mon Aug  7 00:02:25 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9861: TLS Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 10113 at Mon Aug  7 00:02:25 UTC 2017
kill -USR1 10113
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 10113 killed at Mon Aug  7 00:02:25 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:25 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:25 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10169 found at Mon Aug  7 00:02:25 UTC 2017
selfserv_9009 with PID 10169 started at Mon Aug  7 00:02:25 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9862: TLS Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 10169 at Mon Aug  7 00:02:26 UTC 2017
kill -USR1 10169
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 10169 killed at Mon Aug  7 00:02:26 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:26 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:26 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10237 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10237 found at Mon Aug  7 00:02:26 UTC 2017
selfserv_9009 with PID 10237 started at Mon Aug  7 00:02:26 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9863: TLS Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 10237 at Mon Aug  7 00:02:26 UTC 2017
kill -USR1 10237
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 10237 killed at Mon Aug  7 00:02:26 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:26 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:26 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10293 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10293 found at Mon Aug  7 00:02:26 UTC 2017
selfserv_9009 with PID 10293 started at Mon Aug  7 00:02:26 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9864: TLS Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 10293 at Mon Aug  7 00:02:26 UTC 2017
kill -USR1 10293
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 10293 killed at Mon Aug  7 00:02:26 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:26 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:26 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10349 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10349 found at Mon Aug  7 00:02:26 UTC 2017
selfserv_9009 with PID 10349 started at Mon Aug  7 00:02:26 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9865: TLS Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 10349 at Mon Aug  7 00:02:26 UTC 2017
kill -USR1 10349
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 10349 killed at Mon Aug  7 00:02:26 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:26 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:26 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10418 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10418 found at Mon Aug  7 00:02:26 UTC 2017
selfserv_9009 with PID 10418 started at Mon Aug  7 00:02:26 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9866: TLS Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 10418 at Mon Aug  7 00:02:26 UTC 2017
kill -USR1 10418
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 10418 killed at Mon Aug  7 00:02:26 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:26 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:26 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10474 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10474 found at Mon Aug  7 00:02:26 UTC 2017
selfserv_9009 with PID 10474 started at Mon Aug  7 00:02:26 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9867: TLS Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 10474 at Mon Aug  7 00:02:27 UTC 2017
kill -USR1 10474
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 10474 killed at Mon Aug  7 00:02:27 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:27 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:27 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10532 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10532 found at Mon Aug  7 00:02:27 UTC 2017
selfserv_9009 with PID 10532 started at Mon Aug  7 00:02:27 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9868: TLS Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 10532 at Mon Aug  7 00:02:27 UTC 2017
kill -USR1 10532
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 10532 killed at Mon Aug  7 00:02:27 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:27 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:27 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10600 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10600 found at Mon Aug  7 00:02:27 UTC 2017
selfserv_9009 with PID 10600 started at Mon Aug  7 00:02:27 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9869: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 10600 at Mon Aug  7 00:02:27 UTC 2017
kill -USR1 10600
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 10600 killed at Mon Aug  7 00:02:27 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:27 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:27 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10657 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10657 found at Mon Aug  7 00:02:27 UTC 2017
selfserv_9009 with PID 10657 started at Mon Aug  7 00:02:27 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9870: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 10657 at Mon Aug  7 00:02:27 UTC 2017
kill -USR1 10657
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 10657 killed at Mon Aug  7 00:02:27 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:27 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:27 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10713 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10713 found at Mon Aug  7 00:02:27 UTC 2017
selfserv_9009 with PID 10713 started at Mon Aug  7 00:02:27 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9871: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 10713 at Mon Aug  7 00:02:28 UTC 2017
kill -USR1 10713
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 10713 killed at Mon Aug  7 00:02:28 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:28 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:28 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10781 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10781 found at Mon Aug  7 00:02:28 UTC 2017
selfserv_9009 with PID 10781 started at Mon Aug  7 00:02:28 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9872: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 10781 at Mon Aug  7 00:02:28 UTC 2017
kill -USR1 10781
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 10781 killed at Mon Aug  7 00:02:28 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:28 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:28 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10838 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10838 found at Mon Aug  7 00:02:28 UTC 2017
selfserv_9009 with PID 10838 started at Mon Aug  7 00:02:28 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9873: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 10838 at Mon Aug  7 00:02:28 UTC 2017
kill -USR1 10838
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 10838 killed at Mon Aug  7 00:02:28 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:28 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:28 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10894 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10894 found at Mon Aug  7 00:02:28 UTC 2017
selfserv_9009 with PID 10894 started at Mon Aug  7 00:02:28 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9874: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 10894 at Mon Aug  7 00:02:28 UTC 2017
kill -USR1 10894
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 10894 killed at Mon Aug  7 00:02:28 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:28 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:28 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10962 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10962 found at Mon Aug  7 00:02:28 UTC 2017
selfserv_9009 with PID 10962 started at Mon Aug  7 00:02:28 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9875: SSL3 Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 10962 at Mon Aug  7 00:02:28 UTC 2017
kill -USR1 10962
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 10962 killed at Mon Aug  7 00:02:28 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:29 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:29 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11018 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11018 found at Mon Aug  7 00:02:29 UTC 2017
selfserv_9009 with PID 11018 started at Mon Aug  7 00:02:29 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9876: SSL3 Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 11018 at Mon Aug  7 00:02:29 UTC 2017
kill -USR1 11018
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 11018 killed at Mon Aug  7 00:02:29 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:29 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:29 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11074 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11074 found at Mon Aug  7 00:02:29 UTC 2017
selfserv_9009 with PID 11074 started at Mon Aug  7 00:02:29 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9877: SSL3 Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 11074 at Mon Aug  7 00:02:29 UTC 2017
kill -USR1 11074
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 11074 killed at Mon Aug  7 00:02:29 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:29 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:29 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11142 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11142 found at Mon Aug  7 00:02:29 UTC 2017
selfserv_9009 with PID 11142 started at Mon Aug  7 00:02:29 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9878: SSL3 Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 11142 at Mon Aug  7 00:02:29 UTC 2017
kill -USR1 11142
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 11142 killed at Mon Aug  7 00:02:29 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:29 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:29 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11198 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11198 found at Mon Aug  7 00:02:29 UTC 2017
selfserv_9009 with PID 11198 started at Mon Aug  7 00:02:29 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9879: SSL3 Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 11198 at Mon Aug  7 00:02:29 UTC 2017
kill -USR1 11198
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 11198 killed at Mon Aug  7 00:02:29 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:29 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:29 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11254 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11254 found at Mon Aug  7 00:02:29 UTC 2017
selfserv_9009 with PID 11254 started at Mon Aug  7 00:02:29 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9880: SSL3 Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 11254 at Mon Aug  7 00:02:30 UTC 2017
kill -USR1 11254
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 11254 killed at Mon Aug  7 00:02:30 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:30 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:30 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11322 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11322 found at Mon Aug  7 00:02:30 UTC 2017
selfserv_9009 with PID 11322 started at Mon Aug  7 00:02:30 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9881: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 11322 at Mon Aug  7 00:02:30 UTC 2017
kill -USR1 11322
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 11322 killed at Mon Aug  7 00:02:30 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:30 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:30 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11378 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11378 found at Mon Aug  7 00:02:30 UTC 2017
selfserv_9009 with PID 11378 started at Mon Aug  7 00:02:30 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9882: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 11378 at Mon Aug  7 00:02:30 UTC 2017
kill -USR1 11378
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 11378 killed at Mon Aug  7 00:02:30 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:30 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:30 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11434 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11434 found at Mon Aug  7 00:02:30 UTC 2017
selfserv_9009 with PID 11434 started at Mon Aug  7 00:02:30 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9883: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 11434 at Mon Aug  7 00:02:30 UTC 2017
kill -USR1 11434
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 11434 killed at Mon Aug  7 00:02:30 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:30 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:30 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11502 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11502 found at Mon Aug  7 00:02:30 UTC 2017
selfserv_9009 with PID 11502 started at Mon Aug  7 00:02:30 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9884: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 11502 at Mon Aug  7 00:02:31 UTC 2017
kill -USR1 11502
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 11502 killed at Mon Aug  7 00:02:31 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:31 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:31 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11558 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11558 found at Mon Aug  7 00:02:31 UTC 2017
selfserv_9009 with PID 11558 started at Mon Aug  7 00:02:31 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9885: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 11558 at Mon Aug  7 00:02:31 UTC 2017
kill -USR1 11558
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 11558 killed at Mon Aug  7 00:02:31 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:31 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:31 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11614 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11614 found at Mon Aug  7 00:02:31 UTC 2017
selfserv_9009 with PID 11614 started at Mon Aug  7 00:02:31 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9886: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 11614 at Mon Aug  7 00:02:31 UTC 2017
kill -USR1 11614
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 11614 killed at Mon Aug  7 00:02:31 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:31 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:31 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11682 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11682 found at Mon Aug  7 00:02:31 UTC 2017
selfserv_9009 with PID 11682 started at Mon Aug  7 00:02:31 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9887: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 11682 at Mon Aug  7 00:02:31 UTC 2017
kill -USR1 11682
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 11682 killed at Mon Aug  7 00:02:31 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:32 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:32 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11738 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11738 found at Mon Aug  7 00:02:32 UTC 2017
selfserv_9009 with PID 11738 started at Mon Aug  7 00:02:32 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9888: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 11738 at Mon Aug  7 00:02:32 UTC 2017
kill -USR1 11738
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 11738 killed at Mon Aug  7 00:02:32 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:32 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:32 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11795 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11795 found at Mon Aug  7 00:02:32 UTC 2017
selfserv_9009 with PID 11795 started at Mon Aug  7 00:02:32 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9889: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 11795 at Mon Aug  7 00:02:32 UTC 2017
kill -USR1 11795
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 11795 killed at Mon Aug  7 00:02:32 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:32 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:32 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11863 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11863 found at Mon Aug  7 00:02:32 UTC 2017
selfserv_9009 with PID 11863 started at Mon Aug  7 00:02:32 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9890: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 11863 at Mon Aug  7 00:02:32 UTC 2017
kill -USR1 11863
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 11863 killed at Mon Aug  7 00:02:32 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:32 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:32 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11920 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11920 found at Mon Aug  7 00:02:32 UTC 2017
selfserv_9009 with PID 11920 started at Mon Aug  7 00:02:32 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9891: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 11920 at Mon Aug  7 00:02:33 UTC 2017
kill -USR1 11920
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 11920 killed at Mon Aug  7 00:02:33 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:33 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:33 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11984 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 11984 found at Mon Aug  7 00:02:33 UTC 2017
selfserv_9009 with PID 11984 started at Mon Aug  7 00:02:33 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9892: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 11984 at Mon Aug  7 00:02:33 UTC 2017
kill -USR1 11984
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 11984 killed at Mon Aug  7 00:02:33 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:33 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:33 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12052 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12052 found at Mon Aug  7 00:02:33 UTC 2017
selfserv_9009 with PID 12052 started at Mon Aug  7 00:02:33 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9893: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 12052 at Mon Aug  7 00:02:33 UTC 2017
kill -USR1 12052
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 12052 killed at Mon Aug  7 00:02:33 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:33 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:33 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12108 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12108 found at Mon Aug  7 00:02:33 UTC 2017
selfserv_9009 with PID 12108 started at Mon Aug  7 00:02:33 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9894: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 12108 at Mon Aug  7 00:02:33 UTC 2017
kill -USR1 12108
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 12108 killed at Mon Aug  7 00:02:33 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:33 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:33 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12164 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12164 found at Mon Aug  7 00:02:33 UTC 2017
selfserv_9009 with PID 12164 started at Mon Aug  7 00:02:33 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9895: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 12164 at Mon Aug  7 00:02:34 UTC 2017
kill -USR1 12164
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 12164 killed at Mon Aug  7 00:02:34 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:34 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:34 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12232 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12232 found at Mon Aug  7 00:02:34 UTC 2017
selfserv_9009 with PID 12232 started at Mon Aug  7 00:02:34 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9896: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 12232 at Mon Aug  7 00:02:34 UTC 2017
kill -USR1 12232
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 12232 killed at Mon Aug  7 00:02:34 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:34 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:34 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12289 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12289 found at Mon Aug  7 00:02:34 UTC 2017
selfserv_9009 with PID 12289 started at Mon Aug  7 00:02:34 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9897: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 12289 at Mon Aug  7 00:02:34 UTC 2017
kill -USR1 12289
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 12289 killed at Mon Aug  7 00:02:34 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:34 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:34 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12346 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12346 found at Mon Aug  7 00:02:34 UTC 2017
selfserv_9009 with PID 12346 started at Mon Aug  7 00:02:34 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9898: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 12346 at Mon Aug  7 00:02:34 UTC 2017
kill -USR1 12346
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 12346 killed at Mon Aug  7 00:02:34 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:34 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:34 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12416 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12416 found at Mon Aug  7 00:02:34 UTC 2017
selfserv_9009 with PID 12416 started at Mon Aug  7 00:02:34 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9899: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 12416 at Mon Aug  7 00:02:35 UTC 2017
kill -USR1 12416
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 12416 killed at Mon Aug  7 00:02:35 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:35 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:35 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12472 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12472 found at Mon Aug  7 00:02:35 UTC 2017
selfserv_9009 with PID 12472 started at Mon Aug  7 00:02:35 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9900: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 12472 at Mon Aug  7 00:02:35 UTC 2017
kill -USR1 12472
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 12472 killed at Mon Aug  7 00:02:35 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:35 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:35 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12528 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12528 found at Mon Aug  7 00:02:35 UTC 2017
selfserv_9009 with PID 12528 started at Mon Aug  7 00:02:35 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9901: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 12528 at Mon Aug  7 00:02:35 UTC 2017
kill -USR1 12528
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 12528 killed at Mon Aug  7 00:02:35 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:35 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:35 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12596 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12596 found at Mon Aug  7 00:02:35 UTC 2017
selfserv_9009 with PID 12596 started at Mon Aug  7 00:02:35 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9902: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 12596 at Mon Aug  7 00:02:35 UTC 2017
kill -USR1 12596
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 12596 killed at Mon Aug  7 00:02:35 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:35 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:35 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12653 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12653 found at Mon Aug  7 00:02:35 UTC 2017
selfserv_9009 with PID 12653 started at Mon Aug  7 00:02:35 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9903: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 12653 at Mon Aug  7 00:02:36 UTC 2017
kill -USR1 12653
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 12653 killed at Mon Aug  7 00:02:36 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:36 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:36 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12709 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12709 found at Mon Aug  7 00:02:36 UTC 2017
selfserv_9009 with PID 12709 started at Mon Aug  7 00:02:36 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9904: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 12709 at Mon Aug  7 00:02:36 UTC 2017
kill -USR1 12709
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 12709 killed at Mon Aug  7 00:02:36 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:36 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:36 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12777 found at Mon Aug  7 00:02:36 UTC 2017
selfserv_9009 with PID 12777 started at Mon Aug  7 00:02:36 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9905: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 12777 at Mon Aug  7 00:02:36 UTC 2017
kill -USR1 12777
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 12777 killed at Mon Aug  7 00:02:36 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:36 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:36 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12833 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12833 found at Mon Aug  7 00:02:36 UTC 2017
selfserv_9009 with PID 12833 started at Mon Aug  7 00:02:36 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9906: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 12833 at Mon Aug  7 00:02:36 UTC 2017
kill -USR1 12833
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 12833 killed at Mon Aug  7 00:02:36 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:36 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:36 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12890 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12890 found at Mon Aug  7 00:02:36 UTC 2017
selfserv_9009 with PID 12890 started at Mon Aug  7 00:02:36 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9907: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 12890 at Mon Aug  7 00:02:37 UTC 2017
kill -USR1 12890
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 12890 killed at Mon Aug  7 00:02:37 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:37 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:37 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12959 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12959 found at Mon Aug  7 00:02:37 UTC 2017
selfserv_9009 with PID 12959 started at Mon Aug  7 00:02:37 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9908: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 12959 at Mon Aug  7 00:02:37 UTC 2017
kill -USR1 12959
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 12959 killed at Mon Aug  7 00:02:37 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:37 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:37 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13017 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13017 found at Mon Aug  7 00:02:37 UTC 2017
selfserv_9009 with PID 13017 started at Mon Aug  7 00:02:37 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9909: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 13017 at Mon Aug  7 00:02:37 UTC 2017
kill -USR1 13017
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 13017 killed at Mon Aug  7 00:02:37 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:37 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:37 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13073 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13073 found at Mon Aug  7 00:02:37 UTC 2017
selfserv_9009 with PID 13073 started at Mon Aug  7 00:02:37 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9910: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 13073 at Mon Aug  7 00:02:37 UTC 2017
kill -USR1 13073
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 13073 killed at Mon Aug  7 00:02:37 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:37 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:37 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13142 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13142 found at Mon Aug  7 00:02:37 UTC 2017
selfserv_9009 with PID 13142 started at Mon Aug  7 00:02:37 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9911: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 13142 at Mon Aug  7 00:02:38 UTC 2017
kill -USR1 13142
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 13142 killed at Mon Aug  7 00:02:38 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:38 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:38 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13198 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13198 found at Mon Aug  7 00:02:38 UTC 2017
selfserv_9009 with PID 13198 started at Mon Aug  7 00:02:38 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9912: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 13198 at Mon Aug  7 00:02:38 UTC 2017
kill -USR1 13198
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 13198 killed at Mon Aug  7 00:02:38 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:02:38 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:38 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13254 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13254 found at Mon Aug  7 00:02:38 UTC 2017
selfserv_9009 with PID 13254 started at Mon Aug  7 00:02:38 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9913: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 13254 at Mon Aug  7 00:02:38 UTC 2017
kill -USR1 13254
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 13254 killed at Mon Aug  7 00:02:38 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:38 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:38 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13322 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13322 found at Mon Aug  7 00:02:38 UTC 2017
selfserv_9009 with PID 13322 started at Mon Aug  7 00:02:38 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9914: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 13322 at Mon Aug  7 00:02:38 UTC 2017
kill -USR1 13322
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 13322 killed at Mon Aug  7 00:02:38 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:38 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:38 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13378 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13378 found at Mon Aug  7 00:02:38 UTC 2017
selfserv_9009 with PID 13378 started at Mon Aug  7 00:02:38 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9915: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 13378 at Mon Aug  7 00:02:39 UTC 2017
kill -USR1 13378
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 13378 killed at Mon Aug  7 00:02:39 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:39 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:39 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13435 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13435 found at Mon Aug  7 00:02:39 UTC 2017
selfserv_9009 with PID 13435 started at Mon Aug  7 00:02:39 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9916: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 13435 at Mon Aug  7 00:02:39 UTC 2017
kill -USR1 13435
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 13435 killed at Mon Aug  7 00:02:39 UTC 2017
ssl.sh: Cache CRL SSL Client Tests   - with ECC ===============================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/authin.tl.tmp
0
selfserv_9009 starting at Mon Aug  7 00:02:39 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:39 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:39 UTC 2017
selfserv_9009 with PID 13501 started at Mon Aug  7 00:02:39 UTC 2017
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:39 UTC 2017
ssl.sh: #9917: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:39 UTC 2017
ssl.sh: #9918: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:39 UTC 2017
ssl.sh: #9919: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:39 UTC 2017
ssl.sh: #9920: TLS Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:39 UTC 2017
ssl.sh: #9921: TLS Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:40 UTC 2017
ssl.sh: #9922: TLS Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:40 UTC 2017
ssl.sh: #9923: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:40 UTC 2017
ssl.sh: #9924: TLS Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:40 UTC 2017
ssl.sh: #9925: TLS Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:40 UTC 2017
ssl.sh: #9926: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:40 UTC 2017
ssl.sh: #9927: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:40 UTC 2017
ssl.sh: #9928: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:40 UTC 2017
ssl.sh: #9929: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:40 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9930: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:40 UTC 2017
ssl.sh: #9931: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:41 UTC 2017
ssl.sh: #9932: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:41 UTC 2017
ssl.sh: #9933: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:41 UTC 2017
ssl.sh: #9934: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:41 UTC 2017
ssl.sh: #9935: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:41 UTC 2017
ssl.sh: #9936: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:41 UTC 2017
ssl.sh: #9937: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:41 UTC 2017
ssl.sh: #9938: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:41 UTC 2017
ssl.sh: #9939: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:41 UTC 2017
ssl.sh: #9940: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:41 UTC 2017
ssl.sh: #9941: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:41 UTC 2017
ssl.sh: #9942: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:42 UTC 2017
ssl.sh: #9943: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:42 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9944: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:42 UTC 2017
ssl.sh: #9945: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:42 UTC 2017
ssl.sh: #9946: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:42 UTC 2017
ssl.sh: #9947: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:42 UTC 2017
ssl.sh: #9948: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:42 UTC 2017
ssl.sh: #9949: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:42 UTC 2017
ssl.sh: #9950: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:42 UTC 2017
ssl.sh: #9951: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:42 UTC 2017
ssl.sh: #9952: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:43 UTC 2017
ssl.sh: #9953: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:43 UTC 2017
ssl.sh: #9954: TLS Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:43 UTC 2017
ssl.sh: #9955: TLS Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:43 UTC 2017
ssl.sh: #9956: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13501 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13501 found at Mon Aug  7 00:02:43 UTC 2017
ssl.sh: #9957: TLS Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 13501 at Mon Aug  7 00:02:43 UTC 2017
kill -USR1 13501
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 13501 killed at Mon Aug  7 00:02:43 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:43 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:43 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:43 UTC 2017
selfserv_9009 with PID 14927 started at Mon Aug  7 00:02:43 UTC 2017
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:43 UTC 2017
ssl.sh: #9958: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:43 UTC 2017
ssl.sh: #9959: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:43 UTC 2017
ssl.sh: #9960: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:43 UTC 2017
ssl.sh: #9961: SSL3 Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:44 UTC 2017
ssl.sh: #9962: SSL3 Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:44 UTC 2017
ssl.sh: #9963: SSL3 Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:44 UTC 2017
ssl.sh: #9964: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:44 UTC 2017
ssl.sh: #9965: SSL3 Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:44 UTC 2017
ssl.sh: #9966: SSL3 Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:44 UTC 2017
ssl.sh: #9967: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:44 UTC 2017
ssl.sh: #9968: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:44 UTC 2017
ssl.sh: #9969: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:44 UTC 2017
ssl.sh: #9970: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:44 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9971: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:44 UTC 2017
ssl.sh: #9972: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:44 UTC 2017
ssl.sh: #9973: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:45 UTC 2017
ssl.sh: #9974: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:45 UTC 2017
ssl.sh: #9975: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:45 UTC 2017
ssl.sh: #9976: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:45 UTC 2017
ssl.sh: #9977: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:45 UTC 2017
ssl.sh: #9978: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:45 UTC 2017
ssl.sh: #9979: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:45 UTC 2017
ssl.sh: #9980: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:45 UTC 2017
ssl.sh: #9981: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:45 UTC 2017
ssl.sh: #9982: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:45 UTC 2017
ssl.sh: #9983: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:45 UTC 2017
ssl.sh: #9984: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:45 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9985: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:46 UTC 2017
ssl.sh: #9986: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:46 UTC 2017
ssl.sh: #9987: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:46 UTC 2017
ssl.sh: #9988: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:46 UTC 2017
ssl.sh: #9989: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:46 UTC 2017
ssl.sh: #9990: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:46 UTC 2017
ssl.sh: #9991: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:46 UTC 2017
ssl.sh: #9992: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:46 UTC 2017
ssl.sh: #9993: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:46 UTC 2017
ssl.sh: #9994: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:46 UTC 2017
ssl.sh: #9995: SSL3 Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:46 UTC 2017
ssl.sh: #9996: SSL3 Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:46 UTC 2017
ssl.sh: #9997: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14927 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14927 found at Mon Aug  7 00:02:47 UTC 2017
ssl.sh: #9998: SSL3 Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 14927 at Mon Aug  7 00:02:47 UTC 2017
kill -USR1 14927
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 14927 killed at Mon Aug  7 00:02:47 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:47 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:47 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:47 UTC 2017
selfserv_9009 with PID 16353 started at Mon Aug  7 00:02:47 UTC 2017
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:47 UTC 2017
ssl.sh: #9999: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:47 UTC 2017
ssl.sh: #10000: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:47 UTC 2017
ssl.sh: #10001: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:47 UTC 2017
ssl.sh: #10002: TLS Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:47 UTC 2017
ssl.sh: #10003: TLS Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:47 UTC 2017
ssl.sh: #10004: TLS Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:47 UTC 2017
ssl.sh: #10005: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:48 UTC 2017
ssl.sh: #10006: TLS Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:48 UTC 2017
ssl.sh: #10007: TLS Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:48 UTC 2017
ssl.sh: #10008: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:48 UTC 2017
ssl.sh: #10009: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:48 UTC 2017
ssl.sh: #10010: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:48 UTC 2017
ssl.sh: #10011: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:48 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10012: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:48 UTC 2017
ssl.sh: #10013: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:48 UTC 2017
ssl.sh: #10014: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:49 UTC 2017
ssl.sh: #10015: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:49 UTC 2017
ssl.sh: #10016: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:49 UTC 2017
ssl.sh: #10017: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:49 UTC 2017
ssl.sh: #10018: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:49 UTC 2017
ssl.sh: #10019: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:49 UTC 2017
ssl.sh: #10020: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:49 UTC 2017
ssl.sh: #10021: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:49 UTC 2017
ssl.sh: #10022: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:49 UTC 2017
ssl.sh: #10023: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:49 UTC 2017
ssl.sh: #10024: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:50 UTC 2017
ssl.sh: #10025: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:50 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10026: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:50 UTC 2017
ssl.sh: #10027: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:50 UTC 2017
ssl.sh: #10028: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:50 UTC 2017
ssl.sh: #10029: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:50 UTC 2017
ssl.sh: #10030: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:50 UTC 2017
ssl.sh: #10031: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:50 UTC 2017
ssl.sh: #10032: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:50 UTC 2017
ssl.sh: #10033: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:50 UTC 2017
ssl.sh: #10034: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:51 UTC 2017
ssl.sh: #10035: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:51 UTC 2017
ssl.sh: #10036: TLS Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:51 UTC 2017
ssl.sh: #10037: TLS Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:51 UTC 2017
ssl.sh: #10038: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16353 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16353 found at Mon Aug  7 00:02:51 UTC 2017
ssl.sh: #10039: TLS Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 16353 at Mon Aug  7 00:02:51 UTC 2017
kill -USR1 16353
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 16353 killed at Mon Aug  7 00:02:51 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:51 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:51 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:51 UTC 2017
selfserv_9009 with PID 17777 started at Mon Aug  7 00:02:51 UTC 2017
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:51 UTC 2017
ssl.sh: #10040: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:51 UTC 2017
ssl.sh: #10041: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:51 UTC 2017
ssl.sh: #10042: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:52 UTC 2017
ssl.sh: #10043: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:52 UTC 2017
ssl.sh: #10044: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:52 UTC 2017
ssl.sh: #10045: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:52 UTC 2017
ssl.sh: #10046: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:52 UTC 2017
ssl.sh: #10047: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:52 UTC 2017
ssl.sh: #10048: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:52 UTC 2017
ssl.sh: #10049: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:52 UTC 2017
ssl.sh: #10050: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:52 UTC 2017
ssl.sh: #10051: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:52 UTC 2017
ssl.sh: #10052: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:52 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10053: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:53 UTC 2017
ssl.sh: #10054: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:53 UTC 2017
ssl.sh: #10055: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:53 UTC 2017
ssl.sh: #10056: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:53 UTC 2017
ssl.sh: #10057: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:53 UTC 2017
ssl.sh: #10058: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:53 UTC 2017
ssl.sh: #10059: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:53 UTC 2017
ssl.sh: #10060: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:53 UTC 2017
ssl.sh: #10061: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:53 UTC 2017
ssl.sh: #10062: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:53 UTC 2017
ssl.sh: #10063: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:53 UTC 2017
ssl.sh: #10064: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:54 UTC 2017
ssl.sh: #10065: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:54 UTC 2017
ssl.sh: #10066: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:54 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10067: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:54 UTC 2017
ssl.sh: #10068: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:54 UTC 2017
ssl.sh: #10069: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:54 UTC 2017
ssl.sh: #10070: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:54 UTC 2017
ssl.sh: #10071: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:54 UTC 2017
ssl.sh: #10072: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:54 UTC 2017
ssl.sh: #10073: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:54 UTC 2017
ssl.sh: #10074: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:54 UTC 2017
ssl.sh: #10075: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:55 UTC 2017
ssl.sh: #10076: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:55 UTC 2017
ssl.sh: #10077: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:55 UTC 2017
ssl.sh: #10078: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:55 UTC 2017
ssl.sh: #10079: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17777 found at Mon Aug  7 00:02:55 UTC 2017
ssl.sh: #10080: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 17777 at Mon Aug  7 00:02:55 UTC 2017
kill -USR1 17777
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 17777 killed at Mon Aug  7 00:02:55 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:02:55 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19208 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19208 found at Mon Aug  7 00:02:55 UTC 2017
selfserv_9009 with PID 19208 started at Mon Aug  7 00:02:55 UTC 2017
trying to kill selfserv_9009 with PID 19208 at Mon Aug  7 00:02:55 UTC 2017
kill -USR1 19208
./ssl.sh: line 197: 19208 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9009 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 19208 killed at Mon Aug  7 00:02:55 UTC 2017
selfserv_9009 starting at Mon Aug  7 00:02:55 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:02:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:55 UTC 2017
selfserv_9009 with PID 19243 started at Mon Aug  7 00:02:55 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:55 UTC 2017
ssl.sh: #10081: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:55 UTC 2017
ssl.sh: #10082: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:55 UTC 2017
ssl.sh: #10083: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:56 UTC 2017
ssl.sh: #10084: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:56 UTC 2017
ssl.sh: #10085: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:56 UTC 2017
ssl.sh: #10086: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:56 UTC 2017
ssl.sh: #10087: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:56 UTC 2017
ssl.sh: #10088: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:56 UTC 2017
ssl.sh: #10089: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:56 UTC 2017
ssl.sh: #10090: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:56 UTC 2017
ssl.sh: #10091: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:57 UTC 2017
ssl.sh: #10092: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:57 UTC 2017
ssl.sh: #10093: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:57 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10094: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:57 UTC 2017
ssl.sh: #10095: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:57 UTC 2017
ssl.sh: #10096: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:57 UTC 2017
ssl.sh: #10097: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:57 UTC 2017
ssl.sh: #10098: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:57 UTC 2017
ssl.sh: #10099: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:58 UTC 2017
ssl.sh: #10100: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:58 UTC 2017
ssl.sh: #10101: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:58 UTC 2017
ssl.sh: #10102: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:58 UTC 2017
ssl.sh: #10103: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:58 UTC 2017
ssl.sh: #10104: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:58 UTC 2017
ssl.sh: #10105: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:58 UTC 2017
ssl.sh: #10106: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:58 UTC 2017
ssl.sh: #10107: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:59 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10108: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:59 UTC 2017
ssl.sh: #10109: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:59 UTC 2017
ssl.sh: #10110: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:59 UTC 2017
ssl.sh: #10111: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:59 UTC 2017
ssl.sh: #10112: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:59 UTC 2017
ssl.sh: #10113: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:59 UTC 2017
ssl.sh: #10114: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:59 UTC 2017
ssl.sh: #10115: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:02:59 UTC 2017
ssl.sh: #10116: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:03:00 UTC 2017
ssl.sh: #10117: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:03:00 UTC 2017
ssl.sh: #10118: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:03:00 UTC 2017
ssl.sh: #10119: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:03:00 UTC 2017
ssl.sh: #10120: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19243 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19243 found at Mon Aug  7 00:03:00 UTC 2017
ssl.sh: #10121: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 19243 at Mon Aug  7 00:03:00 UTC 2017
kill -USR1 19243
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 19243 killed at Mon Aug  7 00:03:00 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:03:00 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:03:00 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:00 UTC 2017
selfserv_9009 with PID 20670 started at Mon Aug  7 00:03:00 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:00 UTC 2017
ssl.sh: #10122: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:01 UTC 2017
ssl.sh: #10123: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:01 UTC 2017
ssl.sh: #10124: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:01 UTC 2017
ssl.sh: #10125: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:01 UTC 2017
ssl.sh: #10126: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:01 UTC 2017
ssl.sh: #10127: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:01 UTC 2017
ssl.sh: #10128: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:01 UTC 2017
ssl.sh: #10129: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:01 UTC 2017
ssl.sh: #10130: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:02 UTC 2017
ssl.sh: #10131: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:02 UTC 2017
ssl.sh: #10132: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:02 UTC 2017
ssl.sh: #10133: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:02 UTC 2017
ssl.sh: #10134: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:02 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10135: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:02 UTC 2017
ssl.sh: #10136: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:02 UTC 2017
ssl.sh: #10137: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:02 UTC 2017
ssl.sh: #10138: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:02 UTC 2017
ssl.sh: #10139: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:03 UTC 2017
ssl.sh: #10140: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:03 UTC 2017
ssl.sh: #10141: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:03 UTC 2017
ssl.sh: #10142: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:03 UTC 2017
ssl.sh: #10143: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:03 UTC 2017
ssl.sh: #10144: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:03 UTC 2017
ssl.sh: #10145: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:03 UTC 2017
ssl.sh: #10146: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:03 UTC 2017
ssl.sh: #10147: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:04 UTC 2017
ssl.sh: #10148: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:04 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10149: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:04 UTC 2017
ssl.sh: #10150: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:04 UTC 2017
ssl.sh: #10151: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:04 UTC 2017
ssl.sh: #10152: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:04 UTC 2017
ssl.sh: #10153: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:04 UTC 2017
ssl.sh: #10154: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:04 UTC 2017
ssl.sh: #10155: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:05 UTC 2017
ssl.sh: #10156: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:05 UTC 2017
ssl.sh: #10157: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:05 UTC 2017
ssl.sh: #10158: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:05 UTC 2017
ssl.sh: #10159: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:05 UTC 2017
ssl.sh: #10160: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:05 UTC 2017
ssl.sh: #10161: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20670 found at Mon Aug  7 00:03:05 UTC 2017
ssl.sh: #10162: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 20670 at Mon Aug  7 00:03:05 UTC 2017
kill -USR1 20670
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20670 killed at Mon Aug  7 00:03:05 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:03:05 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:03:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:05 UTC 2017
selfserv_9009 with PID 22096 started at Mon Aug  7 00:03:05 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:06 UTC 2017
ssl.sh: #10163: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:06 UTC 2017
ssl.sh: #10164: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:06 UTC 2017
ssl.sh: #10165: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:06 UTC 2017
ssl.sh: #10166: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:06 UTC 2017
ssl.sh: #10167: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:06 UTC 2017
ssl.sh: #10168: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:06 UTC 2017
ssl.sh: #10169: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:06 UTC 2017
ssl.sh: #10170: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:06 UTC 2017
ssl.sh: #10171: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:06 UTC 2017
ssl.sh: #10172: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:06 UTC 2017
ssl.sh: #10173: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:07 UTC 2017
ssl.sh: #10174: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:07 UTC 2017
ssl.sh: #10175: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:07 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10176: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:07 UTC 2017
ssl.sh: #10177: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:07 UTC 2017
ssl.sh: #10178: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:07 UTC 2017
ssl.sh: #10179: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:07 UTC 2017
ssl.sh: #10180: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:07 UTC 2017
ssl.sh: #10181: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:07 UTC 2017
ssl.sh: #10182: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:07 UTC 2017
ssl.sh: #10183: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:07 UTC 2017
ssl.sh: #10184: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:08 UTC 2017
ssl.sh: #10185: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:08 UTC 2017
ssl.sh: #10186: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:08 UTC 2017
ssl.sh: #10187: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:08 UTC 2017
ssl.sh: #10188: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:08 UTC 2017
ssl.sh: #10189: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:08 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10190: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:08 UTC 2017
ssl.sh: #10191: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:08 UTC 2017
ssl.sh: #10192: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:08 UTC 2017
ssl.sh: #10193: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:08 UTC 2017
ssl.sh: #10194: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:09 UTC 2017
ssl.sh: #10195: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:09 UTC 2017
ssl.sh: #10196: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:09 UTC 2017
ssl.sh: #10197: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:09 UTC 2017
ssl.sh: #10198: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:09 UTC 2017
ssl.sh: #10199: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:09 UTC 2017
ssl.sh: #10200: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:09 UTC 2017
ssl.sh: #10201: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:09 UTC 2017
ssl.sh: #10202: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22096 found at Mon Aug  7 00:03:09 UTC 2017
ssl.sh: #10203: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 22096 at Mon Aug  7 00:03:09 UTC 2017
kill -USR1 22096
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22096 killed at Mon Aug  7 00:03:09 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:03:09 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:03:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:09 UTC 2017
selfserv_9009 with PID 23524 started at Mon Aug  7 00:03:09 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:10 UTC 2017
ssl.sh: #10204: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:10 UTC 2017
ssl.sh: #10205: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:10 UTC 2017
ssl.sh: #10206: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:10 UTC 2017
ssl.sh: #10207: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:10 UTC 2017
ssl.sh: #10208: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:10 UTC 2017
ssl.sh: #10209: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:10 UTC 2017
ssl.sh: #10210: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:11 UTC 2017
ssl.sh: #10211: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:11 UTC 2017
ssl.sh: #10212: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:11 UTC 2017
ssl.sh: #10213: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:11 UTC 2017
ssl.sh: #10214: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:11 UTC 2017
ssl.sh: #10215: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:11 UTC 2017
ssl.sh: #10216: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:11 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10217: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:11 UTC 2017
ssl.sh: #10218: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:12 UTC 2017
ssl.sh: #10219: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:12 UTC 2017
ssl.sh: #10220: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:12 UTC 2017
ssl.sh: #10221: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:12 UTC 2017
ssl.sh: #10222: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:12 UTC 2017
ssl.sh: #10223: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:12 UTC 2017
ssl.sh: #10224: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:12 UTC 2017
ssl.sh: #10225: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:12 UTC 2017
ssl.sh: #10226: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:13 UTC 2017
ssl.sh: #10227: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:13 UTC 2017
ssl.sh: #10228: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:13 UTC 2017
ssl.sh: #10229: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:13 UTC 2017
ssl.sh: #10230: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:13 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10231: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:13 UTC 2017
ssl.sh: #10232: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:13 UTC 2017
ssl.sh: #10233: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:13 UTC 2017
ssl.sh: #10234: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:14 UTC 2017
ssl.sh: #10235: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:14 UTC 2017
ssl.sh: #10236: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:14 UTC 2017
ssl.sh: #10237: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:14 UTC 2017
ssl.sh: #10238: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:14 UTC 2017
ssl.sh: #10239: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:14 UTC 2017
ssl.sh: #10240: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:14 UTC 2017
ssl.sh: #10241: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:14 UTC 2017
ssl.sh: #10242: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:15 UTC 2017
ssl.sh: #10243: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23524 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23524 found at Mon Aug  7 00:03:15 UTC 2017
ssl.sh: #10244: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 23524 at Mon Aug  7 00:03:15 UTC 2017
kill -USR1 23524
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23524 killed at Mon Aug  7 00:03:15 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:03:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:03:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:15 UTC 2017
selfserv_9009 with PID 24949 started at Mon Aug  7 00:03:15 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:15 UTC 2017
ssl.sh: #10245: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:15 UTC 2017
ssl.sh: #10246: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:15 UTC 2017
ssl.sh: #10247: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:15 UTC 2017
ssl.sh: #10248: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:15 UTC 2017
ssl.sh: #10249: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:16 UTC 2017
ssl.sh: #10250: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:16 UTC 2017
ssl.sh: #10251: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:16 UTC 2017
ssl.sh: #10252: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:16 UTC 2017
ssl.sh: #10253: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:16 UTC 2017
ssl.sh: #10254: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:16 UTC 2017
ssl.sh: #10255: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:16 UTC 2017
ssl.sh: #10256: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:17 UTC 2017
ssl.sh: #10257: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:17 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10258: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:17 UTC 2017
ssl.sh: #10259: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:17 UTC 2017
ssl.sh: #10260: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:17 UTC 2017
ssl.sh: #10261: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:17 UTC 2017
ssl.sh: #10262: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:17 UTC 2017
ssl.sh: #10263: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:17 UTC 2017
ssl.sh: #10264: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:18 UTC 2017
ssl.sh: #10265: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:18 UTC 2017
ssl.sh: #10266: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:18 UTC 2017
ssl.sh: #10267: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:18 UTC 2017
ssl.sh: #10268: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:18 UTC 2017
ssl.sh: #10269: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:18 UTC 2017
ssl.sh: #10270: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:18 UTC 2017
ssl.sh: #10271: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:18 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10272: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:19 UTC 2017
ssl.sh: #10273: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:19 UTC 2017
ssl.sh: #10274: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:19 UTC 2017
ssl.sh: #10275: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:19 UTC 2017
ssl.sh: #10276: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:19 UTC 2017
ssl.sh: #10277: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:19 UTC 2017
ssl.sh: #10278: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:19 UTC 2017
ssl.sh: #10279: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:19 UTC 2017
ssl.sh: #10280: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:20 UTC 2017
ssl.sh: #10281: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:20 UTC 2017
ssl.sh: #10282: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:20 UTC 2017
ssl.sh: #10283: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:20 UTC 2017
ssl.sh: #10284: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24949 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24949 found at Mon Aug  7 00:03:20 UTC 2017
ssl.sh: #10285: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 24949 at Mon Aug  7 00:03:20 UTC 2017
kill -USR1 24949
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24949 killed at Mon Aug  7 00:03:20 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:03:20 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:03:20 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:20 UTC 2017
selfserv_9009 with PID 26374 started at Mon Aug  7 00:03:20 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:20 UTC 2017
ssl.sh: #10286: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:20 UTC 2017
ssl.sh: #10287: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:21 UTC 2017
ssl.sh: #10288: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:21 UTC 2017
ssl.sh: #10289: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:21 UTC 2017
ssl.sh: #10290: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:21 UTC 2017
ssl.sh: #10291: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:21 UTC 2017
ssl.sh: #10292: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:21 UTC 2017
ssl.sh: #10293: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:21 UTC 2017
ssl.sh: #10294: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:21 UTC 2017
ssl.sh: #10295: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:21 UTC 2017
ssl.sh: #10296: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:21 UTC 2017
ssl.sh: #10297: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:22 UTC 2017
ssl.sh: #10298: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:22 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10299: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:22 UTC 2017
ssl.sh: #10300: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:22 UTC 2017
ssl.sh: #10301: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:22 UTC 2017
ssl.sh: #10302: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:22 UTC 2017
ssl.sh: #10303: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:22 UTC 2017
ssl.sh: #10304: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:22 UTC 2017
ssl.sh: #10305: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:22 UTC 2017
ssl.sh: #10306: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:23 UTC 2017
ssl.sh: #10307: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:23 UTC 2017
ssl.sh: #10308: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:23 UTC 2017
ssl.sh: #10309: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:23 UTC 2017
ssl.sh: #10310: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:23 UTC 2017
ssl.sh: #10311: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:23 UTC 2017
ssl.sh: #10312: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:23 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10313: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:23 UTC 2017
ssl.sh: #10314: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:23 UTC 2017
ssl.sh: #10315: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:23 UTC 2017
ssl.sh: #10316: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:24 UTC 2017
ssl.sh: #10317: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:24 UTC 2017
ssl.sh: #10318: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:24 UTC 2017
ssl.sh: #10319: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:24 UTC 2017
ssl.sh: #10320: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:24 UTC 2017
ssl.sh: #10321: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:24 UTC 2017
ssl.sh: #10322: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:24 UTC 2017
ssl.sh: #10323: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:24 UTC 2017
ssl.sh: #10324: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:24 UTC 2017
ssl.sh: #10325: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26374 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26374 found at Mon Aug  7 00:03:25 UTC 2017
ssl.sh: #10326: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 26374 at Mon Aug  7 00:03:25 UTC 2017
kill -USR1 26374
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26374 killed at Mon Aug  7 00:03:25 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:03:25 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:03:25 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27797 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27797 found at Mon Aug  7 00:03:25 UTC 2017
selfserv_9009 with PID 27797 started at Mon Aug  7 00:03:25 UTC 2017
trying to kill selfserv_9009 with PID 27797 at Mon Aug  7 00:03:25 UTC 2017
kill -USR1 27797
./ssl.sh: line 197: 27797 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9009 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27797 killed at Mon Aug  7 00:03:25 UTC 2017
selfserv_9009 starting at Mon Aug  7 00:03:25 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:03:25 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:25 UTC 2017
selfserv_9009 with PID 27831 started at Mon Aug  7 00:03:25 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:25 UTC 2017
ssl.sh: #10327: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:25 UTC 2017
ssl.sh: #10328: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:25 UTC 2017
ssl.sh: #10329: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:25 UTC 2017
ssl.sh: #10330: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:25 UTC 2017
ssl.sh: #10331: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:25 UTC 2017
ssl.sh: #10332: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:26 UTC 2017
ssl.sh: #10333: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:26 UTC 2017
ssl.sh: #10334: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:26 UTC 2017
ssl.sh: #10335: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:26 UTC 2017
ssl.sh: #10336: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:26 UTC 2017
ssl.sh: #10337: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:26 UTC 2017
ssl.sh: #10338: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:26 UTC 2017
ssl.sh: #10339: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:26 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10340: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:27 UTC 2017
ssl.sh: #10341: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:27 UTC 2017
ssl.sh: #10342: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:27 UTC 2017
ssl.sh: #10343: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:27 UTC 2017
ssl.sh: #10344: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:27 UTC 2017
ssl.sh: #10345: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:27 UTC 2017
ssl.sh: #10346: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:27 UTC 2017
ssl.sh: #10347: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:27 UTC 2017
ssl.sh: #10348: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:28 UTC 2017
ssl.sh: #10349: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:28 UTC 2017
ssl.sh: #10350: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:28 UTC 2017
ssl.sh: #10351: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:28 UTC 2017
ssl.sh: #10352: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:28 UTC 2017
ssl.sh: #10353: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:28 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10354: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:28 UTC 2017
ssl.sh: #10355: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:28 UTC 2017
ssl.sh: #10356: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:28 UTC 2017
ssl.sh: #10357: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:29 UTC 2017
ssl.sh: #10358: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:29 UTC 2017
ssl.sh: #10359: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:29 UTC 2017
ssl.sh: #10360: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:29 UTC 2017
ssl.sh: #10361: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:29 UTC 2017
ssl.sh: #10362: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:29 UTC 2017
ssl.sh: #10363: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:29 UTC 2017
ssl.sh: #10364: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:29 UTC 2017
ssl.sh: #10365: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:30 UTC 2017
ssl.sh: #10366: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27831 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27831 found at Mon Aug  7 00:03:30 UTC 2017
ssl.sh: #10367: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 27831 at Mon Aug  7 00:03:30 UTC 2017
kill -USR1 27831
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27831 killed at Mon Aug  7 00:03:30 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:03:30 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:03:30 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:30 UTC 2017
selfserv_9009 with PID 29258 started at Mon Aug  7 00:03:30 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:30 UTC 2017
ssl.sh: #10368: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:30 UTC 2017
ssl.sh: #10369: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:30 UTC 2017
ssl.sh: #10370: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:30 UTC 2017
ssl.sh: #10371: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:30 UTC 2017
ssl.sh: #10372: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:31 UTC 2017
ssl.sh: #10373: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:31 UTC 2017
ssl.sh: #10374: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:31 UTC 2017
ssl.sh: #10375: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:31 UTC 2017
ssl.sh: #10376: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:31 UTC 2017
ssl.sh: #10377: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:31 UTC 2017
ssl.sh: #10378: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:31 UTC 2017
ssl.sh: #10379: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:32 UTC 2017
ssl.sh: #10380: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:32 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10381: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:32 UTC 2017
ssl.sh: #10382: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:32 UTC 2017
ssl.sh: #10383: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:32 UTC 2017
ssl.sh: #10384: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:32 UTC 2017
ssl.sh: #10385: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:32 UTC 2017
ssl.sh: #10386: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:32 UTC 2017
ssl.sh: #10387: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:32 UTC 2017
ssl.sh: #10388: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:33 UTC 2017
ssl.sh: #10389: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:33 UTC 2017
ssl.sh: #10390: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:33 UTC 2017
ssl.sh: #10391: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:33 UTC 2017
ssl.sh: #10392: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:33 UTC 2017
ssl.sh: #10393: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:33 UTC 2017
ssl.sh: #10394: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:33 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10395: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:33 UTC 2017
ssl.sh: #10396: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:34 UTC 2017
ssl.sh: #10397: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:34 UTC 2017
ssl.sh: #10398: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:34 UTC 2017
ssl.sh: #10399: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:34 UTC 2017
ssl.sh: #10400: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:34 UTC 2017
ssl.sh: #10401: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:34 UTC 2017
ssl.sh: #10402: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:34 UTC 2017
ssl.sh: #10403: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:34 UTC 2017
ssl.sh: #10404: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:35 UTC 2017
ssl.sh: #10405: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:35 UTC 2017
ssl.sh: #10406: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:35 UTC 2017
ssl.sh: #10407: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29258 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 29258 found at Mon Aug  7 00:03:35 UTC 2017
ssl.sh: #10408: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 29258 at Mon Aug  7 00:03:35 UTC 2017
kill -USR1 29258
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 29258 killed at Mon Aug  7 00:03:35 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:03:35 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:03:35 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:35 UTC 2017
selfserv_9009 with PID 30690 started at Mon Aug  7 00:03:35 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:35 UTC 2017
ssl.sh: #10409: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:35 UTC 2017
ssl.sh: #10410: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:35 UTC 2017
ssl.sh: #10411: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:35 UTC 2017
ssl.sh: #10412: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:36 UTC 2017
ssl.sh: #10413: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:36 UTC 2017
ssl.sh: #10414: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:36 UTC 2017
ssl.sh: #10415: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:36 UTC 2017
ssl.sh: #10416: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:36 UTC 2017
ssl.sh: #10417: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:36 UTC 2017
ssl.sh: #10418: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:36 UTC 2017
ssl.sh: #10419: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:36 UTC 2017
ssl.sh: #10420: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:36 UTC 2017
ssl.sh: #10421: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:36 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10422: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:37 UTC 2017
ssl.sh: #10423: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:37 UTC 2017
ssl.sh: #10424: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:37 UTC 2017
ssl.sh: #10425: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:37 UTC 2017
ssl.sh: #10426: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:37 UTC 2017
ssl.sh: #10427: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:37 UTC 2017
ssl.sh: #10428: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:37 UTC 2017
ssl.sh: #10429: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:37 UTC 2017
ssl.sh: #10430: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:37 UTC 2017
ssl.sh: #10431: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:37 UTC 2017
ssl.sh: #10432: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:37 UTC 2017
ssl.sh: #10433: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:38 UTC 2017
ssl.sh: #10434: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:38 UTC 2017
ssl.sh: #10435: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:38 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10436: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:38 UTC 2017
ssl.sh: #10437: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:38 UTC 2017
ssl.sh: #10438: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:38 UTC 2017
ssl.sh: #10439: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:38 UTC 2017
ssl.sh: #10440: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:38 UTC 2017
ssl.sh: #10441: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:38 UTC 2017
ssl.sh: #10442: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:38 UTC 2017
ssl.sh: #10443: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:39 UTC 2017
ssl.sh: #10444: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:39 UTC 2017
ssl.sh: #10445: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:39 UTC 2017
ssl.sh: #10446: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:39 UTC 2017
ssl.sh: #10447: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:39 UTC 2017
ssl.sh: #10448: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30690 found at Mon Aug  7 00:03:39 UTC 2017
ssl.sh: #10449: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 30690 at Mon Aug  7 00:03:39 UTC 2017
kill -USR1 30690
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 30690 killed at Mon Aug  7 00:03:39 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:03:39 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:03:39 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:39 UTC 2017
selfserv_9009 with PID 32120 started at Mon Aug  7 00:03:39 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:39 UTC 2017
ssl.sh: #10450: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:39 UTC 2017
ssl.sh: #10451: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:40 UTC 2017
ssl.sh: #10452: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:40 UTC 2017
ssl.sh: #10453: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:40 UTC 2017
ssl.sh: #10454: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:40 UTC 2017
ssl.sh: #10455: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:40 UTC 2017
ssl.sh: #10456: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:40 UTC 2017
ssl.sh: #10457: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:40 UTC 2017
ssl.sh: #10458: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:40 UTC 2017
ssl.sh: #10459: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:41 UTC 2017
ssl.sh: #10460: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:41 UTC 2017
ssl.sh: #10461: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:41 UTC 2017
ssl.sh: #10462: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:41 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10463: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:41 UTC 2017
ssl.sh: #10464: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:41 UTC 2017
ssl.sh: #10465: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:41 UTC 2017
ssl.sh: #10466: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:41 UTC 2017
ssl.sh: #10467: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:42 UTC 2017
ssl.sh: #10468: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:42 UTC 2017
ssl.sh: #10469: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:42 UTC 2017
ssl.sh: #10470: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:42 UTC 2017
ssl.sh: #10471: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:42 UTC 2017
ssl.sh: #10472: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:42 UTC 2017
ssl.sh: #10473: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:42 UTC 2017
ssl.sh: #10474: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:43 UTC 2017
ssl.sh: #10475: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:43 UTC 2017
ssl.sh: #10476: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:43 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10477: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:43 UTC 2017
ssl.sh: #10478: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:43 UTC 2017
ssl.sh: #10479: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:43 UTC 2017
ssl.sh: #10480: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:43 UTC 2017
ssl.sh: #10481: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:43 UTC 2017
ssl.sh: #10482: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:44 UTC 2017
ssl.sh: #10483: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:44 UTC 2017
ssl.sh: #10484: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:44 UTC 2017
ssl.sh: #10485: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:44 UTC 2017
ssl.sh: #10486: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:44 UTC 2017
ssl.sh: #10487: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:44 UTC 2017
ssl.sh: #10488: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:44 UTC 2017
ssl.sh: #10489: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32120 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 32120 found at Mon Aug  7 00:03:44 UTC 2017
ssl.sh: #10490: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 32120 at Mon Aug  7 00:03:44 UTC 2017
kill -USR1 32120
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 32120 killed at Mon Aug  7 00:03:44 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:03:44 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:03:44 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:44 UTC 2017
selfserv_9009 with PID 1169 started at Mon Aug  7 00:03:44 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:45 UTC 2017
ssl.sh: #10491: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:45 UTC 2017
ssl.sh: #10492: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:45 UTC 2017
ssl.sh: #10493: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:45 UTC 2017
ssl.sh: #10494: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:45 UTC 2017
ssl.sh: #10495: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:45 UTC 2017
ssl.sh: #10496: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:45 UTC 2017
ssl.sh: #10497: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:46 UTC 2017
ssl.sh: #10498: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:46 UTC 2017
ssl.sh: #10499: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:46 UTC 2017
ssl.sh: #10500: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:46 UTC 2017
ssl.sh: #10501: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:46 UTC 2017
ssl.sh: #10502: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:46 UTC 2017
ssl.sh: #10503: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:46 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10504: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:47 UTC 2017
ssl.sh: #10505: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:47 UTC 2017
ssl.sh: #10506: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:47 UTC 2017
ssl.sh: #10507: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:47 UTC 2017
ssl.sh: #10508: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:47 UTC 2017
ssl.sh: #10509: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:47 UTC 2017
ssl.sh: #10510: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:47 UTC 2017
ssl.sh: #10511: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:47 UTC 2017
ssl.sh: #10512: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:48 UTC 2017
ssl.sh: #10513: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:48 UTC 2017
ssl.sh: #10514: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:48 UTC 2017
ssl.sh: #10515: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:48 UTC 2017
ssl.sh: #10516: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:48 UTC 2017
ssl.sh: #10517: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:48 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10518: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:48 UTC 2017
ssl.sh: #10519: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:48 UTC 2017
ssl.sh: #10520: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:49 UTC 2017
ssl.sh: #10521: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:49 UTC 2017
ssl.sh: #10522: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:49 UTC 2017
ssl.sh: #10523: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:49 UTC 2017
ssl.sh: #10524: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:49 UTC 2017
ssl.sh: #10525: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:49 UTC 2017
ssl.sh: #10526: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:49 UTC 2017
ssl.sh: #10527: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:49 UTC 2017
ssl.sh: #10528: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:50 UTC 2017
ssl.sh: #10529: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:50 UTC 2017
ssl.sh: #10530: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1169 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 1169 found at Mon Aug  7 00:03:50 UTC 2017
ssl.sh: #10531: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 1169 at Mon Aug  7 00:03:50 UTC 2017
kill -USR1 1169
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 1169 killed at Mon Aug  7 00:03:50 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:03:50 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:03:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:50 UTC 2017
selfserv_9009 with PID 2641 started at Mon Aug  7 00:03:50 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:50 UTC 2017
ssl.sh: #10532: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:50 UTC 2017
ssl.sh: #10533: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:50 UTC 2017
ssl.sh: #10534: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:50 UTC 2017
ssl.sh: #10535: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:50 UTC 2017
ssl.sh: #10536: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:51 UTC 2017
ssl.sh: #10537: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:51 UTC 2017
ssl.sh: #10538: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:51 UTC 2017
ssl.sh: #10539: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:51 UTC 2017
ssl.sh: #10540: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:51 UTC 2017
ssl.sh: #10541: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:51 UTC 2017
ssl.sh: #10542: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:51 UTC 2017
ssl.sh: #10543: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:51 UTC 2017
ssl.sh: #10544: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:51 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10545: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:52 UTC 2017
ssl.sh: #10546: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:52 UTC 2017
ssl.sh: #10547: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:52 UTC 2017
ssl.sh: #10548: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:52 UTC 2017
ssl.sh: #10549: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:52 UTC 2017
ssl.sh: #10550: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:52 UTC 2017
ssl.sh: #10551: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:52 UTC 2017
ssl.sh: #10552: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:52 UTC 2017
ssl.sh: #10553: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:52 UTC 2017
ssl.sh: #10554: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:52 UTC 2017
ssl.sh: #10555: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:53 UTC 2017
ssl.sh: #10556: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:53 UTC 2017
ssl.sh: #10557: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:53 UTC 2017
ssl.sh: #10558: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:53 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10559: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:53 UTC 2017
ssl.sh: #10560: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:53 UTC 2017
ssl.sh: #10561: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:53 UTC 2017
ssl.sh: #10562: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:53 UTC 2017
ssl.sh: #10563: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:53 UTC 2017
ssl.sh: #10564: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:54 UTC 2017
ssl.sh: #10565: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:54 UTC 2017
ssl.sh: #10566: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:54 UTC 2017
ssl.sh: #10567: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:54 UTC 2017
ssl.sh: #10568: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:54 UTC 2017
ssl.sh: #10569: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:54 UTC 2017
ssl.sh: #10570: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:54 UTC 2017
ssl.sh: #10571: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2641 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2641 found at Mon Aug  7 00:03:54 UTC 2017
ssl.sh: #10572: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 2641 at Mon Aug  7 00:03:54 UTC 2017
kill -USR1 2641
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 2641 killed at Mon Aug  7 00:03:54 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:03:54 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:03:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4069 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4069 found at Mon Aug  7 00:03:54 UTC 2017
selfserv_9009 with PID 4069 started at Mon Aug  7 00:03:54 UTC 2017
trying to kill selfserv_9009 with PID 4069 at Mon Aug  7 00:03:54 UTC 2017
kill -USR1 4069
./ssl.sh: line 197:  4069 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9009 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4069 killed at Mon Aug  7 00:03:54 UTC 2017
TIMESTAMP ssl END: Mon Aug  7 00:03:54 UTC 2017
Running tests for merge
TIMESTAMP merge BEGIN: Mon Aug  7 00:03:54 UTC 2017
merge.sh: Merge Tests ===============================
merge.sh: Creating an SDR key & Encrypt
sdrtest -d . -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/tests.v3.8843 -t Test2 -f ../tests.pw
merge.sh: #10573: Creating SDR Key  - PASSED
merge.sh: Merging in Key for Existing user
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id dave --source-dir ../dave -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #10574: Merging Dave  - PASSED
merge.sh: Merging in new user 
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id server --source-dir ../server -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #10575: Merging server  - PASSED
merge.sh: Merging in new chain 
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id ext_client --source-dir ../ext_client -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #10576: Merging ext_client  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id conflict1 --source-dir conflict1 -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #10577: Merging conflicting nicknames 1  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id conflict2 --source-dir conflict2 -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #10578: Merging conflicting nicknames 2  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #4)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 45 (0x2d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:39 2017
            Not After : Sat Aug 06 23:43:39 2022
        Subject: "CN=TestUser45,E=TestUser45@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:ce:48:63:73:8d:86:ef:81:4d:81:42:e8:58:26:78:
                    92:4a:ee:12:01:d0:e5:72:47:00:dd:e0:34:c3:e7:4e:
                    f5:af:4f:ec:1e:d8:3b:d7:4b:1d:50:21:ec:e8:e9:97:
                    ae:c6:5a:e3:c8:33:be:ef:54:40:1d:48:3f:e9:be:67:
                    e2:9c:08:3f:fd:0c:49:14:29:eb:b2:fa:67:26:98:e8:
                    19:a8:d7:2a:3f:ae:a0:b3:19:81:21:57:8a:c5:9d:c8:
                    48:dc:85:fa:6a:bc:80:16:e2:03:67:4c:0a:91:5f:ba:
                    a5:a6:da:d7:04:7a:e4:39:8e:43:0f:27:0e:93:61:0a:
                    05:ab:23:50:77:95:51:9b:60:e9:c8:7f:4a:22:f6:7d:
                    ed:ea:95:95:f6:87:4d:f5:24:e0:8d:fd:7e:e4:4b:d6:
                    43:1b:4b:e1:e3:ae:76:f0:fd:59:05:4d:54:84:b0:4c:
                    03:a6:7b:73:f6:25:77:4e:80:cc:48:4e:29:8f:a0:da:
                    d1:6b:3c:8d:8c:fa:63:5e:c8:03:75:34:76:33:a5:02:
                    53:7a:b4:e9:f0:67:94:1b:9b:cc:5b:3a:8f:e8:4b:4e:
                    5c:1d:41:00:66:84:77:4d:7e:34:9a:bc:15:56:41:9f:
                    1a:9d:df:18:d9:90:b1:1c:41:7e:05:a9:a2:5e:ac:0b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        20:b0:14:c3:d2:ff:9c:cc:cd:8c:49:e9:14:c3:b6:0b:
        b4:52:d1:8e:97:39:09:ad:73:fb:c6:6c:36:32:d5:86:
        bc:53:dc:aa:8b:e2:bd:0a:8d:f4:d5:0a:16:97:52:d3:
        f7:72:16:79:5a:c8:9d:e3:c5:45:8d:91:00:68:5e:c6:
        b6:c7:8d:e5:2c:3b:b6:61:81:5a:3d:cf:69:78:a2:6f:
        59:5d:81:7f:68:11:b4:ee:5a:4f:16:00:ec:4f:b6:5c:
        3d:7b:9a:62:81:e7:80:11:19:14:91:fd:2e:36:46:36:
        b4:c6:6b:f5:f1:46:88:90:c8:be:89:8a:33:d2:ee:4a:
        33:d6:d7:0d:dd:b7:69:33:a1:58:d4:c8:bb:02:4e:a8:
        b9:2d:15:dd:96:74:1b:af:b1:50:3d:a3:52:85:9a:8f:
        78:aa:ed:60:a1:2d:d6:0b:9f:88:bc:e1:56:eb:00:e7:
        1c:74:7b:9e:5b:c3:bc:9f:77:9f:ca:56:19:b0:2a:d0:
        2c:c3:ac:bc:16:f2:78:15:f7:f9:1a:75:d3:26:d7:bf:
        9d:66:b9:77:8e:1c:c6:8c:42:b6:a9:fe:82:54:5a:d4:
        67:ff:5b:bd:09:04:8a:f2:af:04:cf:ae:4a:20:27:90:
        60:00:48:bf:4b:c3:8a:59:e8:60:56:51:0d:6b:4e:ba
    Fingerprint (SHA-256):
        14:CD:28:0E:90:6E:21:F1:D1:D0:8F:4C:3F:35:4D:A3:E8:35:11:46:85:B0:21:54:F7:84:DD:77:5A:8E:59:6D
    Fingerprint (SHA1):
        32:B5:71:BD:3A:1B:84:57:E8:69:FF:05:8A:1E:60:3A:4E:98:AF:FA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #10579: Verify nicknames were deconflicted (Alice #4)  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #100)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 46 (0x2e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sun Aug 06 23:43:39 2017
            Not After : Sat Aug 06 23:43:39 2022
        Subject: "CN=TestUser46,E=TestUser46@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:e4:da:42:2f:85:45:db:9f:27:eb:1b:0a:42:ba:72:
                    1a:0d:72:69:8d:36:e1:c8:82:da:46:dd:e9:6a:24:41:
                    1e:0b:10:e7:7a:29:57:4c:86:b4:24:8d:b0:f2:68:fa:
                    90:9e:ec:a3:4c:07:4f:3d:8c:4c:8d:90:6d:8b:86:c9:
                    31:c3:b4:45:8b:e5:f9:f7:9b:c9:06:ef:b3:de:40:29:
                    0e:96:be:f5:10:3e:d2:e3:e3:18:a3:9b:1f:dc:b4:9c:
                    b3:6f:96:49:81:11:11:e4:66:5c:4e:e8:ad:26:90:56:
                    d3:e4:c6:52:d9:9d:e4:b5:ef:24:76:54:41:95:72:de:
                    bd:69:cb:5c:fb:b4:15:33:07:05:0d:44:da:e5:e8:09:
                    a0:ac:76:0b:b6:09:20:77:8b:8c:48:db:5b:49:fa:d0:
                    82:5c:8b:64:c5:be:ad:86:8e:85:70:2b:05:1e:7e:3e:
                    d6:03:a3:b3:d8:b4:9c:c8:9d:bb:1b:28:22:c6:4b:0e:
                    01:0e:ea:d0:10:92:36:d1:21:61:96:6e:5a:28:b1:b4:
                    23:7d:47:17:67:a3:fe:24:57:66:f8:f1:00:93:49:34:
                    62:80:b2:10:25:5f:6d:b4:53:6a:6c:44:dd:09:63:f1:
                    85:29:35:4b:c5:2d:70:59:c1:62:6a:7c:32:e1:c5:93
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6f:b1:be:50:0c:dc:57:21:20:be:3d:af:cb:68:d3:38:
        88:7e:a6:3f:9a:8c:24:dd:84:88:4d:84:a1:32:b1:82:
        65:dd:3e:27:38:1b:47:96:a9:7b:e5:e4:b7:b7:45:b6:
        28:d5:93:1f:22:91:ce:92:9e:a2:fd:f6:9a:85:14:35:
        44:5d:01:82:0b:d9:06:f9:f7:15:6a:96:94:15:da:e9:
        ca:cf:02:f1:01:71:bc:11:5d:15:de:97:ea:00:1b:16:
        05:13:03:4f:b6:94:12:41:4c:ce:ca:81:ef:82:ad:3f:
        9f:ee:01:c9:b9:9e:0f:4e:7a:e8:45:f5:6d:3e:91:2e:
        00:1f:b4:fb:8c:de:50:19:e3:8a:fe:df:46:66:31:89:
        83:1d:8b:eb:c0:f5:2b:06:a3:ee:4b:57:a8:b0:14:09:
        50:e4:eb:e0:19:31:b4:c2:c1:dd:3a:4c:fd:d4:bb:bd:
        1f:05:fa:7f:1c:2b:db:f9:3e:20:ae:f4:60:7c:cb:6f:
        d4:f6:33:46:ce:d6:d6:0a:69:b1:8a:00:5d:09:95:65:
        2a:36:00:ab:5c:41:16:fa:64:6b:23:18:c5:53:19:45:
        55:4d:e7:3c:47:7e:89:70:f2:ee:da:f5:3a:c4:c9:14:
        68:89:03:38:bc:62:b8:70:0e:b8:32:87:99:43:dd:96
    Fingerprint (SHA-256):
        C9:F9:13:D2:74:D7:90:72:2C:E8:8E:1D:70:78:83:46:10:45:73:25:4B:8B:B6:5B:3C:0D:D7:E9:EF:CB:2D:F3
    Fingerprint (SHA1):
        D6:84:3D:2D:3B:1C:35:B1:12:C2:02:AE:57:D1:AD:E3:6B:37:E4:00
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #10580: Verify nicknames were deconflicted (Alice #100)  - PASSED
merge.sh: Merging in SDR 
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id sdr --source-dir ../SDR -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #10581: Merging SDR  - PASSED
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
TestCA-dsa                                                   CT,C,C
Alice                                                        u,u,u
Alice-dsamixed                                               u,u,u
Alice-ec                                                     u,u,u
bob@bogus.com                                                ,,   
Dave                                                         u,u,u
eve@bogus.com                                                ,,   
bob-ec@bogus.com                                             ,,   
Dave-ec                                                      u,u,u
TestCA                                                       CT,C,C
TestCA-ec                                                    CT,C,C
Alice-dsa                                                    u,u,u
Alice-ecmixed                                                u,u,u
Dave-dsamixed                                                u,u,u
Dave-dsa                                                     u,u,u
Dave-ecmixed                                                 u,u,u
localhost.localdomain                                        u,u,u
localhost.localdomain-dsamixed                               u,u,u
localhost.localdomain-ec                                     u,u,u
localhost-sni.localdomain-dsa                                u,u,u
localhost-sni.localdomain-ecmixed                            u,u,u
localhost.localdomain-dsa                                    u,u,u
localhost.localdomain-ecmixed                                u,u,u
localhost-sni.localdomain                                    u,u,u
localhost-sni.localdomain-dsamixed                           u,u,u
localhost-sni.localdomain-ec                                 u,u,u
ExtendedSSLUser-dsa                                          u,u,u
serverCA-dsa                                                 C,C,C
ExtendedSSLUser-ecmixed                                      u,u,u
clientCA                                                     T,C,C
chain-2-clientCA                                             ,,   
chain-1-clientCA-dsa                                         ,,   
clientCA-ec                                                  T,C,C
chain-2-clientCA-ec                                          ,,   
ExtendedSSLUser                                              u,u,u
serverCA                                                     C,C,C
ExtendedSSLUser-dsamixed                                     u,u,u
ExtendedSSLUser-ec                                           u,u,u
serverCA-ec                                                  C,C,C
chain-1-clientCA                                             ,,   
clientCA-dsa                                                 T,C,C
chain-2-clientCA-dsa                                         ,,   
chain-1-clientCA-ec                                          ,,   
Alice #1                                                     ,,   
Alice #2                                                     ,,   
Alice #99                                                    ,,   
Alice #3                                                     ,,   
Alice #100                                                   ,,   
Alice #4                                                     ,,   
CRL names                                CRL Type
TestCA                                   CRL  
TestCA-ec                                CRL  
merge.sh: Decrypt - With Original SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/tests.v3.8843 -t Test2 -f ../tests.pw
merge.sh: #10582: Decrypt - Value 3  - PASSED
merge.sh: Decrypt - With Merged SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/tests.v1.8843 -t Test1 -f ../tests.pw
merge.sh: #10583: Decrypt - Value 1  - PASSED
merge.sh: Signing with merged key  ------------------
cmsutil -S -T -N Dave -H SHA1 -i alice.txt -d . -p nss -o dave.dsig
merge.sh: #10584: Create Detached Signature Dave . - PASSED
cmsutil -D -i dave.dsig -c alice.txt -d . 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
merge.sh: #10585: Verifying Dave's Detached Signature  - PASSED
merge.sh: verifying  merged cert  ------------------
certutil -V -n ExtendedSSLUser -u C -d .
certutil: certificate is valid
merge.sh: #10586: Verifying ExtendedSSL User Cert  - PASSED
merge.sh: verifying  merged crl  ------------------
crlutil -L -n TestCA -d .
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US"
    This Update: Sun Aug 06 23:43:48 2017
    Entry 1 (0x1):
        Serial Number: 40 (0x28)
        Revocation Date: Sun Aug 06 23:43:24 2017
        Entry Extensions:
            Name: CRL reason code
    Entry 2 (0x2):
        Serial Number: 42 (0x2a)
        Revocation Date: Sun Aug 06 23:43:44 2017
    CRL Extensions:
        Name: Certificate Issuer Alt Name
        RFC822 Name: "caemail@ca.com"
        DNS name: "ca.com"
        Directory Name: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=Califo
            rnia,C=US"
        URI: "http://ca.com"
        IP Address:
            87:0b:31:39:32:2e:31:36:38:2e:30:2e:31
merge.sh: #10587: Verifying TestCA CRL  - PASSED
TEST_MODE=UPGRADE_DB
NSS_DEFAULT_DB_TYPE=sql
TIMESTAMP merge END: Mon Aug  7 00:03:58 UTC 2017
Running tests for ec
TIMESTAMP ec BEGIN: Mon Aug  7 00:03:58 UTC 2017
Running ec tests for ecperf
TIMESTAMP ecperf BEGIN: Mon Aug  7 00:03:58 UTC 2017
ecperf.sh: ecperf test ===============================
./ecperf.sh: line 43: ecperf: command not found
ecperf.sh: #10588: ec(perf) test - PASSED
TIMESTAMP ecperf END: Mon Aug  7 00:03:58 UTC 2017
Running ec tests for ectest
TIMESTAMP ectest BEGIN: Mon Aug  7 00:03:58 UTC 2017
ectest.sh: freebl and pk11 ectest tests ===============================
No password file "../tests.pw" exists.
Test curve25519 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #10589: ec test certutil keygen - curve25519 - PASSED
Test secp256r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #10590: ec test certutil keygen - secp256r1 - PASSED
Test secp384r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #10591: ec test certutil keygen - secp384r1 - PASSED
Test secp521r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #10592: ec test certutil keygen - secp521r1 - PASSED
Test sect571r1 key generation using certutil that should fail because it's not implemented ...
Generating key.  This may take a few moments...
certutil: unable to generate key(s)
: SEC_ERROR_INVALID_KEY: The key does not support the requested operation.
ectest.sh: #10593: ec test certutil keygen - secp521r1 - PASSED
ectest.sh: #10594: pk11 ec tests - PASSED
TIMESTAMP ectest END: Mon Aug  7 00:04:00 UTC 2017
TIMESTAMP ec END: Mon Aug  7 00:04:00 UTC 2017
Running tests for gtests
TIMESTAMP gtests BEGIN: Mon Aug  7 00:04:00 UTC 2017
gtests: der_gtest pk11_gtest
gtests.sh: der_gtest ===============================
executing der_gtest
[==========] Running 16 tests from 2 test cases.
[----------] Global test environment set-up.
[----------] 13 tests from DERIntegerDecodingTest
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus126
[       OK ] DERIntegerDecodingTest.DecodeLongMinus126 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130
[       OK ] DERIntegerDecodingTest.DecodeLong130 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130Padded
[       OK ] DERIntegerDecodingTest.DecodeLong130Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong0
[       OK ] DERIntegerDecodingTest.DecodeLong0 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong1
[       OK ] DERIntegerDecodingTest.DecodeLong1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1Padded
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMax
[       OK ] DERIntegerDecodingTest.DecodeLongMax (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMin
[       OK ] DERIntegerDecodingTest.DecodeLongMin (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinPlus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxPlus1 (0 ms)
[----------] 13 tests from DERIntegerDecodingTest (0 ms total)
[----------] 3 tests from DERPrivateKeyImportTest
[ RUN      ] DERPrivateKeyImportTest.ImportPrivateRSAKey
[       OK ] DERPrivateKeyImportTest.ImportPrivateRSAKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportInvalidPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportInvalidPrivateKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey (0 ms)
[----------] 3 tests from DERPrivateKeyImportTest (0 ms total)
[----------] Global test environment tear-down
[==========] 16 tests from 2 test cases ran. (0 ms total)
[  PASSED  ] 16 tests.
gtests.sh: #10595: der_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/der_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #10596: 'DERIntegerDecodingTest: DecodeLongMinus126' - PASSED
gtests.sh: #10597: 'DERIntegerDecodingTest: DecodeLong130' - PASSED
gtests.sh: #10598: 'DERIntegerDecodingTest: DecodeLong130Padded' - PASSED
gtests.sh: #10599: 'DERIntegerDecodingTest: DecodeLong0' - PASSED
gtests.sh: #10600: 'DERIntegerDecodingTest: DecodeLong1' - PASSED
gtests.sh: #10601: 'DERIntegerDecodingTest: DecodeLongMinus1' - PASSED
gtests.sh: #10602: 'DERIntegerDecodingTest: DecodeLongMinus1Padded' - PASSED
gtests.sh: #10603: 'DERIntegerDecodingTest: DecodeLongMax' - PASSED
gtests.sh: #10604: 'DERIntegerDecodingTest: DecodeLongMin' - PASSED
gtests.sh: #10605: 'DERIntegerDecodingTest: DecodeLongMaxMinus1' - PASSED
gtests.sh: #10606: 'DERIntegerDecodingTest: DecodeLongMinPlus1' - PASSED
gtests.sh: #10607: 'DERIntegerDecodingTest: DecodeLongMinMinus1' - PASSED
gtests.sh: #10608: 'DERIntegerDecodingTest: DecodeLongMaxPlus1' - PASSED
gtests.sh: #10609: 'DERPrivateKeyImportTest: ImportPrivateRSAKey' - PASSED
gtests.sh: #10610: 'DERPrivateKeyImportTest: ImportInvalidPrivateKey' - PASSED
gtests.sh: #10611: 'DERPrivateKeyImportTest: ImportZeroLengthPrivateKey' - PASSED
gtests.sh: pk11_gtest ===============================
executing pk11_gtest
[==========] Running 21 tests from 7 test cases.
[----------] Global test environment set-up.
[----------] 6 tests from Pkcs11AESKeyWrapTest
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest1
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest1 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest2
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest2 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest3
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest3 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest4
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest4 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest5
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest5 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest6
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest6 (0 ms)
[----------] 6 tests from Pkcs11AESKeyWrapTest (0 ms total)
[----------] 3 tests from Pkcs11ChaCha20Poly1305Test
[ RUN      ] Pkcs11ChaCha20Poly1305Test.GenerateEncryptDecrypt
[       OK ] Pkcs11ChaCha20Poly1305Test.GenerateEncryptDecrypt (0 ms)
[ RUN      ] Pkcs11ChaCha20Poly1305Test.CheckTestVector1
[       OK ] Pkcs11ChaCha20Poly1305Test.CheckTestVector1 (0 ms)
[ RUN      ] Pkcs11ChaCha20Poly1305Test.CheckTestVector2
[       OK ] Pkcs11ChaCha20Poly1305Test.CheckTestVector2 (0 ms)
[----------] 3 tests from Pkcs11ChaCha20Poly1305Test (0 ms total)
[----------] 2 tests from Pkcs11ExportTest
[ RUN      ] Pkcs11ExportTest.DeriveNonExport
[       OK ] Pkcs11ExportTest.DeriveNonExport (0 ms)
[ RUN      ] Pkcs11ExportTest.DeriveExport
[       OK ] Pkcs11ExportTest.DeriveExport (0 ms)
[----------] 2 tests from Pkcs11ExportTest (0 ms total)
[----------] 2 tests from Pkcs11Pbkdf2Test
[ RUN      ] Pkcs11Pbkdf2Test.DeriveKnown1
[       OK ] Pkcs11Pbkdf2Test.DeriveKnown1 (44 ms)
[ RUN      ] Pkcs11Pbkdf2Test.DeriveKnown2
[       OK ] Pkcs11Pbkdf2Test.DeriveKnown2 (86 ms)
[----------] 2 tests from Pkcs11Pbkdf2Test (130 ms total)
[----------] 5 tests from TlsPrfTest
[ RUN      ] TlsPrfTest.ExtendedMsParamErr
[       OK ] TlsPrfTest.ExtendedMsParamErr (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsDhTlsPrf
[       OK ] TlsPrfTest.ExtendedMsDhTlsPrf (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsRsaTlsPrf
[       OK ] TlsPrfTest.ExtendedMsRsaTlsPrf (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsDhSha256
[       OK ] TlsPrfTest.ExtendedMsDhSha256 (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsRsaSha256
[       OK ] TlsPrfTest.ExtendedMsRsaSha256 (0 ms)
[----------] 5 tests from TlsPrfTest (0 ms total)
[----------] 1 test from Pkcs11RsaPssTest
[ RUN      ] Pkcs11RsaPssTest.GenerateAndSignAndVerify
[       OK ] Pkcs11RsaPssTest.GenerateAndSignAndVerify (26 ms)
[----------] 1 test from Pkcs11RsaPssTest (26 ms total)
[----------] 2 tests from Pkcs11RsaPssVectorTest
[ RUN      ] Pkcs11RsaPssVectorTest.VerifyKnownSignature1
[       OK ] Pkcs11RsaPssVectorTest.VerifyKnownSignature1 (0 ms)
[ RUN      ] Pkcs11RsaPssVectorTest.VerifyKnownSignature2
[       OK ] Pkcs11RsaPssVectorTest.VerifyKnownSignature2 (0 ms)
[----------] 2 tests from Pkcs11RsaPssVectorTest (0 ms total)
[----------] Global test environment tear-down
[==========] 21 tests from 7 test cases ran. (156 ms total)
[  PASSED  ] 21 tests.
gtests.sh: #10612: pk11_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/pk11_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #10613: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest1' - PASSED
gtests.sh: #10614: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest2' - PASSED
gtests.sh: #10615: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest3' - PASSED
gtests.sh: #10616: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest4' - PASSED
gtests.sh: #10617: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest5' - PASSED
gtests.sh: #10618: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest6' - PASSED
gtests.sh: #10619: 'Pkcs11ChaCha20Poly1305Test: GenerateEncryptDecrypt' - PASSED
gtests.sh: #10620: 'Pkcs11ChaCha20Poly1305Test: CheckTestVector1' - PASSED
gtests.sh: #10621: 'Pkcs11ChaCha20Poly1305Test: CheckTestVector2' - PASSED
gtests.sh: #10622: 'Pkcs11ExportTest: DeriveNonExport' - PASSED
gtests.sh: #10623: 'Pkcs11ExportTest: DeriveExport' - PASSED
gtests.sh: #10624: 'Pkcs11Pbkdf2Test: DeriveKnown1' - PASSED
gtests.sh: #10625: 'Pkcs11Pbkdf2Test: DeriveKnown2' - PASSED
gtests.sh: #10626: 'TlsPrfTest: ExtendedMsParamErr' - PASSED
gtests.sh: #10627: 'TlsPrfTest: ExtendedMsDhTlsPrf' - PASSED
gtests.sh: #10628: 'TlsPrfTest: ExtendedMsRsaTlsPrf' - PASSED
gtests.sh: #10629: 'TlsPrfTest: ExtendedMsDhSha256' - PASSED
gtests.sh: #10630: 'TlsPrfTest: ExtendedMsRsaSha256' - PASSED
gtests.sh: #10631: 'Pkcs11RsaPssTest: GenerateAndSignAndVerify' - PASSED
gtests.sh: #10632: 'Pkcs11RsaPssVectorTest: VerifyKnownSignature1' - PASSED
gtests.sh: #10633: 'Pkcs11RsaPssVectorTest: VerifyKnownSignature2' - PASSED
TIMESTAMP gtests END: Mon Aug  7 00:04:00 UTC 2017
Running tests for ssl_gtests
TIMESTAMP ssl_gtests BEGIN: Mon Aug  7 00:04:00 UTC 2017
ssl_gtest.sh: SSL Gtests ===============================
ssl_gtest.sh: #10634: create ssl_gtest database  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10635: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10636: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10637: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10638: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10639: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10640: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10641: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10642: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10643: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10644: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10645: create certificate: ca  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10646: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10647: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10648: create certificate: sign  - PASSED
executing ssl_gtest
[==========] Running 816 tests from 15 test cases.
[----------] Global test environment set-up.
[----------] 60 tests from CipherSuiteRC4/TlsCipherSuiteTest
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/0 (30 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/1 (11 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/2 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/3 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/4 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/5 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/6 (10 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/7 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/8 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/9 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/10 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/11 (10 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/12 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/13 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/14 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/0 (13 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/1 (21 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/2 (20 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/3 (27 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/4 (17 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/5 (13 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/6 (21 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/7 (20 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/8 (27 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/9 (17 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/10 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/11 (21 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/12 (19 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/13 (27 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/14 (17 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/0 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/1 (10 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/2 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/3 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/4 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/5 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/6 (10 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/7 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/8 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/9 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/10 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/11 (10 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/12 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/13 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/14 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/0 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/1 (10 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/2 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/3 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/4 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/5 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/6 (10 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/7 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/8 (15 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/9 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/10 (5 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/11 (10 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/12 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/13 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/14 (6 ms)
[----------] 60 tests from CipherSuiteRC4/TlsCipherSuiteTest (723 ms total)
[----------] 48 tests from CipherSuiteAEAD12/TlsCipherSuiteTest
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/0 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/1 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/2 (15 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/3 (15 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/4 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/5 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/6 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/7 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/8 (15 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/9 (15 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/10 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/11 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/0 (13 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/1 (13 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/2 (1 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/3 (0 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/4 (19 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/5 (18 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/6 (13 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/7 (14 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/8 (0 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/9 (0 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/10 (20 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/11 (18 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/0 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/1 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/2 (14 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/3 (15 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/4 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/5 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/6 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/7 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/8 (15 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/9 (15 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/10 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/11 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/0 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/1 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/2 (15 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/3 (14 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/4 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/5 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/6 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/7 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/8 (15 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/9 (15 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/10 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/11 (6 ms)
[----------] 48 tests from CipherSuiteAEAD12/TlsCipherSuiteTest (463 ms total)
[----------] 72 tests from CipherSuiteAEAD/TlsCipherSuiteTest
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/0 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/1 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/2 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/3 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/4 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/5 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/6 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/7 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/8 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/9 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/10 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/11 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/12 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/13 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/14 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/15 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/16 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/17 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/0 (19 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/1 (20 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/2 (17 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/3 (18 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/4 (20 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/5 (21 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/6 (19 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/7 (18 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/8 (21 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/9 (19 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/10 (20 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/11 (17 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/12 (18 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/13 (20 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/14 (21 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/15 (19 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/16 (18 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/17 (21 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/0 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/1 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/2 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/3 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/4 (10 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/5 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/6 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/7 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/8 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/9 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/10 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/11 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/12 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/13 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/14 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/15 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/16 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/17 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/0 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/1 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/2 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/3 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/4 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/5 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/6 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/7 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/8 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/9 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/10 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/11 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/12 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/13 (10 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/14 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/15 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/16 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/17 (9 ms)
[----------] 72 tests from CipherSuiteAEAD/TlsCipherSuiteTest (778 ms total)
[----------] 64 tests from CipherSuiteCBC12/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/0 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/1 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/2 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/3 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/4 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/5 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/6 (15 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/7 (14 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/8 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/9 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/10 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/11 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/12 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/13 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/14 (15 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/15 (15 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/0 (21 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/1 (13 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/2 (20 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/3 (17 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/4 (21 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/5 (14 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/6 (0 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/7 (0 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/8 (21 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/9 (13 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/10 (20 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/11 (18 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/12 (20 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/13 (14 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/14 (0 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/15 (0 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/0 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/1 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/2 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/3 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/4 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/5 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/6 (15 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/7 (15 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/8 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/9 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/10 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/11 (7 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/12 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/13 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/14 (14 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/15 (15 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/0 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/1 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/2 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/3 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/4 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/5 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/6 (15 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/7 (15 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/8 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/9 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/10 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/11 (7 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/12 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/13 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/14 (15 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/15 (15 ms)
[----------] 64 tests from CipherSuiteCBC12/TlsCipherSuiteTest (659 ms total)
[----------] 192 tests from CipherSuiteCBCStream/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/0 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/1 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/2 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/3 (11 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/4 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/5 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/6 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/7 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/8 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/9 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/10 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/11 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/12 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/13 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/14 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/15 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/16 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/17 (11 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/18 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/19 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/20 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/21 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/22 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/23 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/24 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/25 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/26 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/27 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/28 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/29 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/30 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/31 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/32 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/33 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/34 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/35 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/36 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/37 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/38 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/39 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/40 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/41 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/42 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/43 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/44 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/45 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/46 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/47 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/0 (21 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/1 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/2 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/3 (21 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/4 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/5 (19 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/6 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/7 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/8 (26 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/9 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/10 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/11 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/12 (18 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/13 (18 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/14 (17 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/15 (18 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/16 (21 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/17 (21 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/18 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/19 (21 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/20 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/21 (19 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/22 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/23 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/24 (26 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/25 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/26 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/27 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/28 (18 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/29 (17 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/30 (18 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/31 (18 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/32 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/33 (21 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/34 (21 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/35 (21 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/36 (19 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/37 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/38 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/39 (19 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/40 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/41 (28 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/42 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/43 (26 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/44 (18 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/45 (18 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/46 (17 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/47 (18 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/0 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/1 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/2 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/3 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/4 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/5 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/6 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/7 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/8 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/9 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/10 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/11 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/12 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/13 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/14 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/15 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/16 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/17 (11 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/18 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/19 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/20 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/21 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/22 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/23 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/24 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/25 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/26 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/27 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/28 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/29 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/30 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/31 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/32 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/33 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/34 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/35 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/36 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/37 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/38 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/39 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/40 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/41 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/42 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/43 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/44 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/45 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/46 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/47 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/0 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/1 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/2 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/3 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/4 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/5 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/6 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/7 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/8 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/9 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/10 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/11 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/12 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/13 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/14 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/15 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/16 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/17 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/18 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/19 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/20 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/21 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/22 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/23 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/24 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/25 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/26 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/27 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/28 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/29 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/30 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/31 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/32 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/33 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/34 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/35 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/36 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/37 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/38 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/39 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/40 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/41 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/42 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/43 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/44 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/45 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/46 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/47 (6 ms)
[----------] 192 tests from CipherSuiteCBCStream/TlsCipherSuiteTest (2433 ms total)
[----------] 96 tests from CipherSuiteCBCDatagram/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/0 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/1 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/2 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/3 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/4 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/5 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/6 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/7 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/8 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/9 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/10 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/11 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/12 (11 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/13 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/14 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/15 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/16 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/17 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/18 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/19 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/20 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/21 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/22 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/23 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/0 (21 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/1 (20 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/2 (21 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/3 (20 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/4 (20 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/5 (20 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/6 (27 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/7 (27 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/8 (27 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/9 (17 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/10 (18 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/11 (18 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/12 (21 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/13 (21 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/14 (21 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/15 (19 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/16 (20 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/17 (20 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/18 (27 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/19 (27 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/20 (27 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/21 (17 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/22 (18 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/23 (18 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/0 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/1 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/2 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/3 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/4 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/5 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/6 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/7 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/8 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/9 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/10 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/11 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/12 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/13 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/14 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/15 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/16 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/17 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/18 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/19 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/20 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/21 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/22 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/23 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/0 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/1 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/2 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/3 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/4 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/5 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/6 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/7 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/8 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/9 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/10 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/11 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/12 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/13 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/14 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/15 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/16 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/17 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/18 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/19 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/20 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/21 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/22 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/23 (6 ms)
[----------] 96 tests from CipherSuiteCBCDatagram/TlsCipherSuiteTest (1222 ms total)
[----------] 8 tests from TestSecurityStatus/SecurityStatusTest
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/0
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/0 (6 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/1
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/1 (6 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/2 (6 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/3
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/3 (6 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/4
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/4 (5 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/5 (6 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/6
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/6 (5 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/7 (7 ms)
[----------] 8 tests from TestSecurityStatus/SecurityStatusTest (47 ms total)
[----------] 72 tests from DamageYStream/TlsDamageDHYTest
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103011d5384ea055294cda43c3fd1fee21961eef3b449ab0bf1aabd65...
record new: [1184] 0200005103011d5384ea055294cda43c3fd1fee21961eef3b449ab0bf1aabd65...
server: Original packet: [1189] 16030104a00200005103011d5384ea055294cda43c3fd1fee21961eef3b449ab...
server: Filtered packet: [1189] 16030104a00200005103011d5384ea055294cda43c3fd1fee21961eef3b449ab...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/0 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/1
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103015ba7f076fa91e71750679438f095811df1c3408f8a73531d1b02...
record new: [1184] 0200005103015ba7f076fa91e71750679438f095811df1c3408f8a73531d1b02...
server: Original packet: [1189] 16030104a00200005103015ba7f076fa91e71750679438f095811df1c3408f8a...
server: Filtered packet: [1189] 16030104a00200005103015ba7f076fa91e71750679438f095811df1c3408f8a...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/1 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/2
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301310c7d2059adeb2c52825436447036f8f0e01964b112f3877cdc...
record new: [1184] 020000510301310c7d2059adeb2c52825436447036f8f0e01964b112f3877cdc...
server: Original packet: [1189] 16030104a0020000510301310c7d2059adeb2c52825436447036f8f0e01964b1...
server: Filtered packet: [1189] 16030104a0020000510301310c7d2059adeb2c52825436447036f8f0e01964b1...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/2 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/3
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301d3a1a943b475920235b2398b12a051a76a7ed5e65b22963410ae...
record new: [1184] 020000510301d3a1a943b475920235b2398b12a051a76a7ed5e65b22963410ae...
server: Original packet: [1189] 16030104a0020000510301d3a1a943b475920235b2398b12a051a76a7ed5e65b...
server: Filtered packet: [1189] 16030104a0020000510301d3a1a943b475920235b2398b12a051a76a7ed5e65b...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/3 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/4
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103011b6a84790c178ec8d85e868985379ac47e3f8c6fe3a67eaf8374...
record new: [1184] 0200005103011b6a84790c178ec8d85e868985379ac47e3f8c6fe3a67eaf8374...
server: Original packet: [1189] 16030104a00200005103011b6a84790c178ec8d85e868985379ac47e3f8c6fe3...
server: Filtered packet: [1189] 16030104a00200005103011b6a84790c178ec8d85e868985379ac47e3f8c6fe3...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/4 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/5
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301b3a23d07b521964c9bb78528c54831572c8ee6ea3cd437b44f7b...
record new: [1184] 020000510301b3a23d07b521964c9bb78528c54831572c8ee6ea3cd437b44f7b...
server: Original packet: [1189] 16030104a0020000510301b3a23d07b521964c9bb78528c54831572c8ee6ea3c...
server: Filtered packet: [1189] 16030104a0020000510301b3a23d07b521964c9bb78528c54831572c8ee6ea3c...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/5 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/6
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301b823d76303541506e05ed7b666caacd36d07453ae7f0cf5db6e7...
record new: [1184] 020000510301b823d76303541506e05ed7b666caacd36d07453ae7f0cf5db6e7...
server: Original packet: [1189] 16030104a0020000510301b823d76303541506e05ed7b666caacd36d07453ae7...
server: Filtered packet: [1189] 16030104a0020000510301b823d76303541506e05ed7b666caacd36d07453ae7...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/6 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/7
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301a9009ed1a9fcd4986a8cb2cebaa38c45bb6a64c6e0bc7c746416...
record new: [1184] 020000510301a9009ed1a9fcd4986a8cb2cebaa38c45bb6a64c6e0bc7c746416...
server: Original packet: [1189] 16030104a0020000510301a9009ed1a9fcd4986a8cb2cebaa38c45bb6a64c6e0...
server: Filtered packet: [1189] 16030104a0020000510301a9009ed1a9fcd4986a8cb2cebaa38c45bb6a64c6e0...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/7 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/8
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103010674a6378e82ef1cc3ffb4898ea26be7892434e7ab31b745b58a...
record new: [1185] 0200005103010674a6378e82ef1cc3ffb4898ea26be7892434e7ab31b745b58a...
server: Original packet: [1189] 16030104a00200005103010674a6378e82ef1cc3ffb4898ea26be7892434e7ab...
server: Filtered packet: [1190] 16030104a10200005103010674a6378e82ef1cc3ffb4898ea26be7892434e7ab...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/8 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/9
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030140424c62e942f1e93ee06b76a53af6f7d2170dfd072989eef3bf...
record new: [1185] 02000051030140424c62e942f1e93ee06b76a53af6f7d2170dfd072989eef3bf...
server: Original packet: [1189] 16030104a002000051030140424c62e942f1e93ee06b76a53af6f7d2170dfd07...
server: Filtered packet: [1190] 16030104a102000051030140424c62e942f1e93ee06b76a53af6f7d2170dfd07...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/9 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/10
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103013d3620df94acdfbb3871c823afc9c68fdda869024bc2218b2b8c...
record new: [1185] 0200005103013d3620df94acdfbb3871c823afc9c68fdda869024bc2218b2b8c...
server: Original packet: [1189] 16030104a00200005103013d3620df94acdfbb3871c823afc9c68fdda869024b...
server: Filtered packet: [1190] 16030104a10200005103013d3620df94acdfbb3871c823afc9c68fdda869024b...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/10 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/11
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103014c76ac4781412c424e416a33665f307a68cc89df140c8457f67b...
record new: [1185] 0200005103014c76ac4781412c424e416a33665f307a68cc89df140c8457f67b...
server: Original packet: [1189] 16030104a00200005103014c76ac4781412c424e416a33665f307a68cc89df14...
server: Filtered packet: [1190] 16030104a10200005103014c76ac4781412c424e416a33665f307a68cc89df14...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/11 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/12
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302f3786e550bf7127d0e83e9b834aa22e64381aa6e9b0c72af6ff0...
record new: [1184] 020000510302f3786e550bf7127d0e83e9b834aa22e64381aa6e9b0c72af6ff0...
server: Original packet: [1189] 16030204a0020000510302f3786e550bf7127d0e83e9b834aa22e64381aa6e9b...
server: Filtered packet: [1189] 16030204a0020000510302f3786e550bf7127d0e83e9b834aa22e64381aa6e9b...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/12 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/13
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030293f45d620998b9f27acd45b7f0752418682a6c55bc9169b64114...
record new: [1184] 02000051030293f45d620998b9f27acd45b7f0752418682a6c55bc9169b64114...
server: Original packet: [1189] 16030204a002000051030293f45d620998b9f27acd45b7f0752418682a6c55bc...
server: Filtered packet: [1189] 16030204a002000051030293f45d620998b9f27acd45b7f0752418682a6c55bc...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/13 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/14
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030248c617c0c3d902bf60081c2f85050c98b56e057d38b02c03b1ed...
record new: [1184] 02000051030248c617c0c3d902bf60081c2f85050c98b56e057d38b02c03b1ed...
server: Original packet: [1189] 16030204a002000051030248c617c0c3d902bf60081c2f85050c98b56e057d38...
server: Filtered packet: [1189] 16030204a002000051030248c617c0c3d902bf60081c2f85050c98b56e057d38...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/14 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/15
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302b883553a917daaecf3882156674b102af81b7e62644825d87f35...
record new: [1184] 020000510302b883553a917daaecf3882156674b102af81b7e62644825d87f35...
server: Original packet: [1189] 16030204a0020000510302b883553a917daaecf3882156674b102af81b7e6264...
server: Filtered packet: [1189] 16030204a0020000510302b883553a917daaecf3882156674b102af81b7e6264...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/15 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/16
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302dba87063e66a9e5389e19383f80a42b66b094e4102b1d4126f7e...
record new: [1184] 020000510302dba87063e66a9e5389e19383f80a42b66b094e4102b1d4126f7e...
server: Original packet: [1189] 16030204a0020000510302dba87063e66a9e5389e19383f80a42b66b094e4102...
server: Filtered packet: [1189] 16030204a0020000510302dba87063e66a9e5389e19383f80a42b66b094e4102...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/16 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/17
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302f6ad082843af92b3f403b5865ff527256f57f1734875ea3ab687...
record new: [1184] 020000510302f6ad082843af92b3f403b5865ff527256f57f1734875ea3ab687...
server: Original packet: [1189] 16030204a0020000510302f6ad082843af92b3f403b5865ff527256f57f17348...
server: Filtered packet: [1189] 16030204a0020000510302f6ad082843af92b3f403b5865ff527256f57f17348...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/17 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/18
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103024a28afee5476d24f569ae1405ff44728e1dec3dc6e6b7cbc3104...
record new: [1184] 0200005103024a28afee5476d24f569ae1405ff44728e1dec3dc6e6b7cbc3104...
server: Original packet: [1189] 16030204a00200005103024a28afee5476d24f569ae1405ff44728e1dec3dc6e...
server: Filtered packet: [1189] 16030204a00200005103024a28afee5476d24f569ae1405ff44728e1dec3dc6e...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/18 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/19
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030243f5b10067f722e6034ee62c0f3b3c9384e0f6f92db0db3906b3...
record new: [1184] 02000051030243f5b10067f722e6034ee62c0f3b3c9384e0f6f92db0db3906b3...
server: Original packet: [1189] 16030204a002000051030243f5b10067f722e6034ee62c0f3b3c9384e0f6f92d...
server: Filtered packet: [1189] 16030204a002000051030243f5b10067f722e6034ee62c0f3b3c9384e0f6f92d...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/19 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/20
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103021f071240c6326ef82577a43e4d7cdd3333fd7c72e8111c092308...
record new: [1185] 0200005103021f071240c6326ef82577a43e4d7cdd3333fd7c72e8111c092308...
server: Original packet: [1189] 16030204a00200005103021f071240c6326ef82577a43e4d7cdd3333fd7c72e8...
server: Filtered packet: [1190] 16030204a10200005103021f071240c6326ef82577a43e4d7cdd3333fd7c72e8...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/20 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/21
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103021a164d1de358c52f85c4f8601db4d83b2e8f0a8386fa08b800d2...
record new: [1185] 0200005103021a164d1de358c52f85c4f8601db4d83b2e8f0a8386fa08b800d2...
server: Original packet: [1189] 16030204a00200005103021a164d1de358c52f85c4f8601db4d83b2e8f0a8386...
server: Filtered packet: [1190] 16030204a10200005103021a164d1de358c52f85c4f8601db4d83b2e8f0a8386...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/21 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/22
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103022e7d06d171ae20ca5784dc43b5923a67e36939c0fa2871cf243f...
record new: [1185] 0200005103022e7d06d171ae20ca5784dc43b5923a67e36939c0fa2871cf243f...
server: Original packet: [1189] 16030204a00200005103022e7d06d171ae20ca5784dc43b5923a67e36939c0fa...
server: Filtered packet: [1190] 16030204a10200005103022e7d06d171ae20ca5784dc43b5923a67e36939c0fa...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/22 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/23
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302b8096d5b6653b1bd59fc5853e2488035ad3b474dd540da9ddd39...
record new: [1185] 020000510302b8096d5b6653b1bd59fc5853e2488035ad3b474dd540da9ddd39...
server: Original packet: [1189] 16030204a0020000510302b8096d5b6653b1bd59fc5853e2488035ad3b474dd5...
server: Filtered packet: [1190] 16030204a1020000510302b8096d5b6653b1bd59fc5853e2488035ad3b474dd5...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/23 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/24
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103039f268e94687544cc85dd5d32575b28b178727c7c4cb5506a08cc...
record new: [1186] 0200005103039f268e94687544cc85dd5d32575b28b178727c7c4cb5506a08cc...
server: Original packet: [1191] 16030304a20200005103039f268e94687544cc85dd5d32575b28b178727c7c4c...
server: Filtered packet: [1191] 16030304a20200005103039f268e94687544cc85dd5d32575b28b178727c7c4c...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/24 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/25
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303767b0553c26e45e6159e2d268c2e3e0dd35d44fa21f4ab7bfad6...
record new: [1186] 020000510303767b0553c26e45e6159e2d268c2e3e0dd35d44fa21f4ab7bfad6...
server: Original packet: [1191] 16030304a2020000510303767b0553c26e45e6159e2d268c2e3e0dd35d44fa21...
server: Filtered packet: [1191] 16030304a2020000510303767b0553c26e45e6159e2d268c2e3e0dd35d44fa21...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/25 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/26
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103033b5b01793ae34525121a8c227f45bbf8334ccc935ea710b64b15...
record new: [1186] 0200005103033b5b01793ae34525121a8c227f45bbf8334ccc935ea710b64b15...
server: Original packet: [1191] 16030304a20200005103033b5b01793ae34525121a8c227f45bbf8334ccc935e...
server: Filtered packet: [1191] 16030304a20200005103033b5b01793ae34525121a8c227f45bbf8334ccc935e...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/26 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/27
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303d7a1b346d88c4486bea2ad3b7e461e5044c79a3244a0c7aba5ac...
record new: [1186] 020000510303d7a1b346d88c4486bea2ad3b7e461e5044c79a3244a0c7aba5ac...
server: Original packet: [1191] 16030304a2020000510303d7a1b346d88c4486bea2ad3b7e461e5044c79a3244...
server: Filtered packet: [1191] 16030304a2020000510303d7a1b346d88c4486bea2ad3b7e461e5044c79a3244...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/27 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/28
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103033a86ea1aed8216fb069561bd4dc1a66b2aacd675a6cf63b34ff6...
record new: [1186] 0200005103033a86ea1aed8216fb069561bd4dc1a66b2aacd675a6cf63b34ff6...
server: Original packet: [1191] 16030304a20200005103033a86ea1aed8216fb069561bd4dc1a66b2aacd675a6...
server: Filtered packet: [1191] 16030304a20200005103033a86ea1aed8216fb069561bd4dc1a66b2aacd675a6...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/28 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/29
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103032e204f8fe83b6e6cec36202b65741710213695eff7f54e358de9...
record new: [1186] 0200005103032e204f8fe83b6e6cec36202b65741710213695eff7f54e358de9...
server: Original packet: [1191] 16030304a20200005103032e204f8fe83b6e6cec36202b65741710213695eff7...
server: Filtered packet: [1191] 16030304a20200005103032e204f8fe83b6e6cec36202b65741710213695eff7...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/29 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/30
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303a006e59edfbea600f52bcde0f91f98aa714f83c5861d886b65c2...
record new: [1186] 020000510303a006e59edfbea600f52bcde0f91f98aa714f83c5861d886b65c2...
server: Original packet: [1191] 16030304a2020000510303a006e59edfbea600f52bcde0f91f98aa714f83c586...
server: Filtered packet: [1191] 16030304a2020000510303a006e59edfbea600f52bcde0f91f98aa714f83c586...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/30 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/31
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 02000051030379d6fee642c8666be6760072e746c1926bf8f4233edfa3eb3f9a...
record new: [1186] 02000051030379d6fee642c8666be6760072e746c1926bf8f4233edfa3eb3f9a...
server: Original packet: [1191] 16030304a202000051030379d6fee642c8666be6760072e746c1926bf8f4233e...
server: Filtered packet: [1191] 16030304a202000051030379d6fee642c8666be6760072e746c1926bf8f4233e...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/31 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/32
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303249d1b4619e1344e3927ef2b984214d15a8fc742a8095aa025bc...
record new: [1187] 020000510303249d1b4619e1344e3927ef2b984214d15a8fc742a8095aa025bc...
server: Original packet: [1191] 16030304a2020000510303249d1b4619e1344e3927ef2b984214d15a8fc742a8...
server: Filtered packet: [1192] 16030304a3020000510303249d1b4619e1344e3927ef2b984214d15a8fc742a8...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/32 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/33
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 02000051030313b7fac9819204ff580b798df5c69243467abda02708c12735fa...
record new: [1187] 02000051030313b7fac9819204ff580b798df5c69243467abda02708c12735fa...
server: Original packet: [1191] 16030304a202000051030313b7fac9819204ff580b798df5c69243467abda027...
server: Filtered packet: [1192] 16030304a302000051030313b7fac9819204ff580b798df5c69243467abda027...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/33 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/34
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303957382b04d6ae23aa289de6c6d33865dcf2facc4f399050d044c...
record new: [1187] 020000510303957382b04d6ae23aa289de6c6d33865dcf2facc4f399050d044c...
server: Original packet: [1191] 16030304a2020000510303957382b04d6ae23aa289de6c6d33865dcf2facc4f3...
server: Filtered packet: [1192] 16030304a3020000510303957382b04d6ae23aa289de6c6d33865dcf2facc4f3...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/34 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/35
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303d82d1812e8afaa2f6c9c445f64441bd759be54cc362bdfb1ac0e...
record new: [1187] 020000510303d82d1812e8afaa2f6c9c445f64441bd759be54cc362bdfb1ac0e...
server: Original packet: [1191] 16030304a2020000510303d82d1812e8afaa2f6c9c445f64441bd759be54cc36...
server: Filtered packet: [1192] 16030304a3020000510303d82d1812e8afaa2f6c9c445f64441bd759be54cc36...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/35 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100ec19f8a5d198786528bd513301b41e9fab5bdaa6318de76b791385fc7798...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100ec19f8a5d198786528bd513301b41e9fab5bdaa6318de76b7913...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 1603010106100001020100ec19f8a5d198786528bd513301b41e9fab5bdaa631...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/0 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/1
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e379a38be09f9a74abbf64cc039bd2a4fbf090caecc4c843e57e7aa15d84...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100e379a38be09f9a74abbf64cc039bd2a4fbf090caecc4c843e57e...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 1603010106100001020100e379a38be09f9a74abbf64cc039bd2a4fbf090caec...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/1 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/2
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100b45391f4f7234691b0cbb6548817a9b907a2be2605cb6b19484b78e72de8...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100b45391f4f7234691b0cbb6548817a9b907a2be2605cb6b19484b...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 1603010106100001020100b45391f4f7234691b0cbb6548817a9b907a2be2605...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/2 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/3
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100d94c1c4117023c4665da8f7b7329d3f61712d7e7ce27718133c98cd01680...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100d94c1c4117023c4665da8f7b7329d3f61712d7e7ce27718133c9...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 1603010106100001020100d94c1c4117023c4665da8f7b7329d3f61712d7e7ce...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/3 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/4
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a8d45ef45c7f7eede95fc7ab0e28a7d51061aaeb186dc3e5d7e05de3ce89...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100a8d45ef45c7f7eede95fc7ab0e28a7d51061aaeb186dc3e5d7e0...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [326] 1603010106100001020100a8d45ef45c7f7eede95fc7ab0e28a7d51061aaeb18...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/4 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/5
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100b970053293b56ffc70f9434b63d4c0c0fa049e9479dad193d0e931f509e7...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100b970053293b56ffc70f9434b63d4c0c0fa049e9479dad193d0e9...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [326] 1603010106100001020100b970053293b56ffc70f9434b63d4c0c0fa049e9479...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/5 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/6
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010073624dc0d6491a8f0ddd5429f71d8060d0109db3ec11729f518e8d28963f...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 10000102010073624dc0d6491a8f0ddd5429f71d8060d0109db3ec11729f518e...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [326] 160301010610000102010073624dc0d6491a8f0ddd5429f71d8060d0109db3ec...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/6 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/7
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010054baf05ac66a47e97558f62adf513295a4009281b967431abdf095872000...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 10000102010054baf05ac66a47e97558f62adf513295a4009281b967431abdf0...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [326] 160301010610000102010054baf05ac66a47e97558f62adf513295a4009281b9...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/7 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/8
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01002c6e3eaf84e5b73b7ce6fcb2d402ea38c5a7528ebb84b977f6a66b860f65...
handshake new: [259] 0101012c6e3eaf84e5b73b7ce6fcb2d402ea38c5a7528ebb84b977f6a66b860f...
record old: [262] 1000010201002c6e3eaf84e5b73b7ce6fcb2d402ea38c5a7528ebb84b977f6a6...
record new: [263] 100001030101012c6e3eaf84e5b73b7ce6fcb2d402ea38c5a7528ebb84b977f6...
client: Original packet: [326] 16030101061000010201002c6e3eaf84e5b73b7ce6fcb2d402ea38c5a7528ebb...
client: Filtered packet: [327] 1603010107100001030101012c6e3eaf84e5b73b7ce6fcb2d402ea38c5a7528e...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/8 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/9
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010004400c9069c0a7ea675202b74add05f4988dc1a4cde0c044ca0b7d798bfe...
handshake new: [259] 01010104400c9069c0a7ea675202b74add05f4988dc1a4cde0c044ca0b7d798b...
record old: [262] 10000102010004400c9069c0a7ea675202b74add05f4988dc1a4cde0c044ca0b...
record new: [263] 1000010301010104400c9069c0a7ea675202b74add05f4988dc1a4cde0c044ca...
client: Original packet: [326] 160301010610000102010004400c9069c0a7ea675202b74add05f4988dc1a4cd...
client: Filtered packet: [327] 16030101071000010301010104400c9069c0a7ea675202b74add05f4988dc1a4...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/9 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/10
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100ab74020459b12f676da87606540ebb39b42689fe528520eda8c7533dc29e...
handshake new: [259] 010100ab74020459b12f676da87606540ebb39b42689fe528520eda8c7533dc2...
record old: [262] 100001020100ab74020459b12f676da87606540ebb39b42689fe528520eda8c7...
record new: [263] 10000103010100ab74020459b12f676da87606540ebb39b42689fe528520eda8...
client: Original packet: [326] 1603010106100001020100ab74020459b12f676da87606540ebb39b42689fe52...
client: Filtered packet: [327] 160301010710000103010100ab74020459b12f676da87606540ebb39b42689fe...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/10 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/11
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a7a5a94f24abfefa0fe242885a62effb8bb66e7978e2c1857ec2c88c52a4...
handshake new: [259] 010100a7a5a94f24abfefa0fe242885a62effb8bb66e7978e2c1857ec2c88c52...
record old: [262] 100001020100a7a5a94f24abfefa0fe242885a62effb8bb66e7978e2c1857ec2...
record new: [263] 10000103010100a7a5a94f24abfefa0fe242885a62effb8bb66e7978e2c1857e...
client: Original packet: [326] 1603010106100001020100a7a5a94f24abfefa0fe242885a62effb8bb66e7978...
client: Filtered packet: [327] 160301010710000103010100a7a5a94f24abfefa0fe242885a62effb8bb66e79...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/11 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/12
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010000d500d44b56a211471baaca929bebe824b078454b70bd6816a1e06a146d...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 10000102010000d500d44b56a211471baaca929bebe824b078454b70bd6816a1...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 160302010610000102010000d500d44b56a211471baaca929bebe824b078454b...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/12 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/13
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100d681826bb2a5d1816ee00c6cd96a44890f39f81d52d763e3a5f7bb8a0db5...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100d681826bb2a5d1816ee00c6cd96a44890f39f81d52d763e3a5f7...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 1603020106100001020100d681826bb2a5d1816ee00c6cd96a44890f39f81d52...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/13 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/14
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010062564e1c56faefdfe20dfa4c0fa0e5582e445424ecce81e6dc26e35aefc1...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 10000102010062564e1c56faefdfe20dfa4c0fa0e5582e445424ecce81e6dc26...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 160302010610000102010062564e1c56faefdfe20dfa4c0fa0e5582e445424ec...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/14 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/15
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100d7b992e8d05c23805c5726904fafd3c231784a086df2b4c48a1cf2da1e93...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100d7b992e8d05c23805c5726904fafd3c231784a086df2b4c48a1c...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 1603020106100001020100d7b992e8d05c23805c5726904fafd3c231784a086d...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/15 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/16
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01004dd7b62bd01360d0b85284f05b6de4b67f6ce0248b670ae012a8c8a131c0...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 1000010201004dd7b62bd01360d0b85284f05b6de4b67f6ce0248b670ae012a8...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [342] 16030201061000010201004dd7b62bd01360d0b85284f05b6de4b67f6ce0248b...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/16 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/17
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010038043f8b3e023e42ad667e37c7bd29aaf1023b8bb5dd3b1b9879a326abeb...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 10000102010038043f8b3e023e42ad667e37c7bd29aaf1023b8bb5dd3b1b9879...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [342] 160302010610000102010038043f8b3e023e42ad667e37c7bd29aaf1023b8bb5...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/17 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/18
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100bb2970dd083eb6f32c6b02cf27cc83aca821688a8e76989c05ff7109c8cc...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100bb2970dd083eb6f32c6b02cf27cc83aca821688a8e76989c05ff...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [342] 1603020106100001020100bb2970dd083eb6f32c6b02cf27cc83aca821688a8e...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/18 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/19
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01008f553ae1e63539fdc1ce9b6f327884046c74de9d19a3c88b6e10f13ffa8d...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 1000010201008f553ae1e63539fdc1ce9b6f327884046c74de9d19a3c88b6e10...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [342] 16030201061000010201008f553ae1e63539fdc1ce9b6f327884046c74de9d19...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/19 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/20
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100ee35ca6307fc0e6413d5507c278f0f5cdebb812f325c9f609004cdfa31ec...
handshake new: [259] 010101ee35ca6307fc0e6413d5507c278f0f5cdebb812f325c9f609004cdfa31...
record old: [262] 100001020100ee35ca6307fc0e6413d5507c278f0f5cdebb812f325c9f609004...
record new: [263] 10000103010101ee35ca6307fc0e6413d5507c278f0f5cdebb812f325c9f6090...
client: Original packet: [342] 1603020106100001020100ee35ca6307fc0e6413d5507c278f0f5cdebb812f32...
client: Filtered packet: [343] 160302010710000103010101ee35ca6307fc0e6413d5507c278f0f5cdebb812f...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/20 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/21
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01003c24fb47b068db69449b4cc63ddd8bc08ab970bfc31f23de8d41ab504da2...
handshake new: [259] 0101013c24fb47b068db69449b4cc63ddd8bc08ab970bfc31f23de8d41ab504d...
record old: [262] 1000010201003c24fb47b068db69449b4cc63ddd8bc08ab970bfc31f23de8d41...
record new: [263] 100001030101013c24fb47b068db69449b4cc63ddd8bc08ab970bfc31f23de8d...
client: Original packet: [342] 16030201061000010201003c24fb47b068db69449b4cc63ddd8bc08ab970bfc3...
client: Filtered packet: [343] 1603020107100001030101013c24fb47b068db69449b4cc63ddd8bc08ab970bf...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/21 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/22
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010072ae5ea39c3c186142fc4706892440861f6bbc2c86ca68fdc2bd51c25def...
handshake new: [259] 01010072ae5ea39c3c186142fc4706892440861f6bbc2c86ca68fdc2bd51c25d...
record old: [262] 10000102010072ae5ea39c3c186142fc4706892440861f6bbc2c86ca68fdc2bd...
record new: [263] 1000010301010072ae5ea39c3c186142fc4706892440861f6bbc2c86ca68fdc2...
client: Original packet: [342] 160302010610000102010072ae5ea39c3c186142fc4706892440861f6bbc2c86...
client: Filtered packet: [343] 16030201071000010301010072ae5ea39c3c186142fc4706892440861f6bbc2c...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/22 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/23
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01004a3a21760f9ef6b508741e141b1b37513c020e02174bae7c22a2ca97cd11...
handshake new: [259] 0101004a3a21760f9ef6b508741e141b1b37513c020e02174bae7c22a2ca97cd...
record old: [262] 1000010201004a3a21760f9ef6b508741e141b1b37513c020e02174bae7c22a2...
record new: [263] 100001030101004a3a21760f9ef6b508741e141b1b37513c020e02174bae7c22...
client: Original packet: [342] 16030201061000010201004a3a21760f9ef6b508741e141b1b37513c020e0217...
client: Filtered packet: [343] 1603020107100001030101004a3a21760f9ef6b508741e141b1b37513c020e02...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/23 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/24
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c3d26dea9739da1cb74bb27a7f206ba256743215c10d66392730f1def02b...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100c3d26dea9739da1cb74bb27a7f206ba256743215c10d66392730...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 1603030106100001020100c3d26dea9739da1cb74bb27a7f206ba256743215c1...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/24 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/25
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100318d2df5e31f0041ef1608dd6c6cf3a8fed327b164a2499a034817a633da...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100318d2df5e31f0041ef1608dd6c6cf3a8fed327b164a2499a0348...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 1603030106100001020100318d2df5e31f0041ef1608dd6c6cf3a8fed327b164...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/25 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/26
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01000a982c96e095c0723a2e0dd1be7786dde713998ecc17a22f5c7d3ce95931...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201000a982c96e095c0723a2e0dd1be7786dde713998ecc17a22f5c7d...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 16030301061000010201000a982c96e095c0723a2e0dd1be7786dde713998ecc...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/26 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/27
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01001cf534f57e6f68faf4576f9bccf4826d81f1b5fa5ab223a2f6f539cda681...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201001cf534f57e6f68faf4576f9bccf4826d81f1b5fa5ab223a2f6f5...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 16030301061000010201001cf534f57e6f68faf4576f9bccf4826d81f1b5fa5a...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/27 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/28
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100784fe930bb92fe8af4c7ae103b24c580b6ed440e995ec66dde505dc9e771...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100784fe930bb92fe8af4c7ae103b24c580b6ed440e995ec66dde50...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [318] 1603030106100001020100784fe930bb92fe8af4c7ae103b24c580b6ed440e99...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/28 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/29
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a4e09473c6f264d191f3cef209d619ba6b272d7b9da2a7764967e5ca3e31...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100a4e09473c6f264d191f3cef209d619ba6b272d7b9da2a7764967...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [318] 1603030106100001020100a4e09473c6f264d191f3cef209d619ba6b272d7b9d...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/29 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/30
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01000310d034957883b32913c7273dc5f47186c01450d6f6095a34faecb1679d...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 1000010201000310d034957883b32913c7273dc5f47186c01450d6f6095a34fa...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [318] 16030301061000010201000310d034957883b32913c7273dc5f47186c01450d6...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/30 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/31
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100cdb70d01cb609bc556a37c60ee9579b2ddf8c8ea1cf2216d07ae02715f99...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100cdb70d01cb609bc556a37c60ee9579b2ddf8c8ea1cf2216d07ae...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [318] 1603030106100001020100cdb70d01cb609bc556a37c60ee9579b2ddf8c8ea1c...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/31 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/32
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010017451aa3bdad7dcf11611fd482df9eeddbe5dfcdb9b803c9a8c7afb164a0...
handshake new: [259] 01010117451aa3bdad7dcf11611fd482df9eeddbe5dfcdb9b803c9a8c7afb164...
record old: [262] 10000102010017451aa3bdad7dcf11611fd482df9eeddbe5dfcdb9b803c9a8c7...
record new: [263] 1000010301010117451aa3bdad7dcf11611fd482df9eeddbe5dfcdb9b803c9a8...
client: Original packet: [318] 160303010610000102010017451aa3bdad7dcf11611fd482df9eeddbe5dfcdb9...
client: Filtered packet: [319] 16030301071000010301010117451aa3bdad7dcf11611fd482df9eeddbe5dfcd...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/32 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/33
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010006f341c7d6a4a98e63df676995d800c56fff42d43cad6f6a74c2448ad52d...
handshake new: [259] 01010106f341c7d6a4a98e63df676995d800c56fff42d43cad6f6a74c2448ad5...
record old: [262] 10000102010006f341c7d6a4a98e63df676995d800c56fff42d43cad6f6a74c2...
record new: [263] 1000010301010106f341c7d6a4a98e63df676995d800c56fff42d43cad6f6a74...
client: Original packet: [318] 160303010610000102010006f341c7d6a4a98e63df676995d800c56fff42d43c...
client: Filtered packet: [319] 16030301071000010301010106f341c7d6a4a98e63df676995d800c56fff42d4...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/33 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/34
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c267011441e4c6fe72fee34902041ba8cea769411b81afd0673a9945d8a5...
handshake new: [259] 010100c267011441e4c6fe72fee34902041ba8cea769411b81afd0673a9945d8...
record old: [262] 100001020100c267011441e4c6fe72fee34902041ba8cea769411b81afd0673a...
record new: [263] 10000103010100c267011441e4c6fe72fee34902041ba8cea769411b81afd067...
client: Original packet: [318] 1603030106100001020100c267011441e4c6fe72fee34902041ba8cea769411b...
client: Filtered packet: [319] 160303010710000103010100c267011441e4c6fe72fee34902041ba8cea76941...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/34 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/35
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010003e416aede7520ca6798d571bf05018d64d0454bc02455d6d0c7b4cc5d15...
handshake new: [259] 01010003e416aede7520ca6798d571bf05018d64d0454bc02455d6d0c7b4cc5d...
record old: [262] 10000102010003e416aede7520ca6798d571bf05018d64d0454bc02455d6d0c7...
record new: [263] 1000010301010003e416aede7520ca6798d571bf05018d64d0454bc02455d6d0...
client: Original packet: [318] 160303010610000102010003e416aede7520ca6798d571bf05018d64d0454bc0...
client: Filtered packet: [319] 16030301071000010301010003e416aede7520ca6798d571bf05018d64d0454b...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/35 (9 ms)
[----------] 72 tests from DamageYStream/TlsDamageDHYTest (525 ms total)
[----------] 48 tests from DamageYDatagram/TlsDamageDHYTest
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/0
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff8eda9a185e...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff8eda9a185e...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/0 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/1
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff22d6259e12...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff22d6259e12...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/1 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffb84c0485af...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feffb84c0485af...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/2 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffcd692333ef...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feffcd692333ef...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/3 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/4
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051fefff342163dc7...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051fefff342163dc7...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/4 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/5
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff133cec5381...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff133cec5381...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/5 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/6
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff571e6e4a0c...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff571e6e4a0c...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/6 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/7
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffa6f98bcc4d...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feffa6f98bcc4d...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/7 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/8
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff206d0029fe...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feff206d0029fe...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/8 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/9
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff03f79a58a3...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feff03f79a58a3...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/9 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/10
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffa0bbdba008...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feffa0bbdba008...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/10 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/11
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff58aca390f5...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feff58aca390f5...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/11 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/12
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd4f89783115...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd4f89783115...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/12 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/13
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdf958905a2c...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdf958905a2c...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/13 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/14
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd2fbf2de377...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd2fbf2de377...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/14 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/15
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd86dd7ccc71...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd86dd7ccc71...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/15 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/16
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd5c95ec88c4...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd5c95ec88c4...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/16 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/17
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd7e39251884...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd7e39251884...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/17 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/18
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdedf79b9dc7...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdedf79b9dc7...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/18 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/19
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd2fb88b02ea...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd2fb88b02ea...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/19 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/20
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd27686a32a4...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefd27686a32a4...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/20 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/21
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd828bda129e...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefd828bda129e...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/21 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/22
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd131097aed7...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefd131097aed7...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/22 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/23
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdfd3bca1362...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefdfd3bca1362...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/23 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/0
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100cf99ad3d1b5ea06b16b096c7ef5248ac1f2395b463f27f1bebd31b6c6837...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100cf99ad3d1b5ea06b16b096c7ef5248ac1f23...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100cf99ad3d1b...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/0 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/1
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010096234713054ae3ba95b0d57eaa3f21c1bbec8f993536269e90ead973a348...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 100001020001000000000102010096234713054ae3ba95b0d57eaa3f21c1bbec...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201009623471305...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/1 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a82c4f417c86fd16eb5c86ed9f2e34fd79b26e9ca9a098dca73a47abb237...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100a82c4f417c86fd16eb5c86ed9f2e34fd79b2...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100a82c4f417c...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/2 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100d2e54087e06f461a1ea127c91e886f7e9210dd82a7b193b238be59ad7131...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100d2e54087e06f461a1ea127c91e886f7e9210...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100d2e54087e0...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/3 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/4
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01006f10572ad3953ec2bc9e9075f19b5d4910fc49453f8e4d4c133dcf65b023...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 10000102000100000000010201006f10572ad3953ec2bc9e9075f19b5d4910fc...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201006f10572ad3...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/4 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/5
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100656da4a6da86694ff7382f42da292b32ebe48dfb3cdaa97950332657f301...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 1000010200010000000001020100656da4a6da86694ff7382f42da292b32ebe4...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100656da4a6da...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/5 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/6
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e741cecd050b6bd29dda3af5b1e8300c0732059ba0f2ae15cd12bdc8ff38...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 1000010200010000000001020100e741cecd050b6bd29dda3af5b1e8300c0732...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100e741cecd05...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/6 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/7
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a67992d49d4948e1d22b477b0593e30b5c7371a7e848b326b7073b5c35fc...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 1000010200010000000001020100a67992d49d4948e1d22b477b0593e30b5c73...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100a67992d49d...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/7 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/8
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100301918f7444dcf311c7e2f543b0e25ff8a2438c2b1b8310a9c9c56260d3b...
handshake new: [259] 010101301918f7444dcf311c7e2f543b0e25ff8a2438c2b1b8310a9c9c56260d...
record old: [270] 1000010200010000000001020100301918f7444dcf311c7e2f543b0e25ff8a24...
record new: [271] 100001030001000000000103010101301918f7444dcf311c7e2f543b0e25ff8a...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100301918f744...
client: Filtered packet: [375] 16feff0000000000000001010f100001030001000000000103010101301918f7...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/8 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/9
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100003c00633e08963ccd6689983cf21be044f8bc182cd0458776439572f5db...
handshake new: [259] 010101003c00633e08963ccd6689983cf21be044f8bc182cd0458776439572f5...
record old: [270] 1000010200010000000001020100003c00633e08963ccd6689983cf21be044f8...
record new: [271] 100001030001000000000103010101003c00633e08963ccd6689983cf21be044...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100003c00633e...
client: Filtered packet: [375] 16feff0000000000000001010f100001030001000000000103010101003c0063...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/9 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/10
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100afc0d5cc0a5eb528a33b1098865247172d566e691565f0cd01c290419e63...
handshake new: [259] 010100afc0d5cc0a5eb528a33b1098865247172d566e691565f0cd01c290419e...
record old: [270] 1000010200010000000001020100afc0d5cc0a5eb528a33b1098865247172d56...
record new: [271] 100001030001000000000103010100afc0d5cc0a5eb528a33b1098865247172d...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100afc0d5cc0a...
client: Filtered packet: [375] 16feff0000000000000001010f100001030001000000000103010100afc0d5cc...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/10 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/11
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010041ee64fe2cdc1d835b776f98199163567e9642e4cc90a78d4657bb82fc90...
handshake new: [259] 01010041ee64fe2cdc1d835b776f98199163567e9642e4cc90a78d4657bb82fc...
record old: [270] 100001020001000000000102010041ee64fe2cdc1d835b776f98199163567e96...
record new: [271] 10000103000100000000010301010041ee64fe2cdc1d835b776f98199163567e...
client: Original packet: [374] 16feff0000000000000001010e100001020001000000000102010041ee64fe2c...
client: Filtered packet: [375] 16feff0000000000000001010f10000103000100000000010301010041ee64fe...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/11 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/12
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100bac71b64520ddcfa911a88694b2769639f0465dfe7a43833272dd9976425...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100bac71b64520ddcfa911a88694b2769639f04...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100bac71b6452...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/12 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/13
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100eae66d32a83b3cabace6763d39a214bd5a90bfc122e7981f23286b4490e9...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100eae66d32a83b3cabace6763d39a214bd5a90...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100eae66d32a8...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/13 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/14
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01003725dd9fc3fa0f201efa907abc0881a68c7b9bce3db0cae01ecb455f48b4...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 10000102000100000000010201003725dd9fc3fa0f201efa907abc0881a68c7b...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201003725dd9fc3...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/14 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/15
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010004b661979143c71d598d1fe44a39af58ff4b6c4908ba2757f441a4bb23be...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 100001020001000000000102010004b661979143c71d598d1fe44a39af58ff4b...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e100001020001000000000102010004b6619791...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/15 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/16
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01009698e7eb609ba84215e8ea56c2e5fd0a0377b0b95992a9164bde2c575807...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 10000102000100000000010201009698e7eb609ba84215e8ea56c2e5fd0a0377...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201009698e7eb60...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/16 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/17
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100090dfedb74f0d5e71ca4ba7561ea6a6b109f5edbe9ccd47dd41fa7c1ce16...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 1000010200010000000001020100090dfedb74f0d5e71ca4ba7561ea6a6b109f...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100090dfedb74...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/17 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/18
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100b7ca2390188ede50c373d1897125f9e234b8c074525e85415b052334665f...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 1000010200010000000001020100b7ca2390188ede50c373d1897125f9e234b8...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100b7ca239018...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/18 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/19
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01009f62cd7c31ef7606e83fc300e49d24533cb9cf33677095092219e43e4428...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 10000102000100000000010201009f62cd7c31ef7606e83fc300e49d24533cb9...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201009f62cd7c31...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/19 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/20
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100779ab0006b557e581ade3ccd46e5a254b357ca27ae61e7b6432276fe4e9c...
handshake new: [259] 010101779ab0006b557e581ade3ccd46e5a254b357ca27ae61e7b6432276fe4e...
record old: [270] 1000010200010000000001020100779ab0006b557e581ade3ccd46e5a254b357...
record new: [271] 100001030001000000000103010101779ab0006b557e581ade3ccd46e5a254b3...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100779ab0006b...
client: Filtered packet: [359] 16fefd0000000000000001010f100001030001000000000103010101779ab000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/20 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/21
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a3da631831e6253744a34c222446728b027e4289c188271307df858a42d9...
handshake new: [259] 010101a3da631831e6253744a34c222446728b027e4289c188271307df858a42...
record old: [270] 1000010200010000000001020100a3da631831e6253744a34c222446728b027e...
record new: [271] 100001030001000000000103010101a3da631831e6253744a34c222446728b02...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100a3da631831...
client: Filtered packet: [359] 16fefd0000000000000001010f100001030001000000000103010101a3da6318...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/21 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/22
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01008a15f686352d5a80c325d762962cdf68ca39c9915bf00c860d310e352c2b...
handshake new: [259] 0101008a15f686352d5a80c325d762962cdf68ca39c9915bf00c860d310e352c...
record old: [270] 10000102000100000000010201008a15f686352d5a80c325d762962cdf68ca39...
record new: [271] 1000010300010000000001030101008a15f686352d5a80c325d762962cdf68ca...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201008a15f68635...
client: Filtered packet: [359] 16fefd0000000000000001010f1000010300010000000001030101008a15f686...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/22 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/23
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100f229cd6a72b38ac2a2b7fe5274303d984387d948de53d33348b1f161f8a5...
handshake new: [259] 010100f229cd6a72b38ac2a2b7fe5274303d984387d948de53d33348b1f161f8...
record old: [270] 1000010200010000000001020100f229cd6a72b38ac2a2b7fe5274303d984387...
record new: [271] 100001030001000000000103010100f229cd6a72b38ac2a2b7fe5274303d9843...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100f229cd6a72...
client: Filtered packet: [359] 16fefd0000000000000001010f100001030001000000000103010100f229cd6a...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/23 (9 ms)
[----------] 48 tests from DamageYDatagram/TlsDamageDHYTest (351 ms total)
[----------] 2 tests from Datagram12Plus/TlsConnectDatagram12Plus
[ RUN      ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindow/0
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindow/0 (6 ms)
[ RUN      ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindowAndOne/0
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindowAndOne/0 (6 ms)
[----------] 2 tests from Datagram12Plus/TlsConnectDatagram12Plus (12 ms total)
[----------] 16 tests from KeyExchangeTest/TlsKeyExchangeTest
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/0 (18 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/1 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/2 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/3 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/0 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/1 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/2 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/3 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/0 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/1 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/2 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/3 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/0 (9 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/1 (9 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/2 (9 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/3 (9 ms)
[----------] 16 tests from KeyExchangeTest/TlsKeyExchangeTest (219 ms total)
[----------] 88 tests from TlsPadding/TlsPaddingTest
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fefefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.Correct/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0e0e
[       OK ] TlsPadding/TlsPaddingTest.Correct/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fcfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.Correct/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0c0c
[       OK ] TlsPadding/TlsPaddingTest.Correct/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fbfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.Correct/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0b0b
[       OK ] TlsPadding/TlsPaddingTest.Correct/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f1f1...
[       OK ] TlsPadding/TlsPaddingTest.Correct/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410101
[       OK ] TlsPadding/TlsPaddingTest.Correct/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f0...
[       OK ] TlsPadding/TlsPaddingTest.Correct/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/9
Content length=31 padding length=0 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141414100
[       OK ] TlsPadding/TlsPaddingTest.Correct/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/13 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/19
Content length=287 padding length=0 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/0
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0e10
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/2
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0c20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/4
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0b20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/6
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410120
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/8
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/9
Content length=31 padding length=0 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141414120
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/10
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/12
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/14
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/15
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/16
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/17
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/18
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/19
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/21
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fffefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410f0e0e0e0e0e0e0e0e0e0e0e0e0e0e
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fdfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410d0c0c0c0c0c0c0c0c0c0c0c0c
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fcfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/4 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410c0b0b0b0b0b0b0b0b0b0b0b
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f2f1...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410201
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f1...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/9
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/19
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fefefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0f0e
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fcfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0d0c
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fbfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0c0b
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/5 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f1f1...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410201
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f0...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/9
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/19
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/21 (0 ms)
[----------] 88 tests from TlsPadding/TlsPaddingTest (3 ms total)
[----------] 8 tests from SkipTls10/TlsSkipTest
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateRsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 02000051030135d13ba267870d69b074e9a961c16f9fa93dacaf89248321a796...
record new: [89] 02000051030135d13ba267870d69b074e9a961c16f9fa93dacaf89248321a796...
server: Original packet: [536] 160301021302000051030135d13ba267870d69b074e9a961c16f9fa93dacaf89...
server: Filtered packet: [94] 160301005902000051030135d13ba267870d69b074e9a961c16f9fa93dacaf89...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateRsa/0 (5 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateDhe/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 0200005703012d28277e3a5e8cf4d7dd0b1bd72754f33197026485b68289c3d8...
record new: [265] 0200005703012d28277e3a5e8cf4d7dd0b1bd72754f33197026485b68289c3d8...
server: Original packet: [712] 16030102c30200005703012d28277e3a5e8cf4d7dd0b1bd72754f33197026485...
server: Filtered packet: [270] 16030101090200005703012d28277e3a5e8cf4d7dd0b1bd72754f33197026485...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateDhe/0 (5 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateEcdhe/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570301797eb255d97de278c9f01a895087ac0d259d5b485899524e15cf...
record new: [265] 020000570301797eb255d97de278c9f01a895087ac0d259d5b485899524e15cf...
server: Original packet: [712] 16030102c3020000570301797eb255d97de278c9f01a895087ac0d259d5b4858...
server: Filtered packet: [270] 1603010109020000570301797eb255d97de278c9f01a895087ac0d259d5b4858...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateEcdhe/0 (6 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [523] 020000570301895dc20d9847a744dc2c39b94b1ba79729e77be6e3d1da499067...
record new: [208] 020000570301895dc20d9847a744dc2c39b94b1ba79729e77be6e3d1da499067...
server: Original packet: [528] 160301020b020000570301895dc20d9847a744dc2c39b94b1ba79729e77be6e3...
server: Filtered packet: [213] 16030100d0020000570301895dc20d9847a744dc2c39b94b1ba79729e77be6e3...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateEcdsa/0 (4 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipServerKeyExchange/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [707] 0200005703016db5bdbd000055734c85488fbf8a9394d335072cc007bea1cd96...
record new: [537] 0200005703016db5bdbd000055734c85488fbf8a9394d335072cc007bea1cd96...
server: Original packet: [712] 16030102c30200005703016db5bdbd000055734c85488fbf8a9394d335072cc0...
server: Filtered packet: [542] 16030102190200005703016db5bdbd000055734c85488fbf8a9394d335072cc0...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipServerKeyExchange/0 (5 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipServerKeyExchangeEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [522] 020000570301521737dbf5104be0e2d6795be1ec7953ca1ce0924a30b8fe0dd0...
record new: [410] 020000570301521737dbf5104be0e2d6795be1ec7953ca1ce0924a30b8fe0dd0...
server: Original packet: [527] 160301020a020000570301521737dbf5104be0e2d6795be1ec7953ca1ce0924a...
server: Filtered packet: [415] 160301019a020000570301521737dbf5104be0e2d6795be1ec7953ca1ce0924a...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipServerKeyExchangeEcdsa/0 (4 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertAndKeyExch/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570301fd4c4650a226b4b1180a3480797da4434f16ed3889adbb068927...
record new: [265] 020000570301fd4c4650a226b4b1180a3480797da4434f16ed3889adbb068927...
Dropping handshake: 12
record old: [265] 020000570301fd4c4650a226b4b1180a3480797da4434f16ed3889adbb068927...
record new: [95] 020000570301fd4c4650a226b4b1180a3480797da4434f16ed3889adbb068927...
server: Original packet: [712] 16030102c3020000570301fd4c4650a226b4b1180a3480797da4434f16ed3889...
server: Filtered packet: [100] 160301005f020000570301fd4c4650a226b4b1180a3480797da4434f16ed3889...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertAndKeyExch/0 (6 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertAndKeyExchEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [523] 0200005703015135ee951439c8fca7416ee7429a4e0548d9e450672386072e57...
record new: [208] 0200005703015135ee951439c8fca7416ee7429a4e0548d9e450672386072e57...
Dropping handshake: 12
record old: [208] 0200005703015135ee951439c8fca7416ee7429a4e0548d9e450672386072e57...
record new: [95] 0200005703015135ee951439c8fca7416ee7429a4e0548d9e450672386072e57...
server: Original packet: [528] 160301020b0200005703015135ee951439c8fca7416ee7429a4e0548d9e45067...
server: Filtered packet: [100] 160301005f0200005703015135ee951439c8fca7416ee7429a4e0548d9e45067...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertAndKeyExchEcdsa/0 (4 ms)
[----------] 8 tests from SkipTls10/TlsSkipTest (39 ms total)
[----------] 32 tests from SkipVariants/TlsSkipTest
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 020000510302d1dff0a95a70df10fd12dd243560887ff72a75c7c9ac180321e8...
record new: [89] 020000510302d1dff0a95a70df10fd12dd243560887ff72a75c7c9ac180321e8...
server: Original packet: [536] 1603020213020000510302d1dff0a95a70df10fd12dd243560887ff72a75c7c9...
server: Filtered packet: [94] 1603020059020000510302d1dff0a95a70df10fd12dd243560887ff72a75c7c9...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/0 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 020000510303c5e949cc69e17eb1f47ffb2323a9a3ebe96422e10129f09176c2...
record new: [89] 020000510303c5e949cc69e17eb1f47ffb2323a9a3ebe96422e10129f09176c2...
server: Original packet: [536] 1603030213020000510303c5e949cc69e17eb1f47ffb2323a9a3ebe96422e101...
server: Filtered packet: [94] 1603030059020000510303c5e949cc69e17eb1f47ffb2323a9a3ebe96422e101...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/1 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [594] 16feff0000000000000000005d020000510000000000000051feff9d2db40c94...
server: Filtered packet: [144] 16feff0000000000000000005d020000510000000000000051feff9d2db40c94...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/2 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [594] 16fefd0000000000000000005d020000510000000000000051fefd8ae1116c80...
server: Filtered packet: [144] 16fefd0000000000000000005d020000510000000000000051fefd8ae1116c80...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/3 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570302446cdcd8698e521fc65fd66a52d69be1c89e84cbbc6a2c74b99b...
record new: [265] 020000570302446cdcd8698e521fc65fd66a52d69be1c89e84cbbc6a2c74b99b...
server: Original packet: [712] 16030202c3020000570302446cdcd8698e521fc65fd66a52d69be1c89e84cbbc...
server: Filtered packet: [270] 1603020109020000570302446cdcd8698e521fc65fd66a52d69be1c89e84cbbc...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/0 (6 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 0200005703031161aa43c30520ef141a355948138ea4af1047caa022afe87012...
record new: [267] 0200005703031161aa43c30520ef141a355948138ea4af1047caa022afe87012...
server: Original packet: [714] 16030302c50200005703031161aa43c30520ef141a355948138ea4af1047caa0...
server: Filtered packet: [272] 160303010b0200005703031161aa43c30520ef141a355948138ea4af1047caa0...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/1 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d2086b903e4e5faf20517c6cb714850737f...
record new: [178] 0c0000a600010000000000a603001d2086b903e4e5faf20517c6cb714850737f...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff40c9fc4274...
server: Filtered packet: [341] 16feff00000000000000000063020000570000000000000057feff40c9fc4274...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/2 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d2086b903e4e5faf20517c6cb714850737f...
record new: [180] 0c0000a800010000000000a803001d2086b903e4e5faf20517c6cb714850737f...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefdf651e66b5a...
server: Filtered packet: [343] 16fefd00000000000000000063020000570000000000000057fefdf651e66b5a...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/3 (6 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570302dcbf44422792fa25112d2c1b2889e7952fafb17e8bff797c12a9...
record new: [265] 020000570302dcbf44422792fa25112d2c1b2889e7952fafb17e8bff797c12a9...
server: Original packet: [712] 16030202c3020000570302dcbf44422792fa25112d2c1b2889e7952fafb17e8b...
server: Filtered packet: [270] 1603020109020000570302dcbf44422792fa25112d2c1b2889e7952fafb17e8b...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/0 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 0200005703039e704ce38a4a72052077173ccaaeee6e063ebea725335de03b21...
record new: [267] 0200005703039e704ce38a4a72052077173ccaaeee6e063ebea725335de03b21...
server: Original packet: [714] 16030302c50200005703039e704ce38a4a72052077173ccaaeee6e063ebea725...
server: Filtered packet: [272] 160303010b0200005703039e704ce38a4a72052077173ccaaeee6e063ebea725...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/1 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d2086b903e4e5faf20517c6cb714850737f...
record new: [178] 0c0000a600010000000000a603001d2086b903e4e5faf20517c6cb714850737f...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff828e521eae...
server: Filtered packet: [341] 16feff00000000000000000063020000570000000000000057feff828e521eae...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/2 (6 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d2086b903e4e5faf20517c6cb714850737f...
record new: [180] 0c0000a800010000000000a803001d2086b903e4e5faf20517c6cb714850737f...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefdc7d86b63d7...
server: Filtered packet: [343] 16fefd00000000000000000063020000570000000000000057fefdc7d86b63d7...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/3 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [523] 0200005703025c92289b7d1a4c43a58aa3af69c3d5a2f842fc4cc6306eb911da...
record new: [208] 0200005703025c92289b7d1a4c43a58aa3af69c3d5a2f842fc4cc6306eb911da...
server: Original packet: [528] 160302020b0200005703025c92289b7d1a4c43a58aa3af69c3d5a2f842fc4cc6...
server: Filtered packet: [213] 16030200d00200005703025c92289b7d1a4c43a58aa3af69c3d5a2f842fc4cc6...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/0 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [525] 020000570303502589aff3131e59838dabdb7135975efd00822cf57ef9535103...
record new: [210] 020000570303502589aff3131e59838dabdb7135975efd00822cf57ef9535103...
server: Original packet: [530] 160303020d020000570303502589aff3131e59838dabdb7135975efd00822cf5...
server: Filtered packet: [215] 16030300d2020000570303502589aff3131e59838dabdb7135975efd00822cf5...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/1 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [323] 0b00013700010000000001370001340001313082012d3081d5a0030201020201...
record new: [0] 
record old: [121] 0c00006d000200000000006d03001d2086b903e4e5faf20517c6cb714850737f...
record new: [121] 0c00006d000100000000006d03001d2086b903e4e5faf20517c6cb714850737f...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [607] 16feff00000000000000000063020000570000000000000057feff56a43c3226...
server: Filtered packet: [284] 16feff00000000000000000063020000570000000000000057feff56a43c3226...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/2 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [323] 0b00013700010000000001370001340001313082012d3081d5a0030201020201...
record new: [0] 
record old: [122] 0c00006e000200000000006e03001d2086b903e4e5faf20517c6cb714850737f...
record new: [122] 0c00006e000100000000006e03001d2086b903e4e5faf20517c6cb714850737f...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [608] 16fefd00000000000000000063020000570000000000000057fefdb604a5643e...
server: Filtered packet: [285] 16fefd00000000000000000063020000570000000000000057fefdb604a5643e...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/3 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [707] 02000057030263298c2a5f6637f9aab60735513b2a623c8584d753a527107014...
record new: [537] 02000057030263298c2a5f6637f9aab60735513b2a623c8584d753a527107014...
server: Original packet: [712] 16030202c302000057030263298c2a5f6637f9aab60735513b2a623c8584d753...
server: Filtered packet: [542] 160302021902000057030263298c2a5f6637f9aab60735513b2a623c8584d753...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/0 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [709] 0200005703031357370e066b71a6c1cb8d2dc1f6caf500687514e9bd9ade6d54...
record new: [537] 0200005703031357370e066b71a6c1cb8d2dc1f6caf500687514e9bd9ade6d54...
server: Original packet: [714] 16030302c50200005703031357370e066b71a6c1cb8d2dc1f6caf500687514e9...
server: Filtered packet: [542] 16030302190200005703031357370e066b71a6c1cb8d2dc1f6caf500687514e9...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/1 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [178] 0c0000a600020000000000a603001d2086b903e4e5faf20517c6cb714850737f...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff2bdf5a0cce...
server: Filtered packet: [613] 16feff00000000000000000063020000570000000000000057feff2bdf5a0cce...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/2 (6 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [180] 0c0000a800020000000000a803001d2086b903e4e5faf20517c6cb714850737f...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefdc647c7c8ab...
server: Filtered packet: [613] 16fefd00000000000000000063020000570000000000000057fefdc647c7c8ab...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/3 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [523] 020000570302ba350bcaadf50fd8d5cb00692f6b18ad22f621c19c9af65a49e8...
record new: [410] 020000570302ba350bcaadf50fd8d5cb00692f6b18ad22f621c19c9af65a49e8...
server: Original packet: [528] 160302020b020000570302ba350bcaadf50fd8d5cb00692f6b18ad22f621c19c...
server: Filtered packet: [415] 160302019a020000570302ba350bcaadf50fd8d5cb00692f6b18ad22f621c19c...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/0 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [526] 020000570303a61ca7d919999b92b8bcc1548fcc0aac63d39d383df9edef65ba...
record new: [410] 020000570303a61ca7d919999b92b8bcc1548fcc0aac63d39d383df9edef65ba...
server: Original packet: [531] 160303020e020000570303a61ca7d919999b92b8bcc1548fcc0aac63d39d383d...
server: Filtered packet: [415] 160303019a020000570303a61ca7d919999b92b8bcc1548fcc0aac63d39d383d...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/1 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [122] 0c00006e000200000000006e03001d2086b903e4e5faf20517c6cb714850737f...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [608] 16feff00000000000000000063020000570000000000000057feffd8a9b98af9...
server: Filtered packet: [486] 16feff00000000000000000063020000570000000000000057feffd8a9b98af9...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/2 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [123] 0c00006f000200000000006f03001d2086b903e4e5faf20517c6cb714850737f...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [609] 16fefd00000000000000000063020000570000000000000057fefde83e482a1a...
server: Filtered packet: [486] 16fefd00000000000000000063020000570000000000000057fefde83e482a1a...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/3 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 0200005703024546c0eaba433ddb76aa20cb4411f79c7f45d18a566258b08f5f...
record new: [265] 0200005703024546c0eaba433ddb76aa20cb4411f79c7f45d18a566258b08f5f...
Dropping handshake: 12
record old: [265] 0200005703024546c0eaba433ddb76aa20cb4411f79c7f45d18a566258b08f5f...
record new: [95] 0200005703024546c0eaba433ddb76aa20cb4411f79c7f45d18a566258b08f5f...
server: Original packet: [712] 16030202c30200005703024546c0eaba433ddb76aa20cb4411f79c7f45d18a56...
server: Filtered packet: [100] 160302005f0200005703024546c0eaba433ddb76aa20cb4411f79c7f45d18a56...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/0 (6 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 0200005703033427734db25390b304c5ae458803a1480fa092f2edd04d812225...
record new: [267] 0200005703033427734db25390b304c5ae458803a1480fa092f2edd04d812225...
Dropping handshake: 12
record old: [267] 0200005703033427734db25390b304c5ae458803a1480fa092f2edd04d812225...
record new: [95] 0200005703033427734db25390b304c5ae458803a1480fa092f2edd04d812225...
server: Original packet: [714] 16030302c50200005703033427734db25390b304c5ae458803a1480fa092f2ed...
server: Filtered packet: [100] 160303005f0200005703033427734db25390b304c5ae458803a1480fa092f2ed...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/1 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d2086b903e4e5faf20517c6cb714850737f...
record new: [178] 0c0000a600010000000000a603001d2086b903e4e5faf20517c6cb714850737f...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [178] 0c0000a600010000000000a603001d2086b903e4e5faf20517c6cb714850737f...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feffbb999f0be5...
server: Filtered packet: [163] 16feff00000000000000000063020000570000000000000057feffbb999f0be5...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/2 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d2086b903e4e5faf20517c6cb714850737f...
record new: [180] 0c0000a800010000000000a803001d2086b903e4e5faf20517c6cb714850737f...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [180] 0c0000a800010000000000a803001d2086b903e4e5faf20517c6cb714850737f...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefd8340123361...
server: Filtered packet: [163] 16fefd00000000000000000063020000570000000000000057fefd8340123361...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/3 (6 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [524] 020000570302e95483d2a6c2d98747d3287dcd2a5090f9f3804d2639b84ee2b9...
record new: [209] 020000570302e95483d2a6c2d98747d3287dcd2a5090f9f3804d2639b84ee2b9...
Dropping handshake: 12
record old: [209] 020000570302e95483d2a6c2d98747d3287dcd2a5090f9f3804d2639b84ee2b9...
record new: [95] 020000570302e95483d2a6c2d98747d3287dcd2a5090f9f3804d2639b84ee2b9...
server: Original packet: [529] 160302020c020000570302e95483d2a6c2d98747d3287dcd2a5090f9f3804d26...
server: Filtered packet: [100] 160302005f020000570302e95483d2a6c2d98747d3287dcd2a5090f9f3804d26...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/0 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [526] 0200005703039766367a76298d76dc183bc8c23603c9b043f863fafbb98df1bb...
record new: [211] 0200005703039766367a76298d76dc183bc8c23603c9b043f863fafbb98df1bb...
Dropping handshake: 12
record old: [211] 0200005703039766367a76298d76dc183bc8c23603c9b043f863fafbb98df1bb...
record new: [95] 0200005703039766367a76298d76dc183bc8c23603c9b043f863fafbb98df1bb...
server: Original packet: [531] 160303020e0200005703039766367a76298d76dc183bc8c23603c9b043f863fa...
server: Filtered packet: [100] 160303005f0200005703039766367a76298d76dc183bc8c23603c9b043f863fa...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/1 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [323] 0b00013700010000000001370001340001313082012d3081d5a0030201020201...
record new: [0] 
record old: [121] 0c00006d000200000000006d03001d2086b903e4e5faf20517c6cb714850737f...
record new: [121] 0c00006d000100000000006d03001d2086b903e4e5faf20517c6cb714850737f...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [121] 0c00006d000100000000006d03001d2086b903e4e5faf20517c6cb714850737f...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [607] 16feff00000000000000000063020000570000000000000057feff6881af3864...
server: Filtered packet: [163] 16feff00000000000000000063020000570000000000000057feff6881af3864...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/2 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [323] 0b00013700010000000001370001340001313082012d3081d5a0030201020201...
record new: [0] 
record old: [123] 0c00006f000200000000006f03001d2086b903e4e5faf20517c6cb714850737f...
record new: [123] 0c00006f000100000000006f03001d2086b903e4e5faf20517c6cb714850737f...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [123] 0c00006f000100000000006f03001d2086b903e4e5faf20517c6cb714850737f...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [609] 16fefd00000000000000000063020000570000000000000057fefddf3f93d127...
server: Filtered packet: [163] 16fefd00000000000000000063020000570000000000000057fefddf3f93d127...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/3 (5 ms)
[----------] 32 tests from SkipVariants/TlsSkipTest (158 ms total)
[----------] 10 tests from AllHashFuncs/TlsHkdfTest
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/0
Hash = SHA-256
Output: [32] 33ad0a1c607ec03b09e6cd9893680ce210adf300aa1f2660e1b22e10f170f92a
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/1
Hash = SHA-384
Output: [48] 7ee8206f5570023e6dc7519eb1073bc4e791ad37b5c382aa10ba18e2357e7169...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/1 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/0
Hash = SHA-256
Output: [32] 11873828a9197811339124b58a1bb09f7f0d8dbb10f49c54bd1fd885cd153033
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/1
Hash = SHA-384
Output: [48] 51b1d5b4597979084a15b2db84d3d6bcfc9345d9dc74da1a57c2769f3f83452f...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/1 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/0
Hash = SHA-256
Output: [32] 2f5f78d0a4c436ee6c8a4ef9d043810213fd4783633ad2e1406d2d9800fdc187
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/1
Hash = SHA-384
Output: [48] 7b40f9ef91ffc9d129245cbff8827668ae4b63e803dd39a8d46af6e5eceaf87d...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/1 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/0
Hash = SHA-256
Output: [32] 7953b8dd6b98ce00b7dce803708ce3ac068b22fd0e3448e6e5e08ad61618e548
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/1
Hash = SHA-384
Output: [48] 0193c0073f6a830e2e4fb258e400085c689c37320037ffc31c5b980b02923ffd...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/1 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/0
Hash = SHA-256
Output: [32] 347c6780ff0bbad71c283b16eb2f9cf62d24e6cdb613d51776548cb07dcde74c
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/1
Hash = SHA-384
Output: [48] 4b1e5ec1493078ea35bd3f0104e61aea14cc182ad1c47621c464c04e4b361605...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/1 (0 ms)
[----------] 10 tests from AllHashFuncs/TlsHkdfTest (0 ms total)
[----------] Global test environment tear-down
[==========] 816 tests from 15 test cases ran. (7633 ms total)
[  PASSED  ] 816 tests.
ssl_gtest.sh: #10649: ssl_gtest run successfully  - PASSED
executing sed to parse the xml report
processing the parsed report
ssl_gtest.sh: #10650: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10651: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10652: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10653: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10654: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10655: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10656: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10657: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10658: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10659: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10660: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10661: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10662: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10663: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10664: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10665: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10666: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10667: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10668: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10669: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10670: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10671: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10672: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10673: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10674: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10675: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10676: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10677: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10678: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10679: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10680: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10681: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10682: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10683: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10684: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10685: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10686: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10687: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10688: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10689: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10690: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10691: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10692: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10693: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10694: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10695: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10696: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10697: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10698: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10699: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10700: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10701: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10702: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10703: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10704: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10705: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10706: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10707: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10708: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10709: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10710: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #10711: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #10712: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #10713: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #10714: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #10715: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #10716: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #10717: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #10718: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #10719: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #10720: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #10721: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #10722: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #10723: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #10724: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #10725: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #10726: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #10727: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #10728: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #10729: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #10730: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #10731: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #10732: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #10733: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #10734: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #10735: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #10736: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #10737: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #10738: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #10739: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #10740: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #10741: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #10742: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #10743: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #10744: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #10745: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #10746: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #10747: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #10748: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #10749: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #10750: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #10751: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #10752: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #10753: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #10754: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #10755: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #10756: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #10757: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #10758: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #10759: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #10760: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #10761: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #10762: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #10763: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #10764: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #10765: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #10766: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #10767: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #10768: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #10769: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #10770: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #10771: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #10772: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #10773: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #10774: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #10775: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #10776: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #10777: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #10778: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #10779: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #10780: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #10781: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #10782: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #10783: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #10784: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #10785: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #10786: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #10787: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #10788: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #10789: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #10790: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #10791: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #10792: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #10793: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #10794: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #10795: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #10796: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #10797: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #10798: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #10799: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #10800: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #10801: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #10802: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #10803: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #10804: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #10805: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #10806: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #10807: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #10808: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #10809: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #10810: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #10811: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #10812: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #10813: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #10814: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #10815: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #10816: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #10817: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #10818: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #10819: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #10820: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #10821: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #10822: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #10823: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #10824: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #10825: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #10826: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #10827: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #10828: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #10829: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #10830: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #10831: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #10832: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #10833: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #10834: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #10835: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #10836: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #10837: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #10838: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #10839: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #10840: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #10841: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #10842: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #10843: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #10844: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #10845: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #10846: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #10847: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #10848: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #10849: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #10850: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #10851: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #10852: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #10853: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #10854: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #10855: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #10856: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #10857: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #10858: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #10859: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #10860: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #10861: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #10862: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #10863: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #10864: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #10865: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #10866: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #10867: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #10868: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #10869: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #10870: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #10871: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #10872: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #10873: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #10874: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #10875: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #10876: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #10877: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #10878: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #10879: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #10880: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #10881: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #10882: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #10883: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #10884: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #10885: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #10886: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #10887: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #10888: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #10889: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #10890: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #10891: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #10892: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #10893: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #10894: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #10895: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #10896: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #10897: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #10898: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #10899: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #10900: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #10901: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #10902: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #10903: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #10904: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #10905: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #10906: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #10907: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #10908: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #10909: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #10910: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #10911: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #10912: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #10913: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #10914: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #10915: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #10916: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #10917: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #10918: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #10919: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #10920: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #10921: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #10922: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #10923: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #10924: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #10925: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #10926: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #10927: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #10928: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #10929: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #10930: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #10931: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #10932: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #10933: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #10934: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #10935: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #10936: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #10937: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #10938: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #10939: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #10940: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #10941: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #10942: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #10943: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #10944: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #10945: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #10946: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #10947: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #10948: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #10949: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #10950: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #10951: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #10952: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #10953: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #10954: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #10955: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #10956: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #10957: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #10958: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #10959: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #10960: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #10961: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #10962: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #10963: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #10964: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #10965: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #10966: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #10967: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #10968: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #10969: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #10970: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #10971: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #10972: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #10973: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #10974: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #10975: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #10976: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #10977: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #10978: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #10979: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #10980: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #10981: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #10982: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #10983: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #10984: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #10985: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #10986: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #10987: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #10988: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #10989: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #10990: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #10991: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #10992: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #10993: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #10994: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #10995: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #10996: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #10997: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #10998: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #10999: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11000: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11001: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11002: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #11003: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11004: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11005: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11006: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #11007: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11008: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11009: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11010: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #11011: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11012: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11013: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11014: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #11015: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11016: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11017: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11018: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #11019: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11020: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11021: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11022: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #11023: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11024: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11025: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11026: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #11027: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11028: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11029: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11030: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #11031: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11032: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11033: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11034: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #11035: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11036: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11037: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11038: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #11039: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11040: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11041: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11042: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #11043: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11044: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11045: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11046: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #11047: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11048: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11049: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11050: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #11051: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11052: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11053: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11054: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #11055: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11056: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11057: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11058: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #11059: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11060: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11061: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11062: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #11063: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11064: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11065: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11066: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #11067: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11068: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11069: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11070: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #11071: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11072: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11073: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11074: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #11075: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11076: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11077: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11078: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #11079: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11080: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11081: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11082: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #11083: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11084: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11085: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11086: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11087: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11088: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11089: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11090: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11091: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11092: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11093: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11094: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11095: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11096: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11097: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11098: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11099: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11100: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11101: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11102: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11103: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11104: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11105: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11106: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11107: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11108: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11109: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11110: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11111: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11112: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11113: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11114: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11115: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11116: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11117: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11118: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11119: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11120: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11121: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11122: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11123: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11124: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11125: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11126: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11127: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11128: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11129: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11130: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11131: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11132: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11133: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11134: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11135: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11136: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11137: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11138: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11139: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11140: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11141: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11142: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11143: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11144: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11145: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11146: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11147: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11148: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11149: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11150: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11151: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11152: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11153: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11154: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11155: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11156: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11157: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11158: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11159: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11160: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11161: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11162: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11163: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11164: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11165: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11166: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11167: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11168: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11169: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11170: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11171: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11172: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11173: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11174: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11175: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11176: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11177: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11178: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11179: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11180: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11181: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11182: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/0 TLS 1.0, TLS_ECDHE_RSA_WITH_NULL_SHA, name = &quot;NULL&quot;, key size = 0' - PASSED
ssl_gtest.sh: #11183: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/1 TLS 1.0, TLS_RSA_WITH_RC4_128_SHA, name = &quot;RC4&quot;, key size = 128' - PASSED
ssl_gtest.sh: #11184: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/2 TLS 1.0, TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA, name = &quot;3DES-EDE-CBC&quot;, key size = 168' - PASSED
ssl_gtest.sh: #11185: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/3 TLS 1.0, TLS_RSA_WITH_AES_128_CBC_SHA, name = &quot;AES-128&quot;, key size = 128' - PASSED
ssl_gtest.sh: #11186: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/4 TLS 1.2, TLS_RSA_WITH_AES_256_CBC_SHA256, name = &quot;AES-256&quot;, key size = 256' - PASSED
ssl_gtest.sh: #11187: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/5 TLS 1.2, TLS_RSA_WITH_AES_128_GCM_SHA256, name = &quot;AES-128-GCM&quot;, key size = 128' - PASSED
ssl_gtest.sh: #11188: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/6 TLS 1.2, TLS_RSA_WITH_AES_256_GCM_SHA384, name = &quot;AES-256-GCM&quot;, key size = 256' - PASSED
ssl_gtest.sh: #11189: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/7 TLS 1.2, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256, name = &quot;ChaCha20-Poly1305&quot;, key size = 256' - PASSED
ssl_gtest.sh: #11190: 'DamageYStream/TlsDamageDHYTest: DamageServerY/0 (&quot;TLS&quot;, 769, 0, true)' - PASSED
ssl_gtest.sh: #11191: 'DamageYStream/TlsDamageDHYTest: DamageServerY/1 (&quot;TLS&quot;, 769, 0, false)' - PASSED
ssl_gtest.sh: #11192: 'DamageYStream/TlsDamageDHYTest: DamageServerY/2 (&quot;TLS&quot;, 769, 1, true)' - PASSED
ssl_gtest.sh: #11193: 'DamageYStream/TlsDamageDHYTest: DamageServerY/3 (&quot;TLS&quot;, 769, 1, false)' - PASSED
ssl_gtest.sh: #11194: 'DamageYStream/TlsDamageDHYTest: DamageServerY/4 (&quot;TLS&quot;, 769, 2, true)' - PASSED
ssl_gtest.sh: #11195: 'DamageYStream/TlsDamageDHYTest: DamageServerY/5 (&quot;TLS&quot;, 769, 2, false)' - PASSED
ssl_gtest.sh: #11196: 'DamageYStream/TlsDamageDHYTest: DamageServerY/6 (&quot;TLS&quot;, 769, 3, true)' - PASSED
ssl_gtest.sh: #11197: 'DamageYStream/TlsDamageDHYTest: DamageServerY/7 (&quot;TLS&quot;, 769, 3, false)' - PASSED
ssl_gtest.sh: #11198: 'DamageYStream/TlsDamageDHYTest: DamageServerY/8 (&quot;TLS&quot;, 769, 4, true)' - PASSED
ssl_gtest.sh: #11199: 'DamageYStream/TlsDamageDHYTest: DamageServerY/9 (&quot;TLS&quot;, 769, 4, false)' - PASSED
ssl_gtest.sh: #11200: 'DamageYStream/TlsDamageDHYTest: DamageServerY/10 (&quot;TLS&quot;, 769, 5, true)' - PASSED
ssl_gtest.sh: #11201: 'DamageYStream/TlsDamageDHYTest: DamageServerY/11 (&quot;TLS&quot;, 769, 5, false)' - PASSED
ssl_gtest.sh: #11202: 'DamageYStream/TlsDamageDHYTest: DamageServerY/12 (&quot;TLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #11203: 'DamageYStream/TlsDamageDHYTest: DamageServerY/13 (&quot;TLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #11204: 'DamageYStream/TlsDamageDHYTest: DamageServerY/14 (&quot;TLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #11205: 'DamageYStream/TlsDamageDHYTest: DamageServerY/15 (&quot;TLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #11206: 'DamageYStream/TlsDamageDHYTest: DamageServerY/16 (&quot;TLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #11207: 'DamageYStream/TlsDamageDHYTest: DamageServerY/17 (&quot;TLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #11208: 'DamageYStream/TlsDamageDHYTest: DamageServerY/18 (&quot;TLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #11209: 'DamageYStream/TlsDamageDHYTest: DamageServerY/19 (&quot;TLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #11210: 'DamageYStream/TlsDamageDHYTest: DamageServerY/20 (&quot;TLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #11211: 'DamageYStream/TlsDamageDHYTest: DamageServerY/21 (&quot;TLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #11212: 'DamageYStream/TlsDamageDHYTest: DamageServerY/22 (&quot;TLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #11213: 'DamageYStream/TlsDamageDHYTest: DamageServerY/23 (&quot;TLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #11214: 'DamageYStream/TlsDamageDHYTest: DamageServerY/24 (&quot;TLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #11215: 'DamageYStream/TlsDamageDHYTest: DamageServerY/25 (&quot;TLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #11216: 'DamageYStream/TlsDamageDHYTest: DamageServerY/26 (&quot;TLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #11217: 'DamageYStream/TlsDamageDHYTest: DamageServerY/27 (&quot;TLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #11218: 'DamageYStream/TlsDamageDHYTest: DamageServerY/28 (&quot;TLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #11219: 'DamageYStream/TlsDamageDHYTest: DamageServerY/29 (&quot;TLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #11220: 'DamageYStream/TlsDamageDHYTest: DamageServerY/30 (&quot;TLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #11221: 'DamageYStream/TlsDamageDHYTest: DamageServerY/31 (&quot;TLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #11222: 'DamageYStream/TlsDamageDHYTest: DamageServerY/32 (&quot;TLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #11223: 'DamageYStream/TlsDamageDHYTest: DamageServerY/33 (&quot;TLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #11224: 'DamageYStream/TlsDamageDHYTest: DamageServerY/34 (&quot;TLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #11225: 'DamageYStream/TlsDamageDHYTest: DamageServerY/35 (&quot;TLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #11226: 'DamageYStream/TlsDamageDHYTest: DamageClientY/0 (&quot;TLS&quot;, 769, 0, true)' - PASSED
ssl_gtest.sh: #11227: 'DamageYStream/TlsDamageDHYTest: DamageClientY/1 (&quot;TLS&quot;, 769, 0, false)' - PASSED
ssl_gtest.sh: #11228: 'DamageYStream/TlsDamageDHYTest: DamageClientY/2 (&quot;TLS&quot;, 769, 1, true)' - PASSED
ssl_gtest.sh: #11229: 'DamageYStream/TlsDamageDHYTest: DamageClientY/3 (&quot;TLS&quot;, 769, 1, false)' - PASSED
ssl_gtest.sh: #11230: 'DamageYStream/TlsDamageDHYTest: DamageClientY/4 (&quot;TLS&quot;, 769, 2, true)' - PASSED
ssl_gtest.sh: #11231: 'DamageYStream/TlsDamageDHYTest: DamageClientY/5 (&quot;TLS&quot;, 769, 2, false)' - PASSED
ssl_gtest.sh: #11232: 'DamageYStream/TlsDamageDHYTest: DamageClientY/6 (&quot;TLS&quot;, 769, 3, true)' - PASSED
ssl_gtest.sh: #11233: 'DamageYStream/TlsDamageDHYTest: DamageClientY/7 (&quot;TLS&quot;, 769, 3, false)' - PASSED
ssl_gtest.sh: #11234: 'DamageYStream/TlsDamageDHYTest: DamageClientY/8 (&quot;TLS&quot;, 769, 4, true)' - PASSED
ssl_gtest.sh: #11235: 'DamageYStream/TlsDamageDHYTest: DamageClientY/9 (&quot;TLS&quot;, 769, 4, false)' - PASSED
ssl_gtest.sh: #11236: 'DamageYStream/TlsDamageDHYTest: DamageClientY/10 (&quot;TLS&quot;, 769, 5, true)' - PASSED
ssl_gtest.sh: #11237: 'DamageYStream/TlsDamageDHYTest: DamageClientY/11 (&quot;TLS&quot;, 769, 5, false)' - PASSED
ssl_gtest.sh: #11238: 'DamageYStream/TlsDamageDHYTest: DamageClientY/12 (&quot;TLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #11239: 'DamageYStream/TlsDamageDHYTest: DamageClientY/13 (&quot;TLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #11240: 'DamageYStream/TlsDamageDHYTest: DamageClientY/14 (&quot;TLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #11241: 'DamageYStream/TlsDamageDHYTest: DamageClientY/15 (&quot;TLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #11242: 'DamageYStream/TlsDamageDHYTest: DamageClientY/16 (&quot;TLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #11243: 'DamageYStream/TlsDamageDHYTest: DamageClientY/17 (&quot;TLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #11244: 'DamageYStream/TlsDamageDHYTest: DamageClientY/18 (&quot;TLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #11245: 'DamageYStream/TlsDamageDHYTest: DamageClientY/19 (&quot;TLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #11246: 'DamageYStream/TlsDamageDHYTest: DamageClientY/20 (&quot;TLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #11247: 'DamageYStream/TlsDamageDHYTest: DamageClientY/21 (&quot;TLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #11248: 'DamageYStream/TlsDamageDHYTest: DamageClientY/22 (&quot;TLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #11249: 'DamageYStream/TlsDamageDHYTest: DamageClientY/23 (&quot;TLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #11250: 'DamageYStream/TlsDamageDHYTest: DamageClientY/24 (&quot;TLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #11251: 'DamageYStream/TlsDamageDHYTest: DamageClientY/25 (&quot;TLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #11252: 'DamageYStream/TlsDamageDHYTest: DamageClientY/26 (&quot;TLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #11253: 'DamageYStream/TlsDamageDHYTest: DamageClientY/27 (&quot;TLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #11254: 'DamageYStream/TlsDamageDHYTest: DamageClientY/28 (&quot;TLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #11255: 'DamageYStream/TlsDamageDHYTest: DamageClientY/29 (&quot;TLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #11256: 'DamageYStream/TlsDamageDHYTest: DamageClientY/30 (&quot;TLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #11257: 'DamageYStream/TlsDamageDHYTest: DamageClientY/31 (&quot;TLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #11258: 'DamageYStream/TlsDamageDHYTest: DamageClientY/32 (&quot;TLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #11259: 'DamageYStream/TlsDamageDHYTest: DamageClientY/33 (&quot;TLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #11260: 'DamageYStream/TlsDamageDHYTest: DamageClientY/34 (&quot;TLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #11261: 'DamageYStream/TlsDamageDHYTest: DamageClientY/35 (&quot;TLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #11262: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/0 (&quot;DTLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #11263: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/1 (&quot;DTLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #11264: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/2 (&quot;DTLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #11265: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/3 (&quot;DTLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #11266: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/4 (&quot;DTLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #11267: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/5 (&quot;DTLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #11268: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/6 (&quot;DTLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #11269: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/7 (&quot;DTLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #11270: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/8 (&quot;DTLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #11271: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/9 (&quot;DTLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #11272: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/10 (&quot;DTLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #11273: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/11 (&quot;DTLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #11274: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/12 (&quot;DTLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #11275: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/13 (&quot;DTLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #11276: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/14 (&quot;DTLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #11277: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/15 (&quot;DTLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #11278: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/16 (&quot;DTLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #11279: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/17 (&quot;DTLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #11280: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/18 (&quot;DTLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #11281: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/19 (&quot;DTLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #11282: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/20 (&quot;DTLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #11283: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/21 (&quot;DTLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #11284: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/22 (&quot;DTLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #11285: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/23 (&quot;DTLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #11286: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/0 (&quot;DTLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #11287: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/1 (&quot;DTLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #11288: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/2 (&quot;DTLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #11289: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/3 (&quot;DTLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #11290: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/4 (&quot;DTLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #11291: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/5 (&quot;DTLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #11292: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/6 (&quot;DTLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #11293: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/7 (&quot;DTLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #11294: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/8 (&quot;DTLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #11295: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/9 (&quot;DTLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #11296: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/10 (&quot;DTLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #11297: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/11 (&quot;DTLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #11298: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/12 (&quot;DTLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #11299: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/13 (&quot;DTLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #11300: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/14 (&quot;DTLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #11301: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/15 (&quot;DTLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #11302: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/16 (&quot;DTLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #11303: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/17 (&quot;DTLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #11304: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/18 (&quot;DTLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #11305: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/19 (&quot;DTLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #11306: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/20 (&quot;DTLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #11307: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/21 (&quot;DTLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #11308: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/22 (&quot;DTLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #11309: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/23 (&quot;DTLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #11310: 'Datagram12Plus/TlsConnectDatagram12Plus: MissAWindow/0 771' - PASSED
ssl_gtest.sh: #11311: 'Datagram12Plus/TlsConnectDatagram12Plus: MissAWindowAndOne/0 771' - PASSED
ssl_gtest.sh: #11312: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11313: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11314: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11315: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11316: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11317: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11318: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11319: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11320: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11321: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11322: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11323: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11324: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11325: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11326: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11327: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11328: 'TlsPadding/TlsPaddingTest: Correct/0 (1, true)' - PASSED
ssl_gtest.sh: #11329: 'TlsPadding/TlsPaddingTest: Correct/1 (1, false)' - PASSED
ssl_gtest.sh: #11330: 'TlsPadding/TlsPaddingTest: Correct/2 (19, true)' - PASSED
ssl_gtest.sh: #11331: 'TlsPadding/TlsPaddingTest: Correct/3 (19, false)' - PASSED
ssl_gtest.sh: #11332: 'TlsPadding/TlsPaddingTest: Correct/4 (20, true)' - PASSED
ssl_gtest.sh: #11333: 'TlsPadding/TlsPaddingTest: Correct/5 (20, false)' - PASSED
ssl_gtest.sh: #11334: 'TlsPadding/TlsPaddingTest: Correct/6 (30, true)' - PASSED
ssl_gtest.sh: #11335: 'TlsPadding/TlsPaddingTest: Correct/7 (30, false)' - PASSED
ssl_gtest.sh: #11336: 'TlsPadding/TlsPaddingTest: Correct/8 (31, true)' - PASSED
ssl_gtest.sh: #11337: 'TlsPadding/TlsPaddingTest: Correct/9 (31, false)' - PASSED
ssl_gtest.sh: #11338: 'TlsPadding/TlsPaddingTest: Correct/10 (32, true)' - PASSED
ssl_gtest.sh: #11339: 'TlsPadding/TlsPaddingTest: Correct/11 (32, false)' - PASSED
ssl_gtest.sh: #11340: 'TlsPadding/TlsPaddingTest: Correct/12 (36, true)' - PASSED
ssl_gtest.sh: #11341: 'TlsPadding/TlsPaddingTest: Correct/13 (36, false)' - PASSED
ssl_gtest.sh: #11342: 'TlsPadding/TlsPaddingTest: Correct/14 (256, true)' - PASSED
ssl_gtest.sh: #11343: 'TlsPadding/TlsPaddingTest: Correct/15 (256, false)' - PASSED
ssl_gtest.sh: #11344: 'TlsPadding/TlsPaddingTest: Correct/16 (257, true)' - PASSED
ssl_gtest.sh: #11345: 'TlsPadding/TlsPaddingTest: Correct/17 (257, false)' - PASSED
ssl_gtest.sh: #11346: 'TlsPadding/TlsPaddingTest: Correct/18 (287, true)' - PASSED
ssl_gtest.sh: #11347: 'TlsPadding/TlsPaddingTest: Correct/19 (287, false)' - PASSED
ssl_gtest.sh: #11348: 'TlsPadding/TlsPaddingTest: Correct/20 (288, true)' - PASSED
ssl_gtest.sh: #11349: 'TlsPadding/TlsPaddingTest: Correct/21 (288, false)' - PASSED
ssl_gtest.sh: #11350: 'TlsPadding/TlsPaddingTest: PadTooLong/0 (1, true)' - PASSED
ssl_gtest.sh: #11351: 'TlsPadding/TlsPaddingTest: PadTooLong/1 (1, false)' - PASSED
ssl_gtest.sh: #11352: 'TlsPadding/TlsPaddingTest: PadTooLong/2 (19, true)' - PASSED
ssl_gtest.sh: #11353: 'TlsPadding/TlsPaddingTest: PadTooLong/3 (19, false)' - PASSED
ssl_gtest.sh: #11354: 'TlsPadding/TlsPaddingTest: PadTooLong/4 (20, true)' - PASSED
ssl_gtest.sh: #11355: 'TlsPadding/TlsPaddingTest: PadTooLong/5 (20, false)' - PASSED
ssl_gtest.sh: #11356: 'TlsPadding/TlsPaddingTest: PadTooLong/6 (30, true)' - PASSED
ssl_gtest.sh: #11357: 'TlsPadding/TlsPaddingTest: PadTooLong/7 (30, false)' - PASSED
ssl_gtest.sh: #11358: 'TlsPadding/TlsPaddingTest: PadTooLong/8 (31, true)' - PASSED
ssl_gtest.sh: #11359: 'TlsPadding/TlsPaddingTest: PadTooLong/9 (31, false)' - PASSED
ssl_gtest.sh: #11360: 'TlsPadding/TlsPaddingTest: PadTooLong/10 (32, true)' - PASSED
ssl_gtest.sh: #11361: 'TlsPadding/TlsPaddingTest: PadTooLong/11 (32, false)' - PASSED
ssl_gtest.sh: #11362: 'TlsPadding/TlsPaddingTest: PadTooLong/12 (36, true)' - PASSED
ssl_gtest.sh: #11363: 'TlsPadding/TlsPaddingTest: PadTooLong/13 (36, false)' - PASSED
ssl_gtest.sh: #11364: 'TlsPadding/TlsPaddingTest: PadTooLong/14 (256, true)' - PASSED
ssl_gtest.sh: #11365: 'TlsPadding/TlsPaddingTest: PadTooLong/15 (256, false)' - PASSED
ssl_gtest.sh: #11366: 'TlsPadding/TlsPaddingTest: PadTooLong/16 (257, true)' - PASSED
ssl_gtest.sh: #11367: 'TlsPadding/TlsPaddingTest: PadTooLong/17 (257, false)' - PASSED
ssl_gtest.sh: #11368: 'TlsPadding/TlsPaddingTest: PadTooLong/18 (287, true)' - PASSED
ssl_gtest.sh: #11369: 'TlsPadding/TlsPaddingTest: PadTooLong/19 (287, false)' - PASSED
ssl_gtest.sh: #11370: 'TlsPadding/TlsPaddingTest: PadTooLong/20 (288, true)' - PASSED
ssl_gtest.sh: #11371: 'TlsPadding/TlsPaddingTest: PadTooLong/21 (288, false)' - PASSED
ssl_gtest.sh: #11372: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/0 (1, true)' - PASSED
ssl_gtest.sh: #11373: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/1 (1, false)' - PASSED
ssl_gtest.sh: #11374: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/2 (19, true)' - PASSED
ssl_gtest.sh: #11375: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/3 (19, false)' - PASSED
ssl_gtest.sh: #11376: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/4 (20, true)' - PASSED
ssl_gtest.sh: #11377: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/5 (20, false)' - PASSED
ssl_gtest.sh: #11378: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/6 (30, true)' - PASSED
ssl_gtest.sh: #11379: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/7 (30, false)' - PASSED
ssl_gtest.sh: #11380: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/8 (31, true)' - PASSED
ssl_gtest.sh: #11381: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/9 (31, false)' - PASSED
ssl_gtest.sh: #11382: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/10 (32, true)' - PASSED
ssl_gtest.sh: #11383: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/11 (32, false)' - PASSED
ssl_gtest.sh: #11384: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/12 (36, true)' - PASSED
ssl_gtest.sh: #11385: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/13 (36, false)' - PASSED
ssl_gtest.sh: #11386: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/14 (256, true)' - PASSED
ssl_gtest.sh: #11387: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/15 (256, false)' - PASSED
ssl_gtest.sh: #11388: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/16 (257, true)' - PASSED
ssl_gtest.sh: #11389: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/17 (257, false)' - PASSED
ssl_gtest.sh: #11390: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/18 (287, true)' - PASSED
ssl_gtest.sh: #11391: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/19 (287, false)' - PASSED
ssl_gtest.sh: #11392: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/20 (288, true)' - PASSED
ssl_gtest.sh: #11393: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/21 (288, false)' - PASSED
ssl_gtest.sh: #11394: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/0 (1, true)' - PASSED
ssl_gtest.sh: #11395: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/1 (1, false)' - PASSED
ssl_gtest.sh: #11396: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/2 (19, true)' - PASSED
ssl_gtest.sh: #11397: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/3 (19, false)' - PASSED
ssl_gtest.sh: #11398: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/4 (20, true)' - PASSED
ssl_gtest.sh: #11399: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/5 (20, false)' - PASSED
ssl_gtest.sh: #11400: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/6 (30, true)' - PASSED
ssl_gtest.sh: #11401: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/7 (30, false)' - PASSED
ssl_gtest.sh: #11402: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/8 (31, true)' - PASSED
ssl_gtest.sh: #11403: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/9 (31, false)' - PASSED
ssl_gtest.sh: #11404: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/10 (32, true)' - PASSED
ssl_gtest.sh: #11405: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/11 (32, false)' - PASSED
ssl_gtest.sh: #11406: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/12 (36, true)' - PASSED
ssl_gtest.sh: #11407: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/13 (36, false)' - PASSED
ssl_gtest.sh: #11408: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/14 (256, true)' - PASSED
ssl_gtest.sh: #11409: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/15 (256, false)' - PASSED
ssl_gtest.sh: #11410: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/16 (257, true)' - PASSED
ssl_gtest.sh: #11411: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/17 (257, false)' - PASSED
ssl_gtest.sh: #11412: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/18 (287, true)' - PASSED
ssl_gtest.sh: #11413: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/19 (287, false)' - PASSED
ssl_gtest.sh: #11414: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/20 (288, true)' - PASSED
ssl_gtest.sh: #11415: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/21 (288, false)' - PASSED
ssl_gtest.sh: #11416: 'SkipTls10/TlsSkipTest: SkipCertificateRsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #11417: 'SkipTls10/TlsSkipTest: SkipCertificateDhe/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #11418: 'SkipTls10/TlsSkipTest: SkipCertificateEcdhe/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #11419: 'SkipTls10/TlsSkipTest: SkipCertificateEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #11420: 'SkipTls10/TlsSkipTest: SkipServerKeyExchange/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #11421: 'SkipTls10/TlsSkipTest: SkipServerKeyExchangeEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #11422: 'SkipTls10/TlsSkipTest: SkipCertAndKeyExch/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #11423: 'SkipTls10/TlsSkipTest: SkipCertAndKeyExchEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #11424: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11425: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11426: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11427: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11428: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11429: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11430: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11431: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11432: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11433: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11434: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11435: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11436: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11437: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11438: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11439: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11440: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11441: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11442: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11443: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11444: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11445: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11446: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11447: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11448: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11449: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11450: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11451: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11452: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11453: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11454: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11455: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11456: 'AllHashFuncs/TlsHkdfTest: HkdfNullNull/0 4' - PASSED
ssl_gtest.sh: #11457: 'AllHashFuncs/TlsHkdfTest: HkdfNullNull/1 5' - PASSED
ssl_gtest.sh: #11458: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Only/0 4' - PASSED
ssl_gtest.sh: #11459: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Only/1 5' - PASSED
ssl_gtest.sh: #11460: 'AllHashFuncs/TlsHkdfTest: HkdfKey2Only/0 4' - PASSED
ssl_gtest.sh: #11461: 'AllHashFuncs/TlsHkdfTest: HkdfKey2Only/1 5' - PASSED
ssl_gtest.sh: #11462: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Key2/0 4' - PASSED
ssl_gtest.sh: #11463: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Key2/1 5' - PASSED
ssl_gtest.sh: #11464: 'AllHashFuncs/TlsHkdfTest: HkdfExpandLabel/0 4' - PASSED
ssl_gtest.sh: #11465: 'AllHashFuncs/TlsHkdfTest: HkdfExpandLabel/1 5' - PASSED
TIMESTAMP ssl_gtests END: Mon Aug  7 00:04:23 UTC 2017
ssl_gtests.sh: Testing with shared library ===============================
Running tests for cert
TIMESTAMP cert BEGIN: Mon Aug  7 00:04:23 UTC 2017
cert.sh: Certutil and Crlutil Tests with ECC ===============================
cert.sh: #11466: Looking for root certs module. - PASSED
cert.sh: Creating a CA Certificate TestCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -f ../tests.pw
cert.sh: #11467: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11468: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert TestCA  --------------------------
certutil -s "CN=NSS Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11469: Creating CA Cert TestCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n TestCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -o root.cert
cert.sh: #11470: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate serverCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -f ../tests.pw
cert.sh: #11471: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11472: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert serverCA  --------------------------
certutil -s "CN=NSS Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA -t Cu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11473: Creating CA Cert serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n serverCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -o root.cert
cert.sh: #11474: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-serverCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating CA Cert chain-1-serverCA  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA -t u,u,u -v 600 -c serverCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11475: Creating CA Cert chain-1-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-serverCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -o root.cert
cert.sh: #11476: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-serverCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating CA Cert chain-2-serverCA  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA -t u,u,u -v 600 -c chain-1-serverCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11477: Creating CA Cert chain-2-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-serverCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -o root.cert
cert.sh: #11478: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate clientCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -f ../tests.pw
cert.sh: #11479: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11480: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert clientCA  --------------------------
certutil -s "CN=NSS Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA -t Tu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11481: Creating CA Cert clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n clientCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -o root.cert
cert.sh: #11482: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-clientCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating CA Cert chain-1-clientCA  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA -t u,u,u -v 600 -c clientCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11483: Creating CA Cert chain-1-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-clientCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -o root.cert
cert.sh: #11484: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-clientCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating CA Cert chain-2-clientCA  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA -t u,u,u -v 600 -c chain-1-clientCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11485: Creating CA Cert chain-2-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-clientCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -o root.cert
cert.sh: #11486: Exporting Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate TestCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA
cert.sh: Creating DSA CA Cert TestCA-dsa  --------------------------
certutil -s "CN=NSS Test CA (DSA), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-dsa -k dsa -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11487: Creating DSA CA Cert TestCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n TestCA-dsa -r -d . -o dsaroot.cert
cert.sh: #11488: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating DSA CA Cert serverCA-dsa  --------------------------
certutil -s "CN=NSS Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-dsa -k dsa -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11489: Creating DSA CA Cert serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #11490: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating DSA CA Cert chain-1-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-dsa -k dsa -t u,u,u -v 600 -c serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11491: Creating DSA CA Cert chain-1-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #11492: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating DSA CA Cert chain-2-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11493: Creating DSA CA Cert chain-2-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #11494: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating DSA CA Cert clientCA-dsa  --------------------------
certutil -s "CN=NSS Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-dsa -k dsa -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11495: Creating DSA CA Cert clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #11496: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating DSA CA Cert chain-1-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-dsa -k dsa -t u,u,u -v 600 -c clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11497: Creating DSA CA Cert chain-1-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #11498: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating DSA CA Cert chain-2-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11499: Creating DSA CA Cert chain-2-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #11500: Exporting DSA Root Cert - PASSED
cert.sh: Creating an EC CA Certificate TestCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA
cert.sh: Creating EC CA Cert TestCA-ec  --------------------------
certutil -s "CN=NSS Test CA (ECC), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-ec -k ec -q secp521r1 -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11501: Creating EC CA Cert TestCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n TestCA-ec -r -d . -o ecroot.cert
cert.sh: #11502: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate serverCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating EC CA Cert serverCA-ec  --------------------------
certutil -s "CN=NSS Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-ec -k ec -q secp521r1 -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11503: Creating EC CA Cert serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n serverCA-ec -r -d . -o ecroot.cert
cert.sh: #11504: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating EC CA Cert chain-1-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11505: Creating EC CA Cert chain-1-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #11506: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating EC CA Cert chain-2-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11507: Creating EC CA Cert chain-2-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #11508: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate clientCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating EC CA Cert clientCA-ec  --------------------------
certutil -s "CN=NSS Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-ec -k ec -q secp521r1 -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11509: Creating EC CA Cert clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n clientCA-ec -r -d . -o ecroot.cert
cert.sh: #11510: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating EC CA Cert chain-1-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11511: Creating EC CA Cert chain-1-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #11512: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating EC CA Cert chain-2-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11513: Creating EC CA Cert chain-2-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #11514: Exporting EC Root Cert - PASSED
cert.sh: Creating Certificates, issued by the last ===============
     of a chain of CA's which are not in the same database============
Server Cert
cert.sh: Initializing localhost.localdomain's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw
cert.sh: #11515: Initializing localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11516: Loading root cert module to localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11517: Generate Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 200 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain.cert -f ../tests.pw
cert.sh: #11518: Sign localhost.localdomain's Request (ext) - PASSED
cert.sh: Import localhost.localdomain's Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11519: Import localhost.localdomain's Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/clientCA.ca.cert
cert.sh: #11520: Import Client Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11521: Generate DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA-dsa -m 200 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw
cert.sh: #11522: Sign localhost.localdomain's DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11523: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/clientCA-dsa.ca.cert
cert.sh: #11524: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11525: Generate mixed DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 202 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw
cert.sh: #11526: Sign localhost.localdomain's mixed DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11527: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11528: Generate EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA-ec -m 200 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain-ec.cert -f ../tests.pw
cert.sh: #11529: Sign localhost.localdomain's EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11530: Import localhost.localdomain's EC Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-ec -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/clientCA-ec.ca.cert
cert.sh: #11531: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11532: Generate mixed EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 201 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw
cert.sh: #11533: Sign localhost.localdomain's mixed EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11534: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) - PASSED
Importing all the server's own CA chain into the servers DB
cert.sh: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/serverCA.ca.cert
cert.sh: #11535: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/chain-1-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11536: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/chain-2-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11537: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/serverCA-dsa.ca.cert
cert.sh: #11538: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/chain-1-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11539: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/chain-2-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11540: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/serverCA-ec.ca.cert
cert.sh: #11541: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/chain-1-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11542: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/chain-2-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11543: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
Client Cert
cert.sh: Initializing ExtendedSSLUser's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw
cert.sh: #11544: Initializing ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11545: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11546: Generate Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 300 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser.cert -f ../tests.pw
cert.sh: #11547: Sign ExtendedSSLUser's Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11548: Import ExtendedSSLUser's Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/serverCA.ca.cert
cert.sh: #11549: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11550: Generate DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA-dsa -m 300 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser-dsa.cert -f ../tests.pw
cert.sh: #11551: Sign ExtendedSSLUser's DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11552: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/serverCA-dsa.ca.cert
cert.sh: #11553: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11554: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 302 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser-dsamixed.cert -f ../tests.pw
cert.sh: #11555: Sign ExtendedSSLUser's mixed DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11556: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11557: Generate EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA-ec -m 300 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser-ec.cert -f ../tests.pw
cert.sh: #11558: Sign ExtendedSSLUser's EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11559: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/serverCA-ec.ca.cert
cert.sh: #11560: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11561: Generate mixed EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 301 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser-ecmixed.cert -f ../tests.pw
cert.sh: #11562: Sign ExtendedSSLUser's mixed EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11563: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) - PASSED
Importing all the client's own CA chain into the servers DB
cert.sh: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/clientCA.ca.cert
cert.sh: #11564: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/chain-1-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11565: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/chain-2-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11566: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/clientCA-dsa.ca.cert
cert.sh: #11567: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/chain-1-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11568: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/chain-2-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11569: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-ec -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/clientCA-ec.ca.cert
cert.sh: #11570: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/chain-1-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11571: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/chain-2-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11572: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh SUCCESS: EXT passed
cert.sh: Creating Client CA Issued Certificates ===============
cert.sh: Initializing TestUser's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw
cert.sh: #11573: Initializing TestUser's Cert DB - PASSED
cert.sh: Loading root cert module to TestUser's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11574: Loading root cert module to TestUser's Cert DB - PASSED
cert.sh: Import Root CA for TestUser --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -i ../CA/TestCA.ca.cert
cert.sh: #11575: Import Root CA for TestUser - PASSED
cert.sh: Import DSA Root CA for TestUser --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -i ../CA/TestCA-dsa.ca.cert
cert.sh: #11576: Import DSA Root CA for TestUser - PASSED
cert.sh: Import EC Root CA for TestUser --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -i ../CA/TestCA-ec.ca.cert
cert.sh: #11577: Import EC Root CA for TestUser - PASSED
cert.sh: Generate Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11578: Generate Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's Request --------------------------
certutil -C -c TestCA -m 70 -v 60 -d ../CA -i req -o TestUser.cert -f ../tests.pw 
cert.sh: #11579: Sign TestUser's Request - PASSED
cert.sh: Import TestUser's Cert --------------------------
certutil -A -n TestUser -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11580: Import TestUser's Cert - PASSED
cert.sh SUCCESS: TestUser's Cert Created
cert.sh: Generate DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11581: Generate DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 70 -v 60 -d ../CA -i req -o TestUser-dsa.cert -f ../tests.pw 
cert.sh: #11582: Sign TestUser's DSA Request - PASSED
cert.sh: Import TestUser's DSA Cert --------------------------
certutil -A -n TestUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11583: Import TestUser's DSA Cert - PASSED
cert.sh SUCCESS: TestUser's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11584: Generate mixed DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20070 -v 60 -d ../CA -i req -o TestUser-dsamixed.cert -f ../tests.pw 
cert.sh: #11585: Sign TestUser's DSA Request with RSA - PASSED
cert.sh: Import TestUser's mixed DSA Cert --------------------------
certutil -A -n TestUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11586: Import TestUser's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11587: Generate EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request --------------------------
certutil -C -c TestCA-ec -m 70 -v 60 -d ../CA -i req -o TestUser-ec.cert -f ../tests.pw 
cert.sh: #11588: Sign TestUser's EC Request - PASSED
cert.sh: Import TestUser's EC Cert --------------------------
certutil -A -n TestUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11589: Import TestUser's EC Cert - PASSED
cert.sh SUCCESS: TestUser's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11590: Generate mixed EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10070 -v 60 -d ../CA -i req -o TestUser-ecmixed.cert -f ../tests.pw 
cert.sh: #11591: Sign TestUser's EC Request with RSA - PASSED
cert.sh: Import TestUser's mixed EC Cert --------------------------
certutil -A -n TestUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11592: Import TestUser's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain ------------------------------------
cert.sh: Initializing localhost.localdomain's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw
cert.sh: #11593: Initializing localhost.localdomain's Cert DB - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11594: Loading root cert module to localhost.localdomain's Cert DB - PASSED
cert.sh: Import Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -i ../CA/TestCA.ca.cert
cert.sh: #11595: Import Root CA for localhost.localdomain - PASSED
cert.sh: Import DSA Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -i ../CA/TestCA-dsa.ca.cert
cert.sh: #11596: Import DSA Root CA for localhost.localdomain - PASSED
cert.sh: Import EC Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -i ../CA/TestCA-ec.ca.cert
cert.sh: #11597: Import EC Root CA for localhost.localdomain - PASSED
cert.sh: Generate Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11598: Generate Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's Request --------------------------
certutil -C -c TestCA -m 100 -v 60 -d ../CA -i req -o localhost.localdomain.cert -f ../tests.pw 
cert.sh: #11599: Sign localhost.localdomain's Request - PASSED
cert.sh: Import localhost.localdomain's Cert --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11600: Import localhost.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11601: Generate DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #11602: Sign localhost.localdomain's DSA Request - PASSED
cert.sh: Import localhost.localdomain's DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11603: Import localhost.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11604: Generate mixed DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20100 -v 60 -d ../CA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #11605: Sign localhost.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11606: Import localhost.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11607: Generate EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-ec.cert -f ../tests.pw 
cert.sh: #11608: Sign localhost.localdomain's EC Request - PASSED
cert.sh: Import localhost.localdomain's EC Cert --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11609: Import localhost.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11610: Generate mixed EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10100 -v 60 -d ../CA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #11611: Sign localhost.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11612: Import localhost.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain-sni --------------------------------
cert.sh: Generate Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11613: Generate Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's Request --------------------------
certutil -C -c TestCA -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain.cert -f ../tests.pw 
cert.sh: #11614: Sign localhost-sni.localdomain's Request - PASSED
cert.sh: Import localhost-sni.localdomain's Cert --------------------------
certutil -A -n localhost-sni.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11615: Import localhost-sni.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11616: Generate DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #11617: Sign localhost-sni.localdomain's DSA Request - PASSED
cert.sh: Import localhost-sni.localdomain's DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11618: Import localhost-sni.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11619: Generate mixed DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #11620: Sign localhost-sni.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11621: Import localhost-sni.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11622: Generate EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ec.cert -f ../tests.pw 
cert.sh: #11623: Sign localhost-sni.localdomain's EC Request - PASSED
cert.sh: Import localhost-sni.localdomain's EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11624: Import localhost-sni.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11625: Generate mixed EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #11626: Sign localhost-sni.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11627: Import localhost-sni.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed EC Cert Created
cert.sh: Modify trust attributes of Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA -t TC,TC,TC -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw
cert.sh: #11628: Modify trust attributes of Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of DSA Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-dsa -t TC,TC,TC -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw
cert.sh: #11629: Modify trust attributes of DSA Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-ec -t TC,TC,TC -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw
cert.sh: #11630: Modify trust attributes of EC Root CA -t TC,TC,TC - PASSED
cert.sh SUCCESS: SSL passed
cert.sh: Creating database for OCSP stapling tests  ===============
cp -r /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/stapling
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -o ../stapling/ca.p12 -n TestCA -k ../tests.pw -w ../tests.pw -d ../CA
pk12util: PKCS12 EXPORT SUCCESSFUL
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -i ../stapling/ca.p12 -k ../tests.pw -w ../tests.pw -d ../stapling
pk12util: PKCS12 IMPORT SUCCESSFUL
cert.sh: Creating Client CA Issued Certificates ==============
cert.sh: Initializing Alice's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw
cert.sh: #11631: Initializing Alice's Cert DB - PASSED
cert.sh: Loading root cert module to Alice's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11632: Loading root cert module to Alice's Cert DB - PASSED
cert.sh: Import Root CA for Alice --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -i ../CA/TestCA.ca.cert
cert.sh: #11633: Import Root CA for Alice - PASSED
cert.sh: Import DSA Root CA for Alice --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #11634: Import DSA Root CA for Alice - PASSED
cert.sh: Import EC Root CA for Alice --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -i ../CA/TestCA-ec.ca.cert
cert.sh: #11635: Import EC Root CA for Alice - PASSED
cert.sh: Generate Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11636: Generate Cert Request for Alice - PASSED
cert.sh: Sign Alice's Request --------------------------
certutil -C -c TestCA -m 30 -v 60 -d ../CA -i req -o Alice.cert -f ../tests.pw 
cert.sh: #11637: Sign Alice's Request - PASSED
cert.sh: Import Alice's Cert --------------------------
certutil -A -n Alice -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11638: Import Alice's Cert - PASSED
cert.sh SUCCESS: Alice's Cert Created
cert.sh: Generate DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11639: Generate DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 30 -v 60 -d ../CA -i req -o Alice-dsa.cert -f ../tests.pw 
cert.sh: #11640: Sign Alice's DSA Request - PASSED
cert.sh: Import Alice's DSA Cert --------------------------
certutil -A -n Alice-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11641: Import Alice's DSA Cert - PASSED
cert.sh SUCCESS: Alice's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11642: Generate mixed DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20030 -v 60 -d ../CA -i req -o Alice-dsamixed.cert -f ../tests.pw 
cert.sh: #11643: Sign Alice's DSA Request with RSA - PASSED
cert.sh: Import Alice's mixed DSA Cert --------------------------
certutil -A -n Alice-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11644: Import Alice's mixed DSA Cert - PASSED
cert.sh SUCCESS: Alice's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11645: Generate EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request --------------------------
certutil -C -c TestCA-ec -m 30 -v 60 -d ../CA -i req -o Alice-ec.cert -f ../tests.pw 
cert.sh: #11646: Sign Alice's EC Request - PASSED
cert.sh: Import Alice's EC Cert --------------------------
certutil -A -n Alice-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11647: Import Alice's EC Cert - PASSED
cert.sh SUCCESS: Alice's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11648: Generate mixed EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10030 -v 60 -d ../CA -i req -o Alice-ecmixed.cert -f ../tests.pw 
cert.sh: #11649: Sign Alice's EC Request with RSA - PASSED
cert.sh: Import Alice's mixed EC Cert --------------------------
certutil -A -n Alice-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11650: Import Alice's mixed EC Cert - PASSED
cert.sh SUCCESS: Alice's mixed EC Cert Created
cert.sh: Initializing Bob's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw
cert.sh: #11651: Initializing Bob's Cert DB - PASSED
cert.sh: Loading root cert module to Bob's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11652: Loading root cert module to Bob's Cert DB - PASSED
cert.sh: Import Root CA for Bob --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -i ../CA/TestCA.ca.cert
cert.sh: #11653: Import Root CA for Bob - PASSED
cert.sh: Import DSA Root CA for Bob --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #11654: Import DSA Root CA for Bob - PASSED
cert.sh: Import EC Root CA for Bob --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -i ../CA/TestCA-ec.ca.cert
cert.sh: #11655: Import EC Root CA for Bob - PASSED
cert.sh: Generate Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11656: Generate Cert Request for Bob - PASSED
cert.sh: Sign Bob's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o Bob.cert -f ../tests.pw 
cert.sh: #11657: Sign Bob's Request - PASSED
cert.sh: Import Bob's Cert --------------------------
certutil -A -n Bob -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11658: Import Bob's Cert - PASSED
cert.sh SUCCESS: Bob's Cert Created
cert.sh: Generate DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11659: Generate DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o Bob-dsa.cert -f ../tests.pw 
cert.sh: #11660: Sign Bob's DSA Request - PASSED
cert.sh: Import Bob's DSA Cert --------------------------
certutil -A -n Bob-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11661: Import Bob's DSA Cert - PASSED
cert.sh SUCCESS: Bob's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11662: Generate mixed DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o Bob-dsamixed.cert -f ../tests.pw 
cert.sh: #11663: Sign Bob's DSA Request with RSA - PASSED
cert.sh: Import Bob's mixed DSA Cert --------------------------
certutil -A -n Bob-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11664: Import Bob's mixed DSA Cert - PASSED
cert.sh SUCCESS: Bob's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11665: Generate EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o Bob-ec.cert -f ../tests.pw 
cert.sh: #11666: Sign Bob's EC Request - PASSED
cert.sh: Import Bob's EC Cert --------------------------
certutil -A -n Bob-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11667: Import Bob's EC Cert - PASSED
cert.sh SUCCESS: Bob's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11668: Generate mixed EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o Bob-ecmixed.cert -f ../tests.pw 
cert.sh: #11669: Sign Bob's EC Request with RSA - PASSED
cert.sh: Import Bob's mixed EC Cert --------------------------
certutil -A -n Bob-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11670: Import Bob's mixed EC Cert - PASSED
cert.sh SUCCESS: Bob's mixed EC Cert Created
cert.sh: Creating Dave's Certificate -------------------------
cert.sh: Initializing Dave's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw
cert.sh: #11671: Initializing Dave's Cert DB - PASSED
cert.sh: Loading root cert module to Dave's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11672: Loading root cert module to Dave's Cert DB - PASSED
cert.sh: Import Root CA for Dave --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -i ../CA/TestCA.ca.cert
cert.sh: #11673: Import Root CA for Dave - PASSED
cert.sh: Import DSA Root CA for Dave --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -i ../CA/TestCA-dsa.ca.cert
cert.sh: #11674: Import DSA Root CA for Dave - PASSED
cert.sh: Import EC Root CA for Dave --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -i ../CA/TestCA-ec.ca.cert
cert.sh: #11675: Import EC Root CA for Dave - PASSED
cert.sh: Generate Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11676: Generate Cert Request for Dave - PASSED
cert.sh: Sign Dave's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o Dave.cert -f ../tests.pw 
cert.sh: #11677: Sign Dave's Request - PASSED
cert.sh: Import Dave's Cert --------------------------
certutil -A -n Dave -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11678: Import Dave's Cert - PASSED
cert.sh SUCCESS: Dave's Cert Created
cert.sh: Generate DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11679: Generate DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o Dave-dsa.cert -f ../tests.pw 
cert.sh: #11680: Sign Dave's DSA Request - PASSED
cert.sh: Import Dave's DSA Cert --------------------------
certutil -A -n Dave-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11681: Import Dave's DSA Cert - PASSED
cert.sh SUCCESS: Dave's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11682: Generate mixed DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o Dave-dsamixed.cert -f ../tests.pw 
cert.sh: #11683: Sign Dave's DSA Request with RSA - PASSED
cert.sh: Import Dave's mixed DSA Cert --------------------------
certutil -A -n Dave-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11684: Import Dave's mixed DSA Cert - PASSED
cert.sh SUCCESS: Dave's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11685: Generate EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o Dave-ec.cert -f ../tests.pw 
cert.sh: #11686: Sign Dave's EC Request - PASSED
cert.sh: Import Dave's EC Cert --------------------------
certutil -A -n Dave-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11687: Import Dave's EC Cert - PASSED
cert.sh SUCCESS: Dave's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11688: Generate mixed EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o Dave-ecmixed.cert -f ../tests.pw 
cert.sh: #11689: Sign Dave's EC Request with RSA - PASSED
cert.sh: Import Dave's mixed EC Cert --------------------------
certutil -A -n Dave-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11690: Import Dave's mixed EC Cert - PASSED
cert.sh SUCCESS: Dave's mixed EC Cert Created
cert.sh: Creating multiEmail's Certificate --------------------
cert.sh: Initializing Eve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw
cert.sh: #11691: Initializing Eve's Cert DB - PASSED
cert.sh: Loading root cert module to Eve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11692: Loading root cert module to Eve's Cert DB - PASSED
cert.sh: Import Root CA for Eve --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -i ../CA/TestCA.ca.cert
cert.sh: #11693: Import Root CA for Eve - PASSED
cert.sh: Import DSA Root CA for Eve --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -i ../CA/TestCA-dsa.ca.cert
cert.sh: #11694: Import DSA Root CA for Eve - PASSED
cert.sh: Import EC Root CA for Eve --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -i ../CA/TestCA-ec.ca.cert
cert.sh: #11695: Import EC Root CA for Eve - PASSED
cert.sh: Generate Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11696: Generate Cert Request for Eve - PASSED
cert.sh: Sign Eve's Request --------------------------
certutil -C -c TestCA -m 60 -v 60 -d ../CA -i req -o Eve.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #11697: Sign Eve's Request - PASSED
cert.sh: Import Eve's Cert --------------------------
certutil -A -n Eve -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11698: Import Eve's Cert - PASSED
cert.sh SUCCESS: Eve's Cert Created
cert.sh: Generate DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11699: Generate DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 60 -v 60 -d ../CA -i req -o Eve-dsa.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #11700: Sign Eve's DSA Request - PASSED
cert.sh: Import Eve's DSA Cert --------------------------
certutil -A -n Eve-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11701: Import Eve's DSA Cert - PASSED
cert.sh SUCCESS: Eve's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11702: Generate mixed DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20060 -v 60 -d ../CA -i req -o Eve-dsamixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #11703: Sign Eve's DSA Request with RSA - PASSED
cert.sh: Import Eve's mixed DSA Cert --------------------------
certutil -A -n Eve-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11704: Import Eve's mixed DSA Cert - PASSED
cert.sh SUCCESS: Eve's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11705: Generate EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request --------------------------
certutil -C -c TestCA-ec -m 60 -v 60 -d ../CA -i req -o Eve-ec.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #11706: Sign Eve's EC Request - PASSED
cert.sh: Import Eve's EC Cert --------------------------
certutil -A -n Eve-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11707: Import Eve's EC Cert - PASSED
cert.sh SUCCESS: Eve's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11708: Generate mixed EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10060 -v 60 -d ../CA -i req -o Eve-ecmixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #11709: Sign Eve's EC Request with RSA - PASSED
cert.sh: Import Eve's mixed EC Cert --------------------------
certutil -A -n Eve-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11710: Import Eve's mixed EC Cert - PASSED
cert.sh SUCCESS: Eve's mixed EC Cert Created
cert.sh: Importing Certificates ==============================
cert.sh: Import Bob's cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob.cert
cert.sh: #11711: Import Bob's cert into Alice's db - PASSED
cert.sh: Import Dave's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #11712: Import Dave's cert into Alice's DB - PASSED
cert.sh: Import Dave's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #11713: Import Dave's cert into Bob's DB - PASSED
cert.sh: Import Eve's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #11714: Import Eve's cert into Alice's DB - PASSED
cert.sh: Import Eve's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #11715: Import Eve's cert into Bob's DB - PASSED
cert.sh: Importing EC Certificates ==============================
cert.sh: Import Bob's EC cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob-ec.cert
cert.sh: #11716: Import Bob's EC cert into Alice's db - PASSED
cert.sh: Import Dave's EC cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #11717: Import Dave's EC cert into Alice's DB - PASSED
cert.sh: Import Dave's EC cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #11718: Import Dave's EC cert into Bob's DB - PASSED
cert.sh SUCCESS: SMIME passed
cert.sh: Creating FIPS 140 DSA Certificates ==============
cert.sh: Initializing FIPS PUB 140 Test Certificate's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips -f ../tests.fipspw
cert.sh: #11719: Initializing FIPS PUB 140 Test Certificate's Cert DB - PASSED
cert.sh: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11720: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) - PASSED
cert.sh: Enable FIPS mode on database -----------------------
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips -fips true 
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
FIPS mode enabled.
cert.sh: #11721: Enable FIPS mode on database for FIPS PUB 140 Test Certificate - PASSED
cert.sh: Generate Certificate for FIPS PUB 140 Test Certificate --------------------------
certutil -s "CN=FIPS PUB 140 Test Certificate, E=fips@bogus.com, O=BOGUS NSS, OU=FIPS PUB 140, L=Mountain View, ST=California, C=US" -S -n FIPS_PUB_140_Test_Certificate -x -t Cu,Cu,Cu -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips -f ../tests.fipspw -k dsa -v 600 -m 500 -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11722: Generate Certificate for FIPS PUB 140 Test Certificate - PASSED
cert.sh SUCCESS: FIPS passed
cert.sh: Creating Server CA Issued Certificate for 
             EC Curves Test Certificates ------------------------------------
cert.sh: Initializing EC Curve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw
cert.sh: #11723: Initializing EC Curve's Cert DB - PASSED
cert.sh: Loading root cert module to EC Curve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eccurves
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11724: Loading root cert module to EC Curve's Cert DB - PASSED
cert.sh: Import EC Root CA for EC Curves Test Certificates --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eccurves -i ../CA/TestCA-ec.ca.cert
cert.sh: #11725: Import EC Root CA for EC Curves Test Certificates - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp256 --------------------------
certutil -s "CN=Curve-nistp256, E=Curve-nistp256-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp256 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11726: Generate EC Cert Request for Curve-nistp256 - PASSED
cert.sh: Sign Curve-nistp256's EC Request --------------------------
certutil -C -c TestCA-ec -m 2001 -v 60 -d ../CA -i req -o Curve-nistp256-ec.cert -f ../tests.pw 
cert.sh: #11727: Sign Curve-nistp256's EC Request - PASSED
cert.sh: Import Curve-nistp256's EC Cert --------------------------
certutil -A -n Curve-nistp256-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -i Curve-nistp256-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11728: Import Curve-nistp256's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp384 --------------------------
certutil -s "CN=Curve-nistp384, E=Curve-nistp384-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp384 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11729: Generate EC Cert Request for Curve-nistp384 - PASSED
cert.sh: Sign Curve-nistp384's EC Request --------------------------
certutil -C -c TestCA-ec -m 2002 -v 60 -d ../CA -i req -o Curve-nistp384-ec.cert -f ../tests.pw 
cert.sh: #11730: Sign Curve-nistp384's EC Request - PASSED
cert.sh: Import Curve-nistp384's EC Cert --------------------------
certutil -A -n Curve-nistp384-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -i Curve-nistp384-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11731: Import Curve-nistp384's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp521 --------------------------
certutil -s "CN=Curve-nistp521, E=Curve-nistp521-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp521 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11732: Generate EC Cert Request for Curve-nistp521 - PASSED
cert.sh: Sign Curve-nistp521's EC Request --------------------------
certutil -C -c TestCA-ec -m 2003 -v 60 -d ../CA -i req -o Curve-nistp521-ec.cert -f ../tests.pw 
cert.sh: #11733: Sign Curve-nistp521's EC Request - PASSED
cert.sh: Import Curve-nistp521's EC Cert --------------------------
certutil -A -n Curve-nistp521-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -i Curve-nistp521-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11734: Import Curve-nistp521's EC Cert - PASSED
cert.sh: Initializing TestExt's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw
cert.sh: #11735: Initializing TestExt's Cert DB - PASSED
cert.sh: Loading root cert module to TestExt's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11736: Loading root cert module to TestExt's Cert DB - PASSED
cert.sh: Import Root CA for TestExt --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -i ../CA/TestCA.ca.cert
cert.sh: #11737: Import Root CA for TestExt - PASSED
cert.sh: Import DSA Root CA for TestExt --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -i ../CA/TestCA-dsa.ca.cert
cert.sh: #11738: Import DSA Root CA for TestExt - PASSED
cert.sh: Import EC Root CA for TestExt --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -i ../CA/TestCA-ec.ca.cert
cert.sh: #11739: Import EC Root CA for TestExt - PASSED
cert.sh: Generate Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11740: Generate Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's Request --------------------------
certutil -C -c TestCA -m 90 -v 60 -d ../CA -i req -o TestExt.cert -f ../tests.pw 
cert.sh: #11741: Sign TestExt's Request - PASSED
cert.sh: Import TestExt's Cert --------------------------
certutil -A -n TestExt -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11742: Import TestExt's Cert - PASSED
cert.sh SUCCESS: TestExt's Cert Created
cert.sh: Generate DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11743: Generate DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 90 -v 60 -d ../CA -i req -o TestExt-dsa.cert -f ../tests.pw 
cert.sh: #11744: Sign TestExt's DSA Request - PASSED
cert.sh: Import TestExt's DSA Cert --------------------------
certutil -A -n TestExt-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11745: Import TestExt's DSA Cert - PASSED
cert.sh SUCCESS: TestExt's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11746: Generate mixed DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20090 -v 60 -d ../CA -i req -o TestExt-dsamixed.cert -f ../tests.pw 
cert.sh: #11747: Sign TestExt's DSA Request with RSA - PASSED
cert.sh: Import TestExt's mixed DSA Cert --------------------------
certutil -A -n TestExt-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11748: Import TestExt's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestExt's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11749: Generate EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request --------------------------
certutil -C -c TestCA-ec -m 90 -v 60 -d ../CA -i req -o TestExt-ec.cert -f ../tests.pw 
cert.sh: #11750: Sign TestExt's EC Request - PASSED
cert.sh: Import TestExt's EC Cert --------------------------
certutil -A -n TestExt-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11751: Import TestExt's EC Cert - PASSED
cert.sh SUCCESS: TestExt's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11752: Generate mixed EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10090 -v 60 -d ../CA -i req -o TestExt-ecmixed.cert -f ../tests.pw 
cert.sh: #11753: Sign TestExt's EC Request with RSA - PASSED
cert.sh: Import TestExt's mixed EC Cert --------------------------
certutil -A -n TestExt-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11754: Import TestExt's mixed EC Cert - PASSED
cert.sh SUCCESS: TestExt's mixed EC Cert Created
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt1 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt1, E=TestExt1@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:d3:59
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Mon Aug 07 00:05:30 2017
            Not After : Tue Nov 07 00:05:30 2017
        Subject: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:65:d9:a5:73:a6:65:5a:26:16:f6:4b:56:d6:93:76:
                    be:15:91:3f:f9:c5:18:3d:1e:2d:d4:d7:98:45:47:90:
                    fa:3c:c8:ea:e1:5c:9a:06:03:29:a3:6d:de:d1:56:cb:
                    6e:67:89:f0:b8:43:77:0c:37:02:b9:50:c4:4f:19:d3:
                    03:49:62:a2:1b:5e:9e:9c:46:9e:f5:bb:3b:50:a9:4c:
                    54:39:2e:b4:ed:4d:3b:ac:19:9a:af:da:c0:58:b0:1b:
                    de:00:9f:fe:a3:cf:a7:c1:00:45:c0:3b:50:35:f2:1a:
                    06:75:56:88:e0:23:5e:66:4d:4f:7f:43:8f:ec:f9:26:
                    57:2f:c5:66:1e:96:aa:58:2e:41:86:57:67:53:f0:74:
                    7e:1b:ef:0b:67:2a:70:11:ec:f7:7f:94:0b:c3:b5:6e:
                    44:eb:a4:76:d0:6f:95:8b:65:54:5e:31:5e:99:dd:1f:
                    42:73:aa:ab:03:61:73:ad:14:3d:11:bc:89:f3:31:9d:
                    91:b4:cc:1c:00:12:55:5c:b1:d0:36:71:4a:ff:44:e6:
                    31:52:4a:bc:fb:0b:d1:cf:fe:18:0d:81:7b:85:53:79:
                    9b:40:c3:74:b3:83:1e:3b:03:4e:bf:ab:38:18:c9:f1:
                    91:4f:14:28:b9:9f:7a:57:ca:3f:c9:60:d1:17:d2:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        81:cb:a1:28:8b:9d:eb:dd:50:b6:1b:b3:2c:01:07:cd:
        08:74:96:55:f2:a7:86:bf:fe:96:67:4e:f6:01:47:b6:
        c5:ca:b1:13:01:2d:d6:b7:c4:34:8e:d2:df:14:5b:98:
        a7:66:cd:ad:f9:47:c9:3d:39:76:85:65:45:d8:39:9d:
        0f:b8:90:ce:33:ab:a5:da:5a:d1:8c:99:07:2e:cb:08:
        7c:20:b2:3a:74:a1:d6:44:5e:79:f1:da:2f:ac:b5:22:
        f4:fd:6b:c7:1e:ef:25:b6:f3:eb:d4:24:cb:e6:a0:92:
        bb:30:f7:91:2b:24:7c:7a:9f:80:20:7b:4f:c1:f6:04:
        1e:bf:6f:74:89:86:8b:09:21:4e:8b:93:ff:06:ee:6a:
        88:7e:9a:61:b6:39:e9:56:44:c6:b3:04:e9:35:ab:ce:
        21:e4:a2:b3:17:58:28:1a:d3:1e:5c:1f:21:7b:b2:3f:
        97:80:80:02:6a:66:1c:0f:c8:05:61:be:61:36:90:54:
        af:8c:4f:b3:82:5a:81:57:88:9e:20:10:c6:88:c8:3b:
        f2:d5:69:14:4e:c2:5c:9c:a8:56:e4:c9:82:46:46:c9:
        31:eb:64:33:72:e4:4a:2f:9f:54:5d:63:fa:c0:6c:b1:
        40:62:21:cf:e3:4d:0e:c2:9e:07:f0:17:e4:fa:c9:65
    Fingerprint (SHA-256):
        E2:85:A7:42:3C:12:05:95:8E:BA:2E:22:52:78:97:9A:8B:FE:6D:43:0A:E2:38:FE:1B:EC:49:84:CC:77:22:D1
    Fingerprint (SHA1):
        51:26:01:BB:91:AE:8E:EB:C8:2D:C0:9A:80:30:BD:A1:36:7D:F0:5B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11755: Certificate Key Usage Extension (1) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt2 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt2, E=TestExt2@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:d3:5b
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Mon Aug 07 00:05:31 2017
            Not After : Tue Nov 07 00:05:31 2017
        Subject: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:1c:ff:3e:03:ef:af:25:da:7f:3a:94:26:32:6e:16:
                    1e:15:68:be:f1:40:6d:9a:73:79:23:7e:cf:bb:fd:b0:
                    7a:81:30:2c:ee:c6:5d:8a:fa:c7:dd:fb:c5:a1:16:4c:
                    79:6b:d2:bc:2a:3b:e6:31:5a:09:d1:21:26:8b:a9:ea:
                    55:b5:6e:a8:5f:8d:78:46:c6:c1:bb:cd:85:27:a4:79:
                    21:d0:43:82:23:76:be:b2:cc:6a:14:b5:b6:a0:20:bb:
                    e1:25:17:e3:f2:fa:c9:bd:69:3e:80:af:f3:99:6e:f2:
                    4d:d7:f9:2d:c5:f3:ee:d9:32:48:a7:b4:ba:75:df:15:
                    ae:1b:af:39:68:01:be:af:51:b1:17:a6:a9:01:70:6a:
                    58:38:38:9c:69:ba:b9:e6:57:b8:60:83:a3:20:3e:14:
                    cb:16:e2:e7:07:19:3e:27:5e:5a:df:6c:41:e1:cb:83:
                    29:a8:23:58:0c:93:3d:a4:86:8f:eb:5f:2b:4f:91:82:
                    61:a1:62:c5:5f:5c:9b:67:f6:8d:66:c3:d2:fc:db:5e:
                    ad:77:7d:84:0e:ff:ef:8f:94:fb:fb:b4:de:22:8b:de:
                    ff:6b:ec:cc:cd:d1:04:af:19:f2:f4:bc:c2:6a:37:15:
                    10:ce:d6:20:d0:a6:10:38:8f:68:9e:dc:8f:d7:39:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        92:ab:f1:da:04:c4:60:19:6f:2b:f2:27:46:77:2a:05:
        cf:1c:a2:53:7d:1e:34:a2:94:8a:41:89:7f:e9:c8:6b:
        b6:6e:ac:48:0e:9e:98:13:d2:8c:d3:10:c5:d3:ae:7b:
        64:7e:bb:26:3b:db:b8:14:e9:39:71:4d:c4:6d:89:10:
        1c:8a:88:29:da:f1:8c:57:ef:49:63:af:c6:0a:ce:8f:
        8f:77:d2:db:c0:01:cc:c5:bb:0a:41:f3:10:1d:ab:0d:
        61:ad:3b:f1:5a:70:23:cd:2a:dd:ad:96:25:8b:cf:f5:
        8f:35:9a:81:f2:01:b0:fc:1c:83:7c:53:27:ee:44:53:
        82:0b:bf:a3:bf:4a:33:cd:6b:99:c9:c2:7c:6e:f2:89:
        32:63:f1:d5:c3:f7:69:fc:51:ba:cc:0e:26:2d:04:0e:
        59:29:21:43:f5:a8:af:cd:cc:3b:e4:f5:f8:a3:7c:d5:
        81:3c:3d:8c:70:3d:d6:68:2d:3c:95:fd:58:5a:80:50:
        46:4a:2a:4d:d5:8b:df:02:71:aa:ec:f9:fb:03:d6:33:
        de:c7:87:f3:43:35:99:a6:88:ce:69:f7:82:a7:3d:0f:
        5f:b2:48:27:8c:30:da:6f:ba:3e:8f:20:34:3d:74:13:
        fe:1e:83:9c:97:96:82:b8:1a:c7:a6:3e:8e:69:f5:c8
    Fingerprint (SHA-256):
        27:B0:A8:4C:83:CF:0D:B2:BC:29:E1:0D:C7:32:DF:1C:23:9A:54:5C:73:33:1B:0A:E3:9B:57:7E:2F:A7:A8:7B
    Fingerprint (SHA1):
        7D:F2:F9:BC:47:CD:83:33:4C:2B:D5:8A:75:B6:28:9B:19:C0:11:C8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11756: Certificate Key Usage Extension (2) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt3 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt3, E=TestExt3@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
y
-1
n
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:d3:5d
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Mon Aug 07 00:05:32 2017
            Not After : Tue Nov 07 00:05:32 2017
        Subject: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:14:78:67:9f:ab:0e:71:fd:f2:6a:b3:e1:7f:b8:6f:
                    05:95:6b:27:72:62:7c:5f:0a:46:65:53:ae:b3:2f:57:
                    df:45:58:29:3c:a0:fa:b3:b3:14:db:e1:8e:ce:a6:22:
                    ed:03:15:3b:f3:a3:4e:ba:6b:34:28:9d:21:e9:82:2a:
                    9f:1c:08:aa:29:07:9c:33:86:eb:a3:b0:85:4a:8d:98:
                    6e:c0:a7:e4:a7:7f:67:52:e9:f0:37:ad:1c:a9:33:97:
                    c7:eb:67:ad:00:4a:88:fc:ca:d1:62:43:ad:b4:a7:dc:
                    c4:dc:4a:6c:da:31:bf:78:93:c4:40:47:ab:87:6b:c4:
                    fd:a4:81:91:9f:c1:45:1f:74:b8:09:97:ed:14:f1:87:
                    ad:6f:1d:08:a9:5f:53:09:31:42:29:31:09:17:31:13:
                    03:56:9b:51:e1:60:c0:95:a6:e5:be:76:75:a6:60:cd:
                    78:2e:44:28:3f:07:a7:52:5a:5d:41:bc:bd:22:d4:71:
                    67:80:d1:c3:d8:cc:5e:85:59:5c:d0:e6:39:c4:1c:9c:
                    fd:cf:91:23:48:08:85:8e:c5:3b:b1:ac:66:b6:a9:f0:
                    e8:b3:04:b4:1e:9d:28:fa:0c:3d:88:c8:ae:97:0b:6e:
                    23:95:d3:6a:41:ac:1c:f1:f1:15:21:bb:f0:a3:12:e9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8c:a2:de:21:8a:b6:ee:1c:05:9c:a5:44:b2:f1:da:aa:
        1e:af:a8:1f:b9:8c:e4:d4:24:b5:00:a6:36:2c:23:94:
        b1:74:de:ca:51:af:93:4a:9a:ad:66:33:fb:e5:64:12:
        47:96:e5:2a:36:e7:0a:0b:89:7b:c8:18:70:61:d2:6b:
        18:14:d5:16:f2:1f:ec:e0:d0:2a:28:ca:b2:6a:15:c6:
        52:4a:bf:b6:2e:e0:a3:f0:9c:34:b4:41:b3:dd:fe:18:
        4d:fb:f0:4e:75:1e:53:53:b3:9f:d3:dc:4f:33:fd:b0:
        43:f7:eb:d0:e6:80:28:0b:e1:2b:30:44:0b:79:39:3e:
        c4:99:11:03:f1:c1:2a:1d:44:b2:be:92:df:9d:d6:ae:
        85:ed:83:9f:ec:b8:4b:ca:b9:db:e8:05:32:79:a6:65:
        7e:7d:26:3d:01:e1:7f:02:6b:95:24:49:2d:e6:33:de:
        5d:d2:fc:a5:c4:fa:74:3d:35:82:58:6e:fc:e6:49:87:
        79:4e:94:5b:86:8a:43:49:fb:d7:b9:fc:88:0e:57:64:
        5b:f3:b9:c1:da:8a:23:08:ab:e7:48:8a:ac:cc:85:05:
        20:49:c4:10:37:0d:5b:f1:37:46:38:4a:a8:40:6d:71:
        62:59:d1:af:ce:6a:2c:8d:9f:af:26:4e:81:cf:1f:28
    Fingerprint (SHA-256):
        92:46:FC:49:9F:E6:9C:8E:46:4C:90:B7:DC:AB:C1:3E:72:9C:B4:CB:97:08:6B:46:37:9A:1D:C6:22:13:A8:58
    Fingerprint (SHA1):
        0C:11:6B:BC:3B:6F:24:60:C7:79:75:3A:13:80:9D:91:F3:6F:C7:2F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11757: Certificate Basic Constraints Extension (3) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt4 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt4, E=TestExt4@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
n
-1
y
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt4
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:d3:5e
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Mon Aug 07 00:05:33 2017
            Not After : Tue Nov 07 00:05:33 2017
        Subject: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:25:39:ff:cf:91:85:eb:c2:9e:bc:43:9a:3a:20:0d:
                    e1:ad:4a:4a:5e:b3:98:45:b9:8f:4b:d0:cd:ec:c3:2d:
                    5e:c8:da:6c:a1:94:0d:c7:26:7f:11:18:4e:0e:26:7c:
                    16:c6:b2:a3:aa:f6:2d:ab:6d:f6:f3:a3:96:a7:f5:99:
                    1b:9d:8b:20:58:7a:7d:bf:da:95:df:57:36:5e:b8:63:
                    e9:3d:17:1d:aa:8d:9f:2b:52:bf:c9:a3:ee:53:0b:81:
                    c3:48:ce:ac:3d:51:57:b6:56:b2:46:4f:c4:c6:46:da:
                    4d:43:6a:f8:11:7f:32:af:35:23:de:fa:01:90:ba:51:
                    93:5d:c9:a7:49:b5:c5:cb:83:80:d2:ba:07:f6:82:6a:
                    53:bd:3a:20:c2:9f:8a:d0:a1:44:49:75:3e:92:a4:b9:
                    a9:d8:41:7c:7b:33:f3:35:2f:c6:c7:1e:ad:b5:a1:4d:
                    0f:2a:c6:9c:72:9a:82:10:c3:1d:29:0f:67:39:88:7e:
                    76:9a:05:a9:57:03:e5:5f:59:88:30:c5:6a:be:b0:3b:
                    dd:9c:d9:6d:31:cd:fb:8e:e3:f9:fc:d4:08:a9:a9:ba:
                    e3:93:f8:5f:e8:fb:d1:49:63:ea:26:6b:de:7b:5f:0d:
                    9c:42:07:02:df:02:6f:ec:4e:8c:a3:d2:f9:6e:65:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is not a CA.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:dd:eb:c7:bb:40:cb:5e:25:95:4b:bc:c5:cf:9a:
        96:bc:45:9f:60:48:b7:6a:9f:e3:aa:6a:c9:62:f3:9f:
        a3:2f:53:c2:a6:ac:dc:68:57:ef:ef:51:65:2f:1c:03:
        45:2a:39:c2:57:f7:11:ce:81:4f:b2:bd:0a:7e:39:53:
        4c:6d:3f:6c:9b:a1:1d:c9:7d:d9:28:22:c1:89:c1:9d:
        8a:f5:d0:ad:ab:bf:35:a2:ab:59:ca:aa:be:3b:41:c9:
        b7:1b:bd:5f:41:cf:5b:be:9a:9b:47:f5:79:d1:d3:74:
        a3:ea:3d:7b:46:77:80:6f:20:56:51:be:a9:7d:26:89:
        4a:b3:3d:b7:96:11:20:05:c8:64:07:7d:f8:7a:2e:45:
        f7:d8:60:77:09:c9:28:26:1a:64:68:be:4f:87:8a:87:
        97:cc:39:34:72:bf:89:1d:f4:80:0e:3d:0b:b1:04:e0:
        90:39:cb:8a:83:d1:92:bf:be:f2:ef:8a:29:f9:e6:11:
        f5:77:4f:66:73:61:e9:55:23:3a:be:95:51:fe:97:09:
        53:90:c9:55:a5:e0:44:8e:83:8a:3a:da:e4:e6:31:bc:
        f8:8e:a7:06:f6:e2:bd:8b:ca:59:86:95:27:8e:c1:34:
        ae:f5:a1:7c:4d:7f:86:84:a7:8a:b4:74:ce:97:55:3a
    Fingerprint (SHA-256):
        D6:1A:7B:E7:60:04:A5:27:D3:25:F9:44:9F:04:A8:52:13:FE:E6:06:A6:B3:04:12:AE:1D:09:D4:E2:A8:5B:41
    Fingerprint (SHA1):
        AA:51:8D:28:15:5B:43:59:E1:BE:16:6F:68:D9:C0:B1:B6:A5:92:87
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11758: Certificate Basic Constraints Extension (4) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt5 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt5, E=TestExt5@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
y
12341235123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:d3:60
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Mon Aug 07 00:05:33 2017
            Not After : Tue Nov 07 00:05:33 2017
        Subject: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:58:e8:a3:92:fe:41:79:0e:e4:de:05:ba:9c:db:bf:
                    fb:d3:b2:02:31:51:9a:7d:21:26:63:5b:ce:d6:4f:7d:
                    a6:34:8c:b0:f8:0d:62:86:3c:7d:d9:81:c5:76:0f:b2:
                    3a:e9:fa:48:be:ef:dc:24:d9:18:f7:58:44:3c:90:63:
                    0c:78:60:d2:6d:3c:08:28:2b:05:01:cc:4b:ad:c8:69:
                    f7:81:a1:a5:5e:a4:f0:3c:a9:7a:dd:26:57:03:04:06:
                    f1:75:11:08:8d:fe:48:00:04:cb:bf:fd:57:ec:2e:60:
                    eb:21:fc:4d:b6:69:3c:4a:21:c3:b0:54:3d:0b:cc:92:
                    0b:64:bf:28:59:2d:72:0e:96:34:e4:05:74:dd:7b:af:
                    db:3c:82:c5:91:5f:b4:a2:e0:6b:80:8d:f3:16:af:34:
                    08:fb:0d:44:81:c9:34:3c:fe:ea:12:bc:a5:da:50:9b:
                    18:25:f2:a7:07:0b:a8:4e:be:d9:56:55:eb:12:de:e1:
                    c4:8a:70:1c:2b:f9:67:6d:71:71:ce:9f:51:e8:46:c2:
                    3b:f2:b2:5f:4a:f5:e2:dd:d1:84:c2:58:9d:fd:4c:6d:
                    db:8c:9e:0c:05:fb:e3:7d:a2:92:c4:ef:0d:e8:a8:70:
                    2f:92:73:a7:fe:22:e4:79:c1:26:36:b8:5f:1c:d1:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Key ID:
                12341235123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        97:bc:b7:e2:f0:18:a0:0d:19:17:28:b6:97:cf:c8:81:
        cf:cd:6f:2e:76:12:93:cb:90:ee:fc:25:89:3f:4d:4b:
        c7:83:9b:b3:32:fd:8a:cc:ec:1a:2d:4c:2e:ec:27:3e:
        50:1f:4e:70:86:d1:2b:f0:6e:d9:b7:6a:f1:e7:fc:02:
        1e:d2:7b:67:c0:a7:11:55:c3:52:91:f9:bb:c7:db:9b:
        27:48:8e:08:38:cd:c3:6a:83:c0:68:89:08:84:95:af:
        f2:67:ce:43:27:7c:8c:80:be:0b:b1:42:26:d1:49:cd:
        25:01:ee:b5:11:6b:3c:43:67:32:90:33:83:eb:17:0c:
        23:ac:ac:e2:13:91:dc:52:56:f1:3b:ce:a6:7b:4a:4d:
        3d:d6:e4:b0:18:f6:dd:27:19:67:df:07:bf:75:4b:53:
        2d:22:20:fa:c0:43:f5:5b:06:50:94:b3:fb:c5:7d:35:
        11:3f:de:0d:d2:ae:d4:95:bb:3e:fa:6d:8a:10:a6:19:
        d8:0c:d1:e3:23:b9:3c:02:91:2e:05:77:ed:d0:7a:67:
        13:44:84:36:1e:b3:96:03:1f:7f:54:a9:f7:8e:ef:df:
        c9:1d:3b:61:71:90:26:ad:2f:6c:da:79:d0:ac:43:6b:
        26:f1:09:c7:77:e3:9c:70:aa:f3:9e:5b:9f:1f:67:0a
    Fingerprint (SHA-256):
        AC:D6:C8:E1:7B:17:FF:CE:D4:0A:6F:B2:92:F2:C0:01:4F:FF:4E:B9:A0:15:C7:B6:B5:62:BB:95:93:D7:37:9F
    Fingerprint (SHA1):
        AC:B0:98:A1:08:94:5E:33:18:BC:F5:D2:91:FD:5B:06:35:67:1B:08
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11759: Certificate Authority Key Identifier Extension (5) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt6 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt6, E=TestExt6@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
y
3
test.com
214123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:d3:62
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Mon Aug 07 00:05:34 2017
            Not After : Tue Nov 07 00:05:34 2017
        Subject: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:2c:37:4e:33:24:18:54:62:5a:aa:04:3f:c3:84:ca:
                    8a:16:13:b5:5a:d8:b9:d7:29:af:a2:38:14:de:31:7f:
                    ea:71:94:eb:61:fd:86:82:4c:17:6d:c0:cd:f3:54:81:
                    a1:09:72:6c:63:a9:1b:58:2b:c2:c3:c9:e0:41:a2:65:
                    4b:aa:c0:d0:91:21:b2:69:a9:5b:1c:d4:ec:1b:06:97:
                    d1:10:38:33:68:88:72:71:bf:c6:c3:2d:f1:c5:a3:0f:
                    8f:48:c6:ce:4b:a3:86:bb:5b:b1:2c:3e:49:42:23:ab:
                    79:ce:d9:54:a1:01:a0:a5:fd:c9:8a:48:b6:8f:b6:27:
                    bc:6f:24:66:53:07:3c:60:dd:48:29:75:11:b2:05:5f:
                    ca:e3:5a:69:0f:81:c2:52:02:b5:b3:d6:69:25:7a:68:
                    f2:b8:74:5e:35:5a:e3:9c:50:1d:10:57:42:77:7e:d4:
                    95:c4:a5:2e:d4:59:5a:63:0e:fa:7c:d8:3c:0b:d0:8e:
                    a3:e3:65:f4:e8:c2:3d:e1:ff:0a:83:ed:fc:26:eb:95:
                    4c:59:50:75:e6:b0:4a:b9:65:2e:94:5d:84:83:cb:ec:
                    e5:99:d8:d1:7f:b1:e0:16:51:ea:18:90:ee:bb:4f:aa:
                    8e:1c:dd:fc:30:7b:48:73:51:e5:f1:02:35:2c:46:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Issuer: 
                DNS name: "test.com"
            Serial Number:
                214123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1e:42:60:f6:72:97:43:1c:6b:a8:b4:13:f5:ee:a3:f2:
        ad:7a:d2:53:63:76:21:6d:bb:e6:5a:3c:fd:38:50:cf:
        40:de:e2:a2:65:7e:fe:21:27:32:78:55:c7:3b:27:9a:
        81:03:78:0d:47:2d:e9:18:12:e0:c8:cc:6e:04:d3:58:
        34:79:f2:17:81:dd:58:9c:ea:5d:cb:d2:6d:10:7f:ed:
        5f:e6:34:6c:cd:13:11:9f:56:7d:75:4c:f5:74:c4:0c:
        78:94:61:06:15:ce:50:ab:77:7e:bb:dd:e2:fb:b6:54:
        b2:db:30:0a:47:3b:fe:de:f7:9a:a3:0b:49:32:a8:c2:
        de:2d:f6:d4:62:35:a0:c3:fb:e6:e9:6b:39:cf:1d:7a:
        69:9c:02:36:bb:c8:25:03:1e:03:c2:1a:74:83:44:bc:
        e1:b8:bb:89:e1:92:39:7c:47:10:79:4e:a9:33:b1:a8:
        a5:20:dc:50:32:be:cc:06:f0:c6:40:95:d5:1c:d7:0d:
        a5:1a:f9:1f:1b:1e:db:0c:1f:cf:46:4d:34:97:9c:96:
        f6:a3:e2:f0:1a:4a:1c:71:ed:ea:8f:a8:34:7f:2b:29:
        d9:24:f1:c6:48:09:44:e0:d8:6e:6d:0d:7f:ab:7b:77:
        de:c9:1b:45:21:aa:59:6f:a9:1a:f4:a5:29:2e:9b:a8
    Fingerprint (SHA-256):
        6C:E4:AC:EF:B2:37:93:3A:68:B4:7A:49:75:FB:73:3D:3A:22:C4:DD:73:C5:A9:59:58:55:1E:07:45:91:CC:43
    Fingerprint (SHA1):
        97:3E:5A:C3:D7:B7:78:EE:BF:5A:60:4C:76:29:F7:EC:03:1C:76:8A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11760: Certificate Authority Key Identifier Extension (6) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt7 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt7, E=TestExt7@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
1
2
rfc822@name.tld
3
test.com
8
1.2.3.4
9
OID.0.2.213
10
0
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:d3:63
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Mon Aug 07 00:05:35 2017
            Not After : Tue Nov 07 00:05:35 2017
        Subject: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:79:27:61:d0:39:5f:40:59:5e:36:fa:4d:e5:f9:51:
                    c6:9a:5f:18:ac:76:35:96:2f:a6:55:5a:49:04:1f:f7:
                    24:27:d7:29:75:dd:d6:25:da:f2:26:44:c1:5d:e8:3d:
                    4d:2f:ba:d9:74:c2:50:0d:00:ba:14:ea:81:d1:05:15:
                    1b:90:38:fe:2f:3b:f9:9d:2a:e5:37:83:ec:d1:e0:ef:
                    62:91:c8:90:65:ac:2a:13:d1:6b:30:cf:0a:67:cb:8f:
                    54:93:50:f6:7b:32:f4:7d:63:24:06:05:33:00:82:fc:
                    06:92:b9:38:09:51:7f:14:f0:ce:d5:aa:a0:8e:25:6d:
                    2b:e8:42:da:61:65:9f:9b:a9:1c:0b:57:ec:9d:33:8f:
                    26:90:6f:c6:4e:64:8c:c0:d3:35:47:1f:58:35:6d:3c:
                    41:e7:31:d9:07:56:8f:7b:5c:9f:a6:57:f8:7c:30:ba:
                    ea:c3:5a:3c:2e:d7:63:d0:4d:dc:fe:43:fb:01:d1:61:
                    44:45:49:f9:4f:fe:4b:70:19:1f:ed:68:3c:ed:d9:ac:
                    d8:49:3a:f4:3b:91:00:e7:7c:fa:cf:89:ba:e4:3f:1d:
                    2b:b8:06:6f:4a:04:f1:71:06:6e:29:a0:e3:5f:06:d9:
                    74:fc:ab:38:63:20:68:96:38:60:34:ec:54:c4:83:a1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RFC822 Name: "rfc822@name.tld"
                DNS name: "test.com"
                IP Address:
                    87:07:31:2e:32:2e:33:2e:34
                Registered ID: OID.2.955.79.73.68.46.48.46.50.46.50.49.51
                Reasons:
                    80
                    (7 least significant bits unused)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9f:13:59:82:3b:98:50:d3:63:64:a8:1b:85:95:61:fe:
        96:a8:2a:c7:32:c3:e9:62:db:57:91:6b:b8:a0:bd:d7:
        98:ee:6a:0c:64:d1:1f:11:61:97:72:c4:cf:54:6a:05:
        0a:7e:8e:c7:b4:71:a5:77:51:83:98:e3:92:9f:da:db:
        8e:27:47:c8:04:0e:f6:85:b5:f3:1d:e2:bf:a7:54:8f:
        7a:d5:1e:c2:c2:32:23:75:04:76:19:9f:72:47:85:e9:
        c1:9b:d1:bd:01:28:60:12:90:76:e0:06:4e:cb:79:79:
        82:91:73:70:37:a9:44:58:a1:15:1b:55:63:bc:f6:74:
        4c:11:3e:7a:24:42:8f:f7:03:43:f4:75:3f:9d:a7:34:
        5b:36:bd:0b:1d:cc:47:ad:d4:8f:b6:f4:38:d9:ab:e2:
        03:0c:45:a4:89:14:9f:d6:61:a7:60:90:0b:09:79:07:
        29:8f:95:c9:f3:80:22:05:f8:c9:b7:8b:ea:3f:73:b6:
        57:04:2b:d3:d4:dd:5f:92:ee:01:2f:5b:fa:a6:1b:f4:
        1f:76:fc:d8:e7:70:2b:a7:3c:93:78:9c:9a:42:ae:71:
        ef:1a:e6:17:00:ff:4c:8b:6e:51:cd:e9:51:21:fb:72:
        73:a1:47:fb:f8:4b:46:14:74:39:fc:33:14:2d:df:64
    Fingerprint (SHA-256):
        2E:F3:18:0D:96:8D:88:DE:AA:36:C4:93:86:80:B5:27:89:76:A1:61:0B:19:43:14:BB:FD:6B:DB:BF:FC:42:88
    Fingerprint (SHA1):
        32:4F:FE:7A:03:C0:12:E6:95:28:7A:61:0C:F6:EE:5C:F7:2D:21:D1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11761: CRL Distribution Points Extension (7) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt8 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt8, E=TestExt8@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
2
SN=asdfsdf
4
3
test.com
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > Enter the relative name: 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:d3:64
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Mon Aug 07 00:05:36 2017
            Not After : Tue Nov 07 00:05:36 2017
        Subject: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:98:e9:24:e9:53:e4:3b:ac:f3:5d:cd:83:c0:6b:0d:
                    59:e6:5a:55:5a:6a:1f:4f:06:a2:43:fe:de:6b:b6:54:
                    eb:d7:10:21:09:de:cf:3b:24:de:5f:33:29:0e:38:03:
                    69:3b:5f:da:5f:04:17:21:0c:12:4c:3a:e3:2b:ae:de:
                    df:61:53:61:35:00:03:4c:83:66:82:a3:e2:3a:b0:c8:
                    eb:b0:92:ce:3c:93:b1:d0:6c:73:16:19:71:a6:07:19:
                    a2:9c:fa:a5:1f:c9:d1:0b:1d:2b:d8:5b:0a:d5:1b:74:
                    0d:89:8e:06:b2:9d:fa:0e:bd:b0:19:b0:3e:89:8e:38:
                    90:f2:d7:b8:44:d0:b6:4f:af:9a:0a:ac:b2:e2:c2:d1:
                    2b:df:be:ef:8d:a9:8b:b7:4a:91:80:2e:17:fe:e6:4c:
                    f8:d8:1b:1f:e0:e4:05:21:55:60:35:de:66:14:27:2e:
                    d9:18:65:cb:aa:50:c3:41:70:4e:d6:30:71:d5:97:a2:
                    cd:2f:63:f3:7e:71:17:25:cf:91:21:71:c6:25:3a:04:
                    8d:c9:4e:be:14:97:d4:e7:26:dd:e8:e1:25:6b:46:69:
                    1e:34:28:8b:c7:86:06:41:37:7c:3c:bc:a0:35:2e:88:
                    78:19:e1:51:16:1c:d6:30:ae:fd:cf:79:b2:32:82:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RDN: "SN=asdfsdf"
                Reasons:
                    08
                    (7 least significant bits unused)
                CRL issuer: 
                    DNS name: "test.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:cf:e1:1a:84:a7:cd:b0:e8:43:fd:a3:03:57:b5:75:
        b3:f7:f9:8f:2e:65:11:3a:a2:ea:83:34:54:51:e7:d8:
        59:03:93:19:c4:e3:59:da:32:1e:c3:04:f8:d7:5d:cc:
        7b:1d:92:6a:27:6b:c0:09:ac:2a:6b:70:03:0c:b0:c2:
        17:f6:52:6a:43:cf:e7:30:68:f4:2e:f3:c0:c7:1e:94:
        0d:26:ef:6a:20:08:58:ed:0b:81:68:e7:35:94:5a:ca:
        df:bb:2f:40:66:e4:26:fa:50:12:80:33:70:64:a9:46:
        ce:97:65:fc:e4:34:58:66:35:5e:2b:af:13:6b:25:e6:
        e9:aa:9b:c6:89:b0:39:a2:93:d1:59:eb:1e:21:67:93:
        ef:45:2b:26:aa:5a:e5:2c:71:b6:f5:03:ae:e7:61:b9:
        bf:2d:d5:99:e3:ac:6e:1c:07:87:92:f6:04:b0:8b:bd:
        85:58:de:82:9d:9d:65:b8:50:d7:9c:47:d1:af:06:fb:
        71:20:eb:52:58:92:81:6f:3f:76:3e:12:a5:51:67:f4:
        54:c5:a3:56:8d:12:1b:ad:9f:5b:cf:77:ef:1a:13:bf:
        fa:1b:d0:79:d4:a9:a1:4d:95:a5:bb:3d:dd:e5:70:8a:
        3c:51:ca:d8:69:12:b4:d0:c1:df:4d:08:0e:d3:32:d8
    Fingerprint (SHA-256):
        75:05:76:5E:CA:C8:3F:F4:4C:CC:44:CD:9A:BB:94:9D:81:15:F9:19:68:58:61:AA:4F:F2:88:18:BC:F8:AA:FD
    Fingerprint (SHA1):
        B8:53:B3:0B:89:C5:36:BC:BB:9A:E6:0F:AF:57:BA:7E:38:23:D4:10
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11762: CRL Distribution Points Extension (8) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt9 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt9, E=TestExt9@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -5 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
0
1
2
10
n
Generating key.  This may take a few moments...
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt9
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:d3:66
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Mon Aug 07 00:05:37 2017
            Not After : Tue Nov 07 00:05:37 2017
        Subject: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:3a:64:1c:77:cc:34:ae:f5:a4:0e:fc:36:79:88:ca:
                    67:4a:90:e7:4a:77:f4:c2:7b:71:6a:38:de:ff:be:a1:
                    f4:a0:58:4c:c9:d8:eb:84:b3:68:fe:ac:50:7e:6b:16:
                    d9:52:c5:01:b4:4a:5b:63:f9:49:b1:3f:90:ed:dd:49:
                    14:1c:f5:2f:f9:bb:21:e3:49:23:e7:81:59:bd:72:65:
                    0f:7b:e7:a8:c8:3b:0c:34:68:d3:b5:27:41:55:7b:58:
                    ea:d8:ff:44:70:31:42:11:83:1a:91:90:41:4a:28:12:
                    8c:d4:e2:3e:c5:d4:69:2d:54:72:00:ce:e3:38:da:ec:
                    fa:2e:63:3a:be:dc:7b:bc:91:69:2e:83:05:28:ec:5d:
                    3c:f1:5e:e5:49:ca:6b:46:57:08:61:de:ed:0c:c4:bf:
                    16:1a:8c:83:1b:dd:7d:8e:e8:dc:79:05:fd:9c:18:bc:
                    78:de:b8:ce:a0:47:16:f2:42:37:cc:6b:de:8e:26:a8:
                    4f:c8:cb:98:75:87:aa:06:15:7d:f5:ae:39:57:dd:19:
                    f0:e4:38:e0:1c:ce:a1:42:c7:2e:10:bd:40:a3:06:10:
                    36:2a:94:e6:74:08:c8:e5:5a:fe:5c:88:ee:58:75:89:
                    d8:17:df:82:07:06:7a:b2:dd:02:b1:ef:f6:77:12:d1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL Client,SSL Server,S/MIME>
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        19:f8:b5:31:79:8c:2f:e8:d1:02:0b:d2:d9:40:6a:0f:
        d4:1a:24:99:84:7a:b2:aa:37:d5:b0:0c:5d:00:3d:29:
        8a:5b:b5:e9:a3:d0:e3:e0:80:2b:e3:3d:4d:58:75:91:
        c4:e2:93:06:2c:91:09:64:58:a1:49:a1:d4:72:50:5d:
        f4:23:f6:81:70:18:dc:a8:20:48:96:97:a0:35:ff:dc:
        39:c3:99:e7:19:ae:0d:db:a1:ac:86:61:b9:62:31:e1:
        98:da:05:d4:a1:3f:19:7e:45:55:0a:6a:40:15:2b:b0:
        e1:77:2e:88:bb:c8:1e:03:b1:62:86:3f:cf:f9:a7:74:
        85:da:d1:5f:5b:d9:12:c5:47:10:5c:aa:9d:5a:53:b9:
        99:53:e4:2f:d5:43:74:7c:d8:d6:51:0d:d0:dd:ff:31:
        77:c3:b7:db:bf:b1:a6:0e:c5:4d:19:66:ea:e7:30:28:
        3b:0a:ce:4d:57:84:58:13:88:9f:41:45:f7:99:e0:47:
        a2:c2:e7:e8:31:93:9f:03:b4:ac:30:cb:e8:4e:79:8e:
        16:03:59:83:0e:b6:14:e9:35:ee:fa:5f:72:1e:ec:5f:
        32:ec:bc:e9:e8:d0:65:44:73:5c:14:16:84:6f:0c:65:
        89:16:db:e6:71:85:51:79:8b:1b:b7:3a:d3:41:45:66
    Fingerprint (SHA-256):
        B6:35:1E:6E:0C:F2:8C:93:02:6D:45:76:83:AF:BC:75:C1:F8:C1:5C:D9:05:D9:4C:21:31:D8:85:D1:CA:0B:BF
    Fingerprint (SHA1):
        2F:D5:0E:45:74:4A:BE:0E:C6:07:86:B4:11:C1:A7:57:16:8D:48:6D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11763: Certificate Type Extension (9) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt10 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt10, E=TestExt10@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -6 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt10
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:d3:68
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Mon Aug 07 00:05:37 2017
            Not After : Tue Nov 07 00:05:37 2017
        Subject: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:1f:7d:d8:29:28:c6:c6:3f:67:46:2e:cd:22:39:5b:
                    f5:f3:86:18:b2:f8:6e:74:5e:bb:4e:ca:af:c4:72:5f:
                    3a:41:41:6d:2d:40:91:72:1a:41:68:c7:67:0f:99:d0:
                    6b:86:bd:77:3a:8f:16:36:a8:6f:4b:6f:45:9b:5d:2a:
                    b2:bd:cd:e5:11:d8:40:8a:1b:e5:f4:91:85:7f:76:a2:
                    32:f1:07:e9:66:d9:9e:39:85:e5:ab:60:4b:82:3f:59:
                    f4:8c:4c:55:8f:00:10:5f:dc:86:5e:29:38:1a:4b:47:
                    2f:09:b3:79:fc:b9:a7:90:74:41:1e:1e:2a:50:e3:1c:
                    bd:da:aa:2c:44:c2:3d:55:43:54:e7:af:51:34:ec:eb:
                    a5:00:2c:80:e1:a7:4a:31:45:52:6f:d1:ad:a8:6c:94:
                    c7:62:fa:c4:8d:20:60:1d:ea:58:a4:4c:7c:62:55:52:
                    69:a5:d9:06:9e:55:af:f4:ff:01:28:62:5b:f9:fc:ba:
                    ae:34:5f:56:41:d1:83:6f:b0:61:09:47:d6:a9:88:f6:
                    ee:f3:4e:ad:d5:3a:78:4c:3f:f4:b5:07:36:8a:cc:d9:
                    f1:e3:e3:c5:63:22:9b:a4:5f:56:53:57:1d:14:6f:3f:
                    0a:cd:60:c9:5f:a3:41:0f:29:3b:f5:3d:fe:0a:db:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Extended Key Usage
            Critical: True
                TLS Web Server Authentication Certificate
                TLS Web Client Authentication Certificate
                Code Signing Certificate
                E-Mail Protection Certificate
                Time Stamping Certifcate
                OCSP Responder Certificate
                Strong Crypto Export Approved
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0c:42:79:d2:a0:d1:2c:49:c3:9d:d0:69:f5:07:17:e3:
        96:c6:94:1b:2a:9c:ba:55:ab:c6:79:66:3f:6d:7c:33:
        c1:50:92:cd:fa:aa:cd:4f:01:79:31:63:78:54:c5:7b:
        46:3f:28:37:05:81:47:bb:28:13:0f:14:a2:6c:b5:cc:
        ea:6b:f1:24:9a:b6:8a:f4:fe:51:14:57:33:2c:52:00:
        e6:e6:b1:d9:a5:11:54:ef:63:e1:84:48:9a:80:d9:fa:
        71:a1:ef:54:ac:c7:18:b5:bb:12:8d:29:c8:26:7c:d6:
        86:7c:f6:4f:7f:87:19:43:ee:a2:1e:2b:d1:7d:62:1a:
        04:50:54:32:56:68:00:33:65:f5:31:0c:0e:06:af:15:
        98:87:32:ac:ae:02:99:0f:8f:30:c6:2c:69:80:7a:3f:
        dc:00:97:a3:28:02:3e:d6:8f:5e:f9:36:57:82:59:f9:
        7c:cf:bf:2f:5a:30:1c:6b:bb:a0:26:8a:7a:49:28:98:
        ee:82:63:88:d1:68:0f:23:92:98:d0:5d:02:a4:0c:60:
        31:93:67:2c:eb:f6:ba:e8:2d:c2:94:42:30:8e:08:46:
        a7:75:a9:2e:b4:ae:29:f6:6d:97:87:60:e2:64:a2:fa:
        54:aa:0c:bf:1a:c7:09:29:d4:92:b8:f3:45:6f:bd:f4
    Fingerprint (SHA-256):
        45:07:65:7F:0A:92:8C:17:F7:6C:3C:4E:DD:E8:B0:2C:90:A2:78:95:21:0A:18:1A:29:66:E1:82:8E:41:CC:F7
    Fingerprint (SHA1):
        41:B0:3F:27:9A:50:1D:80:BA:70:89:2C:A0:21:28:DC:FA:D7:13:9D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11764: Extended Key Usage Extension (10) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt11 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt11
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:d3:69
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Mon Aug 07 00:05:38 2017
            Not After : Tue Nov 07 00:05:38 2017
        Subject: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:d6:87:cd:9f:7d:c9:6b:c2:a8:d1:a1:09:88:f5:8e:
                    cd:94:09:72:0a:29:a9:cf:2d:95:5b:77:c5:cd:b1:4b:
                    d5:94:7a:ce:a7:20:42:d9:24:d8:b6:16:e9:26:60:97:
                    a6:c2:06:16:f7:1b:fc:ce:0e:7b:16:7c:7f:93:bb:f5:
                    ff:ec:3e:7f:71:25:34:93:fd:21:f0:0a:83:18:40:05:
                    30:eb:00:5a:79:41:31:7f:0d:66:fc:e1:42:de:86:f8:
                    d9:7a:ec:c1:fa:f1:c6:f5:00:d8:20:68:a1:50:17:60:
                    52:bf:c4:1c:8d:64:c3:cb:24:cf:12:b4:d7:15:1f:5e:
                    a0:21:60:34:8c:c3:4a:06:4b:d4:48:9c:80:92:56:ad:
                    f0:c0:89:c8:77:2c:90:a7:9c:29:0e:ea:3e:4d:30:cc:
                    0f:3b:45:6d:86:80:b1:d0:df:a2:05:4b:14:e3:f3:37:
                    ff:a6:f3:9a:77:32:2a:e6:54:93:8b:1e:98:47:7e:88:
                    77:39:26:89:5a:6e:65:3a:28:6d:cb:25:77:7c:5d:48:
                    89:32:7e:19:48:c6:98:72:76:20:b8:05:ee:7a:3b:9a:
                    2a:bf:9d:e7:a5:f6:8a:47:f6:fb:2f:ab:58:c5:12:1c:
                    f4:3e:12:31:07:2d:30:b8:cf:5f:e5:cc:a7:9a:7a:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1f:1c:8c:1e:df:f7:fc:38:bc:b6:e2:e6:6d:a6:db:cb:
        b5:6d:99:82:83:31:e4:aa:e3:d7:8d:0e:00:ff:bc:b9:
        b0:1b:a7:4a:f7:b1:f3:39:97:18:68:aa:23:b2:4d:f5:
        7b:61:0f:55:0f:c7:a2:43:31:69:81:b8:55:cd:40:89:
        97:a4:9e:2d:d9:47:f6:0c:1e:5e:5d:df:b1:40:9f:fb:
        84:5a:1f:29:d0:68:78:1f:9f:b4:ed:6b:d3:51:6f:73:
        b5:b6:1f:93:45:f4:78:5a:eb:4d:3d:7f:fa:68:06:73:
        46:be:0c:15:8f:1c:6b:ba:27:51:3a:ad:31:43:8b:c9:
        9a:f5:c0:94:fa:ff:1c:55:c2:c3:fa:4b:02:14:4a:73:
        60:1d:b7:d3:39:6e:f5:dd:ca:58:7a:de:e2:c7:89:e0:
        49:42:0f:df:1f:b9:2d:0f:78:9d:54:c8:a0:0e:5c:67:
        bb:b3:f9:b6:a5:54:12:ea:17:b4:b4:96:84:fc:d7:2c:
        7a:11:a1:22:4b:19:0a:7a:be:01:49:53:ba:4f:cc:b3:
        17:61:b4:b7:7d:8e:bb:5b:61:f7:81:a9:39:49:b4:ba:
        a2:1c:03:60:7b:49:4a:3e:54:28:f7:0d:a6:cd:25:b0:
        f1:61:7c:0a:25:a2:65:70:77:44:d8:f8:ae:c3:21:21
    Fingerprint (SHA-256):
        18:DE:92:C9:42:33:4F:00:7D:53:A0:6C:16:29:EB:E5:E0:45:25:44:C7:1C:78:AB:AA:F1:86:C3:4C:1F:EE:8A
    Fingerprint (SHA1):
        7A:E6:AB:DE:98:B9:F7:AA:2B:0D:59:F7:36:F9:CD:A5:FF:A5:40:01
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11765: Certificate Key Usage Extension (11) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #11766: create cert with invalid SAN parameter (12) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com,dns:www.example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #11767: create cert with invalid SAN parameter (13) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN dns:example.com,dns:www.example.com
Generating key.  This may take a few moments...
cert.sh: #11768: create cert with valid SAN parameter (14) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:d3:6d
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Mon Aug 07 00:05:40 2017
            Not After : Tue Nov 07 00:05:40 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:ff:f0:57:2c:be:64:38:85:51:a6:3a:7f:57:e9:b9:
                    4b:12:ad:c8:2a:b9:34:cc:1b:f8:af:46:bd:70:c2:91:
                    ef:31:01:68:4f:d3:be:a1:99:64:b8:44:90:86:b4:f9:
                    95:b5:57:f3:9a:33:7d:da:3b:b0:74:17:82:24:98:9e:
                    96:8d:a8:c8:d5:e8:82:c4:9f:06:b3:4d:17:ad:91:25:
                    ba:39:af:8f:16:2f:db:8c:32:2c:05:a7:68:db:61:23:
                    55:12:9e:d6:3a:3e:8f:ce:44:8d:03:f3:46:13:d8:01:
                    6a:0a:86:03:db:f1:4d:41:09:dd:b3:c6:01:5b:71:34:
                    45:91:52:bd:ba:49:1b:bc:3b:ab:f6:ab:ef:77:f7:f1:
                    c0:47:eb:6d:a7:8d:bd:57:4f:dd:96:5a:eb:ec:de:d3:
                    f0:ab:12:ff:d3:e1:54:f6:b4:53:bd:c3:9c:54:b9:ae:
                    b4:fc:b4:5f:73:b5:a5:99:dd:54:8a:d2:fc:c4:f5:90:
                    b2:05:54:5d:6e:9f:51:35:3d:c0:b0:88:14:02:ff:8e:
                    12:c8:34:0c:7f:70:2a:de:cf:b3:1d:35:b6:e5:f7:95:
                    b5:23:67:31:4a:72:03:f7:53:b3:9e:0f:b0:c8:0b:f2:
                    8a:8a:b3:4a:d0:92:64:f8:aa:c5:bc:6a:e9:d6:6c:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:40:23:54:8a:d1:7d:94:6a:4f:b9:64:bd:0b:ba:8d:
        3e:06:73:ad:42:28:4f:aa:77:01:72:22:56:d0:a6:3b:
        fc:4f:db:5c:6e:0f:1a:84:19:00:ab:35:39:57:79:62:
        c4:9e:48:b1:09:d6:d5:ed:63:3d:d3:fc:ec:85:96:10:
        fe:f2:1d:1e:3a:38:db:e8:f6:39:fd:4d:21:48:91:c5:
        c3:13:26:16:88:03:86:ff:7e:8e:18:a6:d8:6f:39:d2:
        b9:bf:ad:83:3c:2f:08:ae:9f:0a:6d:dd:5b:39:a7:09:
        a1:fc:28:9b:b4:83:71:2e:34:6e:23:86:f6:f6:f1:b9:
        51:48:ce:af:9c:eb:9b:72:55:9e:8b:50:36:83:a0:d3:
        4b:5c:4e:9c:75:f6:f1:3d:db:8c:2a:19:5c:b5:0b:0f:
        ed:e9:ff:b9:36:a4:ca:58:4c:3c:66:5e:02:d3:39:ff:
        e2:27:3a:9f:ed:ce:56:13:31:af:d8:d3:f5:29:5f:69:
        6f:2d:f4:a8:83:e2:3a:04:81:ce:4e:90:64:56:d5:b8:
        1a:4b:d1:2f:1c:17:38:18:cd:d2:58:89:ab:2a:d8:41:
        9a:09:ff:51:69:ba:a9:7b:8c:44:aa:d7:30:7f:c2:8a:
        94:1f:80:c5:5f:be:66:55:c1:90:e9:4f:87:e9:c5:27
    Fingerprint (SHA-256):
        9C:27:F9:B7:A0:8C:14:49:EF:25:3E:03:5D:7A:5F:D9:41:7C:A7:42:CC:9F:C7:5D:50:7F:0B:F7:5D:BF:97:7B
    Fingerprint (SHA1):
        60:54:53:92:CB:EC:C7:8D:5D:B1:DD:88:B7:C0:00:F5:66:13:3F:22
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11769: create cert with valid SAN parameter (15) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN --dump-ext-val 2.5.29.17
writing output to /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
cert.sh: #11770: dump extension 2.5.29.17 to file /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der (16) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #11771: create cert with valid SAN parameter (17) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #11772: expect failure to list cert, because we deleted it (18) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der: error 0: Success
cert.sh: #11773: create cert with invalid generic ext parameter (19) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der: error 0: Success
cert.sh: #11774: create cert with invalid generic ext parameter (20) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der: error 0: Success
cert.sh: #11775: create cert with invalid generic ext parameter (21) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric 2.5.29.17:not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
Generating key.  This may take a few moments...
cert.sh: #11776: create cert with valid generic ext parameter (22) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:c3:d3:73
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Mon Aug 07 00:05:43 2017
            Not After : Tue Nov 07 00:05:43 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:10:63:a2:77:7f:07:02:6e:fb:14:2f:80:cd:3b:6b:
                    a1:3b:e0:ec:63:7c:16:0a:8a:4a:2a:c1:6d:1a:cd:3d:
                    52:dc:ac:a5:52:b3:d0:e5:e1:bf:c6:30:8d:53:53:03:
                    0e:e4:29:d2:f3:2d:a9:1f:69:db:80:41:90:5c:8f:b4:
                    e8:6c:7b:ee:ec:2b:be:b1:49:da:26:a4:b5:2d:39:e8:
                    f9:2e:6f:fc:a5:a3:20:9f:11:7d:a5:3d:03:41:52:15:
                    63:27:0f:8d:ce:b1:14:74:b7:e5:7d:9c:c4:b7:6e:75:
                    03:f9:23:6a:d3:7a:91:cb:ae:df:26:29:fa:38:f3:db:
                    8c:3b:86:91:ba:c9:e4:9a:8c:af:ff:23:f5:23:08:f3:
                    28:38:af:0d:05:3b:8a:f7:3f:6a:72:3f:e6:f4:6a:26:
                    a7:27:8c:67:dd:18:6e:d8:af:37:94:c8:c1:fd:14:fa:
                    de:3c:53:c5:39:42:6a:3c:45:85:d2:e7:7a:dd:19:33:
                    09:dc:42:f3:50:ea:2f:b6:63:e2:0d:52:3b:d0:83:47:
                    69:13:7d:62:4b:6d:87:1b:83:f0:db:f3:bd:a8:72:c1:
                    1f:ba:a9:37:04:51:5a:4c:bb:fe:fb:d4:f4:11:d8:07:
                    91:e2:71:43:c9:80:59:6a:da:e0:d2:7c:5f:06:d7:77
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4a:50:bc:9a:51:db:cd:2a:82:9c:e6:8f:70:de:58:3e:
        dc:6d:96:d8:28:21:0f:0f:80:b8:b2:8f:7e:40:fa:51:
        6e:cb:6c:4b:6e:dc:75:42:84:4b:f3:d3:c5:84:9a:63:
        1f:19:8e:6b:63:d8:4b:46:7b:ac:d6:5a:c5:00:93:56:
        93:09:44:e5:b7:d5:9b:15:05:37:a2:ab:8f:99:b4:41:
        64:12:d0:50:ce:52:89:f4:f7:cd:fe:62:d9:db:60:58:
        e7:a0:90:64:b5:de:20:86:ff:94:57:a3:3d:ae:04:92:
        d9:dc:49:39:fc:8c:49:d6:3e:c0:a3:7b:24:7c:65:99:
        99:e5:e3:cc:3e:e4:85:bb:80:97:0a:5f:bf:3c:54:e3:
        f9:b5:ee:e9:56:09:05:d6:4d:27:eb:0a:fd:9c:47:39:
        eb:f4:ff:fb:ef:74:37:3f:73:67:30:eb:5f:2c:66:63:
        2f:02:5d:99:b1:65:0e:23:c5:b0:b7:fc:d0:4e:5c:48:
        8a:e4:cd:7f:b3:5f:10:ea:2a:f2:d9:f5:29:2b:34:01:
        b6:31:00:0b:ed:fe:a6:b7:06:ba:1e:34:61:be:e9:01:
        58:0f:4d:70:66:c7:f0:75:73:7d:98:b3:30:64:c4:1f:
        02:a4:c5:74:c5:67:0e:ac:8e:f0:c5:dd:b0:f1:92:94
    Fingerprint (SHA-256):
        1E:BA:29:20:86:CF:B7:9A:FF:81:B0:62:C7:BB:F0:3A:26:0C:C1:1F:C8:47:14:C2:55:ED:12:4B:28:2F:6D:0F
    Fingerprint (SHA1):
        E6:19:09:E3:A9:74:5E:D2:F1:CF:A1:0E:F2:3B:69:08:62:A4:6D:2B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11777: create cert with valid generic ext parameter (23) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #11778: create cert with valid generic ext parameter (24) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #11779: expect failure to list cert, because we deleted it (25) - PASSED
cert.sh: Create A Password Test Cert  ==============
cert.sh: Create A Password Test Ca  --------
cert.sh: Creating a CA Certificate PasswordCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dbpass
cert.sh: Creating CA Cert DB --------------------------
certutil -s "CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dbpass -f ../tests.pw
cert.sh: #11780: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dbpass
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11781: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert PasswordCA  --------------------------
certutil -s "CN=NSS Password Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dbpass -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11782: Creating CA Cert PasswordCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n PasswordCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dbpass -o root.cert
cert.sh: #11783: Exporting Root Cert - PASSED
cert.sh: Changing password on Password Test Cert's Cert DB --------------------------
certutil -W -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dbpass -f ../tests.pw -@ ../tests.fipspw
Password changed successfully.
cert.sh: #11784: Changing password on Password Test Cert's Cert DB - PASSED
cert.sh: Generate Certificate for Password Test Cert with new password --------------------------
certutil -s "CN=Password Test Cert, E=password@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCert -c PasswordCA -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dbpass -f ../tests.fipspw -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11785: Generate Certificate for Password Test Cert with new password - PASSED
cert.sh SUCCESS: PASSWORD passed
cert.sh: Verify Certificate for Password Test Cert with new password --------------------------
certutil -V -n PasswordCert -u S -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dbpass -f ../tests.fipspw
certutil: certificate is valid
cert.sh: #11786: Verify Certificate for Password Test Cert with new password - PASSED
cert.sh: Creating Distrusted Certificate
cert.sh: Initializing Distrusted's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
cert.sh: #11787: Initializing Distrusted's Cert DB - PASSED
cert.sh: Loading root cert module to Distrusted's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11788: Loading root cert module to Distrusted's Cert DB - PASSED
cert.sh: Import Root CA for Distrusted --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -i ../CA/TestCA.ca.cert
cert.sh: #11789: Import Root CA for Distrusted - PASSED
cert.sh: Import DSA Root CA for Distrusted --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -i ../CA/TestCA-dsa.ca.cert
cert.sh: #11790: Import DSA Root CA for Distrusted - PASSED
cert.sh: Import EC Root CA for Distrusted --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -i ../CA/TestCA-ec.ca.cert
cert.sh: #11791: Import EC Root CA for Distrusted - PASSED
cert.sh: Generate Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11792: Generate Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's Request --------------------------
certutil -C -c TestCA -m 2000 -v 60 -d ../CA -i req -o Distrusted.cert -f ../tests.pw 
cert.sh: #11793: Sign Distrusted's Request - PASSED
cert.sh: Import Distrusted's Cert --------------------------
certutil -A -n Distrusted -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11794: Import Distrusted's Cert - PASSED
cert.sh SUCCESS: Distrusted's Cert Created
cert.sh: Generate DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11795: Generate DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 2000 -v 60 -d ../CA -i req -o Distrusted-dsa.cert -f ../tests.pw 
cert.sh: #11796: Sign Distrusted's DSA Request - PASSED
cert.sh: Import Distrusted's DSA Cert --------------------------
certutil -A -n Distrusted-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11797: Import Distrusted's DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11798: Generate mixed DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 22000 -v 60 -d ../CA -i req -o Distrusted-dsamixed.cert -f ../tests.pw 
cert.sh: #11799: Sign Distrusted's DSA Request with RSA - PASSED
cert.sh: Import Distrusted's mixed DSA Cert --------------------------
certutil -A -n Distrusted-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11800: Import Distrusted's mixed DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11801: Generate EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request --------------------------
certutil -C -c TestCA-ec -m 2000 -v 60 -d ../CA -i req -o Distrusted-ec.cert -f ../tests.pw 
cert.sh: #11802: Sign Distrusted's EC Request - PASSED
cert.sh: Import Distrusted's EC Cert --------------------------
certutil -A -n Distrusted-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11803: Import Distrusted's EC Cert - PASSED
cert.sh SUCCESS: Distrusted's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11804: Generate mixed EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request with RSA --------------------------
certutil -C -c TestCA -m 12000 -v 60 -d ../CA -i req -o Distrusted-ecmixed.cert -f ../tests.pw 
cert.sh: #11805: Sign Distrusted's EC Request with RSA - PASSED
cert.sh: Import Distrusted's mixed EC Cert --------------------------
certutil -A -n Distrusted-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11806: Import Distrusted's mixed EC Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed EC Cert Created
cert.sh: Mark CERT as unstrusted --------------------------
certutil -M -n Distrusted -t p,p,p -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
cert.sh: #11807: Mark CERT as unstrusted - PASSED
cert.sh: Creating Distrusted Intermediate
cert.sh: Creating a CA Certificate DistrustedCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA
cert.sh: Creating CA Cert DistrustedCA  --------------------------
certutil -s "CN=DistrustedCA, E=DistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n DistrustedCA -t ,, -v 600 -c TestCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2010
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Is this a critical extension [y/N]?
cert.sh: #11808: Creating CA Cert DistrustedCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n DistrustedCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -o root.cert
cert.sh: #11809: Exporting Root Cert - PASSED
cert.sh: Import Distrusted Intermediate --------------------------
certutil -A -n DistrustedCA -t p,p,p -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -i ../CA/DistrustedCA.ca.cert
cert.sh: #11810: Import Distrusted Intermediate - PASSED
cert.sh: Generate Cert Request for Leaf Chained to Distrusted CA --------------------------
certutil -s "CN=LeafChainedToDistrustedCA, E=LeafChainedToDistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11811: Generate Cert Request for Leaf Chained to Distrusted CA - PASSED
cp: './req' and '/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA/req' are the same file
cert.sh: Sign LeafChainedToDistrustedCA's Request --------------------------
certutil -C -c DistrustedCA -m 100 -v 60 -d ../CA -i req -o LeafChainedToDistrustedCA.cert -f ../tests.pw
cert.sh: #11812: Sign LeafChainedToDistrustedCA's Request - PASSED
cert.sh: Import LeafChainedToDistrustedCA's Cert  -t u,u,u --------------------------
certutil -A -n LeafChainedToDistrustedCA -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i LeafChainedToDistrustedCA.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11813: Import LeafChainedToDistrustedCA's Cert  -t u,u,u - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Server --------------------------
certutil -V -n LeafChainedToDistrustedCA -u V -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #11814: Verify LeafChainedToDistrustedCA Cert for SSL Server - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Client --------------------------
certutil -V -n LeafChainedToDistrustedCA -u C -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #11815: Verify LeafChainedToDistrustedCA Cert for SSL Client - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u S -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #11816: Verify LeafChainedToDistrustedCA Cert for Email signer - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email recipient --------------------------
certutil -V -n LeafChainedToDistrustedCA -u R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #11817: Verify LeafChainedToDistrustedCA Cert for Email recipient - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for OCSP responder --------------------------
certutil -V -n LeafChainedToDistrustedCA -u O -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #11818: Verify LeafChainedToDistrustedCA Cert for OCSP responder - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Object Signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u J -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #11819: Verify LeafChainedToDistrustedCA Cert for Object Signer - PASSED
cert.sh: Verify Distrusted Cert for SSL Server --------------------------
certutil -V -n Distrusted -u V -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #11820: Verify Distrusted Cert for SSL Server - PASSED
cert.sh: Verify Distrusted Cert for SSL Client --------------------------
certutil -V -n Distrusted -u C -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #11821: Verify Distrusted Cert for SSL Client - PASSED
cert.sh: Verify Distrusted Cert for Email signer --------------------------
certutil -V -n Distrusted -u S -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #11822: Verify Distrusted Cert for Email signer - PASSED
cert.sh: Verify Distrusted Cert for Email recipient --------------------------
certutil -V -n Distrusted -u R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #11823: Verify Distrusted Cert for Email recipient - PASSED
cert.sh: Verify Distrusted Cert for OCSP responder --------------------------
certutil -V -n Distrusted -u O -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #11824: Verify Distrusted Cert for OCSP responder - PASSED
cert.sh: Verify Distrusted Cert for Object Signer --------------------------
certutil -V -n Distrusted -u J -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #11825: Verify Distrusted Cert for Object Signer - PASSED
cert.sh: OCSP response creation selftest
cert.sh: perform selftest --------------------------
ocspresp /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA serverCA chain-1-serverCA -f ../tests.pw
cert.sh: #11826: perform selftest - PASSED
cert.sh: Creating Client CA Issued Certificates Range 40 - 52 ===
cert.sh: Generate Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11827: Generate Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o TestUser40.cert -f ../tests.pw 
cert.sh: #11828: Sign TestUser40's Request - PASSED
cert.sh: Import TestUser40's Cert --------------------------
certutil -A -n TestUser40 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11829: Import TestUser40's Cert - PASSED
cert.sh SUCCESS: TestUser40's Cert Created
cert.sh: Generate DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11830: Generate DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o TestUser40-dsa.cert -f ../tests.pw 
cert.sh: #11831: Sign TestUser40's DSA Request - PASSED
cert.sh: Import TestUser40's DSA Cert --------------------------
certutil -A -n TestUser40-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11832: Import TestUser40's DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11833: Generate mixed DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o TestUser40-dsamixed.cert -f ../tests.pw 
cert.sh: #11834: Sign TestUser40's DSA Request with RSA - PASSED
cert.sh: Import TestUser40's mixed DSA Cert --------------------------
certutil -A -n TestUser40-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11835: Import TestUser40's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11836: Generate EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o TestUser40-ec.cert -f ../tests.pw 
cert.sh: #11837: Sign TestUser40's EC Request - PASSED
cert.sh: Import TestUser40's EC Cert --------------------------
certutil -A -n TestUser40-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11838: Import TestUser40's EC Cert - PASSED
cert.sh SUCCESS: TestUser40's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11839: Generate mixed EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o TestUser40-ecmixed.cert -f ../tests.pw 
cert.sh: #11840: Sign TestUser40's EC Request with RSA - PASSED
cert.sh: Import TestUser40's mixed EC Cert --------------------------
certutil -A -n TestUser40-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11841: Import TestUser40's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11842: Generate Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's Request --------------------------
certutil -C -c TestCA -m 41 -v 60 -d ../CA -i req -o TestUser41.cert -f ../tests.pw 
cert.sh: #11843: Sign TestUser41's Request - PASSED
cert.sh: Import TestUser41's Cert --------------------------
certutil -A -n TestUser41 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11844: Import TestUser41's Cert - PASSED
cert.sh SUCCESS: TestUser41's Cert Created
cert.sh: Generate DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11845: Generate DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 41 -v 60 -d ../CA -i req -o TestUser41-dsa.cert -f ../tests.pw 
cert.sh: #11846: Sign TestUser41's DSA Request - PASSED
cert.sh: Import TestUser41's DSA Cert --------------------------
certutil -A -n TestUser41-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11847: Import TestUser41's DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11848: Generate mixed DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20041 -v 60 -d ../CA -i req -o TestUser41-dsamixed.cert -f ../tests.pw 
cert.sh: #11849: Sign TestUser41's DSA Request with RSA - PASSED
cert.sh: Import TestUser41's mixed DSA Cert --------------------------
certutil -A -n TestUser41-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11850: Import TestUser41's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11851: Generate EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request --------------------------
certutil -C -c TestCA-ec -m 41 -v 60 -d ../CA -i req -o TestUser41-ec.cert -f ../tests.pw 
cert.sh: #11852: Sign TestUser41's EC Request - PASSED
cert.sh: Import TestUser41's EC Cert --------------------------
certutil -A -n TestUser41-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11853: Import TestUser41's EC Cert - PASSED
cert.sh SUCCESS: TestUser41's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11854: Generate mixed EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10041 -v 60 -d ../CA -i req -o TestUser41-ecmixed.cert -f ../tests.pw 
cert.sh: #11855: Sign TestUser41's EC Request with RSA - PASSED
cert.sh: Import TestUser41's mixed EC Cert --------------------------
certutil -A -n TestUser41-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11856: Import TestUser41's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11857: Generate Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's Request --------------------------
certutil -C -c TestCA -m 42 -v 60 -d ../CA -i req -o TestUser42.cert -f ../tests.pw 
cert.sh: #11858: Sign TestUser42's Request - PASSED
cert.sh: Import TestUser42's Cert --------------------------
certutil -A -n TestUser42 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11859: Import TestUser42's Cert - PASSED
cert.sh SUCCESS: TestUser42's Cert Created
cert.sh: Generate DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11860: Generate DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 42 -v 60 -d ../CA -i req -o TestUser42-dsa.cert -f ../tests.pw 
cert.sh: #11861: Sign TestUser42's DSA Request - PASSED
cert.sh: Import TestUser42's DSA Cert --------------------------
certutil -A -n TestUser42-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11862: Import TestUser42's DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11863: Generate mixed DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20042 -v 60 -d ../CA -i req -o TestUser42-dsamixed.cert -f ../tests.pw 
cert.sh: #11864: Sign TestUser42's DSA Request with RSA - PASSED
cert.sh: Import TestUser42's mixed DSA Cert --------------------------
certutil -A -n TestUser42-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11865: Import TestUser42's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11866: Generate EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request --------------------------
certutil -C -c TestCA-ec -m 42 -v 60 -d ../CA -i req -o TestUser42-ec.cert -f ../tests.pw 
cert.sh: #11867: Sign TestUser42's EC Request - PASSED
cert.sh: Import TestUser42's EC Cert --------------------------
certutil -A -n TestUser42-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11868: Import TestUser42's EC Cert - PASSED
cert.sh SUCCESS: TestUser42's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11869: Generate mixed EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10042 -v 60 -d ../CA -i req -o TestUser42-ecmixed.cert -f ../tests.pw 
cert.sh: #11870: Sign TestUser42's EC Request with RSA - PASSED
cert.sh: Import TestUser42's mixed EC Cert --------------------------
certutil -A -n TestUser42-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11871: Import TestUser42's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11872: Generate Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's Request --------------------------
certutil -C -c TestCA -m 43 -v 60 -d ../CA -i req -o TestUser43.cert -f ../tests.pw 
cert.sh: #11873: Sign TestUser43's Request - PASSED
cert.sh: Import TestUser43's Cert --------------------------
certutil -A -n TestUser43 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11874: Import TestUser43's Cert - PASSED
cert.sh SUCCESS: TestUser43's Cert Created
cert.sh: Generate DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11875: Generate DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 43 -v 60 -d ../CA -i req -o TestUser43-dsa.cert -f ../tests.pw 
cert.sh: #11876: Sign TestUser43's DSA Request - PASSED
cert.sh: Import TestUser43's DSA Cert --------------------------
certutil -A -n TestUser43-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11877: Import TestUser43's DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11878: Generate mixed DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20043 -v 60 -d ../CA -i req -o TestUser43-dsamixed.cert -f ../tests.pw 
cert.sh: #11879: Sign TestUser43's DSA Request with RSA - PASSED
cert.sh: Import TestUser43's mixed DSA Cert --------------------------
certutil -A -n TestUser43-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11880: Import TestUser43's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11881: Generate EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request --------------------------
certutil -C -c TestCA-ec -m 43 -v 60 -d ../CA -i req -o TestUser43-ec.cert -f ../tests.pw 
cert.sh: #11882: Sign TestUser43's EC Request - PASSED
cert.sh: Import TestUser43's EC Cert --------------------------
certutil -A -n TestUser43-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11883: Import TestUser43's EC Cert - PASSED
cert.sh SUCCESS: TestUser43's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11884: Generate mixed EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10043 -v 60 -d ../CA -i req -o TestUser43-ecmixed.cert -f ../tests.pw 
cert.sh: #11885: Sign TestUser43's EC Request with RSA - PASSED
cert.sh: Import TestUser43's mixed EC Cert --------------------------
certutil -A -n TestUser43-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11886: Import TestUser43's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11887: Generate Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's Request --------------------------
certutil -C -c TestCA -m 44 -v 60 -d ../CA -i req -o TestUser44.cert -f ../tests.pw 
cert.sh: #11888: Sign TestUser44's Request - PASSED
cert.sh: Import TestUser44's Cert --------------------------
certutil -A -n TestUser44 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11889: Import TestUser44's Cert - PASSED
cert.sh SUCCESS: TestUser44's Cert Created
cert.sh: Generate DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11890: Generate DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 44 -v 60 -d ../CA -i req -o TestUser44-dsa.cert -f ../tests.pw 
cert.sh: #11891: Sign TestUser44's DSA Request - PASSED
cert.sh: Import TestUser44's DSA Cert --------------------------
certutil -A -n TestUser44-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11892: Import TestUser44's DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11893: Generate mixed DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20044 -v 60 -d ../CA -i req -o TestUser44-dsamixed.cert -f ../tests.pw 
cert.sh: #11894: Sign TestUser44's DSA Request with RSA - PASSED
cert.sh: Import TestUser44's mixed DSA Cert --------------------------
certutil -A -n TestUser44-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11895: Import TestUser44's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11896: Generate EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request --------------------------
certutil -C -c TestCA-ec -m 44 -v 60 -d ../CA -i req -o TestUser44-ec.cert -f ../tests.pw 
cert.sh: #11897: Sign TestUser44's EC Request - PASSED
cert.sh: Import TestUser44's EC Cert --------------------------
certutil -A -n TestUser44-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11898: Import TestUser44's EC Cert - PASSED
cert.sh SUCCESS: TestUser44's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11899: Generate mixed EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10044 -v 60 -d ../CA -i req -o TestUser44-ecmixed.cert -f ../tests.pw 
cert.sh: #11900: Sign TestUser44's EC Request with RSA - PASSED
cert.sh: Import TestUser44's mixed EC Cert --------------------------
certutil -A -n TestUser44-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11901: Import TestUser44's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11902: Generate Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's Request --------------------------
certutil -C -c TestCA -m 45 -v 60 -d ../CA -i req -o TestUser45.cert -f ../tests.pw 
cert.sh: #11903: Sign TestUser45's Request - PASSED
cert.sh: Import TestUser45's Cert --------------------------
certutil -A -n TestUser45 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11904: Import TestUser45's Cert - PASSED
cert.sh SUCCESS: TestUser45's Cert Created
cert.sh: Generate DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11905: Generate DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 45 -v 60 -d ../CA -i req -o TestUser45-dsa.cert -f ../tests.pw 
cert.sh: #11906: Sign TestUser45's DSA Request - PASSED
cert.sh: Import TestUser45's DSA Cert --------------------------
certutil -A -n TestUser45-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11907: Import TestUser45's DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11908: Generate mixed DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20045 -v 60 -d ../CA -i req -o TestUser45-dsamixed.cert -f ../tests.pw 
cert.sh: #11909: Sign TestUser45's DSA Request with RSA - PASSED
cert.sh: Import TestUser45's mixed DSA Cert --------------------------
certutil -A -n TestUser45-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11910: Import TestUser45's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11911: Generate EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request --------------------------
certutil -C -c TestCA-ec -m 45 -v 60 -d ../CA -i req -o TestUser45-ec.cert -f ../tests.pw 
cert.sh: #11912: Sign TestUser45's EC Request - PASSED
cert.sh: Import TestUser45's EC Cert --------------------------
certutil -A -n TestUser45-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11913: Import TestUser45's EC Cert - PASSED
cert.sh SUCCESS: TestUser45's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11914: Generate mixed EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10045 -v 60 -d ../CA -i req -o TestUser45-ecmixed.cert -f ../tests.pw 
cert.sh: #11915: Sign TestUser45's EC Request with RSA - PASSED
cert.sh: Import TestUser45's mixed EC Cert --------------------------
certutil -A -n TestUser45-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11916: Import TestUser45's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11917: Generate Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's Request --------------------------
certutil -C -c TestCA -m 46 -v 60 -d ../CA -i req -o TestUser46.cert -f ../tests.pw 
cert.sh: #11918: Sign TestUser46's Request - PASSED
cert.sh: Import TestUser46's Cert --------------------------
certutil -A -n TestUser46 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11919: Import TestUser46's Cert - PASSED
cert.sh SUCCESS: TestUser46's Cert Created
cert.sh: Generate DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11920: Generate DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 46 -v 60 -d ../CA -i req -o TestUser46-dsa.cert -f ../tests.pw 
cert.sh: #11921: Sign TestUser46's DSA Request - PASSED
cert.sh: Import TestUser46's DSA Cert --------------------------
certutil -A -n TestUser46-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11922: Import TestUser46's DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11923: Generate mixed DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20046 -v 60 -d ../CA -i req -o TestUser46-dsamixed.cert -f ../tests.pw 
cert.sh: #11924: Sign TestUser46's DSA Request with RSA - PASSED
cert.sh: Import TestUser46's mixed DSA Cert --------------------------
certutil -A -n TestUser46-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11925: Import TestUser46's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11926: Generate EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request --------------------------
certutil -C -c TestCA-ec -m 46 -v 60 -d ../CA -i req -o TestUser46-ec.cert -f ../tests.pw 
cert.sh: #11927: Sign TestUser46's EC Request - PASSED
cert.sh: Import TestUser46's EC Cert --------------------------
certutil -A -n TestUser46-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11928: Import TestUser46's EC Cert - PASSED
cert.sh SUCCESS: TestUser46's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11929: Generate mixed EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10046 -v 60 -d ../CA -i req -o TestUser46-ecmixed.cert -f ../tests.pw 
cert.sh: #11930: Sign TestUser46's EC Request with RSA - PASSED
cert.sh: Import TestUser46's mixed EC Cert --------------------------
certutil -A -n TestUser46-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11931: Import TestUser46's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11932: Generate Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's Request --------------------------
certutil -C -c TestCA -m 47 -v 60 -d ../CA -i req -o TestUser47.cert -f ../tests.pw 
cert.sh: #11933: Sign TestUser47's Request - PASSED
cert.sh: Import TestUser47's Cert --------------------------
certutil -A -n TestUser47 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11934: Import TestUser47's Cert - PASSED
cert.sh SUCCESS: TestUser47's Cert Created
cert.sh: Generate DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11935: Generate DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 47 -v 60 -d ../CA -i req -o TestUser47-dsa.cert -f ../tests.pw 
cert.sh: #11936: Sign TestUser47's DSA Request - PASSED
cert.sh: Import TestUser47's DSA Cert --------------------------
certutil -A -n TestUser47-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11937: Import TestUser47's DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11938: Generate mixed DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20047 -v 60 -d ../CA -i req -o TestUser47-dsamixed.cert -f ../tests.pw 
cert.sh: #11939: Sign TestUser47's DSA Request with RSA - PASSED
cert.sh: Import TestUser47's mixed DSA Cert --------------------------
certutil -A -n TestUser47-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11940: Import TestUser47's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11941: Generate EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request --------------------------
certutil -C -c TestCA-ec -m 47 -v 60 -d ../CA -i req -o TestUser47-ec.cert -f ../tests.pw 
cert.sh: #11942: Sign TestUser47's EC Request - PASSED
cert.sh: Import TestUser47's EC Cert --------------------------
certutil -A -n TestUser47-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11943: Import TestUser47's EC Cert - PASSED
cert.sh SUCCESS: TestUser47's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11944: Generate mixed EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10047 -v 60 -d ../CA -i req -o TestUser47-ecmixed.cert -f ../tests.pw 
cert.sh: #11945: Sign TestUser47's EC Request with RSA - PASSED
cert.sh: Import TestUser47's mixed EC Cert --------------------------
certutil -A -n TestUser47-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11946: Import TestUser47's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11947: Generate Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's Request --------------------------
certutil -C -c TestCA -m 48 -v 60 -d ../CA -i req -o TestUser48.cert -f ../tests.pw 
cert.sh: #11948: Sign TestUser48's Request - PASSED
cert.sh: Import TestUser48's Cert --------------------------
certutil -A -n TestUser48 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11949: Import TestUser48's Cert - PASSED
cert.sh SUCCESS: TestUser48's Cert Created
cert.sh: Generate DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11950: Generate DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 48 -v 60 -d ../CA -i req -o TestUser48-dsa.cert -f ../tests.pw 
cert.sh: #11951: Sign TestUser48's DSA Request - PASSED
cert.sh: Import TestUser48's DSA Cert --------------------------
certutil -A -n TestUser48-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11952: Import TestUser48's DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11953: Generate mixed DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20048 -v 60 -d ../CA -i req -o TestUser48-dsamixed.cert -f ../tests.pw 
cert.sh: #11954: Sign TestUser48's DSA Request with RSA - PASSED
cert.sh: Import TestUser48's mixed DSA Cert --------------------------
certutil -A -n TestUser48-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11955: Import TestUser48's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11956: Generate EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request --------------------------
certutil -C -c TestCA-ec -m 48 -v 60 -d ../CA -i req -o TestUser48-ec.cert -f ../tests.pw 
cert.sh: #11957: Sign TestUser48's EC Request - PASSED
cert.sh: Import TestUser48's EC Cert --------------------------
certutil -A -n TestUser48-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11958: Import TestUser48's EC Cert - PASSED
cert.sh SUCCESS: TestUser48's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11959: Generate mixed EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10048 -v 60 -d ../CA -i req -o TestUser48-ecmixed.cert -f ../tests.pw 
cert.sh: #11960: Sign TestUser48's EC Request with RSA - PASSED
cert.sh: Import TestUser48's mixed EC Cert --------------------------
certutil -A -n TestUser48-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11961: Import TestUser48's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11962: Generate Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's Request --------------------------
certutil -C -c TestCA -m 49 -v 60 -d ../CA -i req -o TestUser49.cert -f ../tests.pw 
cert.sh: #11963: Sign TestUser49's Request - PASSED
cert.sh: Import TestUser49's Cert --------------------------
certutil -A -n TestUser49 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11964: Import TestUser49's Cert - PASSED
cert.sh SUCCESS: TestUser49's Cert Created
cert.sh: Generate DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11965: Generate DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 49 -v 60 -d ../CA -i req -o TestUser49-dsa.cert -f ../tests.pw 
cert.sh: #11966: Sign TestUser49's DSA Request - PASSED
cert.sh: Import TestUser49's DSA Cert --------------------------
certutil -A -n TestUser49-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11967: Import TestUser49's DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11968: Generate mixed DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20049 -v 60 -d ../CA -i req -o TestUser49-dsamixed.cert -f ../tests.pw 
cert.sh: #11969: Sign TestUser49's DSA Request with RSA - PASSED
cert.sh: Import TestUser49's mixed DSA Cert --------------------------
certutil -A -n TestUser49-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11970: Import TestUser49's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11971: Generate EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request --------------------------
certutil -C -c TestCA-ec -m 49 -v 60 -d ../CA -i req -o TestUser49-ec.cert -f ../tests.pw 
cert.sh: #11972: Sign TestUser49's EC Request - PASSED
cert.sh: Import TestUser49's EC Cert --------------------------
certutil -A -n TestUser49-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11973: Import TestUser49's EC Cert - PASSED
cert.sh SUCCESS: TestUser49's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11974: Generate mixed EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10049 -v 60 -d ../CA -i req -o TestUser49-ecmixed.cert -f ../tests.pw 
cert.sh: #11975: Sign TestUser49's EC Request with RSA - PASSED
cert.sh: Import TestUser49's mixed EC Cert --------------------------
certutil -A -n TestUser49-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11976: Import TestUser49's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11977: Generate Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o TestUser50.cert -f ../tests.pw 
cert.sh: #11978: Sign TestUser50's Request - PASSED
cert.sh: Import TestUser50's Cert --------------------------
certutil -A -n TestUser50 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11979: Import TestUser50's Cert - PASSED
cert.sh SUCCESS: TestUser50's Cert Created
cert.sh: Generate DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11980: Generate DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o TestUser50-dsa.cert -f ../tests.pw 
cert.sh: #11981: Sign TestUser50's DSA Request - PASSED
cert.sh: Import TestUser50's DSA Cert --------------------------
certutil -A -n TestUser50-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11982: Import TestUser50's DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11983: Generate mixed DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o TestUser50-dsamixed.cert -f ../tests.pw 
cert.sh: #11984: Sign TestUser50's DSA Request with RSA - PASSED
cert.sh: Import TestUser50's mixed DSA Cert --------------------------
certutil -A -n TestUser50-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11985: Import TestUser50's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11986: Generate EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o TestUser50-ec.cert -f ../tests.pw 
cert.sh: #11987: Sign TestUser50's EC Request - PASSED
cert.sh: Import TestUser50's EC Cert --------------------------
certutil -A -n TestUser50-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11988: Import TestUser50's EC Cert - PASSED
cert.sh SUCCESS: TestUser50's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11989: Generate mixed EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o TestUser50-ecmixed.cert -f ../tests.pw 
cert.sh: #11990: Sign TestUser50's EC Request with RSA - PASSED
cert.sh: Import TestUser50's mixed EC Cert --------------------------
certutil -A -n TestUser50-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11991: Import TestUser50's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11992: Generate Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's Request --------------------------
certutil -C -c TestCA -m 51 -v 60 -d ../CA -i req -o TestUser51.cert -f ../tests.pw 
cert.sh: #11993: Sign TestUser51's Request - PASSED
cert.sh: Import TestUser51's Cert --------------------------
certutil -A -n TestUser51 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11994: Import TestUser51's Cert - PASSED
cert.sh SUCCESS: TestUser51's Cert Created
cert.sh: Generate DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11995: Generate DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 51 -v 60 -d ../CA -i req -o TestUser51-dsa.cert -f ../tests.pw 
cert.sh: #11996: Sign TestUser51's DSA Request - PASSED
cert.sh: Import TestUser51's DSA Cert --------------------------
certutil -A -n TestUser51-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11997: Import TestUser51's DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11998: Generate mixed DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20051 -v 60 -d ../CA -i req -o TestUser51-dsamixed.cert -f ../tests.pw 
cert.sh: #11999: Sign TestUser51's DSA Request with RSA - PASSED
cert.sh: Import TestUser51's mixed DSA Cert --------------------------
certutil -A -n TestUser51-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #12000: Import TestUser51's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #12001: Generate EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request --------------------------
certutil -C -c TestCA-ec -m 51 -v 60 -d ../CA -i req -o TestUser51-ec.cert -f ../tests.pw 
cert.sh: #12002: Sign TestUser51's EC Request - PASSED
cert.sh: Import TestUser51's EC Cert --------------------------
certutil -A -n TestUser51-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #12003: Import TestUser51's EC Cert - PASSED
cert.sh SUCCESS: TestUser51's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #12004: Generate mixed EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10051 -v 60 -d ../CA -i req -o TestUser51-ecmixed.cert -f ../tests.pw 
cert.sh: #12005: Sign TestUser51's EC Request with RSA - PASSED
cert.sh: Import TestUser51's mixed EC Cert --------------------------
certutil -A -n TestUser51-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #12006: Import TestUser51's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #12007: Generate Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's Request --------------------------
certutil -C -c TestCA -m 52 -v 60 -d ../CA -i req -o TestUser52.cert -f ../tests.pw 
cert.sh: #12008: Sign TestUser52's Request - PASSED
cert.sh: Import TestUser52's Cert --------------------------
certutil -A -n TestUser52 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #12009: Import TestUser52's Cert - PASSED
cert.sh SUCCESS: TestUser52's Cert Created
cert.sh: Generate DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #12010: Generate DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 52 -v 60 -d ../CA -i req -o TestUser52-dsa.cert -f ../tests.pw 
cert.sh: #12011: Sign TestUser52's DSA Request - PASSED
cert.sh: Import TestUser52's DSA Cert --------------------------
certutil -A -n TestUser52-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #12012: Import TestUser52's DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #12013: Generate mixed DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20052 -v 60 -d ../CA -i req -o TestUser52-dsamixed.cert -f ../tests.pw 
cert.sh: #12014: Sign TestUser52's DSA Request with RSA - PASSED
cert.sh: Import TestUser52's mixed DSA Cert --------------------------
certutil -A -n TestUser52-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #12015: Import TestUser52's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #12016: Generate EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request --------------------------
certutil -C -c TestCA-ec -m 52 -v 60 -d ../CA -i req -o TestUser52-ec.cert -f ../tests.pw 
cert.sh: #12017: Sign TestUser52's EC Request - PASSED
cert.sh: Import TestUser52's EC Cert --------------------------
certutil -A -n TestUser52-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #12018: Import TestUser52's EC Cert - PASSED
cert.sh SUCCESS: TestUser52's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #12019: Generate mixed EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10052 -v 60 -d ../CA -i req -o TestUser52-ecmixed.cert -f ../tests.pw 
cert.sh: #12020: Sign TestUser52's EC Request with RSA - PASSED
cert.sh: Import TestUser52's mixed EC Cert --------------------------
certutil -A -n TestUser52-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #12021: Import TestUser52's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed EC Cert Created
cert.sh: Creating CA CRL =====================================
cert.sh: Generating CRL for range 40-42 TestCA authority --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -G -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or
cert.sh: #12022: Generating CRL for range 40-42 TestCA authority - PASSED
cert.sh: Generating CRL (DSA) for range 40-42 TestCA-dsa authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -G -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or-dsa
cert.sh: #12023: Generating CRL (DSA) for range 40-42 TestCA-dsa authority - PASSED
cert.sh: Generating CRL (ECC) for range 40-42 TestCA-ec authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -G -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or-ec
cert.sh: #12024: Generating CRL (ECC) for range 40-42 TestCA-ec authority - PASSED
cert.sh: Modifying CA CRL by adding one more cert ============
cert.sh: Modify CRL by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or1 -i ../server/root.crl_40-42_or
cert.sh: #12025: Modify CRL by adding one more cert - PASSED
cert.sh: Modify CRL (DSA) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or1-dsa -i ../server/root.crl_40-42_or-dsa
cert.sh: #12026: Modify CRL (DSA) by adding one more cert - PASSED
cert.sh: Modify CRL (ECC) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or1-ec -i ../server/root.crl_40-42_or-ec
cert.sh: #12027: Modify CRL (ECC) by adding one more cert - PASSED
cert.sh: Modifying CA CRL by removing one cert ===============
cert.sh: Modify CRL by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #12028: Modify CRL by removing one cert - PASSED
cert.sh: Modify CRL (DSA) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #12029: Modify CRL (DSA) by removing one cert - PASSED
cert.sh: Modify CRL (ECC) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42-ec -i ../server/root.crl_40-42_or1-ec
cert.sh: #12030: Modify CRL (ECC) by removing one cert - PASSED
cert.sh: Creating CA CRL for groups 1 and 2  ===============
cert.sh: Creating CRL for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_43-48 -i ../server/root.crl_40-42
cert.sh: #12031: Creating CRL for groups 1 and 2 - PASSED
cert.sh: Creating CRL (ECC) for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_43-48-ec -i ../server/root.crl_40-42-ec
cert.sh: #12032: Creating CRL (ECC) for groups 1 and 2 - PASSED
cert.sh: Creating CA CRL for groups 1, 2 and 3  ===============
cert.sh: Creating CRL for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_49-52 -i ../server/root.crl_43-48
cert.sh: #12033: Creating CRL for groups 1, 2 and 3 - PASSED
cert.sh: Creating CRL (ECC) for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_49-52-ec -i ../server/root.crl_43-48-ec
cert.sh: #12034: Creating CRL (ECC) for groups 1, 2 and 3 - PASSED
cert.sh: Importing Server CA Issued CRL for certs  trough 52
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -D -n TestCA -f ../tests.pw -d ../server
crlutil: could not find TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #12035: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42 -n TestCA -f ../tests.pw -d ../server
cert.sh: #12036: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -D -n TestCA-ec -f ../tests.pw -d ../server
crlutil: could not find TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #12037: Importing CRL (ECC) for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42-ec -n TestCA-ec -f ../tests.pw -d ../server
cert.sh: #12038: Importing CRL (ECC) for groups 1 - PASSED
cert.sh SUCCESS: SSL CRL prep passed
cert.sh cert.sh: finished cert.sh
TIMESTAMP cert END: Mon Aug  7 00:06:48 UTC 2017
Running tests for dbtests
TIMESTAMP dbtests BEGIN: Mon Aug  7 00:06:48 UTC 2017
dbtests.sh: CERT and Key DB Tests ===============================
---------------------------------------------------------------
| test opening the database read/write in a nonexisting directory
---------------------------------------------------------------
certutil: function failed: SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #12039: Certutil didn't work in a nonexisting dir 255 - PASSED
dbdir selected is ./non_existent_dir
ERROR: Directory "./non_existent_dir" does not exist.
dbtest: function failed: SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #12040: Dbtest readonly didn't work in a nonexisting dir 46 - PASSED
---------------------------------------------------------------
| test force opening the database in a nonexisting directory
---------------------------------------------------------------
dbdir selected is ./non_existent_dir
ERROR: Directory "./non_existent_dir" does not exist.
dbtests.sh: #12041: Dbtest force succeeded in a nonexisting dir 0 - PASSED
---------------------------------------------------------------
| test opening the database readonly in an empty directory
---------------------------------------------------------------
tstclnt: unable to open cert database: SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #12042: Tstclnt didn't work in an empty dir 1 - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/key3.db" does not exist.
dbtest: function failed: SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #12043: Dbtest readonly didn't work in an empty dir 46 - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir
dbtests.sh: #12044: Dbtest logout after empty DB Init has key - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir
dbtests.sh: #12045: Dbtest password DB Init maintains needlogin state - PASSED
certutil: could not find certificate named "xxxx": SEC_ERROR_UNRECOGNIZED_OID: Unrecognized Object Identifier.
dbtests.sh: #12046: Certutil didn't work in an empty dir 255 - PASSED
---------------------------------------------------------------
| test force opening the database  readonly in a empty directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/key3.db" does not exist.
dbtests.sh: #12047: Dbtest force readonly succeeded in an empty dir 0 - PASSED
---------------------------------------------------------------
| test opening the database r/w in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir
ERROR: Directory "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir" is not writeable.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/key3.db" does not exist.
dbtest: function failed: SEC_ERROR_READ_ONLY: security library: read-only database.
dbtests.sh: #12048: Dbtest r/w didn't work in an readonly dir 46 - PASSED
certutil: could not find certificate named "TestUser": SEC_ERROR_UNRECOGNIZED_OID: Unrecognized Object Identifier.
dbtests.sh: #12049: Certutil didn't work in an readonly dir 255 - PASSED
---------------------------------------------------------------
| test opening the database ronly in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/key3.db" does not exist.
dbtests.sh: #12050: Dbtest readonly succeeded in a readonly dir 0 - PASSED
---------------------------------------------------------------
| test force opening the database  r/w in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir
ERROR: Directory "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir" is not writeable.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/key3.db" does not exist.
dbtests.sh: #12051: Dbtest force succeeded in a readonly dir 0 - PASSED
---------------------------------------------------------------
| ls -l /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir
---------------------------------------------------------------
dr-xr-xr-x 2 mockbuild mockbuild   4096 Aug  7 00:06 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir
-r--r----- 1 mockbuild mockbuild   1226 Aug  7 00:06 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/TestUser-dsa.cert
-r--r----- 1 mockbuild mockbuild   1424 Aug  7 00:06 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/TestUser-dsamixed.cert
-r--r----- 1 mockbuild mockbuild    580 Aug  7 00:06 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/TestUser-ec.cert
-r--r----- 1 mockbuild mockbuild    705 Aug  7 00:06 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/TestUser-ecmixed.cert
-r--r----- 1 mockbuild mockbuild    870 Aug  7 00:06 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/TestUser.cert
-r-------- 1 mockbuild mockbuild 205824 Aug  7 00:06 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/cert9.db
-r-------- 1 mockbuild mockbuild 102400 Aug  7 00:06 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/key4.db
-r-------- 1 mockbuild mockbuild    629 Aug  7 00:06 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/pkcs11.txt
-r--r----- 1 mockbuild mockbuild    393 Aug  7 00:06 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/req
---------------------------------------------------------------
| test creating a new cert with a conflicting nickname
---------------------------------------------------------------
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/conflictdir
certutil: could not add certificate to token or database: SEC_ERROR_ADDING_CERT: Error adding certificate to database.
dbtests.sh: #12052: Nicknane conflict test, could not import conflict nickname 255 - PASSED
---------------------------------------------------------------
| test importing an old cert to a conflicting nickname
---------------------------------------------------------------
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 40 (0x28)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:09 2017
            Not After : Sun Aug 07 00:05:09 2022
        Subject: "CN=Bob,E=Bob@bogus.com,O=BOGUS NSS,L=Mountain View,ST=Calif
            ornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:75:5e:08:70:09:a9:46:8d:bb:91:35:db:91:6b:4b:
                    7e:6c:76:d2:14:02:93:80:03:e7:5d:71:df:52:e1:a7:
                    92:c4:a3:d5:61:53:66:75:e0:5b:16:ad:89:13:7c:ea:
                    d6:24:2a:6f:5b:75:75:e3:d8:6d:18:1a:5e:19:26:eb:
                    bc:d1:3e:e4:b5:bc:8c:45:10:eb:8b:3c:18:f0:f2:b8:
                    47:f4:48:5c:b6:29:c5:68:5b:ca:fc:6b:e8:4e:94:a5:
                    98:0f:72:d7:0b:50:33:a1:7f:f3:8f:11:71:5a:09:1f:
                    ea:fa:03:fd:2a:51:fe:b8:ce:6d:55:95:e1:c1:93:f9:
                    25:30:6d:f2:04:81:01:3b:cb:94:f9:12:4d:f0:8f:e1:
                    1f:b5:28:7e:51:fd:9b:96:1a:39:7b:97:13:6e:3f:69:
                    ab:53:a5:f9:5c:0b:ca:a2:49:c8:45:59:4e:51:f7:8f:
                    37:da:3b:ae:f5:dd:e1:05:10:27:20:f8:86:93:2a:34:
                    9d:4f:13:13:dc:96:d2:cc:dc:07:f5:39:1b:08:6e:60:
                    8f:02:51:99:fc:61:2f:02:b8:2d:5d:60:13:d9:96:00:
                    bd:9d:f0:3d:78:62:30:0e:9a:88:03:ef:5b:70:23:50:
                    60:e3:72:5b:f9:7e:11:88:bb:24:67:3f:40:20:22:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        34:95:5a:73:b4:c7:76:1d:bb:f3:13:24:a7:36:4c:ed:
        96:e1:18:5a:29:57:a7:db:b7:c0:02:b8:19:7a:f2:fa:
        f9:a2:d1:85:37:96:a1:1f:2b:a4:1b:f0:09:0f:e5:13:
        eb:5b:54:23:73:76:df:c3:60:d4:42:45:73:79:b3:1e:
        60:1a:4e:9b:69:26:41:90:9a:04:c5:d9:8d:8b:17:d4:
        40:cc:17:d5:99:92:ed:1c:61:9a:57:27:ca:e8:0c:ca:
        d5:46:ab:8b:a2:80:4b:44:5b:a0:ee:3e:25:4b:b5:93:
        06:8a:b2:ba:32:6a:9e:11:b2:a8:4a:24:5b:53:04:be:
        cb:db:4b:32:a7:b2:e8:3d:c2:2f:84:46:e4:fe:22:e4:
        7e:38:de:54:bb:53:bb:68:12:58:e9:26:6d:3f:55:66:
        09:c2:13:b2:af:5f:1b:29:7f:a0:57:ac:0e:8b:ce:05:
        e5:47:a5:76:7f:9e:56:85:d2:fd:80:bb:b0:1b:90:06:
        7d:dd:e4:56:e5:bd:b6:9b:ff:60:ca:06:7c:1c:bc:5c:
        6d:a6:b1:6d:fa:78:a5:a6:4f:2c:fe:c6:69:b9:ac:e8:
        ff:a9:ee:02:47:ee:5b:0e:96:76:2b:fa:7b:3f:b4:73:
        c1:56:60:92:ca:8e:b2:1e:a9:fd:09:92:18:e4:25:65
    Fingerprint (SHA-256):
        3A:3D:1F:54:A3:B7:C6:9F:0B:70:E4:EE:DE:99:17:01:EF:C7:00:B7:5E:70:58:83:17:BA:D0:03:74:2D:29:7D
    Fingerprint (SHA1):
        18:D2:53:19:8A:1E:DA:21:33:2A:AE:6D:05:45:9D:AB:39:AC:47:C5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
dbtests.sh: #12053: Nicknane conflict test-setting nickname conflict was correctly rejected - PASSED
TIMESTAMP dbtests END: Mon Aug  7 00:06:50 UTC 2017
Running tests for tools
TIMESTAMP tools BEGIN: Mon Aug  7 00:06:50 UTC 2017
tools.sh: Tools Tests with ECC ===============================
tools.sh: Exporting Alice's email cert & key - default ciphers
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12054: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                06:d2:b2:0a:21:da:c8:a0:31:1e:20:c2:07:02:4f:c6
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12055: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12056: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's email EC cert & key---------------
pk12util -o Alice-ec.p12 -n "Alice-ec" -d ../alicedir -k ../tests.pw \
         -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12057: Exporting Alice's email EC cert & key (pk12util -o)  - PASSED
tools.sh: Importing Alice's email EC cert & key --------------
pk12util -i Alice-ec.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12058: Importing Alice's email EC cert & key (pk12util -i)  - PASSED
tools.sh: Listing Alice's pk12 EC file -----------------
pk12util -l Alice-ec.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice-ec
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                01:4a:1d:c8:3e:86:0e:9f:ea:8e:4b:e0:e5:d7:35:67
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: X9.62 ECDSA signature with SHA256
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Mon Aug 07 00:04:33 2017
            Not After : Sun Aug 07 00:04:33 2067
        Subject: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Califor
            nia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:23
            EC Public Key:
                PublicValue:
                    04:01:e7:07:7c:cd:95:ee:f2:9e:3e:72:52:b2:9d:96:
                    2f:67:d9:be:dd:09:8e:a0:35:8b:88:fc:76:e8:6e:2c:
                    ff:5a:db:39:fd:a2:7e:73:ff:0c:e0:c0:77:1f:5e:1b:
                    a2:74:81:32:72:9e:d7:1e:a9:9e:08:70:57:0e:2f:8c:
                    b7:3f:a0:00:f7:36:24:eb:55:98:26:13:79:a3:cf:4e:
                    b6:d2:e7:08:9a:af:51:0a:50:78:26:da:a3:e2:a7:47:
                    04:03:14:4e:88:31:3e:dd:5a:c6:f3:23:6d:b7:2d:87:
                    d3:70:f5:14:f8:bb:3e:7e:13:54:07:b4:43:27:08:86:
                    3b:56:ce:e9:27
                Curve: SECG elliptic curve secp521r1 (aka NIST P-521)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: X9.62 ECDSA signature with SHA256
    Signature:
        30:81:88:02:42:00:a5:79:7b:56:50:d9:2b:da:ee:36:
        e2:85:1d:7a:e0:fb:5f:62:41:1e:50:fb:e9:d9:b9:5e:
        ba:76:fe:0b:7d:93:03:7e:40:48:3b:3e:c3:92:81:7b:
        fc:70:29:2e:30:9b:b9:85:3c:01:72:c2:00:86:51:dc:
        3d:c6:39:c9:e8:a0:ac:02:42:01:bf:3a:7b:56:a0:b2:
        aa:20:74:5e:03:fb:b7:36:ef:12:3b:61:1d:3e:41:5c:
        59:49:52:d0:51:77:e1:fe:dc:ad:5e:fd:8f:c0:d2:ac:
        a3:98:f7:8f:dc:f7:3b:1d:83:88:6d:23:7f:2a:f4:34:
        cb:0a:7d:b5:ef:1f:39:c9:41:8d:b7
    Fingerprint (SHA-256):
        B3:DF:CA:CD:79:F6:66:E9:56:5E:18:07:68:9C:98:54:71:43:7D:93:1C:1D:C3:06:A2:2B:63:1E:17:F4:98:15
    Fingerprint (SHA1):
        24:20:F7:44:88:A8:B0:8A:1E:FA:0B:A1:34:DA:A2:E0:99:84:90:E9
    Friendly Name: TestCA-ec
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: X9.62 ECDSA signature with SHA256
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Mon Aug 07 00:05:06 2017
            Not After : Sun Aug 07 00:05:06 2022
        Subject: "CN=Alice,E=Alice-ec@bogus.com,O=BOGUS NSS,L=Mountain View,S
            T=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:22
            EC Public Key:
                PublicValue:
                    04:41:c4:ff:e8:e3:a4:e3:c1:b2:76:e4:3e:53:f9:8a:
                    f1:77:4f:a6:b9:8a:d9:c7:f9:7a:79:e8:67:a2:d7:ac:
                    76:66:8a:8d:6a:3d:11:7f:85:7f:85:7d:30:d2:10:8c:
                    ab:3c:61:ef:9c:76:a6:62:44:c5:6d:26:68:08:b9:0f:
                    73:a1:6f:04:70:2a:fc:14:ea:83:6e:ee:7c:37:fd:19:
                    d0:7c:ba:38:3e:d8:73:04:83:49:e8:7e:fb:07:8b:9e:
                    38
                Curve: SECG elliptic curve secp384r1 (aka NIST P-384)
    Signature Algorithm: X9.62 ECDSA signature with SHA256
    Signature:
        30:81:88:02:42:01:88:1d:4a:b0:1a:95:6c:7b:d3:e3:
        eb:29:72:c5:4b:83:40:fc:aa:19:0f:c4:7d:4f:d7:0b:
        c3:10:67:b5:b4:1c:0c:17:f3:dd:d0:3f:4f:c6:22:6e:
        09:58:ab:bf:9d:7b:29:a2:c4:d9:49:e2:9f:f9:5e:59:
        4d:d9:f9:3b:01:f3:25:02:42:00:87:5e:e1:a7:6f:75:
        85:a1:d0:7d:95:7c:44:d9:11:09:ac:a2:f1:e5:3f:3d:
        9e:dd:a6:c5:aa:d6:c3:f0:15:3f:f0:a4:09:e5:45:18:
        2d:1e:af:be:d5:39:63:28:fa:66:10:e8:e7:8d:68:6d:
        2d:e9:61:28:df:d8:10:ac:a8:22:43
    Fingerprint (SHA-256):
        43:10:53:48:68:FD:21:E4:45:F1:56:D5:4F:C4:B7:BD:FC:8F:6E:B0:CB:54:F5:C0:0F:DE:CE:86:49:15:92:E2
    Fingerprint (SHA1):
        3A:25:32:E8:FB:79:79:7B:AF:44:14:B3:47:A8:B7:E6:83:CD:28:EA
    Friendly Name: Alice-ec
tools.sh: #12059: Listing Alice's pk12 EC file (pk12util -l)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12060: Exporting with [RC2-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                26:58:9b:21:ad:49:9d:ec:66:4f:99:53:8e:99:71:be
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12061: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12062: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12063: Exporting with [RC2-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                22:33:40:aa:db:90:bd:f0:f5:ed:36:f7:04:68:cf:d6
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12064: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12065: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12066: Exporting with [RC2-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                a9:1d:54:15:95:f4:8d:f3:5b:6b:71:08:3a:d4:0a:0d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12067: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12068: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12069: Exporting with [RC2-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                51:da:11:5c:04:1a:dd:7b:1f:5f:83:a9:b6:64:a9:dd
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12070: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12071: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12072: Exporting with [RC2-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                f0:0f:dc:7e:62:1f:c0:3f:ca:07:04:8b:68:57:f4:a8
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12073: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12074: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12075: Exporting with [RC2-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                b7:ca:54:ff:1c:0a:79:2a:8e:43:d2:9c:e8:7d:e6:88
            Iteration Count: 2000 (0x7d0)
tools.sh: #12076: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12077: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12078: Exporting with [DES-EDE3-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                50:ef:1b:e1:38:38:e8:fd:6b:6a:bb:ea:70:b6:7c:d4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12079: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12080: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12081: Exporting with [DES-EDE3-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                36:e2:ec:b4:5a:77:99:7e:17:d7:fa:a2:be:b1:0d:78
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12082: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12083: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12084: Exporting with [DES-EDE3-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                7a:42:2a:14:c5:de:7f:dc:ed:e8:63:e1:c6:d7:57:c4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12085: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12086: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12087: Exporting with [DES-EDE3-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                06:23:6e:16:c4:c0:9f:41:06:22:41:50:07:4a:8a:5e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12088: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12089: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12090: Exporting with [DES-EDE3-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                5f:6e:93:d1:6c:b7:5a:6f:2e:c7:5f:35:79:93:14:b1
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12091: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12092: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12093: Exporting with [DES-EDE3-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                7e:86:2b:d7:07:a6:41:6c:79:69:cb:7e:07:59:d8:75
            Iteration Count: 2000 (0x7d0)
tools.sh: #12094: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12095: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12096: Exporting with [AES-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        6e:f5:7b:de:57:a4:14:70:08:f4:ce:72:22:04:1e:58
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:84:1e:36:c5:31:7b:ce:37:64:45:28:17:79:b2:
                    7a:93
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12097: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12098: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12099: Exporting with [AES-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ac:12:25:17:57:0d:3b:e6:40:38:bd:26:ce:dc:cb:6e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:94:25:45:4f:85:c9:51:79:54:87:69:10:e2:b8:
                    cb:9c
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12100: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12101: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12102: Exporting with [AES-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        c9:02:b3:1b:70:ed:0b:05:34:b0:27:bb:a9:04:c5:2b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:f9:c2:d3:e1:8c:fb:06:84:99:bc:44:01:c1:72:
                    d7:ad
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12103: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12104: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12105: Exporting with [AES-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        56:c5:cb:2a:77:11:4c:7d:b1:02:ac:99:2f:53:4c:40
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:52:bb:09:12:a1:ed:47:0e:79:38:08:3f:98:a9:
                    8e:90
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12106: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12107: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12108: Exporting with [AES-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        9a:81:c6:47:08:0d:a1:d2:5e:a9:86:52:ac:8c:53:f9
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:f6:54:16:9d:1b:3c:13:53:5e:9a:76:d5:11:61:
                    4d:f3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12109: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12110: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12111: Exporting with [AES-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ff:e2:92:ae:c4:d0:00:a4:22:7c:59:73:81:5e:aa:86
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:53:8e:b8:ee:a3:0e:39:90:f3:ed:35:7f:a3:a6:
                    56:67
tools.sh: #12112: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12113: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12114: Exporting with [AES-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        0e:e7:b4:bb:9c:52:bc:8d:4e:1d:76:d7:6d:93:b2:21
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:be:94:f7:91:32:e6:e8:d8:fc:58:9d:10:25:be:
                    1d:38
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12115: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12116: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12117: Exporting with [AES-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        14:6d:06:20:52:1b:45:4d:66:bd:2d:a7:16:40:38:0e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:ba:13:96:05:d2:4d:35:5e:b8:85:3f:12:34:3c:
                    f3:85
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12118: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12119: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12120: Exporting with [AES-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ba:90:d5:13:e4:fd:d8:9f:a2:bd:2f:c9:b7:c4:84:18
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:e7:2f:1b:01:b7:a5:0f:a1:d7:71:c1:ee:45:7b:
                    0e:91
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12121: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12122: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12123: Exporting with [AES-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        2c:9c:ef:ba:15:dc:8a:3b:ef:37:9b:0b:8f:1f:2d:50
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:4f:f6:85:b0:55:56:41:e5:fc:6e:0a:fe:55:52:
                    79:8f
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12124: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12125: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12126: Exporting with [AES-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        8f:62:c4:c1:76:44:cf:ef:88:45:30:ea:22:0d:a3:a0
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:a2:71:a2:48:ed:77:4d:d1:2f:21:4d:2d:44:28:
                    db:94
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12127: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12128: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12129: Exporting with [AES-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        3d:6f:6b:57:bc:1a:29:b8:af:ea:6e:2b:46:31:0e:32
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:f8:f6:1b:c7:6b:76:c4:1d:f4:a0:07:1f:c6:56:
                    5f:27
tools.sh: #12130: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12131: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12132: Exporting with [AES-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        36:31:41:e5:55:ec:1a:21:69:ef:7c:c3:a5:aa:9a:9f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:e7:bb:c3:7f:30:f2:f4:a2:70:72:64:ba:da:a6:
                    33:ec
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12133: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12134: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12135: Exporting with [AES-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        75:e0:a0:e6:be:58:af:e2:20:75:4c:d9:55:46:c8:ee
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:6e:72:34:b3:a5:13:48:a9:8d:0e:d4:48:c9:35:
                    8c:ce
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12136: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12137: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12138: Exporting with [AES-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        76:b6:c0:f2:56:68:ca:65:e1:1d:2a:1a:33:fb:06:0e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:b0:35:f9:69:01:7c:3b:9d:2a:ee:8e:4e:03:ab:
                    15:3b
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12139: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12140: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12141: Exporting with [AES-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ed:cf:5f:09:70:70:09:4e:9f:f2:c6:31:67:fc:e4:cd
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:c4:7d:1a:94:38:a8:7e:ee:1d:31:0c:80:10:0f:
                    8e:dc
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12142: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12143: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12144: Exporting with [AES-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e1:51:30:fa:0b:c7:66:18:49:a4:40:dc:d1:b4:3f:ae
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:9b:e9:37:e5:8e:ad:f1:0f:7f:a7:8b:98:9a:b8:
                    e2:0e
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12145: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12146: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12147: Exporting with [AES-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b6:e5:b9:ab:d7:33:a6:9c:e4:3b:49:89:5e:23:dc:50
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:23:07:0b:f3:c2:1d:e8:a6:00:5f:e6:29:60:8d:
                    62:00
tools.sh: #12148: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12149: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12150: Exporting with [CAMELLIA-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        92:9b:dd:68:0a:9e:4a:00:33:d2:ac:85:13:25:25:a9
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:2c:45:ca:00:2f:02:ed:82:02:00:a7:1d:f2:41:
                    f5:09
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12151: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12152: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12153: Exporting with [CAMELLIA-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b1:ca:7d:44:7b:c3:f5:25:50:45:48:58:a5:6d:4d:ea
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:42:38:a3:82:2e:60:1b:45:29:87:be:64:81:6a:
                    6b:b7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12154: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12155: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12156: Exporting with [CAMELLIA-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ce:79:21:27:8c:1b:6c:7c:ee:12:36:28:99:6d:ed:51
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:c5:07:28:4b:42:72:2c:81:2a:59:cf:40:7e:a3:
                    e7:7a
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12157: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12158: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12159: Exporting with [CAMELLIA-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        79:a5:57:33:27:be:52:57:e6:5a:9c:a0:c6:2f:9d:38
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:14:c8:08:de:da:61:d2:9b:0f:3f:62:d7:92:1e:
                    52:1c
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12160: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12161: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12162: Exporting with [CAMELLIA-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f9:5c:cd:67:f8:fa:67:b7:b5:15:da:09:24:32:02:11
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:5f:c5:83:0e:14:fb:03:6b:68:11:42:4d:e4:9b:
                    02:47
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12163: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12164: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12165: Exporting with [CAMELLIA-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        51:03:c0:06:3c:95:ed:a0:a8:56:01:b2:68:e2:be:f5
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:7d:3f:2d:5a:8c:4e:4a:6a:18:e2:98:b0:6a:ab:
                    a3:61
tools.sh: #12166: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12167: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12168: Exporting with [CAMELLIA-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        5f:64:24:44:a8:21:9e:f7:0a:85:5b:68:f6:0e:f4:2a
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:6b:93:21:64:f4:ec:96:06:c6:7c:3e:07:4a:5e:
                    3b:98
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12169: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12170: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12171: Exporting with [CAMELLIA-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        c8:41:73:57:9d:94:90:04:d0:7a:ef:2b:6c:87:dc:e4
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:c0:66:f0:4a:10:2e:f8:cc:df:10:68:e5:ce:e1:
                    9b:19
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12172: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12173: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12174: Exporting with [CAMELLIA-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        50:b8:67:46:3d:4a:eb:14:4b:c9:c8:2f:c7:f0:2c:1d
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:c5:a4:2f:d6:c4:74:d4:e7:0a:59:dd:2c:05:65:
                    8a:b9
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12175: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12176: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12177: Exporting with [CAMELLIA-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        c2:15:6f:a7:86:2b:04:d6:b0:f7:c2:6f:73:65:1a:70
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:f7:66:d1:b8:e9:4f:25:c8:12:9d:c0:63:ad:69:
                    bb:8a
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12178: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12179: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12180: Exporting with [CAMELLIA-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        50:dd:8c:ce:2f:f6:b1:94:8e:82:51:c1:c5:d0:c3:7f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:c6:98:4b:5f:ab:56:0f:70:15:e5:f5:8c:cd:28:
                    1a:ea
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12181: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12182: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12183: Exporting with [CAMELLIA-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        d6:cc:75:dd:ff:3f:83:79:7a:b1:a6:4f:af:22:ba:89
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:e7:f9:7f:96:d9:e4:b7:71:14:23:ea:7e:6d:65:
                    7c:9e
tools.sh: #12184: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12185: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12186: Exporting with [CAMELLIA-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        1f:45:13:66:d1:ba:e4:ff:63:2c:1e:88:a6:96:57:80
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:7f:56:9b:51:b6:d9:40:eb:81:df:6a:f0:e7:cc:
                    90:9d
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12187: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12188: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12189: Exporting with [CAMELLIA-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ff:ec:e8:79:ce:ec:fa:9c:aa:5d:1e:46:cb:85:4a:63
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:ea:39:7f:79:e7:2b:6b:8c:e7:0e:b2:ce:b0:f8:
                    c4:80
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12190: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12191: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12192: Exporting with [CAMELLIA-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        6a:78:3d:bb:b5:1f:e9:39:e6:e8:88:e1:96:88:72:45
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:3e:05:7e:42:f4:54:b0:53:68:cb:9d:3d:e0:de:
                    ba:95
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12193: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12194: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12195: Exporting with [CAMELLIA-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        89:08:66:b4:18:4a:a3:7e:cf:3f:e9:b5:a8:cd:a9:ef
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:d3:73:1a:23:02:a5:d0:d7:7b:7f:d8:d1:64:6b:
                    39:08
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12196: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12197: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12198: Exporting with [CAMELLIA-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e7:d6:05:5c:49:c2:d5:c4:4a:55:4d:ae:77:27:50:46
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:e2:e8:5b:57:ad:e9:c8:6d:2e:be:12:75:5f:40:
                    82:1d
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12199: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12200: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12201: Exporting with [CAMELLIA-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        97:72:5c:29:dc:80:5e:b7:3d:62:4c:62:04:be:2e:c9
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:c1:53:53:1a:cf:79:c5:9d:c4:e0:4f:46:f8:ca:
                    84:a3
tools.sh: #12202: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12203: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12204: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                35:96:6b:55:70:17:ea:a6:45:9f:38:99:9e:0d:01:85
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12205: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12206: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12207: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                4e:56:3f:01:f2:bc:d3:e3:2f:00:3f:ea:95:88:03:17
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12208: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12209: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12210: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                8c:af:02:1c:70:73:c3:43:02:ed:60:61:a7:b2:28:25
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12211: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12212: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12213: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                02:3e:3c:95:d7:2f:98:1e:35:9c:f9:c7:74:9a:3b:98
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12214: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12215: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12216: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                b8:f9:ca:c2:8e:c0:d9:a5:93:d8:58:ca:20:a2:5a:80
            Iteration Count: 2000 (0x7d0)
tools.sh: #12217: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12218: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12219: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                c4:44:1a:12:4a:a2:c1:4c:82:16:7f:03:4b:8a:e2:f8
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12220: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12221: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12222: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                71:a7:e1:a1:26:8e:5b:67:23:f3:c9:34:41:be:c5:f8
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12223: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12224: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12225: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                6d:0a:ac:02:f5:bb:2a:fe:92:9f:36:51:6c:b9:c9:ad
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12226: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12227: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12228: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                12:57:ad:05:7f:2a:e0:17:a2:07:83:e8:d1:73:38:8c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12229: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12230: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12231: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                a3:2c:ee:b0:54:38:3c:10:e6:9b:36:10:a8:33:00:05
            Iteration Count: 2000 (0x7d0)
tools.sh: #12232: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12233: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12234: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                00:ff:fb:c4:3d:f1:29:31:87:e8:f8:f4:ef:89:a9:7d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12235: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12236: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12237: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                e2:c7:e2:70:ef:df:e4:57:0f:3f:b2:ad:7a:82:94:51
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12238: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12239: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12240: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                b4:7d:02:5c:88:98:d9:d0:fb:85:80:25:d5:7e:41:b9
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12241: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12242: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12243: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                ae:ac:00:14:29:a9:63:1b:00:d3:c3:47:51:7e:b5:13
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12244: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12245: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12246: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                6d:19:d4:cd:38:57:66:1d:e0:8c:79:22:f0:4d:30:6f
            Iteration Count: 2000 (0x7d0)
tools.sh: #12247: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12248: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12249: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d9:97:3c:5e:29:59:da:8b:ff:c7:0f:46:ba:34:1c:e7
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12250: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12251: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12252: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                af:02:67:43:78:16:9f:cf:bc:d1:cf:db:4b:49:18:70
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12253: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12254: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12255: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                48:c9:14:6f:35:e5:60:9f:c1:0e:d9:da:12:b8:b7:de
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12256: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12257: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12258: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                2e:b1:76:21:33:75:03:22:2c:41:a5:47:af:02:f3:ca
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12259: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12260: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:null]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12261: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                e5:f3:44:e4:3e:16:dd:25:6c:99:5e:26:ad:42:11:16
            Iteration Count: 2000 (0x7d0)
tools.sh: #12262: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12263: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12264: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                b6:27:ce:f8:25:1b:9a:fd:e1:c7:e3:7d:20:cb:7a:34
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12265: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12266: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12267: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                05:a4:70:cd:62:13:a2:45:4b:71:00:51:5b:52:cc:49
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12268: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12269: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12270: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                43:37:58:1d:b1:ca:82:b0:d8:7f:91:89:ef:ce:73:bc
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12271: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12272: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12273: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                7c:13:21:e2:3d:f1:41:43:e7:10:aa:f8:2f:6d:61:ce
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12274: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12275: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12276: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d5:4f:44:98:47:3e:a8:35:71:0b:99:30:be:c2:8c:3d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12277: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12278: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12279: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                17:55:f2:27:7d:55:04:74:c2:01:ca:0c:51:8b:8a:4a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12280: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12281: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12282: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                36:5d:63:e6:cf:15:7d:39:e2:ba:3e:5b:4a:a6:87:bb
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12283: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12284: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12285: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                3c:29:bc:4c:7f:b4:03:12:04:b2:25:3d:7e:ad:64:dd
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12286: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12287: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12288: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                10:60:52:35:77:47:ad:ed:6d:ca:4b:1d:58:32:5f:8d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12289: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12290: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12291: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                b1:4c:83:54:8d:9a:9d:55:02:57:f2:5b:a2:c3:42:6d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:04:23 2017
            Not After : Sun Aug 07 00:04:23 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:ec:b2:e8:9c:c5:b7:d5:dd:b1:31:44:92:e4:93:0d:
                    7c:2a:f6:b8:1a:eb:36:87:41:ea:39:c9:c8:fd:c6:cb:
                    d2:66:3a:41:b9:8c:17:ed:0c:98:bb:a4:3f:73:13:58:
                    81:3f:9a:27:31:d9:11:a9:67:24:fe:42:fa:a2:9d:67:
                    6d:f4:a8:2e:bf:0c:93:a5:31:d9:79:5c:d3:71:76:7d:
                    e7:0d:6c:13:e3:cb:31:76:b1:18:54:78:4e:c0:c8:5d:
                    e5:71:3f:3f:6f:a2:08:34:a8:96:72:34:ce:db:4d:db:
                    47:50:78:11:85:ae:10:fe:fb:67:9f:e7:36:f8:db:c5:
                    d0:98:df:a3:ee:ed:05:74:54:9a:1f:bb:24:7d:05:a3:
                    9d:81:ce:d6:6e:9a:7d:d6:c7:44:fb:2b:7a:06:90:8c:
                    d3:20:e9:3d:a8:e5:f2:a4:29:5c:e0:3c:46:48:7d:e8:
                    fa:cc:1e:1a:6d:11:1c:6c:dd:fe:e4:1a:15:19:39:da:
                    7f:e3:43:1e:8d:c4:c2:0e:da:3b:1e:89:f6:70:7e:3c:
                    bc:c0:d8:d8:2d:b2:4f:56:2d:59:19:7c:39:a8:8a:ae:
                    5f:a9:59:87:f7:d0:35:f3:1c:4d:02:75:a2:f5:67:1b:
                    c7:22:bb:0b:b0:ce:f4:4d:0e:8e:ac:12:c9:b3:32:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:39:c9:96:19:2d:d4:ee:01:dd:f3:33:58:a2:db:aa:
        91:cd:3d:48:dd:36:f4:5a:91:1e:97:e7:a9:08:d8:28:
        21:21:cf:1a:c7:a2:c4:78:79:2c:c4:ac:54:bd:43:6f:
        5b:05:96:7c:14:11:1f:cd:9b:26:b0:04:c3:8d:c4:96:
        0a:f6:23:7e:77:be:de:04:7e:14:75:4f:39:9b:ce:22:
        fa:f7:76:ec:6a:51:ba:c8:67:b8:db:86:81:3d:3a:f4:
        38:75:ba:88:f0:92:75:c0:1f:e2:b4:42:83:c8:e2:73:
        35:9a:27:93:3a:34:06:9c:da:42:63:82:5a:63:51:ac:
        8a:42:0d:be:ee:2d:51:f7:1f:ef:df:81:04:df:25:54:
        88:8d:c1:e7:88:f1:ea:78:a5:f8:07:fa:d9:37:87:48:
        b5:d2:9f:9e:66:71:b2:71:a4:ab:56:8e:17:3d:f6:51:
        f3:be:fb:af:c7:fa:3c:86:bc:83:50:9e:d5:df:5e:9f:
        9e:26:00:c5:29:be:d9:9b:42:a8:b8:f7:a1:04:57:61:
        ab:58:ac:21:23:01:c0:56:cc:c4:99:f2:68:9a:9b:c4:
        d2:fa:36:27:53:d1:1b:fe:02:18:f9:38:54:e6:c7:e7:
        4c:bf:93:39:9c:32:94:75:68:73:c4:ab:11:c9:9b:9f
    Fingerprint (SHA-256):
        41:0F:69:E9:96:C8:DD:F9:03:75:CD:AE:1C:FF:6A:4A:5E:2D:54:5B:1C:7B:0F:BF:7F:CF:97:15:F9:AF:9F:D6
    Fingerprint (SHA1):
        0F:A9:8A:2F:FE:BB:B0:47:3F:60:E0:1A:4A:D8:29:1C:9C:3C:34:20
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:05:05 2017
            Not After : Sun Aug 07 00:05:05 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:c9:6f:b2:e3:06:ca:9b:8c:86:ac:1b:fc:5b:e6:ec:
                    a6:77:0d:75:a1:95:fd:88:f4:d0:33:ce:c6:07:bb:f6:
                    8b:10:ba:ea:8e:65:5b:8f:a8:5f:3b:87:23:50:2f:54:
                    81:b2:c4:4f:c2:de:bf:fd:ea:42:25:81:5f:80:b1:42:
                    5f:8f:12:2f:40:4d:a3:48:7e:9c:c3:3d:89:ae:1e:a1:
                    dd:54:ea:64:b1:a8:f4:98:8e:4f:4d:a5:8b:59:cd:4c:
                    ef:6e:61:30:80:c4:f6:ee:28:1a:57:8d:74:3f:af:00:
                    4e:65:4f:03:96:29:32:22:c6:65:03:9f:fc:d0:ad:5a:
                    4f:1a:24:a9:0b:da:ab:d8:78:d0:b9:09:b5:6d:1c:39:
                    ac:65:1c:61:90:50:f9:fc:e6:c1:ef:d6:6b:bb:44:6b:
                    49:0d:09:d6:32:ec:8c:e0:35:3d:5f:08:7d:a8:33:87:
                    41:cb:cd:0c:d8:e7:14:33:9d:cd:ae:94:3f:1d:ea:da:
                    4a:19:69:34:84:6f:0d:33:3d:36:eb:e2:93:cb:ed:87:
                    45:79:6e:21:98:db:b9:32:ca:c2:ff:50:20:8c:c1:04:
                    2e:28:a4:50:6d:04:1c:88:96:1c:ec:40:24:1d:cd:b9:
                    7c:04:f7:50:7e:ee:0c:d3:6d:92:a2:c6:9b:4c:6c:bd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:9c:95:d1:9e:0a:90:f8:65:3c:54:a9:33:4d:6d:60:
        cc:b1:64:aa:90:66:22:74:61:af:95:b0:ad:e2:ab:89:
        fc:dd:15:3e:67:a2:9a:96:e4:4e:23:33:b6:33:48:8b:
        59:72:e2:48:71:dc:10:62:82:ff:34:1c:3e:b2:b8:93:
        64:20:e6:42:5d:69:7f:55:cf:f1:dd:6e:3f:a3:b8:c2:
        70:82:25:03:b8:8c:05:aa:ef:df:d8:78:e1:a6:99:48:
        44:b7:01:f0:27:fb:07:07:db:e8:fb:56:c9:d6:29:74:
        c4:a7:83:98:91:97:a5:57:66:fc:4a:f6:46:83:55:bf:
        cf:8b:94:c4:db:b7:67:43:4a:b9:e4:d9:7d:b4:48:9c:
        9c:55:a5:98:60:bd:34:64:15:06:24:b9:84:48:01:8e:
        61:28:ec:1b:1b:25:42:cd:78:ff:7e:0b:d7:fc:03:ec:
        57:2d:04:2e:63:93:78:3a:06:97:b1:49:73:4e:84:a9:
        3d:56:1f:33:9e:87:36:82:7d:ff:0e:fc:5f:9f:ee:41:
        7f:82:07:40:96:a6:ec:cb:00:ff:4a:a9:4c:e3:5c:45:
        e3:75:74:c8:ce:33:f7:05:ae:24:50:66:38:4a:a3:b3:
        8a:1f:5c:80:9c:30:2b:80:8e:b5:c3:f1:e9:68:2c:2a
    Fingerprint (SHA-256):
        15:7E:FF:20:48:23:DA:1F:B4:CB:09:B2:9B:BC:51:9E:98:DF:BF:EC:B6:38:76:2F:E6:50:99:4B:17:9E:91:A4
    Fingerprint (SHA1):
        3A:A4:98:4F:F5:49:70:3F:2A:D2:B6:8B:02:E4:48:2A:17:64:56:C3
    Friendly Name: Alice
tools.sh: #12292: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12293: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c null
pk12util: Algorithm: "null": SEC_ERROR_INVALID_ALGORITHM: security library: invalid algorithm.
tools.sh: #12294: Exporting with [null:default] (pk12util -o)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12295: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Create objsign cert -------------------------------
signtool -G "objectsigner" -d ../tools/signdir -p "nss"
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit the browser before continuing this operation. Enter 
"y" to continue, or anything else to abort: 
Enter certificate information.  All fields are optional. Acceptable
characters are numbers, letters, spaces, and apostrophes.
certificate common name: organization: organization unit: state or province: country (must be exactly 2 characters): username: email address: generated public/private key pair
certificate request generated
certificate has been signed
certificate "objsigner" added to database
Exported certificate to x509.raw and x509.cacert.
tools.sh: #12296: Create objsign cert (signtool -G)  - PASSED
tools.sh: Signing a jar of files ----------------------------
signtool -Z nojs.jar -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
adding ../tools/html/sign.html to nojs.jar...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.jar...(deflated 28%)
Generating zigbert.sf file..
adding ../tools/html/META-INF/manifest.mf to nojs.jar...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.jar...(deflated 36%)
adding ../tools/html/META-INF/zigbert.rsa to nojs.jar...(deflated 32%)
tree "../tools/html" signed successfully
tools.sh: #12297: Signing a jar of files (signtool -Z)  - PASSED
tools.sh: Listing signed files in jar ----------------------
signtool -v nojs.jar -d ../tools/signdir -p nss -k objsigner
archive "nojs.jar" has passed crypto verification.
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
found a RSA signature file: META-INF/zigbert.rsa
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #12298: Listing signed files in jar (signtool -v)  - PASSED
tools.sh: Show who signed jar ------------------------------
signtool -w nojs.jar -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #12299: Show who signed jar (signtool -w)  - PASSED
tools.sh: Signing a xpi of files ----------------------------
signtool -Z nojs.xpi -X -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
--> signjs.html
Generating zigbert.sf file..
Creating XPI Compatible Archive 
adding ../tools/html/META-INF/zigbert.rsa to nojs.xpi...(deflated 32%)
--> sign.html
adding ../tools/html/sign.html to nojs.xpi...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.xpi...(deflated 28%)
adding ../tools/html/META-INF/manifest.mf to nojs.xpi...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.xpi...(deflated 36%)
tree "../tools/html" signed successfully
tools.sh: #12300: Signing a xpi of files (signtool -Z -X)  - PASSED
tools.sh: Listing signed files in xpi ----------------------
signtool -v nojs.xpi -d ../tools/signdir -p nss -k objsigner
archive "nojs.xpi" has passed crypto verification.
found a RSA signature file: META-INF/zigbert.rsa
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #12301: Listing signed files in xpi (signtool -v)  - PASSED
tools.sh: Show who signed xpi ------------------------------
signtool -w nojs.xpi -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #12302: Show who signed xpi (signtool -w)  - PASSED
TIMESTAMP tools END: Mon Aug  7 00:07:28 UTC 2017
Running tests for fips
TIMESTAMP fips BEGIN: Mon Aug  7 00:07:28 UTC 2017
fips.sh: FIPS 140 Compliance Tests ===============================
fips.sh: Verify this module is in FIPS mode  -----------------
modutil -dbdir ../fips -list
Listing of PKCS #11 Modules
-----------------------------------------------------------
  1. NSS Internal FIPS PKCS #11 Module
	 slots: 1 slot attached
	status: loaded
	 slot: NSS FIPS 140-2 User Private Key Services
	token: NSS FIPS 140-2 Certificate DB
  2. RootCerts
	library name: /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
	 slots: 1 slot attached
	status: loaded
	 slot: NSS Builtin Objects
	token: Builtin Object Token
-----------------------------------------------------------
FIPS mode enabled.
fips.sh: #12303: Verify this module is in FIPS mode (modutil -chkfips true) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #12304: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys -------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      0d94ffe86fd47961bba93ac624f34a126857d973   NSS FIPS 140-2 Certificate DB:FIPS_PUB_140_Test_Certificate
fips.sh: #12305: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Attempt to list FIPS module keys with incorrect password
certutil -d ../fips -K -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests.fipsbadpw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
Incorrect password/PIN entered.
certutil: could not authenticate to token NSS FIPS 140-2 Certificate DB.: SEC_ERROR_BAD_PASSWORD: The security password entered is incorrect.
fips.sh: #12306: Attempt to list FIPS module keys with incorrect password (certutil -K) . - PASSED
certutil -K returned 255
fips.sh: Validate the certificate --------------------------
certutil -d ../fips -V -n FIPS_PUB_140_Test_Certificate -u SR -e -f ../tests.fipspw
certutil: certificate is valid
fips.sh: #12307: Validate the certificate (certutil -V -e) . - PASSED
fips.sh: Export the certificate and key as a PKCS#12 file --
pk12util -d ../fips -o fips140.p12 -n FIPS_PUB_140_Test_Certificate -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 EXPORT SUCCESSFUL
fips.sh: #12308: Export the certificate and key as a PKCS#12 file (pk12util -o) . - PASSED
fips.sh: Export the certificate as a DER-encoded file ------
certutil -d ../fips -L -n FIPS_PUB_140_Test_Certificate -r -o fips140.crt
fips.sh: #12309: Export the certificate as a DER (certutil -L -r) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #12310: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Delete the certificate and key from the FIPS module
certutil -d ../fips -F -n FIPS_PUB_140_Test_Certificate -f ../tests.fipspw
fips.sh: #12311: Delete the certificate and key from the FIPS module (certutil -F) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #12312: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys.
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
certutil: no keys found
fips.sh: #12313: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #12314: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #12315: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      0d94ffe86fd47961bba93ac624f34a126857d973   FIPS_PUB_140_Test_Certificate
fips.sh: #12316: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Delete the certificate from the FIPS module
certutil -d ../fips -D -n FIPS_PUB_140_Test_Certificate
fips.sh: #12317: Delete the certificate from the FIPS module (certutil -D) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #12318: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #12319: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #12320: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      0d94ffe86fd47961bba93ac624f34a126857d973   FIPS_PUB_140_Test_Certificate
fips.sh: #12321: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Run PK11MODE in FIPSMODE  -----------------
pk11mode -d ../fips -p fips- -f ../tests.fipspw
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
**** Total number of TESTS ran in FIPS MODE is 106. ****
**** ALL TESTS PASSED ****
fips.sh: #12322: Run PK11MODE in FIPS mode (pk11mode) . - PASSED
fips.sh: Run PK11MODE in Non FIPSMODE  -----------------
pk11mode -d ../fips -p nonfips- -f ../tests.fipspw -n
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
**** Total number of TESTS ran in NON FIPS MODE is 104. ****
**** ALL TESTS PASSED ****
fips.sh: #12323: Run PK11MODE in Non FIPS mode (pk11mode -n) . - PASSED
mkdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest1.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
fips.sh: Detect mangled softoken--------------------------
mangling /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle/libsoftokn3.so
mangle -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle/libsoftokn3.so -o -8 -b 5
cp /usr/lib64/libsoftokn3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
Changing byte 0x0003fd70 (261488): from 00 (0) to 20 (32)
LD_LIBRARY_PATH=/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle dbtest -r -d ../fips
fips.sh: #12324: Init NSS with a corrupted library (dbtest -r) . - PASSED
fips.sh done
TIMESTAMP fips END: Mon Aug  7 00:07:39 UTC 2017
Running tests for crmf
TIMESTAMP crmf BEGIN: Mon Aug  7 00:07:39 UTC 2017
crmf.sh: CRMF/CMMF Tests ===============================
crmf.sh: CRMF/CMMF Tests ------------------------------
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss crmf decode
crmftest v1.0
Generating CRMF request
Decoding CRMF request
crmftest: Processing cert request 0
crmftest: Processing cert request 1
Exiting successfully!!!
crmf.sh: #12325: CRMF test . - PASSED
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss cmmf
crmftest v1.0
Doing CMMF Stuff
Exiting successfully!!!
crmf.sh: #12326: CMMF test . - PASSED
TIMESTAMP crmf END: Mon Aug  7 00:07:39 UTC 2017
Running tests for smime
TIMESTAMP smime BEGIN: Mon Aug  7 00:07:39 UTC 2017
smime.sh: S/MIME Tests with ECC ===============================
smime.sh: Signing Detached Message {SHA1} ------------------
cmsutil -S -T -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA1
smime.sh: #12327: Create Detached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #12328: Verifying Alice's Detached Signature (SHA1) . - PASSED
smime.sh: Signing Attached Message (SHA1) ------------------
cmsutil -S -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA1
smime.sh: #12329: Create Attached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.sig.SHA1 -d ../bobdir -o alice.data.SHA1
smime.sh: #12330: Decode Alice's Attached Signature (SHA1) . - PASSED
diff alice.txt alice.data.SHA1
smime.sh: #12331: Compare Attached Signed Data and Original (SHA1) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA1} ------------------
cmsutil -S -T -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA1
smime.sh: #12332: Create Detached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #12333: Verifying Alice's Detached Signature (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA1) ------------------
cmsutil -S -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA1
smime.sh: #12334: Create Attached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.sig.SHA1 -d ../bobdir -o alice-ec.data.SHA1
smime.sh: #12335: Decode Alice's Attached Signature (ECDSA w/ SHA1) . - PASSED
diff alice.txt alice-ec.data.SHA1
smime.sh: #12336: Compare Attached Signed Data and Original (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Detached Message {SHA256} ------------------
cmsutil -S -T -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA256
smime.sh: #12337: Create Detached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #12338: Verifying Alice's Detached Signature (SHA256) . - PASSED
smime.sh: Signing Attached Message (SHA256) ------------------
cmsutil -S -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA256
smime.sh: #12339: Create Attached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.sig.SHA256 -d ../bobdir -o alice.data.SHA256
smime.sh: #12340: Decode Alice's Attached Signature (SHA256) . - PASSED
diff alice.txt alice.data.SHA256
smime.sh: #12341: Compare Attached Signed Data and Original (SHA256) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA256} ------------------
cmsutil -S -T -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA256
smime.sh: #12342: Create Detached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #12343: Verifying Alice's Detached Signature (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA256) ------------------
cmsutil -S -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA256
smime.sh: #12344: Create Attached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.sig.SHA256 -d ../bobdir -o alice-ec.data.SHA256
smime.sh: #12345: Decode Alice's Attached Signature (ECDSA w/ SHA256) . - PASSED
diff alice.txt alice-ec.data.SHA256
smime.sh: #12346: Compare Attached Signed Data and Original (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Detached Message {SHA384} ------------------
cmsutil -S -T -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA384
smime.sh: #12347: Create Detached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #12348: Verifying Alice's Detached Signature (SHA384) . - PASSED
smime.sh: Signing Attached Message (SHA384) ------------------
cmsutil -S -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA384
smime.sh: #12349: Create Attached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.sig.SHA384 -d ../bobdir -o alice.data.SHA384
smime.sh: #12350: Decode Alice's Attached Signature (SHA384) . - PASSED
diff alice.txt alice.data.SHA384
smime.sh: #12351: Compare Attached Signed Data and Original (SHA384) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA384} ------------------
cmsutil -S -T -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA384
smime.sh: #12352: Create Detached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #12353: Verifying Alice's Detached Signature (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA384) ------------------
cmsutil -S -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA384
smime.sh: #12354: Create Attached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.sig.SHA384 -d ../bobdir -o alice-ec.data.SHA384
smime.sh: #12355: Decode Alice's Attached Signature (ECDSA w/ SHA384) . - PASSED
diff alice.txt alice-ec.data.SHA384
smime.sh: #12356: Compare Attached Signed Data and Original (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Detached Message {SHA512} ------------------
cmsutil -S -T -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA512
smime.sh: #12357: Create Detached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #12358: Verifying Alice's Detached Signature (SHA512) . - PASSED
smime.sh: Signing Attached Message (SHA512) ------------------
cmsutil -S -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA512
smime.sh: #12359: Create Attached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.sig.SHA512 -d ../bobdir -o alice.data.SHA512
smime.sh: #12360: Decode Alice's Attached Signature (SHA512) . - PASSED
diff alice.txt alice.data.SHA512
smime.sh: #12361: Compare Attached Signed Data and Original (SHA512) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA512} ------------------
cmsutil -S -T -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA512
smime.sh: #12362: Create Detached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #12363: Verifying Alice's Detached Signature (ECDSA w/ SHA512) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA512) ------------------
cmsutil -S -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA512
smime.sh: #12364: Create Attached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.sig.SHA512 -d ../bobdir -o alice-ec.data.SHA512
smime.sh: #12365: Decode Alice's Attached Signature (ECDSA w/ SHA512) . - PASSED
diff alice.txt alice-ec.data.SHA512
smime.sh: #12366: Compare Attached Signed Data and Original (ECDSA w/ SHA512) . - PASSED
smime.sh: Enveloped Data Tests ------------------------------
cmsutil -E -r bob@bogus.com -i alice.txt -d ../alicedir -p nss \
        -o alice.env
smime.sh: #12367: Create Enveloped Data Alice . - PASSED
cmsutil -D -i alice.env -d ../bobdir -p nss -o alice.data1
smime.sh: #12368: Decode Enveloped Data Alice . - PASSED
diff alice.txt alice.data1
smime.sh: #12369: Compare Decoded Enveloped Data and Original . - PASSED
smime.sh: Testing multiple recipients ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o alicecc.env \
        -r bob@bogus.com,dave@bogus.com
smime.sh: #12370: Create Multiple Recipients Enveloped Data Alice . - PASSED
smime.sh: Testing multiple email addrs ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o aliceve.env \
        -r eve@bogus.net
smime.sh: #12371: Encrypt to a Multiple Email cert . - PASSED
cmsutil -D -i alicecc.env -d ../bobdir -p nss -o alice.data2
smime.sh: #12372: Decode Multiple Recipients Enveloped Data Alice by Bob . - PASSED
cmsutil -D -i alicecc.env -d ../dave -p nss -o alice.data3
smime.sh: #12373: Decode Multiple Recipients Enveloped Data Alice by Dave . - PASSED
cmsutil -D -i aliceve.env -d ../eve -p nss -o alice.data4
smime.sh: #12374: Decrypt with a Multiple Email cert . - PASSED
smime.sh: #12375: Compare Decoded Mult. Recipients Enveloped Data Alice/Bob . - PASSED
smime.sh: #12376: Compare Decoded Mult. Recipients Enveloped Data Alice/Dave . - PASSED
smime.sh: #12377: Compare Decoded with Multiple Email cert . - PASSED
smime.sh: Sending CERTS-ONLY Message ------------------------------
cmsutil -O -r "Alice,bob@bogus.com,dave@bogus.com" \
        -d ../alicedir > co.der
smime.sh: #12378: Create Certs-Only Alice . - PASSED
cmsutil -D -i co.der -d ../bobdir
smime.sh: #12379: Verify Certs-Only by CA . - PASSED
smime.sh: Encrypted-Data Message ---------------------------------
cmsutil -C -i alice.txt -e alicehello.env -d ../alicedir \
        -r "bob@bogus.com" > alice.enc
smime.sh: #12380: Create Encrypted-Data . - PASSED
cmsutil -D -i alice.enc -d ../bobdir -e alicehello.env -p nss \
        -o alice.data2
smime.sh: #12381: Decode Encrypted-Data . - PASSED
smime.sh: #12382: Compare Decoded and Original Data . - PASSED
smime.sh: p7 util Data Tests ------------------------------
p7env -d ../alicedir -r Alice -i alice.txt -o alice_p7.env
smime.sh: #12383: Creating envelope for user Alice . - PASSED
p7content -d ../alicedir -i alice.env -o alice_p7.data
smime.sh: #12384: Verifying file delivered to user Alice . - PASSED
diff alice.txt alice_p7.data.sed
smime.sh: #12385: Compare Decoded Enveloped Data and Original . - PASSED
p7sign -d ../alicedir -k Alice -i alice.txt -o alice.sig -p nss -e
smime.sh: #12386: Signing file for user Alice . - PASSED
p7verify -d ../alicedir -c alice.txt -s alice.sig
Signature is valid.
smime.sh: #12387: Verifying file delivered to user Alice . - PASSED
TIMESTAMP smime END: Mon Aug  7 00:07:42 UTC 2017
Running tests for ssl
TIMESTAMP ssl BEGIN: Mon Aug  7 00:07:42 UTC 2017
ssl.sh: SSL tests ===============================
ssl.sh: CRL SSL Client Tests   - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:42 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:42 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18216 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 18216 found at Mon Aug  7 00:07:42 UTC 2017
selfserv_9009 with PID 18216 started at Mon Aug  7 00:07:42 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12388: TLS Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 18216 at Mon Aug  7 00:07:42 UTC 2017
kill -USR1 18216
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 18216 killed at Mon Aug  7 00:07:42 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:42 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:42 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18273 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 18273 found at Mon Aug  7 00:07:42 UTC 2017
selfserv_9009 with PID 18273 started at Mon Aug  7 00:07:42 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12389: TLS Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 18273 at Mon Aug  7 00:07:42 UTC 2017
kill -USR1 18273
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 18273 killed at Mon Aug  7 00:07:42 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:42 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:42 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18329 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 18329 found at Mon Aug  7 00:07:42 UTC 2017
selfserv_9009 with PID 18329 started at Mon Aug  7 00:07:42 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12390: TLS Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 18329 at Mon Aug  7 00:07:42 UTC 2017
kill -USR1 18329
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 18329 killed at Mon Aug  7 00:07:42 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:07:43 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:43 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18397 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 18397 found at Mon Aug  7 00:07:43 UTC 2017
selfserv_9009 with PID 18397 started at Mon Aug  7 00:07:43 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12391: TLS Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 18397 at Mon Aug  7 00:07:43 UTC 2017
kill -USR1 18397
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 18397 killed at Mon Aug  7 00:07:43 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:07:43 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:43 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18453 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 18453 found at Mon Aug  7 00:07:43 UTC 2017
selfserv_9009 with PID 18453 started at Mon Aug  7 00:07:43 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12392: TLS Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 18453 at Mon Aug  7 00:07:43 UTC 2017
kill -USR1 18453
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 18453 killed at Mon Aug  7 00:07:43 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:07:43 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:43 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18509 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 18509 found at Mon Aug  7 00:07:43 UTC 2017
selfserv_9009 with PID 18509 started at Mon Aug  7 00:07:43 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12393: TLS Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 18509 at Mon Aug  7 00:07:43 UTC 2017
kill -USR1 18509
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 18509 killed at Mon Aug  7 00:07:43 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:43 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:43 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18578 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 18578 found at Mon Aug  7 00:07:43 UTC 2017
selfserv_9009 with PID 18578 started at Mon Aug  7 00:07:43 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12394: TLS Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 18578 at Mon Aug  7 00:07:43 UTC 2017
kill -USR1 18578
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 18578 killed at Mon Aug  7 00:07:43 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:43 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:43 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18634 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 18634 found at Mon Aug  7 00:07:43 UTC 2017
selfserv_9009 with PID 18634 started at Mon Aug  7 00:07:43 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12395: TLS Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 18634 at Mon Aug  7 00:07:44 UTC 2017
kill -USR1 18634
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 18634 killed at Mon Aug  7 00:07:44 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:44 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:44 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 18690 found at Mon Aug  7 00:07:44 UTC 2017
selfserv_9009 with PID 18690 started at Mon Aug  7 00:07:44 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12396: TLS Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 18690 at Mon Aug  7 00:07:44 UTC 2017
kill -USR1 18690
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 18690 killed at Mon Aug  7 00:07:44 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:44 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:44 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18758 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 18758 found at Mon Aug  7 00:07:44 UTC 2017
selfserv_9009 with PID 18758 started at Mon Aug  7 00:07:44 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12397: TLS Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 18758 at Mon Aug  7 00:07:44 UTC 2017
kill -USR1 18758
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 18758 killed at Mon Aug  7 00:07:44 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:44 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:44 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18815 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 18815 found at Mon Aug  7 00:07:44 UTC 2017
selfserv_9009 with PID 18815 started at Mon Aug  7 00:07:44 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12398: TLS Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 18815 at Mon Aug  7 00:07:44 UTC 2017
kill -USR1 18815
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 18815 killed at Mon Aug  7 00:07:44 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:44 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:44 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18871 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 18871 found at Mon Aug  7 00:07:44 UTC 2017
selfserv_9009 with PID 18871 started at Mon Aug  7 00:07:44 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12399: TLS Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 18871 at Mon Aug  7 00:07:45 UTC 2017
kill -USR1 18871
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 18871 killed at Mon Aug  7 00:07:45 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:07:45 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:45 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18940 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 18940 found at Mon Aug  7 00:07:45 UTC 2017
selfserv_9009 with PID 18940 started at Mon Aug  7 00:07:45 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12400: TLS Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 18940 at Mon Aug  7 00:07:45 UTC 2017
kill -USR1 18940
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 18940 killed at Mon Aug  7 00:07:45 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:07:45 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:45 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18996 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 18996 found at Mon Aug  7 00:07:45 UTC 2017
selfserv_9009 with PID 18996 started at Mon Aug  7 00:07:45 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12401: TLS Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 18996 at Mon Aug  7 00:07:45 UTC 2017
kill -USR1 18996
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 18996 killed at Mon Aug  7 00:07:45 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:07:45 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:45 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19052 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19052 found at Mon Aug  7 00:07:45 UTC 2017
selfserv_9009 with PID 19052 started at Mon Aug  7 00:07:45 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12402: TLS Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 19052 at Mon Aug  7 00:07:45 UTC 2017
kill -USR1 19052
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 19052 killed at Mon Aug  7 00:07:45 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:45 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:45 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19123 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19123 found at Mon Aug  7 00:07:45 UTC 2017
selfserv_9009 with PID 19123 started at Mon Aug  7 00:07:45 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12403: TLS Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 19123 at Mon Aug  7 00:07:45 UTC 2017
kill -USR1 19123
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 19123 killed at Mon Aug  7 00:07:45 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:46 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:46 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19179 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19179 found at Mon Aug  7 00:07:46 UTC 2017
selfserv_9009 with PID 19179 started at Mon Aug  7 00:07:46 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12404: TLS Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 19179 at Mon Aug  7 00:07:46 UTC 2017
kill -USR1 19179
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 19179 killed at Mon Aug  7 00:07:46 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:46 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:46 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19236 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19236 found at Mon Aug  7 00:07:46 UTC 2017
selfserv_9009 with PID 19236 started at Mon Aug  7 00:07:46 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12405: TLS Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 19236 at Mon Aug  7 00:07:46 UTC 2017
kill -USR1 19236
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 19236 killed at Mon Aug  7 00:07:46 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:46 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:46 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19305 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19305 found at Mon Aug  7 00:07:46 UTC 2017
selfserv_9009 with PID 19305 started at Mon Aug  7 00:07:46 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12406: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 19305 at Mon Aug  7 00:07:46 UTC 2017
kill -USR1 19305
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 19305 killed at Mon Aug  7 00:07:46 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:46 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:46 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19361 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19361 found at Mon Aug  7 00:07:46 UTC 2017
selfserv_9009 with PID 19361 started at Mon Aug  7 00:07:46 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12407: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 19361 at Mon Aug  7 00:07:46 UTC 2017
kill -USR1 19361
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 19361 killed at Mon Aug  7 00:07:46 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:46 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:46 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19417 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19417 found at Mon Aug  7 00:07:46 UTC 2017
selfserv_9009 with PID 19417 started at Mon Aug  7 00:07:46 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12408: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 19417 at Mon Aug  7 00:07:47 UTC 2017
kill -USR1 19417
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 19417 killed at Mon Aug  7 00:07:47 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:07:47 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:47 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19485 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19485 found at Mon Aug  7 00:07:47 UTC 2017
selfserv_9009 with PID 19485 started at Mon Aug  7 00:07:47 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12409: SSL3 Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 19485 at Mon Aug  7 00:07:47 UTC 2017
kill -USR1 19485
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 19485 killed at Mon Aug  7 00:07:47 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:07:47 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:47 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19541 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19541 found at Mon Aug  7 00:07:47 UTC 2017
selfserv_9009 with PID 19541 started at Mon Aug  7 00:07:47 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12410: SSL3 Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 19541 at Mon Aug  7 00:07:47 UTC 2017
kill -USR1 19541
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 19541 killed at Mon Aug  7 00:07:47 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:07:47 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:47 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19597 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19597 found at Mon Aug  7 00:07:47 UTC 2017
selfserv_9009 with PID 19597 started at Mon Aug  7 00:07:47 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12411: SSL3 Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 19597 at Mon Aug  7 00:07:47 UTC 2017
kill -USR1 19597
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 19597 killed at Mon Aug  7 00:07:47 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:47 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:47 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19665 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19665 found at Mon Aug  7 00:07:47 UTC 2017
selfserv_9009 with PID 19665 started at Mon Aug  7 00:07:47 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12412: SSL3 Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 19665 at Mon Aug  7 00:07:47 UTC 2017
kill -USR1 19665
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 19665 killed at Mon Aug  7 00:07:47 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:47 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:47 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19721 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19721 found at Mon Aug  7 00:07:47 UTC 2017
selfserv_9009 with PID 19721 started at Mon Aug  7 00:07:47 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12413: SSL3 Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 19721 at Mon Aug  7 00:07:48 UTC 2017
kill -USR1 19721
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 19721 killed at Mon Aug  7 00:07:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:48 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:48 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19777 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19777 found at Mon Aug  7 00:07:48 UTC 2017
selfserv_9009 with PID 19777 started at Mon Aug  7 00:07:48 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12414: SSL3 Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 19777 at Mon Aug  7 00:07:48 UTC 2017
kill -USR1 19777
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 19777 killed at Mon Aug  7 00:07:48 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:48 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:48 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19845 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19845 found at Mon Aug  7 00:07:48 UTC 2017
selfserv_9009 with PID 19845 started at Mon Aug  7 00:07:48 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12415: SSL3 Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 19845 at Mon Aug  7 00:07:48 UTC 2017
kill -USR1 19845
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 19845 killed at Mon Aug  7 00:07:48 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:48 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:48 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19902 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19902 found at Mon Aug  7 00:07:48 UTC 2017
selfserv_9009 with PID 19902 started at Mon Aug  7 00:07:48 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12416: SSL3 Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 19902 at Mon Aug  7 00:07:48 UTC 2017
kill -USR1 19902
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 19902 killed at Mon Aug  7 00:07:48 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:48 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:48 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19958 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 19958 found at Mon Aug  7 00:07:48 UTC 2017
selfserv_9009 with PID 19958 started at Mon Aug  7 00:07:48 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12417: SSL3 Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 19958 at Mon Aug  7 00:07:48 UTC 2017
kill -USR1 19958
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 19958 killed at Mon Aug  7 00:07:48 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:07:48 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:48 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20026 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20026 found at Mon Aug  7 00:07:48 UTC 2017
selfserv_9009 with PID 20026 started at Mon Aug  7 00:07:48 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12418: SSL3 Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 20026 at Mon Aug  7 00:07:49 UTC 2017
kill -USR1 20026
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20026 killed at Mon Aug  7 00:07:49 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:07:49 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:49 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20082 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20082 found at Mon Aug  7 00:07:49 UTC 2017
selfserv_9009 with PID 20082 started at Mon Aug  7 00:07:49 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12419: SSL3 Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 20082 at Mon Aug  7 00:07:49 UTC 2017
kill -USR1 20082
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20082 killed at Mon Aug  7 00:07:49 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:07:49 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:49 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20139 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20139 found at Mon Aug  7 00:07:49 UTC 2017
selfserv_9009 with PID 20139 started at Mon Aug  7 00:07:49 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12420: SSL3 Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 20139 at Mon Aug  7 00:07:49 UTC 2017
kill -USR1 20139
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20139 killed at Mon Aug  7 00:07:49 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:49 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:49 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20207 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20207 found at Mon Aug  7 00:07:49 UTC 2017
selfserv_9009 with PID 20207 started at Mon Aug  7 00:07:49 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12421: SSL3 Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 20207 at Mon Aug  7 00:07:49 UTC 2017
kill -USR1 20207
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20207 killed at Mon Aug  7 00:07:49 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:49 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:49 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20263 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20263 found at Mon Aug  7 00:07:49 UTC 2017
selfserv_9009 with PID 20263 started at Mon Aug  7 00:07:49 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12422: SSL3 Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 20263 at Mon Aug  7 00:07:49 UTC 2017
kill -USR1 20263
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20263 killed at Mon Aug  7 00:07:49 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:50 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20319 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20319 found at Mon Aug  7 00:07:50 UTC 2017
selfserv_9009 with PID 20319 started at Mon Aug  7 00:07:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12423: SSL3 Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 20319 at Mon Aug  7 00:07:50 UTC 2017
kill -USR1 20319
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20319 killed at Mon Aug  7 00:07:50 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:50 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20387 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20387 found at Mon Aug  7 00:07:50 UTC 2017
selfserv_9009 with PID 20387 started at Mon Aug  7 00:07:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12424: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 20387 at Mon Aug  7 00:07:50 UTC 2017
kill -USR1 20387
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20387 killed at Mon Aug  7 00:07:50 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:50 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20444 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20444 found at Mon Aug  7 00:07:50 UTC 2017
selfserv_9009 with PID 20444 started at Mon Aug  7 00:07:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12425: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 20444 at Mon Aug  7 00:07:50 UTC 2017
kill -USR1 20444
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20444 killed at Mon Aug  7 00:07:50 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:50 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20500 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20500 found at Mon Aug  7 00:07:50 UTC 2017
selfserv_9009 with PID 20500 started at Mon Aug  7 00:07:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12426: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 20500 at Mon Aug  7 00:07:50 UTC 2017
kill -USR1 20500
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20500 killed at Mon Aug  7 00:07:50 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:07:50 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20569 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20569 found at Mon Aug  7 00:07:50 UTC 2017
selfserv_9009 with PID 20569 started at Mon Aug  7 00:07:50 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12427: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 20569 at Mon Aug  7 00:07:51 UTC 2017
kill -USR1 20569
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20569 killed at Mon Aug  7 00:07:51 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:07:51 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:51 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20625 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20625 found at Mon Aug  7 00:07:51 UTC 2017
selfserv_9009 with PID 20625 started at Mon Aug  7 00:07:51 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12428: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 20625 at Mon Aug  7 00:07:51 UTC 2017
kill -USR1 20625
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20625 killed at Mon Aug  7 00:07:51 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:07:51 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:51 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20681 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20681 found at Mon Aug  7 00:07:51 UTC 2017
selfserv_9009 with PID 20681 started at Mon Aug  7 00:07:51 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12429: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 20681 at Mon Aug  7 00:07:51 UTC 2017
kill -USR1 20681
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20681 killed at Mon Aug  7 00:07:51 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:51 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:51 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20749 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20749 found at Mon Aug  7 00:07:51 UTC 2017
selfserv_9009 with PID 20749 started at Mon Aug  7 00:07:51 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12430: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 20749 at Mon Aug  7 00:07:51 UTC 2017
kill -USR1 20749
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20749 killed at Mon Aug  7 00:07:51 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:52 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:52 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20805 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20805 found at Mon Aug  7 00:07:52 UTC 2017
selfserv_9009 with PID 20805 started at Mon Aug  7 00:07:52 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12431: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 20805 at Mon Aug  7 00:07:52 UTC 2017
kill -USR1 20805
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20805 killed at Mon Aug  7 00:07:52 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:52 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:52 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20861 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20861 found at Mon Aug  7 00:07:52 UTC 2017
selfserv_9009 with PID 20861 started at Mon Aug  7 00:07:52 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12432: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 20861 at Mon Aug  7 00:07:52 UTC 2017
kill -USR1 20861
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20861 killed at Mon Aug  7 00:07:52 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:52 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:52 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20929 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20929 found at Mon Aug  7 00:07:52 UTC 2017
selfserv_9009 with PID 20929 started at Mon Aug  7 00:07:52 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12433: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 20929 at Mon Aug  7 00:07:52 UTC 2017
kill -USR1 20929
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20929 killed at Mon Aug  7 00:07:52 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:52 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:52 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20985 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 20985 found at Mon Aug  7 00:07:52 UTC 2017
selfserv_9009 with PID 20985 started at Mon Aug  7 00:07:52 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12434: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 20985 at Mon Aug  7 00:07:52 UTC 2017
kill -USR1 20985
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 20985 killed at Mon Aug  7 00:07:53 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:53 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21041 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21041 found at Mon Aug  7 00:07:53 UTC 2017
selfserv_9009 with PID 21041 started at Mon Aug  7 00:07:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12435: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 21041 at Mon Aug  7 00:07:53 UTC 2017
kill -USR1 21041
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21041 killed at Mon Aug  7 00:07:53 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:07:53 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21109 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21109 found at Mon Aug  7 00:07:53 UTC 2017
selfserv_9009 with PID 21109 started at Mon Aug  7 00:07:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12436: TLS Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 21109 at Mon Aug  7 00:07:53 UTC 2017
kill -USR1 21109
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21109 killed at Mon Aug  7 00:07:53 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:07:53 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21165 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21165 found at Mon Aug  7 00:07:53 UTC 2017
selfserv_9009 with PID 21165 started at Mon Aug  7 00:07:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12437: TLS Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 21165 at Mon Aug  7 00:07:53 UTC 2017
kill -USR1 21165
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21165 killed at Mon Aug  7 00:07:53 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:07:53 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21221 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21221 found at Mon Aug  7 00:07:53 UTC 2017
selfserv_9009 with PID 21221 started at Mon Aug  7 00:07:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12438: TLS Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 21221 at Mon Aug  7 00:07:53 UTC 2017
kill -USR1 21221
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21221 killed at Mon Aug  7 00:07:54 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:54 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21289 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21289 found at Mon Aug  7 00:07:54 UTC 2017
selfserv_9009 with PID 21289 started at Mon Aug  7 00:07:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12439: TLS Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 21289 at Mon Aug  7 00:07:54 UTC 2017
kill -USR1 21289
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21289 killed at Mon Aug  7 00:07:54 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:54 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21345 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21345 found at Mon Aug  7 00:07:54 UTC 2017
selfserv_9009 with PID 21345 started at Mon Aug  7 00:07:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12440: TLS Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 21345 at Mon Aug  7 00:07:54 UTC 2017
kill -USR1 21345
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21345 killed at Mon Aug  7 00:07:54 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:54 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21402 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21402 found at Mon Aug  7 00:07:54 UTC 2017
selfserv_9009 with PID 21402 started at Mon Aug  7 00:07:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12441: TLS Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 21402 at Mon Aug  7 00:07:54 UTC 2017
kill -USR1 21402
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21402 killed at Mon Aug  7 00:07:54 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:54 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21470 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21470 found at Mon Aug  7 00:07:54 UTC 2017
selfserv_9009 with PID 21470 started at Mon Aug  7 00:07:54 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12442: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 21470 at Mon Aug  7 00:07:55 UTC 2017
kill -USR1 21470
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21470 killed at Mon Aug  7 00:07:55 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:55 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21526 found at Mon Aug  7 00:07:55 UTC 2017
selfserv_9009 with PID 21526 started at Mon Aug  7 00:07:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12443: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 21526 at Mon Aug  7 00:07:55 UTC 2017
kill -USR1 21526
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21526 killed at Mon Aug  7 00:07:55 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:55 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21582 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21582 found at Mon Aug  7 00:07:55 UTC 2017
selfserv_9009 with PID 21582 started at Mon Aug  7 00:07:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12444: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 21582 at Mon Aug  7 00:07:55 UTC 2017
kill -USR1 21582
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21582 killed at Mon Aug  7 00:07:55 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:07:55 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21650 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21650 found at Mon Aug  7 00:07:55 UTC 2017
selfserv_9009 with PID 21650 started at Mon Aug  7 00:07:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12445: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 21650 at Mon Aug  7 00:07:55 UTC 2017
kill -USR1 21650
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21650 killed at Mon Aug  7 00:07:55 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:07:55 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21706 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21706 found at Mon Aug  7 00:07:55 UTC 2017
selfserv_9009 with PID 21706 started at Mon Aug  7 00:07:55 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12446: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 21706 at Mon Aug  7 00:07:56 UTC 2017
kill -USR1 21706
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21706 killed at Mon Aug  7 00:07:56 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:07:56 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:56 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21762 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21762 found at Mon Aug  7 00:07:56 UTC 2017
selfserv_9009 with PID 21762 started at Mon Aug  7 00:07:56 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12447: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 21762 at Mon Aug  7 00:07:56 UTC 2017
kill -USR1 21762
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21762 killed at Mon Aug  7 00:07:56 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:56 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:56 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21830 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21830 found at Mon Aug  7 00:07:56 UTC 2017
selfserv_9009 with PID 21830 started at Mon Aug  7 00:07:56 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12448: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 21830 at Mon Aug  7 00:07:56 UTC 2017
kill -USR1 21830
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21830 killed at Mon Aug  7 00:07:56 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:56 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:56 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21887 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21887 found at Mon Aug  7 00:07:56 UTC 2017
selfserv_9009 with PID 21887 started at Mon Aug  7 00:07:56 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12449: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 21887 at Mon Aug  7 00:07:56 UTC 2017
kill -USR1 21887
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21887 killed at Mon Aug  7 00:07:56 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:56 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:56 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21944 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 21944 found at Mon Aug  7 00:07:56 UTC 2017
selfserv_9009 with PID 21944 started at Mon Aug  7 00:07:56 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12450: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 21944 at Mon Aug  7 00:07:57 UTC 2017
kill -USR1 21944
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 21944 killed at Mon Aug  7 00:07:57 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:57 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:57 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22013 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22013 found at Mon Aug  7 00:07:57 UTC 2017
selfserv_9009 with PID 22013 started at Mon Aug  7 00:07:57 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12451: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 22013 at Mon Aug  7 00:07:57 UTC 2017
kill -USR1 22013
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22013 killed at Mon Aug  7 00:07:57 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:57 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:57 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22069 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22069 found at Mon Aug  7 00:07:57 UTC 2017
selfserv_9009 with PID 22069 started at Mon Aug  7 00:07:57 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12452: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 22069 at Mon Aug  7 00:07:57 UTC 2017
kill -USR1 22069
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22069 killed at Mon Aug  7 00:07:57 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:57 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:57 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22125 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22125 found at Mon Aug  7 00:07:57 UTC 2017
selfserv_9009 with PID 22125 started at Mon Aug  7 00:07:57 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12453: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 22125 at Mon Aug  7 00:07:57 UTC 2017
kill -USR1 22125
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22125 killed at Mon Aug  7 00:07:57 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:07:57 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:57 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22193 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22193 found at Mon Aug  7 00:07:57 UTC 2017
selfserv_9009 with PID 22193 started at Mon Aug  7 00:07:57 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12454: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 22193 at Mon Aug  7 00:07:58 UTC 2017
kill -USR1 22193
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22193 killed at Mon Aug  7 00:07:58 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:07:58 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:58 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22249 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22249 found at Mon Aug  7 00:07:58 UTC 2017
selfserv_9009 with PID 22249 started at Mon Aug  7 00:07:58 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12455: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 22249 at Mon Aug  7 00:07:58 UTC 2017
kill -USR1 22249
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22249 killed at Mon Aug  7 00:07:58 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:07:58 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:58 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22305 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22305 found at Mon Aug  7 00:07:58 UTC 2017
selfserv_9009 with PID 22305 started at Mon Aug  7 00:07:58 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12456: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 22305 at Mon Aug  7 00:07:58 UTC 2017
kill -USR1 22305
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22305 killed at Mon Aug  7 00:07:58 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:58 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:58 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22373 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22373 found at Mon Aug  7 00:07:58 UTC 2017
selfserv_9009 with PID 22373 started at Mon Aug  7 00:07:58 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12457: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 22373 at Mon Aug  7 00:07:58 UTC 2017
kill -USR1 22373
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22373 killed at Mon Aug  7 00:07:58 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:58 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:58 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22429 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22429 found at Mon Aug  7 00:07:58 UTC 2017
selfserv_9009 with PID 22429 started at Mon Aug  7 00:07:58 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12458: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 22429 at Mon Aug  7 00:07:59 UTC 2017
kill -USR1 22429
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22429 killed at Mon Aug  7 00:07:59 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:59 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:59 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22485 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22485 found at Mon Aug  7 00:07:59 UTC 2017
selfserv_9009 with PID 22485 started at Mon Aug  7 00:07:59 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12459: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 22485 at Mon Aug  7 00:07:59 UTC 2017
kill -USR1 22485
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22485 killed at Mon Aug  7 00:07:59 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:59 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:59 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22554 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22554 found at Mon Aug  7 00:07:59 UTC 2017
selfserv_9009 with PID 22554 started at Mon Aug  7 00:07:59 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12460: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 22554 at Mon Aug  7 00:07:59 UTC 2017
kill -USR1 22554
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22554 killed at Mon Aug  7 00:07:59 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:59 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:59 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22610 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22610 found at Mon Aug  7 00:07:59 UTC 2017
selfserv_9009 with PID 22610 started at Mon Aug  7 00:07:59 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12461: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 22610 at Mon Aug  7 00:07:59 UTC 2017
kill -USR1 22610
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22610 killed at Mon Aug  7 00:07:59 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:07:59 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:07:59 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22666 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22666 found at Mon Aug  7 00:07:59 UTC 2017
selfserv_9009 with PID 22666 started at Mon Aug  7 00:07:59 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12462: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 22666 at Mon Aug  7 00:07:59 UTC 2017
kill -USR1 22666
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22666 killed at Mon Aug  7 00:07:59 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:00 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:00 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22734 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22734 found at Mon Aug  7 00:08:00 UTC 2017
selfserv_9009 with PID 22734 started at Mon Aug  7 00:08:00 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12463: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 22734 at Mon Aug  7 00:08:00 UTC 2017
kill -USR1 22734
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22734 killed at Mon Aug  7 00:08:00 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:00 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:00 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22790 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22790 found at Mon Aug  7 00:08:00 UTC 2017
selfserv_9009 with PID 22790 started at Mon Aug  7 00:08:00 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12464: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 22790 at Mon Aug  7 00:08:00 UTC 2017
kill -USR1 22790
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22790 killed at Mon Aug  7 00:08:00 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:00 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:00 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22847 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22847 found at Mon Aug  7 00:08:00 UTC 2017
selfserv_9009 with PID 22847 started at Mon Aug  7 00:08:00 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12465: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 22847 at Mon Aug  7 00:08:00 UTC 2017
kill -USR1 22847
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22847 killed at Mon Aug  7 00:08:00 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:00 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:00 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22915 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22915 found at Mon Aug  7 00:08:00 UTC 2017
selfserv_9009 with PID 22915 started at Mon Aug  7 00:08:00 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12466: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 22915 at Mon Aug  7 00:08:00 UTC 2017
kill -USR1 22915
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22915 killed at Mon Aug  7 00:08:00 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:00 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:00 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22971 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 22971 found at Mon Aug  7 00:08:00 UTC 2017
selfserv_9009 with PID 22971 started at Mon Aug  7 00:08:00 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12467: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 22971 at Mon Aug  7 00:08:01 UTC 2017
kill -USR1 22971
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 22971 killed at Mon Aug  7 00:08:01 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:01 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:01 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23027 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23027 found at Mon Aug  7 00:08:01 UTC 2017
selfserv_9009 with PID 23027 started at Mon Aug  7 00:08:01 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12468: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 23027 at Mon Aug  7 00:08:01 UTC 2017
kill -USR1 23027
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23027 killed at Mon Aug  7 00:08:01 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:01 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:01 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23096 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23096 found at Mon Aug  7 00:08:01 UTC 2017
selfserv_9009 with PID 23096 started at Mon Aug  7 00:08:01 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12469: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 23096 at Mon Aug  7 00:08:01 UTC 2017
kill -USR1 23096
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23096 killed at Mon Aug  7 00:08:01 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:01 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:01 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23152 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23152 found at Mon Aug  7 00:08:01 UTC 2017
selfserv_9009 with PID 23152 started at Mon Aug  7 00:08:01 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12470: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 23152 at Mon Aug  7 00:08:01 UTC 2017
kill -USR1 23152
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23152 killed at Mon Aug  7 00:08:01 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:01 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:01 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23209 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23209 found at Mon Aug  7 00:08:01 UTC 2017
selfserv_9009 with PID 23209 started at Mon Aug  7 00:08:01 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12471: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 23209 at Mon Aug  7 00:08:01 UTC 2017
kill -USR1 23209
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23209 killed at Mon Aug  7 00:08:01 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:01 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:01 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23277 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23277 found at Mon Aug  7 00:08:01 UTC 2017
selfserv_9009 with PID 23277 started at Mon Aug  7 00:08:01 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12472: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 23277 at Mon Aug  7 00:08:02 UTC 2017
kill -USR1 23277
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23277 killed at Mon Aug  7 00:08:02 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:02 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:02 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23333 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23333 found at Mon Aug  7 00:08:02 UTC 2017
selfserv_9009 with PID 23333 started at Mon Aug  7 00:08:02 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12473: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 23333 at Mon Aug  7 00:08:02 UTC 2017
kill -USR1 23333
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23333 killed at Mon Aug  7 00:08:02 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:02 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:02 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23389 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23389 found at Mon Aug  7 00:08:02 UTC 2017
selfserv_9009 with PID 23389 started at Mon Aug  7 00:08:02 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12474: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 23389 at Mon Aug  7 00:08:02 UTC 2017
kill -USR1 23389
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23389 killed at Mon Aug  7 00:08:02 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:02 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:02 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23459 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23459 found at Mon Aug  7 00:08:02 UTC 2017
selfserv_9009 with PID 23459 started at Mon Aug  7 00:08:02 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12475: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 23459 at Mon Aug  7 00:08:02 UTC 2017
kill -USR1 23459
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23459 killed at Mon Aug  7 00:08:02 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:02 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:02 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23515 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23515 found at Mon Aug  7 00:08:02 UTC 2017
selfserv_9009 with PID 23515 started at Mon Aug  7 00:08:02 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12476: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 23515 at Mon Aug  7 00:08:03 UTC 2017
kill -USR1 23515
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23515 killed at Mon Aug  7 00:08:03 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:03 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23571 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23571 found at Mon Aug  7 00:08:03 UTC 2017
selfserv_9009 with PID 23571 started at Mon Aug  7 00:08:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12477: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 23571 at Mon Aug  7 00:08:03 UTC 2017
kill -USR1 23571
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23571 killed at Mon Aug  7 00:08:03 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:03 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23648 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23648 found at Mon Aug  7 00:08:03 UTC 2017
selfserv_9009 with PID 23648 started at Mon Aug  7 00:08:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12478: TLS Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 23648 at Mon Aug  7 00:08:03 UTC 2017
kill -USR1 23648
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23648 killed at Mon Aug  7 00:08:03 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:03 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23704 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23704 found at Mon Aug  7 00:08:03 UTC 2017
selfserv_9009 with PID 23704 started at Mon Aug  7 00:08:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12479: TLS Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 23704 at Mon Aug  7 00:08:03 UTC 2017
kill -USR1 23704
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23704 killed at Mon Aug  7 00:08:03 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:03 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23760 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23760 found at Mon Aug  7 00:08:03 UTC 2017
selfserv_9009 with PID 23760 started at Mon Aug  7 00:08:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12480: TLS Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 23760 at Mon Aug  7 00:08:03 UTC 2017
kill -USR1 23760
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23760 killed at Mon Aug  7 00:08:03 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:03 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23828 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23828 found at Mon Aug  7 00:08:03 UTC 2017
selfserv_9009 with PID 23828 started at Mon Aug  7 00:08:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12481: TLS Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 23828 at Mon Aug  7 00:08:04 UTC 2017
kill -USR1 23828
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23828 killed at Mon Aug  7 00:08:04 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:04 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23884 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23884 found at Mon Aug  7 00:08:04 UTC 2017
selfserv_9009 with PID 23884 started at Mon Aug  7 00:08:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12482: TLS Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 23884 at Mon Aug  7 00:08:04 UTC 2017
kill -USR1 23884
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23884 killed at Mon Aug  7 00:08:04 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:04 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23940 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 23940 found at Mon Aug  7 00:08:04 UTC 2017
selfserv_9009 with PID 23940 started at Mon Aug  7 00:08:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12483: TLS Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 23940 at Mon Aug  7 00:08:04 UTC 2017
kill -USR1 23940
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 23940 killed at Mon Aug  7 00:08:04 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:04 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24008 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24008 found at Mon Aug  7 00:08:04 UTC 2017
selfserv_9009 with PID 24008 started at Mon Aug  7 00:08:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12484: TLS Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 24008 at Mon Aug  7 00:08:04 UTC 2017
kill -USR1 24008
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24008 killed at Mon Aug  7 00:08:04 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:04 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24065 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24065 found at Mon Aug  7 00:08:04 UTC 2017
selfserv_9009 with PID 24065 started at Mon Aug  7 00:08:04 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12485: TLS Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 24065 at Mon Aug  7 00:08:05 UTC 2017
kill -USR1 24065
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24065 killed at Mon Aug  7 00:08:05 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:05 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24121 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24121 found at Mon Aug  7 00:08:05 UTC 2017
selfserv_9009 with PID 24121 started at Mon Aug  7 00:08:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12486: TLS Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 24121 at Mon Aug  7 00:08:05 UTC 2017
kill -USR1 24121
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24121 killed at Mon Aug  7 00:08:05 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:05 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24189 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24189 found at Mon Aug  7 00:08:05 UTC 2017
selfserv_9009 with PID 24189 started at Mon Aug  7 00:08:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12487: TLS Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 24189 at Mon Aug  7 00:08:05 UTC 2017
kill -USR1 24189
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24189 killed at Mon Aug  7 00:08:05 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:05 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24245 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24245 found at Mon Aug  7 00:08:05 UTC 2017
selfserv_9009 with PID 24245 started at Mon Aug  7 00:08:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12488: TLS Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 24245 at Mon Aug  7 00:08:05 UTC 2017
kill -USR1 24245
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24245 killed at Mon Aug  7 00:08:05 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:05 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24301 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24301 found at Mon Aug  7 00:08:05 UTC 2017
selfserv_9009 with PID 24301 started at Mon Aug  7 00:08:05 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12489: TLS Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 24301 at Mon Aug  7 00:08:06 UTC 2017
kill -USR1 24301
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24301 killed at Mon Aug  7 00:08:06 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:06 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24369 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24369 found at Mon Aug  7 00:08:06 UTC 2017
selfserv_9009 with PID 24369 started at Mon Aug  7 00:08:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12490: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 24369 at Mon Aug  7 00:08:06 UTC 2017
kill -USR1 24369
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24369 killed at Mon Aug  7 00:08:06 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:06 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24425 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24425 found at Mon Aug  7 00:08:06 UTC 2017
selfserv_9009 with PID 24425 started at Mon Aug  7 00:08:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12491: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 24425 at Mon Aug  7 00:08:06 UTC 2017
kill -USR1 24425
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24425 killed at Mon Aug  7 00:08:06 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:06 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24481 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24481 found at Mon Aug  7 00:08:06 UTC 2017
selfserv_9009 with PID 24481 started at Mon Aug  7 00:08:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12492: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 24481 at Mon Aug  7 00:08:06 UTC 2017
kill -USR1 24481
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24481 killed at Mon Aug  7 00:08:06 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:06 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24549 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24549 found at Mon Aug  7 00:08:06 UTC 2017
selfserv_9009 with PID 24549 started at Mon Aug  7 00:08:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12493: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 24549 at Mon Aug  7 00:08:06 UTC 2017
kill -USR1 24549
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24549 killed at Mon Aug  7 00:08:06 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:06 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24607 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24607 found at Mon Aug  7 00:08:06 UTC 2017
selfserv_9009 with PID 24607 started at Mon Aug  7 00:08:06 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12494: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 24607 at Mon Aug  7 00:08:07 UTC 2017
kill -USR1 24607
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24607 killed at Mon Aug  7 00:08:07 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:07 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24663 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24663 found at Mon Aug  7 00:08:07 UTC 2017
selfserv_9009 with PID 24663 started at Mon Aug  7 00:08:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12495: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 24663 at Mon Aug  7 00:08:07 UTC 2017
kill -USR1 24663
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24663 killed at Mon Aug  7 00:08:07 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:07 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24731 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24731 found at Mon Aug  7 00:08:07 UTC 2017
selfserv_9009 with PID 24731 started at Mon Aug  7 00:08:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12496: SSL3 Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 24731 at Mon Aug  7 00:08:07 UTC 2017
kill -USR1 24731
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24731 killed at Mon Aug  7 00:08:07 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:07 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24787 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24787 found at Mon Aug  7 00:08:07 UTC 2017
selfserv_9009 with PID 24787 started at Mon Aug  7 00:08:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12497: SSL3 Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 24787 at Mon Aug  7 00:08:07 UTC 2017
kill -USR1 24787
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24787 killed at Mon Aug  7 00:08:07 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:07 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24843 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24843 found at Mon Aug  7 00:08:07 UTC 2017
selfserv_9009 with PID 24843 started at Mon Aug  7 00:08:07 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12498: SSL3 Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 24843 at Mon Aug  7 00:08:08 UTC 2017
kill -USR1 24843
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24843 killed at Mon Aug  7 00:08:08 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:08 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24911 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24911 found at Mon Aug  7 00:08:08 UTC 2017
selfserv_9009 with PID 24911 started at Mon Aug  7 00:08:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12499: SSL3 Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 24911 at Mon Aug  7 00:08:08 UTC 2017
kill -USR1 24911
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24911 killed at Mon Aug  7 00:08:08 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:08 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24967 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 24967 found at Mon Aug  7 00:08:08 UTC 2017
selfserv_9009 with PID 24967 started at Mon Aug  7 00:08:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12500: SSL3 Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 24967 at Mon Aug  7 00:08:08 UTC 2017
kill -USR1 24967
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 24967 killed at Mon Aug  7 00:08:08 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:08 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25024 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25024 found at Mon Aug  7 00:08:08 UTC 2017
selfserv_9009 with PID 25024 started at Mon Aug  7 00:08:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12501: SSL3 Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 25024 at Mon Aug  7 00:08:08 UTC 2017
kill -USR1 25024
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25024 killed at Mon Aug  7 00:08:08 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:08 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25092 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25092 found at Mon Aug  7 00:08:08 UTC 2017
selfserv_9009 with PID 25092 started at Mon Aug  7 00:08:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12502: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 25092 at Mon Aug  7 00:08:08 UTC 2017
kill -USR1 25092
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25092 killed at Mon Aug  7 00:08:08 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:09 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25148 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25148 found at Mon Aug  7 00:08:09 UTC 2017
selfserv_9009 with PID 25148 started at Mon Aug  7 00:08:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12503: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 25148 at Mon Aug  7 00:08:09 UTC 2017
kill -USR1 25148
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25148 killed at Mon Aug  7 00:08:09 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:09 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25205 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25205 found at Mon Aug  7 00:08:09 UTC 2017
selfserv_9009 with PID 25205 started at Mon Aug  7 00:08:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12504: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 25205 at Mon Aug  7 00:08:09 UTC 2017
kill -USR1 25205
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25205 killed at Mon Aug  7 00:08:09 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:09 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25273 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25273 found at Mon Aug  7 00:08:09 UTC 2017
selfserv_9009 with PID 25273 started at Mon Aug  7 00:08:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12505: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 25273 at Mon Aug  7 00:08:09 UTC 2017
kill -USR1 25273
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25273 killed at Mon Aug  7 00:08:09 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:09 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25329 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25329 found at Mon Aug  7 00:08:09 UTC 2017
selfserv_9009 with PID 25329 started at Mon Aug  7 00:08:09 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12506: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 25329 at Mon Aug  7 00:08:10 UTC 2017
kill -USR1 25329
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25329 killed at Mon Aug  7 00:08:10 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:10 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25385 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25385 found at Mon Aug  7 00:08:10 UTC 2017
selfserv_9009 with PID 25385 started at Mon Aug  7 00:08:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12507: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 25385 at Mon Aug  7 00:08:10 UTC 2017
kill -USR1 25385
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25385 killed at Mon Aug  7 00:08:10 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:10 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25454 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25454 found at Mon Aug  7 00:08:10 UTC 2017
selfserv_9009 with PID 25454 started at Mon Aug  7 00:08:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12508: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 25454 at Mon Aug  7 00:08:10 UTC 2017
kill -USR1 25454
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25454 killed at Mon Aug  7 00:08:10 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:10 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25510 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25510 found at Mon Aug  7 00:08:10 UTC 2017
selfserv_9009 with PID 25510 started at Mon Aug  7 00:08:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12509: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 25510 at Mon Aug  7 00:08:10 UTC 2017
kill -USR1 25510
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25510 killed at Mon Aug  7 00:08:10 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:10 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25566 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25566 found at Mon Aug  7 00:08:10 UTC 2017
selfserv_9009 with PID 25566 started at Mon Aug  7 00:08:10 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12510: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 25566 at Mon Aug  7 00:08:11 UTC 2017
kill -USR1 25566
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25566 killed at Mon Aug  7 00:08:11 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:11 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25634 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25634 found at Mon Aug  7 00:08:11 UTC 2017
selfserv_9009 with PID 25634 started at Mon Aug  7 00:08:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12511: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 25634 at Mon Aug  7 00:08:11 UTC 2017
kill -USR1 25634
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25634 killed at Mon Aug  7 00:08:11 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:11 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25690 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25690 found at Mon Aug  7 00:08:11 UTC 2017
selfserv_9009 with PID 25690 started at Mon Aug  7 00:08:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12512: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 25690 at Mon Aug  7 00:08:11 UTC 2017
kill -USR1 25690
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25690 killed at Mon Aug  7 00:08:11 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:11 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25746 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25746 found at Mon Aug  7 00:08:11 UTC 2017
selfserv_9009 with PID 25746 started at Mon Aug  7 00:08:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12513: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 25746 at Mon Aug  7 00:08:11 UTC 2017
kill -USR1 25746
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25746 killed at Mon Aug  7 00:08:11 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:11 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25814 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25814 found at Mon Aug  7 00:08:11 UTC 2017
selfserv_9009 with PID 25814 started at Mon Aug  7 00:08:11 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12514: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 25814 at Mon Aug  7 00:08:12 UTC 2017
kill -USR1 25814
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25814 killed at Mon Aug  7 00:08:12 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:12 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:12 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25870 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25870 found at Mon Aug  7 00:08:12 UTC 2017
selfserv_9009 with PID 25870 started at Mon Aug  7 00:08:12 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12515: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 25870 at Mon Aug  7 00:08:12 UTC 2017
kill -USR1 25870
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25870 killed at Mon Aug  7 00:08:12 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:12 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:12 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25926 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25926 found at Mon Aug  7 00:08:12 UTC 2017
selfserv_9009 with PID 25926 started at Mon Aug  7 00:08:12 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12516: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 25926 at Mon Aug  7 00:08:12 UTC 2017
kill -USR1 25926
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25926 killed at Mon Aug  7 00:08:12 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:12 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:12 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25994 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 25994 found at Mon Aug  7 00:08:12 UTC 2017
selfserv_9009 with PID 25994 started at Mon Aug  7 00:08:12 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12517: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 25994 at Mon Aug  7 00:08:12 UTC 2017
kill -USR1 25994
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 25994 killed at Mon Aug  7 00:08:12 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:12 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:12 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26050 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26050 found at Mon Aug  7 00:08:12 UTC 2017
selfserv_9009 with PID 26050 started at Mon Aug  7 00:08:12 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12518: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 26050 at Mon Aug  7 00:08:13 UTC 2017
kill -USR1 26050
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26050 killed at Mon Aug  7 00:08:13 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:13 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26106 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26106 found at Mon Aug  7 00:08:13 UTC 2017
selfserv_9009 with PID 26106 started at Mon Aug  7 00:08:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12519: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 26106 at Mon Aug  7 00:08:13 UTC 2017
kill -USR1 26106
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26106 killed at Mon Aug  7 00:08:13 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:13 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26174 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26174 found at Mon Aug  7 00:08:13 UTC 2017
selfserv_9009 with PID 26174 started at Mon Aug  7 00:08:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12520: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 26174 at Mon Aug  7 00:08:13 UTC 2017
kill -USR1 26174
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26174 killed at Mon Aug  7 00:08:13 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:13 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26230 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26230 found at Mon Aug  7 00:08:13 UTC 2017
selfserv_9009 with PID 26230 started at Mon Aug  7 00:08:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12521: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 26230 at Mon Aug  7 00:08:13 UTC 2017
kill -USR1 26230
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26230 killed at Mon Aug  7 00:08:13 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:13 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26286 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26286 found at Mon Aug  7 00:08:13 UTC 2017
selfserv_9009 with PID 26286 started at Mon Aug  7 00:08:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12522: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 26286 at Mon Aug  7 00:08:14 UTC 2017
kill -USR1 26286
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26286 killed at Mon Aug  7 00:08:14 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:14 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26354 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26354 found at Mon Aug  7 00:08:14 UTC 2017
selfserv_9009 with PID 26354 started at Mon Aug  7 00:08:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12523: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 26354 at Mon Aug  7 00:08:14 UTC 2017
kill -USR1 26354
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26354 killed at Mon Aug  7 00:08:14 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:14 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26410 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26410 found at Mon Aug  7 00:08:14 UTC 2017
selfserv_9009 with PID 26410 started at Mon Aug  7 00:08:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12524: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 26410 at Mon Aug  7 00:08:14 UTC 2017
kill -USR1 26410
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26410 killed at Mon Aug  7 00:08:14 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:14 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26466 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26466 found at Mon Aug  7 00:08:14 UTC 2017
selfserv_9009 with PID 26466 started at Mon Aug  7 00:08:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12525: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 26466 at Mon Aug  7 00:08:14 UTC 2017
kill -USR1 26466
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26466 killed at Mon Aug  7 00:08:14 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:14 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26534 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26534 found at Mon Aug  7 00:08:14 UTC 2017
selfserv_9009 with PID 26534 started at Mon Aug  7 00:08:14 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12526: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 26534 at Mon Aug  7 00:08:15 UTC 2017
kill -USR1 26534
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26534 killed at Mon Aug  7 00:08:15 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26590 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26590 found at Mon Aug  7 00:08:15 UTC 2017
selfserv_9009 with PID 26590 started at Mon Aug  7 00:08:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12527: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 26590 at Mon Aug  7 00:08:15 UTC 2017
kill -USR1 26590
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26590 killed at Mon Aug  7 00:08:15 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26646 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26646 found at Mon Aug  7 00:08:15 UTC 2017
selfserv_9009 with PID 26646 started at Mon Aug  7 00:08:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12528: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 26646 at Mon Aug  7 00:08:15 UTC 2017
kill -USR1 26646
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26646 killed at Mon Aug  7 00:08:15 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26714 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26714 found at Mon Aug  7 00:08:15 UTC 2017
selfserv_9009 with PID 26714 started at Mon Aug  7 00:08:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12529: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 26714 at Mon Aug  7 00:08:15 UTC 2017
kill -USR1 26714
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26714 killed at Mon Aug  7 00:08:15 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:15 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26770 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26770 found at Mon Aug  7 00:08:15 UTC 2017
selfserv_9009 with PID 26770 started at Mon Aug  7 00:08:15 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12530: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 26770 at Mon Aug  7 00:08:16 UTC 2017
kill -USR1 26770
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26770 killed at Mon Aug  7 00:08:16 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:16 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26826 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26826 found at Mon Aug  7 00:08:16 UTC 2017
selfserv_9009 with PID 26826 started at Mon Aug  7 00:08:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12531: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 26826 at Mon Aug  7 00:08:16 UTC 2017
kill -USR1 26826
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26826 killed at Mon Aug  7 00:08:16 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:16 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26895 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26895 found at Mon Aug  7 00:08:16 UTC 2017
selfserv_9009 with PID 26895 started at Mon Aug  7 00:08:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12532: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 26895 at Mon Aug  7 00:08:16 UTC 2017
kill -USR1 26895
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26895 killed at Mon Aug  7 00:08:16 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:16 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26951 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 26951 found at Mon Aug  7 00:08:16 UTC 2017
selfserv_9009 with PID 26951 started at Mon Aug  7 00:08:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12533: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 26951 at Mon Aug  7 00:08:16 UTC 2017
kill -USR1 26951
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 26951 killed at Mon Aug  7 00:08:16 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9009 starting at Mon Aug  7 00:08:16 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27007 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27007 found at Mon Aug  7 00:08:16 UTC 2017
selfserv_9009 with PID 27007 started at Mon Aug  7 00:08:16 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12534: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 27007 at Mon Aug  7 00:08:16 UTC 2017
kill -USR1 27007
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27007 killed at Mon Aug  7 00:08:16 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:17 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27075 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27075 found at Mon Aug  7 00:08:17 UTC 2017
selfserv_9009 with PID 27075 started at Mon Aug  7 00:08:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12535: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 27075 at Mon Aug  7 00:08:17 UTC 2017
kill -USR1 27075
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27075 killed at Mon Aug  7 00:08:17 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:17 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27131 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27131 found at Mon Aug  7 00:08:17 UTC 2017
selfserv_9009 with PID 27131 started at Mon Aug  7 00:08:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12536: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9009 with PID 27131 at Mon Aug  7 00:08:17 UTC 2017
kill -USR1 27131
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27131 killed at Mon Aug  7 00:08:17 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:17 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27187 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27187 found at Mon Aug  7 00:08:17 UTC 2017
selfserv_9009 with PID 27187 started at Mon Aug  7 00:08:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12537: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 27187 at Mon Aug  7 00:08:17 UTC 2017
kill -USR1 27187
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27187 killed at Mon Aug  7 00:08:17 UTC 2017
ssl.sh: Cache CRL SSL Client Tests   - with ECC ===============================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/authin.tl.tmp
0
selfserv_9009 starting at Mon Aug  7 00:08:17 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:17 UTC 2017
selfserv_9009 with PID 27250 started at Mon Aug  7 00:08:17 UTC 2017
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:17 UTC 2017
ssl.sh: #12538: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:18 UTC 2017
ssl.sh: #12539: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:18 UTC 2017
ssl.sh: #12540: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:18 UTC 2017
ssl.sh: #12541: TLS Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:18 UTC 2017
ssl.sh: #12542: TLS Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:18 UTC 2017
ssl.sh: #12543: TLS Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:18 UTC 2017
ssl.sh: #12544: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:18 UTC 2017
ssl.sh: #12545: TLS Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:18 UTC 2017
ssl.sh: #12546: TLS Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:18 UTC 2017
ssl.sh: #12547: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:18 UTC 2017
ssl.sh: #12548: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:19 UTC 2017
ssl.sh: #12549: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:19 UTC 2017
ssl.sh: #12550: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:19 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12551: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:19 UTC 2017
ssl.sh: #12552: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:19 UTC 2017
ssl.sh: #12553: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:19 UTC 2017
ssl.sh: #12554: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:19 UTC 2017
ssl.sh: #12555: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:19 UTC 2017
ssl.sh: #12556: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:19 UTC 2017
ssl.sh: #12557: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:19 UTC 2017
ssl.sh: #12558: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:19 UTC 2017
ssl.sh: #12559: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:20 UTC 2017
ssl.sh: #12560: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:20 UTC 2017
ssl.sh: #12561: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:20 UTC 2017
ssl.sh: #12562: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:20 UTC 2017
ssl.sh: #12563: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:20 UTC 2017
ssl.sh: #12564: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:20 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12565: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:20 UTC 2017
ssl.sh: #12566: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:20 UTC 2017
ssl.sh: #12567: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:20 UTC 2017
ssl.sh: #12568: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:20 UTC 2017
ssl.sh: #12569: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:21 UTC 2017
ssl.sh: #12570: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:21 UTC 2017
ssl.sh: #12571: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:21 UTC 2017
ssl.sh: #12572: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:21 UTC 2017
ssl.sh: #12573: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:21 UTC 2017
ssl.sh: #12574: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:21 UTC 2017
ssl.sh: #12575: TLS Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:21 UTC 2017
ssl.sh: #12576: TLS Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:21 UTC 2017
ssl.sh: #12577: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27250 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 27250 found at Mon Aug  7 00:08:21 UTC 2017
ssl.sh: #12578: TLS Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 27250 at Mon Aug  7 00:08:21 UTC 2017
kill -USR1 27250
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 27250 killed at Mon Aug  7 00:08:21 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:21 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:21 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:21 UTC 2017
selfserv_9009 with PID 28673 started at Mon Aug  7 00:08:21 UTC 2017
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:22 UTC 2017
ssl.sh: #12579: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:22 UTC 2017
ssl.sh: #12580: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:22 UTC 2017
ssl.sh: #12581: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:22 UTC 2017
ssl.sh: #12582: SSL3 Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:22 UTC 2017
ssl.sh: #12583: SSL3 Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:22 UTC 2017
ssl.sh: #12584: SSL3 Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:22 UTC 2017
ssl.sh: #12585: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:22 UTC 2017
ssl.sh: #12586: SSL3 Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:22 UTC 2017
ssl.sh: #12587: SSL3 Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:22 UTC 2017
ssl.sh: #12588: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:22 UTC 2017
ssl.sh: #12589: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:22 UTC 2017
ssl.sh: #12590: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:23 UTC 2017
ssl.sh: #12591: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:23 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12592: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:23 UTC 2017
ssl.sh: #12593: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:23 UTC 2017
ssl.sh: #12594: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:23 UTC 2017
ssl.sh: #12595: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:23 UTC 2017
ssl.sh: #12596: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:23 UTC 2017
ssl.sh: #12597: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:23 UTC 2017
ssl.sh: #12598: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:23 UTC 2017
ssl.sh: #12599: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:23 UTC 2017
ssl.sh: #12600: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:23 UTC 2017
ssl.sh: #12601: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:23 UTC 2017
ssl.sh: #12602: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:24 UTC 2017
ssl.sh: #12603: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:24 UTC 2017
ssl.sh: #12604: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:24 UTC 2017
ssl.sh: #12605: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:24 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12606: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:24 UTC 2017
ssl.sh: #12607: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:24 UTC 2017
ssl.sh: #12608: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:24 UTC 2017
ssl.sh: #12609: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:24 UTC 2017
ssl.sh: #12610: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:24 UTC 2017
ssl.sh: #12611: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:24 UTC 2017
ssl.sh: #12612: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:24 UTC 2017
ssl.sh: #12613: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:24 UTC 2017
ssl.sh: #12614: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:25 UTC 2017
ssl.sh: #12615: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:25 UTC 2017
ssl.sh: #12616: SSL3 Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:25 UTC 2017
ssl.sh: #12617: SSL3 Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:25 UTC 2017
ssl.sh: #12618: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28673 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 28673 found at Mon Aug  7 00:08:25 UTC 2017
ssl.sh: #12619: SSL3 Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 28673 at Mon Aug  7 00:08:25 UTC 2017
kill -USR1 28673
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 28673 killed at Mon Aug  7 00:08:25 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:25 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:25 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:25 UTC 2017
selfserv_9009 with PID 30101 started at Mon Aug  7 00:08:25 UTC 2017
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:25 UTC 2017
ssl.sh: #12620: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:25 UTC 2017
ssl.sh: #12621: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:25 UTC 2017
ssl.sh: #12622: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:25 UTC 2017
ssl.sh: #12623: TLS Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:26 UTC 2017
ssl.sh: #12624: TLS Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:26 UTC 2017
ssl.sh: #12625: TLS Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:26 UTC 2017
ssl.sh: #12626: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:26 UTC 2017
ssl.sh: #12627: TLS Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:26 UTC 2017
ssl.sh: #12628: TLS Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:26 UTC 2017
ssl.sh: #12629: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:26 UTC 2017
ssl.sh: #12630: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:26 UTC 2017
ssl.sh: #12631: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:26 UTC 2017
ssl.sh: #12632: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:27 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12633: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:27 UTC 2017
ssl.sh: #12634: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:27 UTC 2017
ssl.sh: #12635: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:27 UTC 2017
ssl.sh: #12636: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:27 UTC 2017
ssl.sh: #12637: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:27 UTC 2017
ssl.sh: #12638: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:27 UTC 2017
ssl.sh: #12639: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:27 UTC 2017
ssl.sh: #12640: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:27 UTC 2017
ssl.sh: #12641: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:27 UTC 2017
ssl.sh: #12642: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:28 UTC 2017
ssl.sh: #12643: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:28 UTC 2017
ssl.sh: #12644: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:28 UTC 2017
ssl.sh: #12645: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:28 UTC 2017
ssl.sh: #12646: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:28 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12647: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:28 UTC 2017
ssl.sh: #12648: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:28 UTC 2017
ssl.sh: #12649: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:28 UTC 2017
ssl.sh: #12650: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:28 UTC 2017
ssl.sh: #12651: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:28 UTC 2017
ssl.sh: #12652: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:29 UTC 2017
ssl.sh: #12653: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:29 UTC 2017
ssl.sh: #12654: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:29 UTC 2017
ssl.sh: #12655: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:29 UTC 2017
ssl.sh: #12656: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:29 UTC 2017
ssl.sh: #12657: TLS Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:29 UTC 2017
ssl.sh: #12658: TLS Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:29 UTC 2017
ssl.sh: #12659: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30101 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 30101 found at Mon Aug  7 00:08:29 UTC 2017
ssl.sh: #12660: TLS Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 30101 at Mon Aug  7 00:08:29 UTC 2017
kill -USR1 30101
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 30101 killed at Mon Aug  7 00:08:29 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:29 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:29 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:29 UTC 2017
selfserv_9009 with PID 31526 started at Mon Aug  7 00:08:29 UTC 2017
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:30 UTC 2017
ssl.sh: #12661: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:30 UTC 2017
ssl.sh: #12662: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:30 UTC 2017
ssl.sh: #12663: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:30 UTC 2017
ssl.sh: #12664: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:30 UTC 2017
ssl.sh: #12665: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:30 UTC 2017
ssl.sh: #12666: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:30 UTC 2017
ssl.sh: #12667: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:30 UTC 2017
ssl.sh: #12668: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:30 UTC 2017
ssl.sh: #12669: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:30 UTC 2017
ssl.sh: #12670: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:30 UTC 2017
ssl.sh: #12671: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:31 UTC 2017
ssl.sh: #12672: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:31 UTC 2017
ssl.sh: #12673: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:31 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12674: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:31 UTC 2017
ssl.sh: #12675: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:31 UTC 2017
ssl.sh: #12676: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:31 UTC 2017
ssl.sh: #12677: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:31 UTC 2017
ssl.sh: #12678: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:31 UTC 2017
ssl.sh: #12679: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:31 UTC 2017
ssl.sh: #12680: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:31 UTC 2017
ssl.sh: #12681: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:31 UTC 2017
ssl.sh: #12682: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:32 UTC 2017
ssl.sh: #12683: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:32 UTC 2017
ssl.sh: #12684: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:32 UTC 2017
ssl.sh: #12685: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:32 UTC 2017
ssl.sh: #12686: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:32 UTC 2017
ssl.sh: #12687: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:32 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12688: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:32 UTC 2017
ssl.sh: #12689: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:32 UTC 2017
ssl.sh: #12690: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:32 UTC 2017
ssl.sh: #12691: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:32 UTC 2017
ssl.sh: #12692: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:33 UTC 2017
ssl.sh: #12693: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:33 UTC 2017
ssl.sh: #12694: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:33 UTC 2017
ssl.sh: #12695: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:33 UTC 2017
ssl.sh: #12696: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:33 UTC 2017
ssl.sh: #12697: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:33 UTC 2017
ssl.sh: #12698: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:33 UTC 2017
ssl.sh: #12699: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:33 UTC 2017
ssl.sh: #12700: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31526 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 31526 found at Mon Aug  7 00:08:33 UTC 2017
ssl.sh: #12701: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9009 with PID 31526 at Mon Aug  7 00:08:33 UTC 2017
kill -USR1 31526
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 31526 killed at Mon Aug  7 00:08:33 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:33 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:33 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 500 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 500 found at Mon Aug  7 00:08:33 UTC 2017
selfserv_9009 with PID 500 started at Mon Aug  7 00:08:33 UTC 2017
trying to kill selfserv_9009 with PID 500 at Mon Aug  7 00:08:33 UTC 2017
kill -USR1 500
./ssl.sh: line 197:   500 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9009 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 500 killed at Mon Aug  7 00:08:33 UTC 2017
selfserv_9009 starting at Mon Aug  7 00:08:33 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:33 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:33 UTC 2017
selfserv_9009 with PID 536 started at Mon Aug  7 00:08:33 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:34 UTC 2017
ssl.sh: #12702: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:34 UTC 2017
ssl.sh: #12703: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:34 UTC 2017
ssl.sh: #12704: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:34 UTC 2017
ssl.sh: #12705: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:34 UTC 2017
ssl.sh: #12706: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:34 UTC 2017
ssl.sh: #12707: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:34 UTC 2017
ssl.sh: #12708: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:34 UTC 2017
ssl.sh: #12709: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:35 UTC 2017
ssl.sh: #12710: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:35 UTC 2017
ssl.sh: #12711: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:35 UTC 2017
ssl.sh: #12712: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:35 UTC 2017
ssl.sh: #12713: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:35 UTC 2017
ssl.sh: #12714: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:35 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12715: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:35 UTC 2017
ssl.sh: #12716: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:35 UTC 2017
ssl.sh: #12717: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:36 UTC 2017
ssl.sh: #12718: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:36 UTC 2017
ssl.sh: #12719: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:36 UTC 2017
ssl.sh: #12720: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:36 UTC 2017
ssl.sh: #12721: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:36 UTC 2017
ssl.sh: #12722: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:36 UTC 2017
ssl.sh: #12723: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:36 UTC 2017
ssl.sh: #12724: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:36 UTC 2017
ssl.sh: #12725: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:36 UTC 2017
ssl.sh: #12726: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:37 UTC 2017
ssl.sh: #12727: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:37 UTC 2017
ssl.sh: #12728: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:37 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12729: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:37 UTC 2017
ssl.sh: #12730: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:37 UTC 2017
ssl.sh: #12731: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:37 UTC 2017
ssl.sh: #12732: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:37 UTC 2017
ssl.sh: #12733: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:37 UTC 2017
ssl.sh: #12734: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:38 UTC 2017
ssl.sh: #12735: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:38 UTC 2017
ssl.sh: #12736: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:38 UTC 2017
ssl.sh: #12737: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:38 UTC 2017
ssl.sh: #12738: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:38 UTC 2017
ssl.sh: #12739: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:38 UTC 2017
ssl.sh: #12740: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:38 UTC 2017
ssl.sh: #12741: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 536 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 536 found at Mon Aug  7 00:08:38 UTC 2017
ssl.sh: #12742: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 536 at Mon Aug  7 00:08:38 UTC 2017
kill -USR1 536
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 536 killed at Mon Aug  7 00:08:38 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:38 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:38 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:38 UTC 2017
selfserv_9009 with PID 2090 started at Mon Aug  7 00:08:38 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:39 UTC 2017
ssl.sh: #12743: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:39 UTC 2017
ssl.sh: #12744: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:39 UTC 2017
ssl.sh: #12745: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:39 UTC 2017
ssl.sh: #12746: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:39 UTC 2017
ssl.sh: #12747: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:39 UTC 2017
ssl.sh: #12748: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:39 UTC 2017
ssl.sh: #12749: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:40 UTC 2017
ssl.sh: #12750: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:40 UTC 2017
ssl.sh: #12751: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:40 UTC 2017
ssl.sh: #12752: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:40 UTC 2017
ssl.sh: #12753: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:40 UTC 2017
ssl.sh: #12754: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:40 UTC 2017
ssl.sh: #12755: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:40 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12756: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:40 UTC 2017
ssl.sh: #12757: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:41 UTC 2017
ssl.sh: #12758: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:41 UTC 2017
ssl.sh: #12759: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:41 UTC 2017
ssl.sh: #12760: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:41 UTC 2017
ssl.sh: #12761: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:41 UTC 2017
ssl.sh: #12762: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:41 UTC 2017
ssl.sh: #12763: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:41 UTC 2017
ssl.sh: #12764: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:41 UTC 2017
ssl.sh: #12765: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:41 UTC 2017
ssl.sh: #12766: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:42 UTC 2017
ssl.sh: #12767: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:42 UTC 2017
ssl.sh: #12768: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:42 UTC 2017
ssl.sh: #12769: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:42 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12770: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:42 UTC 2017
ssl.sh: #12771: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:42 UTC 2017
ssl.sh: #12772: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:42 UTC 2017
ssl.sh: #12773: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:42 UTC 2017
ssl.sh: #12774: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:43 UTC 2017
ssl.sh: #12775: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:43 UTC 2017
ssl.sh: #12776: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:43 UTC 2017
ssl.sh: #12777: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:43 UTC 2017
ssl.sh: #12778: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:43 UTC 2017
ssl.sh: #12779: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:43 UTC 2017
ssl.sh: #12780: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:43 UTC 2017
ssl.sh: #12781: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:43 UTC 2017
ssl.sh: #12782: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2090 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 2090 found at Mon Aug  7 00:08:44 UTC 2017
ssl.sh: #12783: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 2090 at Mon Aug  7 00:08:44 UTC 2017
kill -USR1 2090
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 2090 killed at Mon Aug  7 00:08:44 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:44 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:44 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:44 UTC 2017
selfserv_9009 with PID 3516 started at Mon Aug  7 00:08:44 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:44 UTC 2017
ssl.sh: #12784: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:44 UTC 2017
ssl.sh: #12785: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:44 UTC 2017
ssl.sh: #12786: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:44 UTC 2017
ssl.sh: #12787: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:44 UTC 2017
ssl.sh: #12788: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:44 UTC 2017
ssl.sh: #12789: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:44 UTC 2017
ssl.sh: #12790: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:44 UTC 2017
ssl.sh: #12791: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:45 UTC 2017
ssl.sh: #12792: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:45 UTC 2017
ssl.sh: #12793: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:45 UTC 2017
ssl.sh: #12794: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:45 UTC 2017
ssl.sh: #12795: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:45 UTC 2017
ssl.sh: #12796: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:45 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12797: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:45 UTC 2017
ssl.sh: #12798: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:45 UTC 2017
ssl.sh: #12799: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:45 UTC 2017
ssl.sh: #12800: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:45 UTC 2017
ssl.sh: #12801: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:45 UTC 2017
ssl.sh: #12802: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:46 UTC 2017
ssl.sh: #12803: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:46 UTC 2017
ssl.sh: #12804: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:46 UTC 2017
ssl.sh: #12805: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:46 UTC 2017
ssl.sh: #12806: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:46 UTC 2017
ssl.sh: #12807: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:46 UTC 2017
ssl.sh: #12808: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:46 UTC 2017
ssl.sh: #12809: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:46 UTC 2017
ssl.sh: #12810: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:46 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12811: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:46 UTC 2017
ssl.sh: #12812: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:47 UTC 2017
ssl.sh: #12813: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:47 UTC 2017
ssl.sh: #12814: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:47 UTC 2017
ssl.sh: #12815: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:47 UTC 2017
ssl.sh: #12816: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:47 UTC 2017
ssl.sh: #12817: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:47 UTC 2017
ssl.sh: #12818: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:47 UTC 2017
ssl.sh: #12819: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:47 UTC 2017
ssl.sh: #12820: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:47 UTC 2017
ssl.sh: #12821: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:47 UTC 2017
ssl.sh: #12822: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:47 UTC 2017
ssl.sh: #12823: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3516 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 3516 found at Mon Aug  7 00:08:48 UTC 2017
ssl.sh: #12824: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 3516 at Mon Aug  7 00:08:48 UTC 2017
kill -USR1 3516
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 3516 killed at Mon Aug  7 00:08:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:48 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:48 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:48 UTC 2017
selfserv_9009 with PID 4950 started at Mon Aug  7 00:08:48 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:48 UTC 2017
ssl.sh: #12825: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:48 UTC 2017
ssl.sh: #12826: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:48 UTC 2017
ssl.sh: #12827: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:48 UTC 2017
ssl.sh: #12828: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:48 UTC 2017
ssl.sh: #12829: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:48 UTC 2017
ssl.sh: #12830: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:49 UTC 2017
ssl.sh: #12831: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:49 UTC 2017
ssl.sh: #12832: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:49 UTC 2017
ssl.sh: #12833: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:49 UTC 2017
ssl.sh: #12834: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:49 UTC 2017
ssl.sh: #12835: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:49 UTC 2017
ssl.sh: #12836: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:49 UTC 2017
ssl.sh: #12837: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:50 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12838: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:50 UTC 2017
ssl.sh: #12839: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:50 UTC 2017
ssl.sh: #12840: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:50 UTC 2017
ssl.sh: #12841: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:50 UTC 2017
ssl.sh: #12842: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:50 UTC 2017
ssl.sh: #12843: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:50 UTC 2017
ssl.sh: #12844: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:50 UTC 2017
ssl.sh: #12845: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:51 UTC 2017
ssl.sh: #12846: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:51 UTC 2017
ssl.sh: #12847: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:51 UTC 2017
ssl.sh: #12848: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:51 UTC 2017
ssl.sh: #12849: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:51 UTC 2017
ssl.sh: #12850: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:51 UTC 2017
ssl.sh: #12851: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:51 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12852: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:51 UTC 2017
ssl.sh: #12853: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:52 UTC 2017
ssl.sh: #12854: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:52 UTC 2017
ssl.sh: #12855: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:52 UTC 2017
ssl.sh: #12856: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:52 UTC 2017
ssl.sh: #12857: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:52 UTC 2017
ssl.sh: #12858: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:52 UTC 2017
ssl.sh: #12859: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:52 UTC 2017
ssl.sh: #12860: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:52 UTC 2017
ssl.sh: #12861: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:53 UTC 2017
ssl.sh: #12862: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:53 UTC 2017
ssl.sh: #12863: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:53 UTC 2017
ssl.sh: #12864: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4950 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 4950 found at Mon Aug  7 00:08:53 UTC 2017
ssl.sh: #12865: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 4950 at Mon Aug  7 00:08:53 UTC 2017
kill -USR1 4950
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 4950 killed at Mon Aug  7 00:08:53 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:53 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:53 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:53 UTC 2017
selfserv_9009 with PID 6375 started at Mon Aug  7 00:08:53 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:53 UTC 2017
ssl.sh: #12866: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:53 UTC 2017
ssl.sh: #12867: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:53 UTC 2017
ssl.sh: #12868: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:54 UTC 2017
ssl.sh: #12869: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:54 UTC 2017
ssl.sh: #12870: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:54 UTC 2017
ssl.sh: #12871: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:54 UTC 2017
ssl.sh: #12872: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:54 UTC 2017
ssl.sh: #12873: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:54 UTC 2017
ssl.sh: #12874: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:54 UTC 2017
ssl.sh: #12875: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:54 UTC 2017
ssl.sh: #12876: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:55 UTC 2017
ssl.sh: #12877: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:55 UTC 2017
ssl.sh: #12878: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:55 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12879: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:55 UTC 2017
ssl.sh: #12880: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:55 UTC 2017
ssl.sh: #12881: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:55 UTC 2017
ssl.sh: #12882: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:55 UTC 2017
ssl.sh: #12883: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:55 UTC 2017
ssl.sh: #12884: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:56 UTC 2017
ssl.sh: #12885: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:56 UTC 2017
ssl.sh: #12886: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:56 UTC 2017
ssl.sh: #12887: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:56 UTC 2017
ssl.sh: #12888: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:56 UTC 2017
ssl.sh: #12889: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:56 UTC 2017
ssl.sh: #12890: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:56 UTC 2017
ssl.sh: #12891: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:57 UTC 2017
ssl.sh: #12892: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:57 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12893: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:57 UTC 2017
ssl.sh: #12894: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:57 UTC 2017
ssl.sh: #12895: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:57 UTC 2017
ssl.sh: #12896: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:57 UTC 2017
ssl.sh: #12897: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:57 UTC 2017
ssl.sh: #12898: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:57 UTC 2017
ssl.sh: #12899: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:58 UTC 2017
ssl.sh: #12900: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:58 UTC 2017
ssl.sh: #12901: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:58 UTC 2017
ssl.sh: #12902: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:58 UTC 2017
ssl.sh: #12903: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:58 UTC 2017
ssl.sh: #12904: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:58 UTC 2017
ssl.sh: #12905: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6375 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 6375 found at Mon Aug  7 00:08:58 UTC 2017
ssl.sh: #12906: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 6375 at Mon Aug  7 00:08:58 UTC 2017
kill -USR1 6375
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 6375 killed at Mon Aug  7 00:08:58 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:08:58 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:08:58 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:08:58 UTC 2017
selfserv_9009 with PID 7799 started at Mon Aug  7 00:08:58 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:08:59 UTC 2017
ssl.sh: #12907: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:08:59 UTC 2017
ssl.sh: #12908: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:08:59 UTC 2017
ssl.sh: #12909: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:08:59 UTC 2017
ssl.sh: #12910: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:08:59 UTC 2017
ssl.sh: #12911: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:08:59 UTC 2017
ssl.sh: #12912: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:08:59 UTC 2017
ssl.sh: #12913: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:08:59 UTC 2017
ssl.sh: #12914: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:08:59 UTC 2017
ssl.sh: #12915: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:08:59 UTC 2017
ssl.sh: #12916: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:09:00 UTC 2017
ssl.sh: #12917: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:09:00 UTC 2017
ssl.sh: #12918: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:09:00 UTC 2017
ssl.sh: #12919: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:09:00 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12920: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:09:00 UTC 2017
ssl.sh: #12921: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:09:00 UTC 2017
ssl.sh: #12922: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:09:00 UTC 2017
ssl.sh: #12923: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:09:00 UTC 2017
ssl.sh: #12924: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:09:00 UTC 2017
ssl.sh: #12925: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:09:00 UTC 2017
ssl.sh: #12926: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:09:01 UTC 2017
ssl.sh: #12927: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:09:01 UTC 2017
ssl.sh: #12928: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:09:01 UTC 2017
ssl.sh: #12929: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:09:01 UTC 2017
ssl.sh: #12930: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:09:01 UTC 2017
ssl.sh: #12931: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:09:01 UTC 2017
ssl.sh: #12932: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:09:01 UTC 2017
ssl.sh: #12933: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:09:01 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12934: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:09:01 UTC 2017
ssl.sh: #12935: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:09:02 UTC 2017
ssl.sh: #12936: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:09:02 UTC 2017
ssl.sh: #12937: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:09:02 UTC 2017
ssl.sh: #12938: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:09:02 UTC 2017
ssl.sh: #12939: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:09:02 UTC 2017
ssl.sh: #12940: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:09:02 UTC 2017
ssl.sh: #12941: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:09:02 UTC 2017
ssl.sh: #12942: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:09:02 UTC 2017
ssl.sh: #12943: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:09:02 UTC 2017
ssl.sh: #12944: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:09:02 UTC 2017
ssl.sh: #12945: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:09:03 UTC 2017
ssl.sh: #12946: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7799 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 7799 found at Mon Aug  7 00:09:03 UTC 2017
ssl.sh: #12947: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 7799 at Mon Aug  7 00:09:03 UTC 2017
kill -USR1 7799
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 7799 killed at Mon Aug  7 00:09:03 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:09:03 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:09:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9227 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9227 found at Mon Aug  7 00:09:03 UTC 2017
selfserv_9009 with PID 9227 started at Mon Aug  7 00:09:03 UTC 2017
trying to kill selfserv_9009 with PID 9227 at Mon Aug  7 00:09:03 UTC 2017
kill -USR1 9227
./ssl.sh: line 197:  9227 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9009 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 9227 killed at Mon Aug  7 00:09:03 UTC 2017
selfserv_9009 starting at Mon Aug  7 00:09:03 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:09:03 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:03 UTC 2017
selfserv_9009 with PID 9261 started at Mon Aug  7 00:09:03 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:03 UTC 2017
ssl.sh: #12948: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:03 UTC 2017
ssl.sh: #12949: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:03 UTC 2017
ssl.sh: #12950: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:03 UTC 2017
ssl.sh: #12951: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:03 UTC 2017
ssl.sh: #12952: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:04 UTC 2017
ssl.sh: #12953: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:04 UTC 2017
ssl.sh: #12954: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:04 UTC 2017
ssl.sh: #12955: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:04 UTC 2017
ssl.sh: #12956: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:04 UTC 2017
ssl.sh: #12957: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:04 UTC 2017
ssl.sh: #12958: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:04 UTC 2017
ssl.sh: #12959: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:04 UTC 2017
ssl.sh: #12960: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:05 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12961: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:05 UTC 2017
ssl.sh: #12962: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:05 UTC 2017
ssl.sh: #12963: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:05 UTC 2017
ssl.sh: #12964: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:05 UTC 2017
ssl.sh: #12965: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:05 UTC 2017
ssl.sh: #12966: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:05 UTC 2017
ssl.sh: #12967: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:05 UTC 2017
ssl.sh: #12968: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:06 UTC 2017
ssl.sh: #12969: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:06 UTC 2017
ssl.sh: #12970: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:06 UTC 2017
ssl.sh: #12971: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:06 UTC 2017
ssl.sh: #12972: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:06 UTC 2017
ssl.sh: #12973: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:06 UTC 2017
ssl.sh: #12974: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:06 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12975: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:06 UTC 2017
ssl.sh: #12976: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:07 UTC 2017
ssl.sh: #12977: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:07 UTC 2017
ssl.sh: #12978: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:07 UTC 2017
ssl.sh: #12979: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:07 UTC 2017
ssl.sh: #12980: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:07 UTC 2017
ssl.sh: #12981: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:07 UTC 2017
ssl.sh: #12982: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:07 UTC 2017
ssl.sh: #12983: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:07 UTC 2017
ssl.sh: #12984: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:07 UTC 2017
ssl.sh: #12985: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:08 UTC 2017
ssl.sh: #12986: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:08 UTC 2017
ssl.sh: #12987: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9261 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 9261 found at Mon Aug  7 00:09:08 UTC 2017
ssl.sh: #12988: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 9261 at Mon Aug  7 00:09:08 UTC 2017
kill -USR1 9261
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 9261 killed at Mon Aug  7 00:09:08 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:09:08 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:09:08 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:08 UTC 2017
selfserv_9009 with PID 10691 started at Mon Aug  7 00:09:08 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:08 UTC 2017
ssl.sh: #12989: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:08 UTC 2017
ssl.sh: #12990: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:08 UTC 2017
ssl.sh: #12991: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:08 UTC 2017
ssl.sh: #12992: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:09 UTC 2017
ssl.sh: #12993: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:09 UTC 2017
ssl.sh: #12994: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:09 UTC 2017
ssl.sh: #12995: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:09 UTC 2017
ssl.sh: #12996: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:09 UTC 2017
ssl.sh: #12997: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:09 UTC 2017
ssl.sh: #12998: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:09 UTC 2017
ssl.sh: #12999: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:09 UTC 2017
ssl.sh: #13000: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:10 UTC 2017
ssl.sh: #13001: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:10 UTC 2017
================= CRL Reloaded =============
ssl.sh: #13002: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:10 UTC 2017
ssl.sh: #13003: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:10 UTC 2017
ssl.sh: #13004: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:10 UTC 2017
ssl.sh: #13005: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:10 UTC 2017
ssl.sh: #13006: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:10 UTC 2017
ssl.sh: #13007: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:10 UTC 2017
ssl.sh: #13008: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:11 UTC 2017
ssl.sh: #13009: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:11 UTC 2017
ssl.sh: #13010: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:11 UTC 2017
ssl.sh: #13011: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:11 UTC 2017
ssl.sh: #13012: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:11 UTC 2017
ssl.sh: #13013: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:11 UTC 2017
ssl.sh: #13014: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:11 UTC 2017
ssl.sh: #13015: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:11 UTC 2017
================= CRL Reloaded =============
ssl.sh: #13016: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:12 UTC 2017
ssl.sh: #13017: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:12 UTC 2017
ssl.sh: #13018: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:12 UTC 2017
ssl.sh: #13019: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:12 UTC 2017
ssl.sh: #13020: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:12 UTC 2017
ssl.sh: #13021: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:12 UTC 2017
ssl.sh: #13022: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:12 UTC 2017
ssl.sh: #13023: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:12 UTC 2017
ssl.sh: #13024: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:12 UTC 2017
ssl.sh: #13025: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:13 UTC 2017
ssl.sh: #13026: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:13 UTC 2017
ssl.sh: #13027: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:13 UTC 2017
ssl.sh: #13028: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10691 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 10691 found at Mon Aug  7 00:09:13 UTC 2017
ssl.sh: #13029: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 10691 at Mon Aug  7 00:09:13 UTC 2017
kill -USR1 10691
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 10691 killed at Mon Aug  7 00:09:13 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:09:13 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:09:13 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:13 UTC 2017
selfserv_9009 with PID 12116 started at Mon Aug  7 00:09:13 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:13 UTC 2017
ssl.sh: #13030: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:13 UTC 2017
ssl.sh: #13031: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:13 UTC 2017
ssl.sh: #13032: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:14 UTC 2017
ssl.sh: #13033: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:14 UTC 2017
ssl.sh: #13034: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:14 UTC 2017
ssl.sh: #13035: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:14 UTC 2017
ssl.sh: #13036: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:14 UTC 2017
ssl.sh: #13037: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:14 UTC 2017
ssl.sh: #13038: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:14 UTC 2017
ssl.sh: #13039: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:14 UTC 2017
ssl.sh: #13040: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:14 UTC 2017
ssl.sh: #13041: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:14 UTC 2017
ssl.sh: #13042: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:14 UTC 2017
================= CRL Reloaded =============
ssl.sh: #13043: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:15 UTC 2017
ssl.sh: #13044: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:15 UTC 2017
ssl.sh: #13045: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:15 UTC 2017
ssl.sh: #13046: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:15 UTC 2017
ssl.sh: #13047: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:15 UTC 2017
ssl.sh: #13048: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:15 UTC 2017
ssl.sh: #13049: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:15 UTC 2017
ssl.sh: #13050: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:15 UTC 2017
ssl.sh: #13051: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:15 UTC 2017
ssl.sh: #13052: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:15 UTC 2017
ssl.sh: #13053: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:16 UTC 2017
ssl.sh: #13054: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:16 UTC 2017
ssl.sh: #13055: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:16 UTC 2017
ssl.sh: #13056: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:16 UTC 2017
================= CRL Reloaded =============
ssl.sh: #13057: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:16 UTC 2017
ssl.sh: #13058: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:16 UTC 2017
ssl.sh: #13059: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:16 UTC 2017
ssl.sh: #13060: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:16 UTC 2017
ssl.sh: #13061: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:16 UTC 2017
ssl.sh: #13062: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:16 UTC 2017
ssl.sh: #13063: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:16 UTC 2017
ssl.sh: #13064: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:17 UTC 2017
ssl.sh: #13065: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:17 UTC 2017
ssl.sh: #13066: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:17 UTC 2017
ssl.sh: #13067: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:17 UTC 2017
ssl.sh: #13068: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:17 UTC 2017
ssl.sh: #13069: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12116 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 12116 found at Mon Aug  7 00:09:17 UTC 2017
ssl.sh: #13070: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 12116 at Mon Aug  7 00:09:17 UTC 2017
kill -USR1 12116
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 12116 killed at Mon Aug  7 00:09:17 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:09:17 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:09:17 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:17 UTC 2017
selfserv_9009 with PID 13552 started at Mon Aug  7 00:09:17 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:17 UTC 2017
ssl.sh: #13071: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:17 UTC 2017
ssl.sh: #13072: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:18 UTC 2017
ssl.sh: #13073: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:18 UTC 2017
ssl.sh: #13074: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:18 UTC 2017
ssl.sh: #13075: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:18 UTC 2017
ssl.sh: #13076: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:18 UTC 2017
ssl.sh: #13077: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:18 UTC 2017
ssl.sh: #13078: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:18 UTC 2017
ssl.sh: #13079: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:18 UTC 2017
ssl.sh: #13080: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:19 UTC 2017
ssl.sh: #13081: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:19 UTC 2017
ssl.sh: #13082: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:19 UTC 2017
ssl.sh: #13083: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:19 UTC 2017
================= CRL Reloaded =============
ssl.sh: #13084: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:19 UTC 2017
ssl.sh: #13085: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:19 UTC 2017
ssl.sh: #13086: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:19 UTC 2017
ssl.sh: #13087: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:20 UTC 2017
ssl.sh: #13088: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:20 UTC 2017
ssl.sh: #13089: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:20 UTC 2017
ssl.sh: #13090: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:20 UTC 2017
ssl.sh: #13091: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:20 UTC 2017
ssl.sh: #13092: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:20 UTC 2017
ssl.sh: #13093: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:20 UTC 2017
ssl.sh: #13094: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:20 UTC 2017
ssl.sh: #13095: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:21 UTC 2017
ssl.sh: #13096: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:21 UTC 2017
ssl.sh: #13097: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:21 UTC 2017
================= CRL Reloaded =============
ssl.sh: #13098: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:21 UTC 2017
ssl.sh: #13099: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:21 UTC 2017
ssl.sh: #13100: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:21 UTC 2017
ssl.sh: #13101: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:21 UTC 2017
ssl.sh: #13102: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:21 UTC 2017
ssl.sh: #13103: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:22 UTC 2017
ssl.sh: #13104: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:22 UTC 2017
ssl.sh: #13105: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:22 UTC 2017
ssl.sh: #13106: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:22 UTC 2017
ssl.sh: #13107: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:22 UTC 2017
ssl.sh: #13108: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:22 UTC 2017
ssl.sh: #13109: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:22 UTC 2017
ssl.sh: #13110: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13552 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 13552 found at Mon Aug  7 00:09:22 UTC 2017
ssl.sh: #13111: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 13552 at Mon Aug  7 00:09:22 UTC 2017
kill -USR1 13552
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 13552 killed at Mon Aug  7 00:09:22 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:09:22 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:09:22 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:22 UTC 2017
selfserv_9009 with PID 14979 started at Mon Aug  7 00:09:22 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:23 UTC 2017
ssl.sh: #13112: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:23 UTC 2017
ssl.sh: #13113: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:23 UTC 2017
ssl.sh: #13114: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:23 UTC 2017
ssl.sh: #13115: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:23 UTC 2017
ssl.sh: #13116: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:23 UTC 2017
ssl.sh: #13117: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:24 UTC 2017
ssl.sh: #13118: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:24 UTC 2017
ssl.sh: #13119: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:24 UTC 2017
ssl.sh: #13120: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:24 UTC 2017
ssl.sh: #13121: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:24 UTC 2017
ssl.sh: #13122: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:24 UTC 2017
ssl.sh: #13123: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:24 UTC 2017
ssl.sh: #13124: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:24 UTC 2017
================= CRL Reloaded =============
ssl.sh: #13125: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:25 UTC 2017
ssl.sh: #13126: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:25 UTC 2017
ssl.sh: #13127: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:25 UTC 2017
ssl.sh: #13128: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:25 UTC 2017
ssl.sh: #13129: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:25 UTC 2017
ssl.sh: #13130: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:25 UTC 2017
ssl.sh: #13131: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:25 UTC 2017
ssl.sh: #13132: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:25 UTC 2017
ssl.sh: #13133: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:26 UTC 2017
ssl.sh: #13134: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:26 UTC 2017
ssl.sh: #13135: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:26 UTC 2017
ssl.sh: #13136: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:26 UTC 2017
ssl.sh: #13137: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:26 UTC 2017
ssl.sh: #13138: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:26 UTC 2017
================= CRL Reloaded =============
ssl.sh: #13139: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:26 UTC 2017
ssl.sh: #13140: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:26 UTC 2017
ssl.sh: #13141: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:27 UTC 2017
ssl.sh: #13142: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:27 UTC 2017
ssl.sh: #13143: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:27 UTC 2017
ssl.sh: #13144: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:27 UTC 2017
ssl.sh: #13145: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:27 UTC 2017
ssl.sh: #13146: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:27 UTC 2017
ssl.sh: #13147: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:27 UTC 2017
ssl.sh: #13148: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:27 UTC 2017
ssl.sh: #13149: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:28 UTC 2017
ssl.sh: #13150: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:28 UTC 2017
ssl.sh: #13151: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14979 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 14979 found at Mon Aug  7 00:09:28 UTC 2017
ssl.sh: #13152: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 14979 at Mon Aug  7 00:09:28 UTC 2017
kill -USR1 14979
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 14979 killed at Mon Aug  7 00:09:28 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:09:28 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:09:28 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:28 UTC 2017
selfserv_9009 with PID 16404 started at Mon Aug  7 00:09:28 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:28 UTC 2017
ssl.sh: #13153: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:28 UTC 2017
ssl.sh: #13154: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:28 UTC 2017
ssl.sh: #13155: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:28 UTC 2017
ssl.sh: #13156: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:29 UTC 2017
ssl.sh: #13157: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:29 UTC 2017
ssl.sh: #13158: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:29 UTC 2017
ssl.sh: #13159: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:29 UTC 2017
ssl.sh: #13160: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:29 UTC 2017
ssl.sh: #13161: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:29 UTC 2017
ssl.sh: #13162: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:29 UTC 2017
ssl.sh: #13163: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:29 UTC 2017
ssl.sh: #13164: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:29 UTC 2017
ssl.sh: #13165: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:29 UTC 2017
================= CRL Reloaded =============
ssl.sh: #13166: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:30 UTC 2017
ssl.sh: #13167: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:30 UTC 2017
ssl.sh: #13168: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:30 UTC 2017
ssl.sh: #13169: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:30 UTC 2017
ssl.sh: #13170: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:30 UTC 2017
ssl.sh: #13171: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:30 UTC 2017
ssl.sh: #13172: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:30 UTC 2017
ssl.sh: #13173: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:30 UTC 2017
ssl.sh: #13174: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:30 UTC 2017
ssl.sh: #13175: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:30 UTC 2017
ssl.sh: #13176: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:31 UTC 2017
ssl.sh: #13177: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:31 UTC 2017
ssl.sh: #13178: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:31 UTC 2017
ssl.sh: #13179: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:31 UTC 2017
================= CRL Reloaded =============
ssl.sh: #13180: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:31 UTC 2017
ssl.sh: #13181: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:31 UTC 2017
ssl.sh: #13182: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:31 UTC 2017
ssl.sh: #13183: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:31 UTC 2017
ssl.sh: #13184: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:31 UTC 2017
ssl.sh: #13185: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:32 UTC 2017
ssl.sh: #13186: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:32 UTC 2017
ssl.sh: #13187: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:32 UTC 2017
ssl.sh: #13188: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:32 UTC 2017
ssl.sh: #13189: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:32 UTC 2017
ssl.sh: #13190: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:32 UTC 2017
ssl.sh: #13191: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:32 UTC 2017
ssl.sh: #13192: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9009 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16404 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 16404 found at Mon Aug  7 00:09:32 UTC 2017
ssl.sh: #13193: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 16404 at Mon Aug  7 00:09:32 UTC 2017
kill -USR1 16404
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 16404 killed at Mon Aug  7 00:09:32 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9009 starting at Mon Aug  7 00:09:32 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:09:32 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17828 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17828 found at Mon Aug  7 00:09:32 UTC 2017
selfserv_9009 with PID 17828 started at Mon Aug  7 00:09:32 UTC 2017
trying to kill selfserv_9009 with PID 17828 at Mon Aug  7 00:09:32 UTC 2017
kill -USR1 17828
./ssl.sh: line 197: 17828 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9009 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 17828 killed at Mon Aug  7 00:09:32 UTC 2017
ssl.sh: SSL POLICY  - server /client   - with ECC ===============================
Saving pkcs11.txt
selfserv_9009 starting at Mon Aug  7 00:09:32 UTC 2017
selfserv_9009 -D -p 9009 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.8843\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9009 at Mon Aug  7 00:09:32 UTC 2017
tstclnt -p 9009 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17863 >/dev/null 2>/dev/null
No server to kill
selfserv_9009 with PID 17863 found at Mon Aug  7 00:09:32 UTC 2017
selfserv_9009 with PID 17863 started at Mon Aug  7 00:09:32 UTC 2017
ssl.sh: running Allowed by Narrow Policy ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:sha256:rsa:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #13194: Allowed by Narrow Policy produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running Allowed by Strict Policy ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1/ssl,ssl-key-exchange:sha256/cert-signature:rsa/ssl-key-exchange:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #13195: Allowed by Strict Policy produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running Allow All Explicitly ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #13196: Allow All Explicitly produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running Disallow All Explicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #13197: Disallow All Explicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow SHA256 Signatures Explicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=sha256
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: authentication of server cert failed: SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED: The certificate was signed using a signature algorithm that is disabled because it is not secure.
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
ssl.sh: #13198: Disallow SHA256 Signatures Explicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow SHA256 Signatures Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:rsa/ssl-key-exchange:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: authentication of server cert failed: SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED: The certificate was signed using a signature algorithm that is disabled because it is not secure.
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
ssl.sh: #13199: Disallow SHA256 Signatures Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow SHA256 Signatures Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: authentication of server cert failed: SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED: The certificate was signed using a signature algorithm that is disabled because it is not secure.
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
ssl.sh: #13200: Disallow SHA256 Signatures Implicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Cipher Explicitly ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=des-ede3-cbc
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #13201: Disallow Cipher Explicitly produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Cipher Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:sha256:rsa:des-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #13202: Disallow Cipher Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Cipher Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-verion-max=tls1.2
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #13203: Disallow Cipher Implicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow HMAC Explicitly ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=hmac-sha1
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #13204: Disallow HMAC Explicitly produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow HMAC Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md5:sha256:rsa:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #13205: Disallow HMAC Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow HMAC Signatures Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #13206: Disallow HMAC Signatures Implicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Key Exchange Explicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=rsa/ssl-key-exchange
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #13207: Disallow Key Exchange Explicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Key Exchange Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:sha256:dh-dss:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #13208: Disallow Key Exchange Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Key Exchnage Signatures Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #13209: Disallow Key Exchnage Signatures Implicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Version Exlicitly ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=allow=tls-version-min=tls1.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: error setting SSL/TLS version range : SSL_ERROR_INVALID_VERSION_RANGE: SSL version range is not valid.
ssl.sh: #13210: Disallow Version Exlicitly produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Version Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:sha256:rsa:des-ede3-cbc:tls-version-min=tls1.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: error setting SSL/TLS version range : SSL_ERROR_INVALID_VERSION_RANGE: SSL version range is not valid.
ssl.sh: #13211: Disallow Version Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Version Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=tls1.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9009 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: error setting SSL/TLS version range : SSL_ERROR_INVALID_VERSION_RANGE: SSL version range is not valid.
ssl.sh: #13212: Disallow Version Implicitly. produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9009 with PID 17863 at Mon Aug  7 00:09:34 UTC 2017
kill -USR1 17863
selfserv: 0 cache hits; 6 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9009 -b -p 9009 2>/dev/null;
selfserv_9009 with PID 17863 killed at Mon Aug  7 00:09:34 UTC 2017
TIMESTAMP ssl END: Mon Aug  7 00:09:34 UTC 2017
Running tests for merge
TIMESTAMP merge BEGIN: Mon Aug  7 00:09:34 UTC 2017
sdr.sh: SDR Tests ===============================
sdr.sh: Creating an SDR key/SDR Encrypt - Value 1
sdrtest -d . -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests.v1.8843 -t "Test1"
sdr.sh: #13213: Creating SDR Key/Encrypt - Value 1  - PASSED
sdr.sh: SDR Encrypt - Value 2
sdrtest -d . -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests.v2.8843 -t "The quick brown fox jumped over the lazy dog"
sdr.sh: #13214: Encrypt - Value 2  - PASSED
sdr.sh: SDR Encrypt - Value 3
sdrtest -d . -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests.v3.8843 -t "1234567"
sdr.sh: #13215: Encrypt - Value 3  - PASSED
sdr.sh: SDR Decrypt - Value 1
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests.v1.8843 -t "Test1"
sdr.sh: #13216: Decrypt - Value 1  - PASSED
sdr.sh: SDR Decrypt - Value 2
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests.v2.8843 -t "The quick brown fox jumped over the lazy dog"
sdr.sh: #13217: Decrypt - Value 2  - PASSED
sdr.sh: SDR Decrypt - Value 3
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests.v3.8843 -t "1234567"
sdr.sh: #13218: Decrypt - Value 3  - PASSED
merge.sh: Merge Tests ===============================
merge.sh: Creating an SDR key & Encrypt
sdrtest -d . -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests.v3.8843 -t Test2 -f ../tests.pw
merge.sh: #13219: Creating SDR Key  - PASSED
merge.sh: Merging in Key for Existing user
certutil --merge --source-dir ../dave -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #13220: Merging Dave  - PASSED
merge.sh: Merging in new user 
certutil --merge --source-dir ../server -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #13221: Merging server  - PASSED
merge.sh: Merging in new chain 
certutil --merge --source-dir ../ext_client -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #13222: Merging ext_client  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --merge --source-dir conflict1 -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #13223: Merging conflicting nicknames 1  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --merge --source-dir conflict2 -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #13224: Merging conflicting nicknames 2  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #4)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 45 (0x2d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:06:10 2017
            Not After : Sun Aug 07 00:06:10 2022
        Subject: "CN=TestUser45,E=TestUser45@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:3a:0a:76:0a:7c:56:81:84:93:bb:5b:c1:13:42:af:
                    b0:04:5f:bd:65:e7:a7:a6:38:39:6d:27:05:c1:fa:a5:
                    20:21:f6:ee:d1:c1:dc:aa:15:48:04:10:d2:14:14:5e:
                    2e:d8:80:1a:62:06:05:2d:ac:43:14:49:7a:f1:e9:86:
                    c4:88:f7:07:01:34:66:c8:75:7e:c6:20:20:17:12:cb:
                    ca:8b:2e:61:79:a8:01:f6:e1:5b:c8:f5:b1:b1:d6:3e:
                    bd:9b:62:70:9b:34:5c:47:dd:41:37:57:e6:7d:ea:9b:
                    85:dd:bf:eb:3a:48:81:a8:36:99:82:af:59:ca:94:be:
                    9c:5e:c1:47:4a:3b:aa:97:a3:ab:87:e0:95:4e:e1:5e:
                    46:de:26:d3:3e:38:09:6e:7d:f8:c9:21:61:00:59:6a:
                    ab:e9:21:95:49:87:f0:92:3a:23:aa:20:a1:7a:01:8c:
                    6e:be:7d:5f:89:55:68:9f:81:88:06:93:50:fe:6b:a5:
                    6a:93:95:85:ba:17:e7:1c:13:71:5c:ed:52:14:92:15:
                    05:59:c9:bc:62:78:bf:12:c0:c9:18:fa:d8:80:75:c9:
                    89:00:e7:75:a9:20:3a:b9:5b:f2:90:68:ca:97:7d:ee:
                    1e:8d:0d:f7:e7:3d:82:01:d4:e3:65:ff:dc:fe:b2:9f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:27:f4:17:62:65:2b:aa:94:b0:1a:ad:85:72:4e:c4:
        2c:60:86:19:a3:bb:c5:4f:b8:ea:dc:24:d7:98:26:10:
        14:a8:ee:5b:00:cc:b4:2f:1c:88:51:e4:a2:89:bb:c3:
        a1:dc:f1:67:b0:9d:aa:25:66:41:0a:7e:18:78:b3:30:
        7c:e5:b1:80:33:4d:19:d1:b1:82:bb:bd:f9:cd:8d:f8:
        27:2c:2a:f3:68:75:78:4d:db:09:b2:bc:fc:d3:29:29:
        e7:67:bc:d6:9d:20:d8:69:fa:f5:6f:93:3d:18:70:c6:
        01:a9:4c:ce:10:63:62:35:1c:ba:ab:59:3d:5a:a6:e4:
        4f:57:59:df:b4:73:c7:8a:49:e6:04:ac:38:c0:45:9a:
        6e:8c:8e:e3:41:16:b0:63:29:d6:55:bd:59:f5:00:e6:
        2e:c4:39:db:a1:7a:8c:b3:3f:b7:28:7a:89:3c:00:1b:
        a9:94:29:c1:b2:91:73:ea:a1:38:55:dc:83:e6:3c:1e:
        c0:81:66:e3:1e:6c:93:74:c8:55:77:7e:99:02:ca:6e:
        c4:2e:a1:f3:e5:c2:f9:c5:4d:d0:76:fd:9a:fd:42:b2:
        d1:d7:8c:64:c4:69:55:f0:6b:60:51:78:20:c1:94:57:
        e6:0b:b8:e2:1f:6c:f9:e6:ce:c0:fa:c4:c3:29:38:af
    Fingerprint (SHA-256):
        99:57:03:FB:89:47:30:CE:EB:2B:C3:F8:31:C5:3D:4D:60:81:0D:5A:09:DD:31:37:15:1D:3D:5C:47:8D:03:22
    Fingerprint (SHA1):
        B6:E9:4B:39:F7:A7:08:97:9B:2D:E2:71:09:E3:9B:02:4B:08:E9:00
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #13225: Verify nicknames were deconflicted (Alice #4)  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #100)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 46 (0x2e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Mon Aug 07 00:06:13 2017
            Not After : Sun Aug 07 00:06:13 2022
        Subject: "CN=TestUser46,E=TestUser46@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:a2:fe:25:35:32:1d:a6:6a:23:d1:a4:3d:0c:11:f4:
                    e4:16:70:3b:9d:ed:2b:cd:6f:ed:bb:a3:bf:6f:89:a6:
                    1b:dd:c6:38:90:de:ff:da:29:5b:57:b8:b4:15:13:f8:
                    d0:eb:04:f5:c4:36:e2:c3:22:9b:9a:bf:a3:b2:14:13:
                    1b:4b:96:30:3a:bc:3a:c6:fa:3f:63:29:6f:6c:7b:97:
                    90:c2:27:79:b6:f0:12:a1:ff:ab:9c:4d:73:66:5a:48:
                    93:bf:76:7a:0c:01:8b:9b:b5:bc:3e:1c:55:e1:54:5e:
                    73:90:d4:18:a2:01:74:88:91:77:eb:58:99:ab:ef:ab:
                    9c:e7:4b:78:46:c9:3e:35:67:d9:60:a4:d6:a5:23:a2:
                    a4:d8:b0:13:29:f1:5e:3f:a2:dd:bc:cd:06:b7:65:1b:
                    e9:91:16:d1:34:4e:cb:61:d3:57:85:99:89:41:13:84:
                    b6:07:69:c8:76:bc:65:03:74:b3:8a:c6:54:59:59:7c:
                    1a:e3:ac:2b:61:10:6e:59:bb:d9:37:69:82:c8:be:48:
                    69:44:9c:bc:72:e9:35:06:4d:9e:f5:36:91:be:a7:bc:
                    9a:3c:4a:b8:8e:7e:7d:10:51:ff:6d:7f:6f:c9:be:89:
                    47:70:41:d9:c7:24:4c:e5:9f:45:d6:3f:96:14:3b:31
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6d:4e:35:ff:64:15:f2:c3:72:7c:2c:0d:29:e3:b4:ad:
        04:ea:62:00:98:ae:97:9b:ac:c9:01:06:af:bc:11:a4:
        38:8c:9b:bd:8d:98:90:6d:c6:a4:9b:fd:c1:6d:6c:0c:
        16:25:18:50:72:71:7f:8e:3a:7e:bb:c9:cc:5d:f8:6b:
        cf:a6:22:e5:9c:4e:d2:0b:40:99:14:c9:d8:5c:f8:34:
        90:13:14:de:03:4d:2e:de:dc:d4:f8:5a:8e:c7:e8:57:
        c0:f6:22:e0:85:22:4d:f1:28:a3:93:23:4f:2a:06:46:
        47:4b:3a:7c:a3:01:4a:af:3e:96:03:0b:a3:e1:32:2b:
        85:c1:cf:3a:7c:9d:4b:5a:81:81:d0:5c:2a:87:96:ed:
        ce:32:48:87:5e:36:ff:91:06:92:61:6c:c8:77:b2:ac:
        65:f2:ee:3b:aa:4a:90:12:b1:45:6a:e2:92:ac:c3:f4:
        da:6a:8d:1f:00:28:19:f6:a2:b0:b9:f0:35:0a:a0:cd:
        d6:99:77:16:68:b3:0d:1d:45:20:52:2e:16:7d:46:7b:
        ff:22:d1:13:2b:51:73:0a:9a:4c:b9:d6:b3:83:69:fa:
        bf:17:f6:56:ef:d0:be:e4:12:9d:22:58:71:1f:f8:b7:
        dc:5c:36:43:45:23:41:b1:20:42:b5:6b:a9:a4:22:dd
    Fingerprint (SHA-256):
        4E:24:12:BD:DB:D9:3E:85:DD:89:F1:FD:DA:9C:71:B5:08:3E:E3:09:F5:E8:6B:6E:72:63:5B:74:20:30:5B:30
    Fingerprint (SHA1):
        20:49:46:F9:07:56:A8:87:E4:24:E9:CC:D4:E7:65:37:7A:77:49:93
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #13226: Verify nicknames were deconflicted (Alice #100)  - PASSED
merge.sh: Merging in SDR 
certutil --merge --source-dir ../SDR -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #13227: Merging SDR  - PASSED
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
TestCA                                                       CT,C,C
TestCA-dsa                                                   CT,C,C
TestCA-ec                                                    CT,C,C
Alice                                                        u,u,u
Alice-dsa                                                    u,u,u
Alice-dsamixed                                               u,u,u
Alice-ec                                                     u,u,u
Alice-ecmixed                                                u,u,u
bob@bogus.com                                                ,,   
Dave                                                         u,u,u
eve@bogus.com                                                ,,   
bob-ec@bogus.com                                             ,,   
Dave-ec                                                      u,u,u
Dave-dsa                                                     u,u,u
Dave-dsamixed                                                u,u,u
Dave-ecmixed                                                 u,u,u
localhost.localdomain                                        u,u,u
localhost.localdomain-dsa                                    u,u,u
localhost.localdomain-dsamixed                               u,u,u
localhost.localdomain-ec                                     u,u,u
localhost.localdomain-ecmixed                                u,u,u
localhost-sni.localdomain                                    u,u,u
localhost-sni.localdomain-dsa                                u,u,u
localhost-sni.localdomain-dsamixed                           u,u,u
localhost-sni.localdomain-ec                                 u,u,u
localhost-sni.localdomain-ecmixed                            u,u,u
ExtendedSSLUser                                              u,u,u
serverCA                                                     C,C,C
ExtendedSSLUser-dsa                                          u,u,u
serverCA-dsa                                                 C,C,C
ExtendedSSLUser-dsamixed                                     u,u,u
ExtendedSSLUser-ec                                           u,u,u
serverCA-ec                                                  C,C,C
ExtendedSSLUser-ecmixed                                      u,u,u
clientCA                                                     T,C,C
chain-1-clientCA                                             ,,   
chain-2-clientCA                                             ,,   
clientCA-dsa                                                 T,C,C
chain-1-clientCA-dsa                                         ,,   
chain-2-clientCA-dsa                                         ,,   
clientCA-ec                                                  T,C,C
chain-1-clientCA-ec                                          ,,   
chain-2-clientCA-ec                                          ,,   
Alice #2                                                     ,,   
Alice #1                                                     ,,   
Alice #99                                                    ,,   
Alice #3                                                     ,,   
Alice #4                                                     ,,   
Alice #100                                                   ,,   
CRL names                                CRL Type
TestCA                                   CRL  
TestCA-ec                                CRL  
merge.sh: Decrypt - With Original SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests.v3.8843 -t Test2 -f ../tests.pw
merge.sh: #13228: Decrypt - Value 3  - PASSED
merge.sh: Decrypt - With Merged SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests.v1.8843 -t Test1 -f ../tests.pw
merge.sh: #13229: Decrypt - Value 1  - PASSED
merge.sh: Signing with merged key  ------------------
cmsutil -S -T -N Dave -H SHA1 -i alice.txt -d . -p nss -o dave.dsig
merge.sh: #13230: Create Detached Signature Dave . - PASSED
cmsutil -D -i dave.dsig -c alice.txt -d . 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
merge.sh: #13231: Verifying Dave's Detached Signature  - PASSED
merge.sh: verifying  merged cert  ------------------
certutil -V -n ExtendedSSLUser -u C -d .
certutil: certificate is valid
merge.sh: #13232: Verifying ExtendedSSL User Cert  - PASSED
merge.sh: verifying  merged crl  ------------------
crlutil -L -n TestCA -d .
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US"
    This Update: Mon Aug 07 00:06:42 2017
    Entry 1 (0x1):
        Serial Number: 40 (0x28)
        Revocation Date: Mon Aug 07 00:04:23 2017
        Entry Extensions:
            Name: CRL reason code
    Entry 2 (0x2):
        Serial Number: 42 (0x2a)
        Revocation Date: Mon Aug 07 00:06:37 2017
    CRL Extensions:
        Name: Certificate Issuer Alt Name
        RFC822 Name: "caemail@ca.com"
        DNS name: "ca.com"
        Directory Name: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=Califo
            rnia,C=US"
        URI: "http://ca.com"
        IP Address:
            87:0b:31:39:32:2e:31:36:38:2e:30:2e:31
merge.sh: #13233: Verifying TestCA CRL  - PASSED
TEST_MODE=SHARED_DB
NSS_DEFAULT_DB_TYPE=sql
TIMESTAMP merge END: Mon Aug  7 00:09:51 UTC 2017
Running tests for chains
TIMESTAMP chains BEGIN: Mon Aug  7 00:09:51 UTC 2017
chains.sh: Certificate Chains Tests ===============================
chains.sh: Creating DB OCSPRootDB
certutil -N -d OCSPRootDB -f OCSPRootDB/dbpasswd
chains.sh: #13234: OCSPD: Creating DB OCSPRootDB  - PASSED
chains.sh: Creating Root CA OCSPRoot
certutil -s "CN=OCSPRoot ROOT CA, O=OCSPRoot, C=US" -S -n OCSPRoot  -t CTu,CTu,CTu -v 600 -x -d OCSPRootDB -1 -2 -5 -f OCSPRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807000952 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13235: OCSPD: Creating Root CA OCSPRoot  - PASSED
chains.sh: Exporting Root CA OCSPRoot.der
certutil -L -d OCSPRootDB -r -n OCSPRoot -o OCSPRoot.der
chains.sh: #13236: OCSPD: Exporting Root CA OCSPRoot.der  - PASSED
chains.sh: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPRootDB -o OCSPRoot.p12 -n OCSPRoot -k OCSPRootDB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #13237: OCSPD: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database  - PASSED
chains.sh: Creating DB OCSPCA1DB
certutil -N -d OCSPCA1DB -f OCSPCA1DB/dbpasswd
chains.sh: #13238: OCSPD: Creating DB OCSPCA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA1Req.der
certutil -s "CN=OCSPCA1 Intermediate, O=OCSPCA1, C=US"  -R -2 -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPCA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13239: OCSPD: Creating Intermediate certifiate request OCSPCA1Req.der  - PASSED
chains.sh: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA1Req.der -o OCSPCA1OCSPRoot.der -f OCSPRootDB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9019/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13240: OCSPD: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database
certutil -A -n OCSPCA1 -t u,u,u -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -i OCSPCA1OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13241: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database  - PASSED
chains.sh: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA1DB -o OCSPCA1.p12 -n OCSPCA1 -k OCSPCA1DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #13242: OCSPD: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database  - PASSED
chains.sh: Creating DB OCSPCA2DB
certutil -N -d OCSPCA2DB -f OCSPCA2DB/dbpasswd
chains.sh: #13243: OCSPD: Creating DB OCSPCA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA2Req.der
certutil -s "CN=OCSPCA2 Intermediate, O=OCSPCA2, C=US"  -R -2 -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPCA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13244: OCSPD: Creating Intermediate certifiate request OCSPCA2Req.der  - PASSED
chains.sh: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA2Req.der -o OCSPCA2OCSPRoot.der -f OCSPRootDB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9019/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13245: OCSPD: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database
certutil -A -n OCSPCA2 -t u,u,u -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -i OCSPCA2OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13246: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database  - PASSED
chains.sh: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA2DB -o OCSPCA2.p12 -n OCSPCA2 -k OCSPCA2DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #13247: OCSPD: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database  - PASSED
chains.sh: Creating DB OCSPCA3DB
certutil -N -d OCSPCA3DB -f OCSPCA3DB/dbpasswd
chains.sh: #13248: OCSPD: Creating DB OCSPCA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA3Req.der
certutil -s "CN=OCSPCA3 Intermediate, O=OCSPCA3, C=US"  -R -2 -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPCA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13249: OCSPD: Creating Intermediate certifiate request OCSPCA3Req.der  - PASSED
chains.sh: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA3Req.der -o OCSPCA3OCSPRoot.der -f OCSPRootDB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9020
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13250: OCSPD: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database
certutil -A -n OCSPCA3 -t u,u,u -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -i OCSPCA3OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13251: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database  - PASSED
chains.sh: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA3DB -o OCSPCA3.p12 -n OCSPCA3 -k OCSPCA3DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #13252: OCSPD: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database  - PASSED
chains.sh: Creating DB OCSPEE11DB
certutil -N -d OCSPEE11DB -f OCSPEE11DB/dbpasswd
chains.sh: #13253: OCSPD: Creating DB OCSPEE11DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE11Req.der
certutil -s "CN=OCSPEE11 EE, O=OCSPEE11, C=US"  -R  -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13254: OCSPD: Creating EE certifiate request OCSPEE11Req.der  - PASSED
chains.sh: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE11Req.der -o OCSPEE11OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9019/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13255: OCSPD: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database
certutil -A -n OCSPEE11 -t u,u,u -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -i OCSPEE11OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13256: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database  - PASSED
chains.sh: Creating DB OCSPEE12DB
certutil -N -d OCSPEE12DB -f OCSPEE12DB/dbpasswd
chains.sh: #13257: OCSPD: Creating DB OCSPEE12DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE12Req.der
certutil -s "CN=OCSPEE12 EE, O=OCSPEE12, C=US"  -R  -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13258: OCSPD: Creating EE certifiate request OCSPEE12Req.der  - PASSED
chains.sh: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE12Req.der -o OCSPEE12OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9019/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13259: OCSPD: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database
certutil -A -n OCSPEE12 -t u,u,u -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -i OCSPEE12OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13260: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database  - PASSED
chains.sh: Creating DB OCSPEE13DB
certutil -N -d OCSPEE13DB -f OCSPEE13DB/dbpasswd
chains.sh: #13261: OCSPD: Creating DB OCSPEE13DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE13Req.der
certutil -s "CN=OCSPEE13 EE, O=OCSPEE13, C=US"  -R  -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13262: OCSPD: Creating EE certifiate request OCSPEE13Req.der  - PASSED
chains.sh: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE13Req.der -o OCSPEE13OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9019/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13263: OCSPD: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database
certutil -A -n OCSPEE13 -t u,u,u -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -i OCSPEE13OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13264: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database  - PASSED
chains.sh: Creating DB OCSPEE14DB
certutil -N -d OCSPEE14DB -f OCSPEE14DB/dbpasswd
chains.sh: #13265: OCSPD: Creating DB OCSPEE14DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE14Req.der
certutil -s "CN=OCSPEE14 EE, O=OCSPEE14, C=US"  -R  -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE14Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13266: OCSPD: Creating EE certifiate request OCSPEE14Req.der  - PASSED
chains.sh: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE14Req.der -o OCSPEE14OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 4   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9019/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13267: OCSPD: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database
certutil -A -n OCSPEE14 -t u,u,u -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -i OCSPEE14OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13268: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database  - PASSED
chains.sh: Creating DB OCSPEE15DB
certutil -N -d OCSPEE15DB -f OCSPEE15DB/dbpasswd
chains.sh: #13269: OCSPD: Creating DB OCSPEE15DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE15Req.der
certutil -s "CN=OCSPEE15 EE, O=OCSPEE15, C=US"  -R  -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE15Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13270: OCSPD: Creating EE certifiate request OCSPEE15Req.der  - PASSED
chains.sh: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE15Req.der -o OCSPEE15OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 5   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9020
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13271: OCSPD: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database
certutil -A -n OCSPEE15 -t u,u,u -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -i OCSPEE15OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13272: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database  - PASSED
chains.sh: Creating DB OCSPEE21DB
certutil -N -d OCSPEE21DB -f OCSPEE21DB/dbpasswd
chains.sh: #13273: OCSPD: Creating DB OCSPEE21DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE21Req.der
certutil -s "CN=OCSPEE21 EE, O=OCSPEE21, C=US"  -R  -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13274: OCSPD: Creating EE certifiate request OCSPEE21Req.der  - PASSED
chains.sh: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE21Req.der -o OCSPEE21OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9019/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13275: OCSPD: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database
certutil -A -n OCSPEE21 -t u,u,u -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -i OCSPEE21OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13276: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database  - PASSED
chains.sh: Creating DB OCSPEE22DB
certutil -N -d OCSPEE22DB -f OCSPEE22DB/dbpasswd
chains.sh: #13277: OCSPD: Creating DB OCSPEE22DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE22Req.der
certutil -s "CN=OCSPEE22 EE, O=OCSPEE22, C=US"  -R  -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE22Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13278: OCSPD: Creating EE certifiate request OCSPEE22Req.der  - PASSED
chains.sh: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE22Req.der -o OCSPEE22OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9019/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13279: OCSPD: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database
certutil -A -n OCSPEE22 -t u,u,u -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -i OCSPEE22OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13280: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database  - PASSED
chains.sh: Creating DB OCSPEE23DB
certutil -N -d OCSPEE23DB -f OCSPEE23DB/dbpasswd
chains.sh: #13281: OCSPD: Creating DB OCSPEE23DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE23Req.der
certutil -s "CN=OCSPEE23 EE, O=OCSPEE23, C=US"  -R  -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE23Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13282: OCSPD: Creating EE certifiate request OCSPEE23Req.der  - PASSED
chains.sh: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE23Req.der -o OCSPEE23OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9020
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13283: OCSPD: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database
certutil -A -n OCSPEE23 -t u,u,u -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -i OCSPEE23OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13284: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database  - PASSED
chains.sh: Creating DB OCSPEE31DB
certutil -N -d OCSPEE31DB -f OCSPEE31DB/dbpasswd
chains.sh: #13285: OCSPD: Creating DB OCSPEE31DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE31Req.der
certutil -s "CN=OCSPEE31 EE, O=OCSPEE31, C=US"  -R  -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE31Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13286: OCSPD: Creating EE certifiate request OCSPEE31Req.der  - PASSED
chains.sh: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE31Req.der -o OCSPEE31OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9019/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13287: OCSPD: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database
certutil -A -n OCSPEE31 -t u,u,u -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -i OCSPEE31OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13288: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database  - PASSED
chains.sh: Creating DB OCSPEE32DB
certutil -N -d OCSPEE32DB -f OCSPEE32DB/dbpasswd
chains.sh: #13289: OCSPD: Creating DB OCSPEE32DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE32Req.der
certutil -s "CN=OCSPEE32 EE, O=OCSPEE32, C=US"  -R  -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE32Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13290: OCSPD: Creating EE certifiate request OCSPEE32Req.der  - PASSED
chains.sh: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE32Req.der -o OCSPEE32OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9019/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13291: OCSPD: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database
certutil -A -n OCSPEE32 -t u,u,u -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -i OCSPEE32OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13292: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database  - PASSED
chains.sh: Creating DB OCSPEE33DB
certutil -N -d OCSPEE33DB -f OCSPEE33DB/dbpasswd
chains.sh: #13293: OCSPD: Creating DB OCSPEE33DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE33Req.der
certutil -s "CN=OCSPEE33 EE, O=OCSPEE33, C=US"  -R  -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE33Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13294: OCSPD: Creating EE certifiate request OCSPEE33Req.der  - PASSED
chains.sh: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE33Req.der -o OCSPEE33OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9020
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13295: OCSPD: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database
certutil -A -n OCSPEE33 -t u,u,u -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -i OCSPEE33OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13296: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database  - PASSED
chains.sh: Create CRL for OCSPRootDB
crlutil -G -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170807001008Z
nextupdate=20180807001008Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Mon Aug 07 00:10:08 2017
    Next Update: Tue Aug 07 00:10:08 2018
    CRL Extensions:
chains.sh: #13297: OCSPD: Create CRL for OCSPRootDB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPRoot
crlutil -M -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170807001009Z
addcert 2 20170807001009Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Mon Aug 07 00:10:09 2017
    Next Update: Tue Aug 07 00:10:08 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Mon Aug 07 00:10:09 2017
    CRL Extensions:
chains.sh: #13298: OCSPD: Revoking certificate with SN 2 issued by OCSPRoot  - PASSED
chains.sh: Create CRL for OCSPCA1DB
crlutil -G -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170807001009Z
nextupdate=20180807001009Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Mon Aug 07 00:10:09 2017
    Next Update: Tue Aug 07 00:10:09 2018
    CRL Extensions:
chains.sh: #13299: OCSPD: Create CRL for OCSPCA1DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170807001010Z
addcert 2 20170807001010Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Mon Aug 07 00:10:10 2017
    Next Update: Tue Aug 07 00:10:09 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Mon Aug 07 00:10:10 2017
    CRL Extensions:
chains.sh: #13300: OCSPD: Revoking certificate with SN 2 issued by OCSPCA1  - PASSED
chains.sh: Revoking certificate with SN 4 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170807001011Z
addcert 4 20170807001011Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Mon Aug 07 00:10:11 2017
    Next Update: Tue Aug 07 00:10:09 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Mon Aug 07 00:10:10 2017
    Entry 2 (0x2):
        Serial Number: 4 (0x4)
        Revocation Date: Mon Aug 07 00:10:11 2017
    CRL Extensions:
chains.sh: #13301: OCSPD: Revoking certificate with SN 4 issued by OCSPCA1  - PASSED
chains.sh: Create CRL for OCSPCA2DB
crlutil -G -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170807001012Z
nextupdate=20180807001012Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Mon Aug 07 00:10:12 2017
    Next Update: Tue Aug 07 00:10:12 2018
    CRL Extensions:
chains.sh: #13302: OCSPD: Create CRL for OCSPCA2DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170807001013Z
addcert 2 20170807001013Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Mon Aug 07 00:10:13 2017
    Next Update: Tue Aug 07 00:10:12 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Mon Aug 07 00:10:13 2017
    CRL Extensions:
chains.sh: #13303: OCSPD: Revoking certificate with SN 2 issued by OCSPCA2  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170807001014Z
addcert 3 20170807001014Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Mon Aug 07 00:10:14 2017
    Next Update: Tue Aug 07 00:10:12 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Mon Aug 07 00:10:13 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Mon Aug 07 00:10:14 2017
    CRL Extensions:
chains.sh: #13304: OCSPD: Revoking certificate with SN 3 issued by OCSPCA2  - PASSED
chains.sh: Create CRL for OCSPCA3DB
crlutil -G -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170807001014Z
nextupdate=20180807001014Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Mon Aug 07 00:10:14 2017
    Next Update: Tue Aug 07 00:10:14 2018
    CRL Extensions:
chains.sh: #13305: OCSPD: Create CRL for OCSPCA3DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170807001015Z
addcert 2 20170807001015Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Mon Aug 07 00:10:15 2017
    Next Update: Tue Aug 07 00:10:14 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Mon Aug 07 00:10:15 2017
    CRL Extensions:
chains.sh: #13306: OCSPD: Revoking certificate with SN 2 issued by OCSPCA3  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170807001016Z
addcert 3 20170807001016Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Mon Aug 07 00:10:16 2017
    Next Update: Tue Aug 07 00:10:14 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Mon Aug 07 00:10:15 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Mon Aug 07 00:10:16 2017
    CRL Extensions:
chains.sh: #13307: OCSPD: Revoking certificate with SN 3 issued by OCSPCA3  - PASSED
chains.sh: Creating DB ServerDB
certutil -N -d ServerDB -f ServerDB/dbpasswd
chains.sh: #13308: OCSPD: Creating DB ServerDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ServerDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.der
chains.sh: #13309: OCSPD: Importing certificate OCSPRoot.der to ServerDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ServerDB database
crlutil -I -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.crl
chains.sh: #13310: OCSPD: Importing CRL OCSPRoot.crl to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPRoot.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPRoot.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #13311: OCSPD: Importing p12 key OCSPRoot.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA1.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA1.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #13312: OCSPD: Importing p12 key OCSPCA1.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA2.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA2.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #13313: OCSPD: Importing p12 key OCSPCA2.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA3.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA3.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #13314: OCSPD: Importing p12 key OCSPCA3.p12 to ServerDB database  - PASSED
chains.sh: Creating DB ClientDB
certutil -N -d ClientDB -f ClientDB/dbpasswd
chains.sh: #13315: OCSPD: Creating DB ClientDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ClientDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.der
chains.sh: #13316: OCSPD: Importing certificate OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ClientDB database
crlutil -I -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.crl
chains.sh: #13317: OCSPD: Importing CRL OCSPRoot.crl to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA1OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA1OCSPRoot.der
chains.sh: #13318: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA2OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA2OCSPRoot.der
chains.sh: #13319: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA3OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA3OCSPRoot.der
chains.sh: #13320: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE11OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE11OCSPCA1.der
chains.sh: #13321: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE12OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE12OCSPCA1.der
chains.sh: #13322: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE13OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE13OCSPCA1.der
chains.sh: #13323: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE14OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE14OCSPCA1.der
chains.sh: #13324: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE15OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE15OCSPCA1.der
chains.sh: #13325: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE21OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE21OCSPCA2.der
chains.sh: #13326: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE22OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE22OCSPCA2.der
chains.sh: #13327: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE23OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE23OCSPCA2.der
chains.sh: #13328: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE31OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE31OCSPCA3.der
chains.sh: #13329: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE32OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE32OCSPCA3.der
chains.sh: #13330: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE33OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE33OCSPCA3.der
chains.sh: #13331: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database  - PASSED
httpserv starting at Mon Aug  7 00:10:21 UTC 2017
httpserv -D -p 9019  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA3.crl \
         -O get -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/aiahttp/http_pid.8843  &
trying to connect to httpserv at Mon Aug  7 00:10:21 UTC 2017
tstclnt -p 9019 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9019 (address=::1)
tstclnt: exiting with return code 0
kill -0 20423 >/dev/null 2>/dev/null
httpserv with PID 20423 found at Mon Aug  7 00:10:21 UTC 2017
httpserv with PID 20423 started at Mon Aug  7 00:10:21 UTC 2017
tstclnt -h localhost.localdomain -p 9019 -q -t 20
chains.sh: #13332: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000952 (0x3019db78)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Mon Aug 07 00:09:52 2017
            Not After : Sun Aug 07 00:09:52 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    97:d3:df:25:9b:f7:d7:b1:f0:ca:36:69:1f:16:87:e1:
                    1b:21:fa:17:08:6d:a1:62:b0:18:58:db:76:90:66:c8:
                    bd:68:66:ca:28:1e:ac:2f:08:3d:c2:a1:72:10:19:49:
                    fc:62:4b:e2:08:82:e1:29:68:7d:cc:03:ec:79:3b:7b:
                    4b:dd:8c:93:fb:fd:83:0c:fb:1a:7d:36:ee:23:c8:f1:
                    41:ab:e9:ca:1d:18:aa:a9:76:37:66:d3:d2:34:d9:76:
                    8c:3d:7d:91:f6:56:29:1c:d3:00:55:23:ec:c0:6e:02:
                    f4:cc:35:7f:bd:82:8a:15:23:60:d7:be:e8:41:8a:d8:
                    ac:22:5e:f0:1f:f2:0b:7b:f0:02:35:11:99:4e:76:50:
                    da:16:c6:2c:44:03:a3:20:6c:d2:61:93:4d:e1:0a:fc:
                    49:2b:31:ac:4e:65:69:a1:44:a0:36:20:cf:7b:00:de:
                    4c:aa:9a:e2:33:09:cf:cd:74:cc:67:8d:35:7d:0d:ed:
                    35:56:06:25:1f:42:aa:23:e4:58:d2:0e:18:35:69:66:
                    d8:ae:9b:07:02:8d:6c:cc:39:f9:22:f9:a1:c2:26:db:
                    29:f8:82:71:e0:bc:57:c1:6c:24:63:e3:85:0c:41:c7:
                    b7:0a:2d:db:16:54:04:50:1b:03:3f:4d:b3:8b:82:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:5f:14:21:9a:5c:6a:4d:e6:9a:9f:4b:69:c1:f9:b7:
        b7:e3:e9:e4:63:f6:45:e9:35:e5:40:ae:69:8d:ae:51:
        f3:44:df:57:af:62:2e:ea:f9:b6:9b:ac:8b:0b:25:48:
        a1:92:7c:57:c8:81:94:42:33:d5:dc:a0:89:69:0a:54:
        5a:b7:d3:1b:05:5b:41:64:41:08:62:8a:2f:bb:4e:34:
        b1:37:d0:c7:11:c2:79:ea:3a:1d:6d:a5:d1:4e:5e:1e:
        7f:3d:b1:c5:7e:c9:c2:e1:2f:1a:bd:af:8d:79:42:22:
        1f:f7:2e:80:4d:08:b7:45:70:99:4a:38:5c:59:ae:48:
        51:fb:d9:84:82:b3:57:0c:50:1c:14:f0:19:05:a2:77:
        d9:75:6c:2c:09:b4:35:38:a4:ed:b5:f2:a4:1c:52:c3:
        5d:3b:75:9a:d8:22:de:ee:eb:4a:f1:cc:2d:3a:39:a7:
        b8:22:20:88:02:13:ae:19:4f:70:07:73:8c:3c:a3:d3:
        29:d4:a0:3a:f5:a7:81:7c:3b:1b:b2:e2:09:47:01:95:
        63:46:3c:60:b2:a0:d7:76:50:b1:df:93:4b:f5:13:aa:
        e2:b0:df:8f:6e:fc:68:53:96:e4:83:38:a8:97:33:7a:
        00:f0:2c:7e:e2:70:80:d2:b4:6f:66:1f:5e:9f:91:1a
    Fingerprint (SHA-256):
        4F:39:1D:C6:D6:B3:2E:3B:E8:D0:F9:56:5D:71:10:E2:BA:79:B3:9D:9F:D1:7D:33:97:FA:56:8B:39:15:66:85
    Fingerprint (SHA1):
        1D:39:5F:3E:57:8A:13:07:02:C2:62:EF:EA:68:1C:3F:45:A0:CE:B9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13333: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #13334: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #13335: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 20423 at Mon Aug  7 00:10:21 UTC 2017
kill -USR1 20423
httpserv: normal termination
httpserv -b -p 9019 2>/dev/null;
httpserv with PID 20423 killed at Mon Aug  7 00:10:21 UTC 2017
httpserv starting at Mon Aug  7 00:10:21 UTC 2017
httpserv -D -p 9019  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA3.crl \
         -O post -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/aiahttp/http_pid.8843  &
trying to connect to httpserv at Mon Aug  7 00:10:21 UTC 2017
tstclnt -p 9019 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9019 (address=::1)
tstclnt: exiting with return code 0
kill -0 20594 >/dev/null 2>/dev/null
httpserv with PID 20594 found at Mon Aug  7 00:10:21 UTC 2017
httpserv with PID 20594 started at Mon Aug  7 00:10:21 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #13336: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. OCSPEE12OCSPCA1 :
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #13337: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #13338: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
tstclnt -h localhost.localdomain -p 9019 -q -t 20
chains.sh: #13339: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000952 (0x3019db78)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Mon Aug 07 00:09:52 2017
            Not After : Sun Aug 07 00:09:52 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    97:d3:df:25:9b:f7:d7:b1:f0:ca:36:69:1f:16:87:e1:
                    1b:21:fa:17:08:6d:a1:62:b0:18:58:db:76:90:66:c8:
                    bd:68:66:ca:28:1e:ac:2f:08:3d:c2:a1:72:10:19:49:
                    fc:62:4b:e2:08:82:e1:29:68:7d:cc:03:ec:79:3b:7b:
                    4b:dd:8c:93:fb:fd:83:0c:fb:1a:7d:36:ee:23:c8:f1:
                    41:ab:e9:ca:1d:18:aa:a9:76:37:66:d3:d2:34:d9:76:
                    8c:3d:7d:91:f6:56:29:1c:d3:00:55:23:ec:c0:6e:02:
                    f4:cc:35:7f:bd:82:8a:15:23:60:d7:be:e8:41:8a:d8:
                    ac:22:5e:f0:1f:f2:0b:7b:f0:02:35:11:99:4e:76:50:
                    da:16:c6:2c:44:03:a3:20:6c:d2:61:93:4d:e1:0a:fc:
                    49:2b:31:ac:4e:65:69:a1:44:a0:36:20:cf:7b:00:de:
                    4c:aa:9a:e2:33:09:cf:cd:74:cc:67:8d:35:7d:0d:ed:
                    35:56:06:25:1f:42:aa:23:e4:58:d2:0e:18:35:69:66:
                    d8:ae:9b:07:02:8d:6c:cc:39:f9:22:f9:a1:c2:26:db:
                    29:f8:82:71:e0:bc:57:c1:6c:24:63:e3:85:0c:41:c7:
                    b7:0a:2d:db:16:54:04:50:1b:03:3f:4d:b3:8b:82:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:5f:14:21:9a:5c:6a:4d:e6:9a:9f:4b:69:c1:f9:b7:
        b7:e3:e9:e4:63:f6:45:e9:35:e5:40:ae:69:8d:ae:51:
        f3:44:df:57:af:62:2e:ea:f9:b6:9b:ac:8b:0b:25:48:
        a1:92:7c:57:c8:81:94:42:33:d5:dc:a0:89:69:0a:54:
        5a:b7:d3:1b:05:5b:41:64:41:08:62:8a:2f:bb:4e:34:
        b1:37:d0:c7:11:c2:79:ea:3a:1d:6d:a5:d1:4e:5e:1e:
        7f:3d:b1:c5:7e:c9:c2:e1:2f:1a:bd:af:8d:79:42:22:
        1f:f7:2e:80:4d:08:b7:45:70:99:4a:38:5c:59:ae:48:
        51:fb:d9:84:82:b3:57:0c:50:1c:14:f0:19:05:a2:77:
        d9:75:6c:2c:09:b4:35:38:a4:ed:b5:f2:a4:1c:52:c3:
        5d:3b:75:9a:d8:22:de:ee:eb:4a:f1:cc:2d:3a:39:a7:
        b8:22:20:88:02:13:ae:19:4f:70:07:73:8c:3c:a3:d3:
        29:d4:a0:3a:f5:a7:81:7c:3b:1b:b2:e2:09:47:01:95:
        63:46:3c:60:b2:a0:d7:76:50:b1:df:93:4b:f5:13:aa:
        e2:b0:df:8f:6e:fc:68:53:96:e4:83:38:a8:97:33:7a:
        00:f0:2c:7e:e2:70:80:d2:b4:6f:66:1f:5e:9f:91:1a
    Fingerprint (SHA-256):
        4F:39:1D:C6:D6:B3:2E:3B:E8:D0:F9:56:5D:71:10:E2:BA:79:B3:9D:9F:D1:7D:33:97:FA:56:8B:39:15:66:85
    Fingerprint (SHA1):
        1D:39:5F:3E:57:8A:13:07:02:C2:62:EF:EA:68:1C:3F:45:A0:CE:B9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13340: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #13341: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #13342: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 20594 at Mon Aug  7 00:10:22 UTC 2017
kill -USR1 20594
httpserv: normal termination
httpserv -b -p 9019 2>/dev/null;
httpserv with PID 20594 killed at Mon Aug  7 00:10:22 UTC 2017
httpserv starting at Mon Aug  7 00:10:22 UTC 2017
httpserv -D -p 9019  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA3.crl \
         -O random -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/aiahttp/http_pid.8843  &
trying to connect to httpserv at Mon Aug  7 00:10:22 UTC 2017
tstclnt -p 9019 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9019 (address=::1)
tstclnt: exiting with return code 0
kill -0 20841 >/dev/null 2>/dev/null
httpserv with PID 20841 found at Mon Aug  7 00:10:22 UTC 2017
httpserv with PID 20841 started at Mon Aug  7 00:10:22 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #13343: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #13344: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807000953 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13345: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #13346: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #13347: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807000954 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13348: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #13349: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #13350: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13351: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 807000955 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13352: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13353: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 807000956 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13354: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13355: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #13356: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #13357: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13358: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 807000957   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13359: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13360: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #13361: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #13362: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #13363: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000954 (0x3019db7a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:23 2017
            Not After : Sun Aug 07 00:10:23 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:e1:f8:2e:56:63:6d:82:2b:ae:95:55:bb:44:21:c6:
                    36:9f:f8:22:03:52:8e:d0:4a:8b:30:af:fb:dd:4e:1a:
                    ac:ff:78:a2:66:e6:86:b8:1f:4c:df:e4:b6:6f:2a:ef:
                    eb:e1:c4:6a:90:6b:b4:c9:e2:0c:26:56:32:8a:3b:83:
                    01:c0:88:03:74:50:c8:74:86:b4:ab:37:78:a7:45:25:
                    e4:6a:5b:c8:0b:06:5c:ce:73:66:c0:c8:b9:0d:b8:af:
                    38:19:73:d0:4c:8d:13:01:6d:99:f8:a0:1b:24:14:59:
                    8d:f6:b3:39:da:18:27:7f:1d:b2:14:11:fe:d2:0d:a9:
                    49:fe:e2:42:54:cd:26:fb:f7:ee:b4:84:f0:44:24:19:
                    be:fa:09:d8:ec:0d:3e:15:37:11:15:20:54:cd:7a:a4:
                    7d:4b:a0:15:52:c4:f4:93:8b:95:8b:9a:85:69:bf:1e:
                    7d:16:9b:ec:49:1b:01:ab:f8:96:72:3d:a3:9c:4e:fa:
                    4b:8e:7b:f2:0f:56:34:b6:9d:31:9f:e0:a2:d0:65:79:
                    dc:44:94:fb:be:5b:fd:ec:8a:59:71:0f:95:a1:68:0c:
                    28:d9:c0:69:5f:52:e6:1e:5f:aa:d2:9e:80:97:6d:5b:
                    3d:2f:a2:59:c4:99:72:83:8f:70:55:e4:d0:49:8c:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        76:c2:03:49:e2:fc:c5:ae:44:d0:17:22:23:77:e0:b3:
        cb:b7:ce:c5:df:7d:0c:1a:f6:54:13:cf:f3:43:15:31:
        ee:c9:7c:7e:8e:2c:e6:01:05:15:94:5e:56:3c:e4:3e:
        08:fa:4c:24:2e:31:0a:cb:f2:52:5d:57:ac:8d:2b:31:
        15:66:57:d5:4a:b1:0d:07:3b:92:ba:33:b2:25:6c:65:
        d4:85:9c:a3:b5:cd:9c:16:65:52:be:bb:da:34:dd:c5:
        65:a3:be:6d:09:07:7f:98:45:1e:4b:47:4b:b6:c6:1c:
        29:dc:6b:5f:70:9c:c4:a4:bf:07:be:3b:8b:6d:64:4b:
        35:14:e9:4c:d2:58:ca:e1:60:4d:c0:7e:d8:ff:b8:58:
        21:7e:09:b8:e3:45:a5:d9:33:52:8b:6f:b2:8a:39:bf:
        b8:03:60:21:1a:42:4b:c2:a9:e3:2e:cb:95:81:9a:b4:
        ac:a4:c9:15:72:b8:67:be:cf:62:0c:17:b7:be:5a:a2:
        01:b4:0b:98:38:c3:51:e9:77:e2:ca:e8:77:82:d3:fa:
        06:0e:63:5d:d4:02:eb:d9:35:a3:47:d2:80:f3:17:a4:
        df:40:d2:dc:eb:64:b1:5f:aa:c6:0b:6b:ed:47:6b:e1:
        d8:7b:f5:f9:52:07:41:f5:01:6c:50:6a:65:ef:43:46
    Fingerprint (SHA-256):
        75:1A:84:C0:23:DC:24:FA:48:34:39:D3:B8:00:2B:33:E3:79:B4:1F:EB:49:F7:FB:B1:93:06:D5:C8:6B:18:75
    Fingerprint (SHA1):
        58:FF:1B:90:08:A4:8B:28:26:8E:AE:69:C9:D2:DC:DF:48:2B:48:4D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13364: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000953 (0x3019db79)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:22 2017
            Not After : Sun Aug 07 00:10:22 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:57:88:aa:bd:91:3a:94:3a:7b:38:17:d1:df:56:4c:
                    cc:42:52:e7:bc:b2:bc:fc:93:c5:36:31:fd:ff:cb:d4:
                    68:ae:fa:ca:0e:62:5f:d0:16:1f:a5:ad:4e:9b:46:a9:
                    d3:df:f4:c5:00:cf:2d:e2:19:d2:8e:38:d1:04:9b:f5:
                    3e:e1:7f:fe:f7:7f:87:bc:8f:6b:b4:f9:64:22:90:8c:
                    6d:ae:c9:eb:41:ee:32:7b:6a:2d:f5:97:f2:92:ff:94:
                    c3:2c:d6:e7:89:5b:5e:0f:cb:f7:de:ee:f3:ec:b1:cf:
                    c2:65:46:45:37:e5:dd:58:a3:3a:c1:e7:cf:f8:d1:19:
                    1f:5a:40:60:a0:83:d5:71:18:14:70:f4:90:e9:67:d6:
                    a2:23:6b:82:ea:08:0c:45:ab:03:cc:d7:36:4d:27:5f:
                    ba:57:b3:c3:09:db:dc:30:85:05:c2:e4:10:80:67:31:
                    a9:ba:74:0d:35:aa:c7:b1:f7:0b:93:ae:d9:e4:85:e1:
                    b1:95:31:c1:80:88:09:0c:4d:c5:20:cb:ec:d8:ac:fa:
                    4e:c8:d2:f9:64:fb:98:97:f2:31:a7:08:e0:ae:98:67:
                    af:1b:75:0b:7b:f9:a2:9d:ca:05:db:54:3f:3f:59:7d:
                    67:8e:1c:35:18:db:ac:d8:36:f7:e7:f0:a9:de:39:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        10:58:3a:6a:32:cc:c7:cc:b7:b8:a5:f8:9e:36:db:ab:
        64:87:4a:e4:e9:d1:16:16:44:1c:b5:93:83:94:a1:17:
        c9:cf:91:80:4f:80:9c:ad:13:61:f2:28:57:34:32:20:
        cb:18:65:e1:cc:b5:d0:86:96:b0:55:0f:bd:ec:0e:93:
        61:93:2c:7b:b9:04:2c:f0:6b:e2:29:7f:1f:0d:74:b0:
        98:79:fb:7b:24:d9:93:7d:67:14:98:67:67:e0:32:db:
        5e:38:18:03:4f:2e:25:9e:94:fc:99:e0:fa:68:a6:26:
        48:42:80:9f:c4:1d:f9:81:5a:70:ec:16:4c:88:df:fc:
        bf:44:ef:53:a9:eb:ca:36:87:9a:4a:2e:03:b6:5b:3b:
        77:3a:7a:58:e9:7d:49:43:ed:2b:76:99:0f:85:d7:bc:
        7c:2e:ce:8f:64:e9:de:da:1f:a0:57:b6:50:21:61:74:
        01:4e:ef:bf:fb:b4:25:40:40:25:e5:81:ee:2e:ff:93:
        9c:23:ce:d8:e4:46:11:10:41:e0:31:ab:f1:ff:ed:49:
        d1:91:1c:1c:ee:d8:81:08:e1:d1:10:62:49:5f:aa:bd:
        8c:6c:c3:60:67:3f:ce:73:b0:07:c6:df:ce:37:94:b4:
        22:1a:46:57:47:16:52:3b:55:24:4b:79:d8:23:f2:69
    Fingerprint (SHA-256):
        5A:24:1A:02:E9:D2:46:38:11:AE:A9:CA:3A:84:55:31:61:39:4E:D3:E7:AE:5B:8E:7B:13:12:BF:91:42:52:13
    Fingerprint (SHA1):
        3F:9A:58:9A:58:E8:CA:60:71:F9:D2:66:AF:14:4A:C1:B8:9F:BB:2F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13365: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #13366: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #13367: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #13368: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000953 (0x3019db79)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:22 2017
            Not After : Sun Aug 07 00:10:22 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:57:88:aa:bd:91:3a:94:3a:7b:38:17:d1:df:56:4c:
                    cc:42:52:e7:bc:b2:bc:fc:93:c5:36:31:fd:ff:cb:d4:
                    68:ae:fa:ca:0e:62:5f:d0:16:1f:a5:ad:4e:9b:46:a9:
                    d3:df:f4:c5:00:cf:2d:e2:19:d2:8e:38:d1:04:9b:f5:
                    3e:e1:7f:fe:f7:7f:87:bc:8f:6b:b4:f9:64:22:90:8c:
                    6d:ae:c9:eb:41:ee:32:7b:6a:2d:f5:97:f2:92:ff:94:
                    c3:2c:d6:e7:89:5b:5e:0f:cb:f7:de:ee:f3:ec:b1:cf:
                    c2:65:46:45:37:e5:dd:58:a3:3a:c1:e7:cf:f8:d1:19:
                    1f:5a:40:60:a0:83:d5:71:18:14:70:f4:90:e9:67:d6:
                    a2:23:6b:82:ea:08:0c:45:ab:03:cc:d7:36:4d:27:5f:
                    ba:57:b3:c3:09:db:dc:30:85:05:c2:e4:10:80:67:31:
                    a9:ba:74:0d:35:aa:c7:b1:f7:0b:93:ae:d9:e4:85:e1:
                    b1:95:31:c1:80:88:09:0c:4d:c5:20:cb:ec:d8:ac:fa:
                    4e:c8:d2:f9:64:fb:98:97:f2:31:a7:08:e0:ae:98:67:
                    af:1b:75:0b:7b:f9:a2:9d:ca:05:db:54:3f:3f:59:7d:
                    67:8e:1c:35:18:db:ac:d8:36:f7:e7:f0:a9:de:39:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        10:58:3a:6a:32:cc:c7:cc:b7:b8:a5:f8:9e:36:db:ab:
        64:87:4a:e4:e9:d1:16:16:44:1c:b5:93:83:94:a1:17:
        c9:cf:91:80:4f:80:9c:ad:13:61:f2:28:57:34:32:20:
        cb:18:65:e1:cc:b5:d0:86:96:b0:55:0f:bd:ec:0e:93:
        61:93:2c:7b:b9:04:2c:f0:6b:e2:29:7f:1f:0d:74:b0:
        98:79:fb:7b:24:d9:93:7d:67:14:98:67:67:e0:32:db:
        5e:38:18:03:4f:2e:25:9e:94:fc:99:e0:fa:68:a6:26:
        48:42:80:9f:c4:1d:f9:81:5a:70:ec:16:4c:88:df:fc:
        bf:44:ef:53:a9:eb:ca:36:87:9a:4a:2e:03:b6:5b:3b:
        77:3a:7a:58:e9:7d:49:43:ed:2b:76:99:0f:85:d7:bc:
        7c:2e:ce:8f:64:e9:de:da:1f:a0:57:b6:50:21:61:74:
        01:4e:ef:bf:fb:b4:25:40:40:25:e5:81:ee:2e:ff:93:
        9c:23:ce:d8:e4:46:11:10:41:e0:31:ab:f1:ff:ed:49:
        d1:91:1c:1c:ee:d8:81:08:e1:d1:10:62:49:5f:aa:bd:
        8c:6c:c3:60:67:3f:ce:73:b0:07:c6:df:ce:37:94:b4:
        22:1a:46:57:47:16:52:3b:55:24:4b:79:d8:23:f2:69
    Fingerprint (SHA-256):
        5A:24:1A:02:E9:D2:46:38:11:AE:A9:CA:3A:84:55:31:61:39:4E:D3:E7:AE:5B:8E:7B:13:12:BF:91:42:52:13
    Fingerprint (SHA1):
        3F:9A:58:9A:58:E8:CA:60:71:F9:D2:66:AF:14:4A:C1:B8:9F:BB:2F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13369: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000954 (0x3019db7a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:23 2017
            Not After : Sun Aug 07 00:10:23 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:e1:f8:2e:56:63:6d:82:2b:ae:95:55:bb:44:21:c6:
                    36:9f:f8:22:03:52:8e:d0:4a:8b:30:af:fb:dd:4e:1a:
                    ac:ff:78:a2:66:e6:86:b8:1f:4c:df:e4:b6:6f:2a:ef:
                    eb:e1:c4:6a:90:6b:b4:c9:e2:0c:26:56:32:8a:3b:83:
                    01:c0:88:03:74:50:c8:74:86:b4:ab:37:78:a7:45:25:
                    e4:6a:5b:c8:0b:06:5c:ce:73:66:c0:c8:b9:0d:b8:af:
                    38:19:73:d0:4c:8d:13:01:6d:99:f8:a0:1b:24:14:59:
                    8d:f6:b3:39:da:18:27:7f:1d:b2:14:11:fe:d2:0d:a9:
                    49:fe:e2:42:54:cd:26:fb:f7:ee:b4:84:f0:44:24:19:
                    be:fa:09:d8:ec:0d:3e:15:37:11:15:20:54:cd:7a:a4:
                    7d:4b:a0:15:52:c4:f4:93:8b:95:8b:9a:85:69:bf:1e:
                    7d:16:9b:ec:49:1b:01:ab:f8:96:72:3d:a3:9c:4e:fa:
                    4b:8e:7b:f2:0f:56:34:b6:9d:31:9f:e0:a2:d0:65:79:
                    dc:44:94:fb:be:5b:fd:ec:8a:59:71:0f:95:a1:68:0c:
                    28:d9:c0:69:5f:52:e6:1e:5f:aa:d2:9e:80:97:6d:5b:
                    3d:2f:a2:59:c4:99:72:83:8f:70:55:e4:d0:49:8c:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        76:c2:03:49:e2:fc:c5:ae:44:d0:17:22:23:77:e0:b3:
        cb:b7:ce:c5:df:7d:0c:1a:f6:54:13:cf:f3:43:15:31:
        ee:c9:7c:7e:8e:2c:e6:01:05:15:94:5e:56:3c:e4:3e:
        08:fa:4c:24:2e:31:0a:cb:f2:52:5d:57:ac:8d:2b:31:
        15:66:57:d5:4a:b1:0d:07:3b:92:ba:33:b2:25:6c:65:
        d4:85:9c:a3:b5:cd:9c:16:65:52:be:bb:da:34:dd:c5:
        65:a3:be:6d:09:07:7f:98:45:1e:4b:47:4b:b6:c6:1c:
        29:dc:6b:5f:70:9c:c4:a4:bf:07:be:3b:8b:6d:64:4b:
        35:14:e9:4c:d2:58:ca:e1:60:4d:c0:7e:d8:ff:b8:58:
        21:7e:09:b8:e3:45:a5:d9:33:52:8b:6f:b2:8a:39:bf:
        b8:03:60:21:1a:42:4b:c2:a9:e3:2e:cb:95:81:9a:b4:
        ac:a4:c9:15:72:b8:67:be:cf:62:0c:17:b7:be:5a:a2:
        01:b4:0b:98:38:c3:51:e9:77:e2:ca:e8:77:82:d3:fa:
        06:0e:63:5d:d4:02:eb:d9:35:a3:47:d2:80:f3:17:a4:
        df:40:d2:dc:eb:64:b1:5f:aa:c6:0b:6b:ed:47:6b:e1:
        d8:7b:f5:f9:52:07:41:f5:01:6c:50:6a:65:ef:43:46
    Fingerprint (SHA-256):
        75:1A:84:C0:23:DC:24:FA:48:34:39:D3:B8:00:2B:33:E3:79:B4:1F:EB:49:F7:FB:B1:93:06:D5:C8:6B:18:75
    Fingerprint (SHA1):
        58:FF:1B:90:08:A4:8B:28:26:8E:AE:69:C9:D2:DC:DF:48:2B:48:4D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13370: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #13371: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #13372: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #13373: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #13374: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #13375: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000954 (0x3019db7a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:23 2017
            Not After : Sun Aug 07 00:10:23 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:e1:f8:2e:56:63:6d:82:2b:ae:95:55:bb:44:21:c6:
                    36:9f:f8:22:03:52:8e:d0:4a:8b:30:af:fb:dd:4e:1a:
                    ac:ff:78:a2:66:e6:86:b8:1f:4c:df:e4:b6:6f:2a:ef:
                    eb:e1:c4:6a:90:6b:b4:c9:e2:0c:26:56:32:8a:3b:83:
                    01:c0:88:03:74:50:c8:74:86:b4:ab:37:78:a7:45:25:
                    e4:6a:5b:c8:0b:06:5c:ce:73:66:c0:c8:b9:0d:b8:af:
                    38:19:73:d0:4c:8d:13:01:6d:99:f8:a0:1b:24:14:59:
                    8d:f6:b3:39:da:18:27:7f:1d:b2:14:11:fe:d2:0d:a9:
                    49:fe:e2:42:54:cd:26:fb:f7:ee:b4:84:f0:44:24:19:
                    be:fa:09:d8:ec:0d:3e:15:37:11:15:20:54:cd:7a:a4:
                    7d:4b:a0:15:52:c4:f4:93:8b:95:8b:9a:85:69:bf:1e:
                    7d:16:9b:ec:49:1b:01:ab:f8:96:72:3d:a3:9c:4e:fa:
                    4b:8e:7b:f2:0f:56:34:b6:9d:31:9f:e0:a2:d0:65:79:
                    dc:44:94:fb:be:5b:fd:ec:8a:59:71:0f:95:a1:68:0c:
                    28:d9:c0:69:5f:52:e6:1e:5f:aa:d2:9e:80:97:6d:5b:
                    3d:2f:a2:59:c4:99:72:83:8f:70:55:e4:d0:49:8c:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        76:c2:03:49:e2:fc:c5:ae:44:d0:17:22:23:77:e0:b3:
        cb:b7:ce:c5:df:7d:0c:1a:f6:54:13:cf:f3:43:15:31:
        ee:c9:7c:7e:8e:2c:e6:01:05:15:94:5e:56:3c:e4:3e:
        08:fa:4c:24:2e:31:0a:cb:f2:52:5d:57:ac:8d:2b:31:
        15:66:57:d5:4a:b1:0d:07:3b:92:ba:33:b2:25:6c:65:
        d4:85:9c:a3:b5:cd:9c:16:65:52:be:bb:da:34:dd:c5:
        65:a3:be:6d:09:07:7f:98:45:1e:4b:47:4b:b6:c6:1c:
        29:dc:6b:5f:70:9c:c4:a4:bf:07:be:3b:8b:6d:64:4b:
        35:14:e9:4c:d2:58:ca:e1:60:4d:c0:7e:d8:ff:b8:58:
        21:7e:09:b8:e3:45:a5:d9:33:52:8b:6f:b2:8a:39:bf:
        b8:03:60:21:1a:42:4b:c2:a9:e3:2e:cb:95:81:9a:b4:
        ac:a4:c9:15:72:b8:67:be:cf:62:0c:17:b7:be:5a:a2:
        01:b4:0b:98:38:c3:51:e9:77:e2:ca:e8:77:82:d3:fa:
        06:0e:63:5d:d4:02:eb:d9:35:a3:47:d2:80:f3:17:a4:
        df:40:d2:dc:eb:64:b1:5f:aa:c6:0b:6b:ed:47:6b:e1:
        d8:7b:f5:f9:52:07:41:f5:01:6c:50:6a:65:ef:43:46
    Fingerprint (SHA-256):
        75:1A:84:C0:23:DC:24:FA:48:34:39:D3:B8:00:2B:33:E3:79:B4:1F:EB:49:F7:FB:B1:93:06:D5:C8:6B:18:75
    Fingerprint (SHA1):
        58:FF:1B:90:08:A4:8B:28:26:8E:AE:69:C9:D2:DC:DF:48:2B:48:4D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13376: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000954 (0x3019db7a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:23 2017
            Not After : Sun Aug 07 00:10:23 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:e1:f8:2e:56:63:6d:82:2b:ae:95:55:bb:44:21:c6:
                    36:9f:f8:22:03:52:8e:d0:4a:8b:30:af:fb:dd:4e:1a:
                    ac:ff:78:a2:66:e6:86:b8:1f:4c:df:e4:b6:6f:2a:ef:
                    eb:e1:c4:6a:90:6b:b4:c9:e2:0c:26:56:32:8a:3b:83:
                    01:c0:88:03:74:50:c8:74:86:b4:ab:37:78:a7:45:25:
                    e4:6a:5b:c8:0b:06:5c:ce:73:66:c0:c8:b9:0d:b8:af:
                    38:19:73:d0:4c:8d:13:01:6d:99:f8:a0:1b:24:14:59:
                    8d:f6:b3:39:da:18:27:7f:1d:b2:14:11:fe:d2:0d:a9:
                    49:fe:e2:42:54:cd:26:fb:f7:ee:b4:84:f0:44:24:19:
                    be:fa:09:d8:ec:0d:3e:15:37:11:15:20:54:cd:7a:a4:
                    7d:4b:a0:15:52:c4:f4:93:8b:95:8b:9a:85:69:bf:1e:
                    7d:16:9b:ec:49:1b:01:ab:f8:96:72:3d:a3:9c:4e:fa:
                    4b:8e:7b:f2:0f:56:34:b6:9d:31:9f:e0:a2:d0:65:79:
                    dc:44:94:fb:be:5b:fd:ec:8a:59:71:0f:95:a1:68:0c:
                    28:d9:c0:69:5f:52:e6:1e:5f:aa:d2:9e:80:97:6d:5b:
                    3d:2f:a2:59:c4:99:72:83:8f:70:55:e4:d0:49:8c:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        76:c2:03:49:e2:fc:c5:ae:44:d0:17:22:23:77:e0:b3:
        cb:b7:ce:c5:df:7d:0c:1a:f6:54:13:cf:f3:43:15:31:
        ee:c9:7c:7e:8e:2c:e6:01:05:15:94:5e:56:3c:e4:3e:
        08:fa:4c:24:2e:31:0a:cb:f2:52:5d:57:ac:8d:2b:31:
        15:66:57:d5:4a:b1:0d:07:3b:92:ba:33:b2:25:6c:65:
        d4:85:9c:a3:b5:cd:9c:16:65:52:be:bb:da:34:dd:c5:
        65:a3:be:6d:09:07:7f:98:45:1e:4b:47:4b:b6:c6:1c:
        29:dc:6b:5f:70:9c:c4:a4:bf:07:be:3b:8b:6d:64:4b:
        35:14:e9:4c:d2:58:ca:e1:60:4d:c0:7e:d8:ff:b8:58:
        21:7e:09:b8:e3:45:a5:d9:33:52:8b:6f:b2:8a:39:bf:
        b8:03:60:21:1a:42:4b:c2:a9:e3:2e:cb:95:81:9a:b4:
        ac:a4:c9:15:72:b8:67:be:cf:62:0c:17:b7:be:5a:a2:
        01:b4:0b:98:38:c3:51:e9:77:e2:ca:e8:77:82:d3:fa:
        06:0e:63:5d:d4:02:eb:d9:35:a3:47:d2:80:f3:17:a4:
        df:40:d2:dc:eb:64:b1:5f:aa:c6:0b:6b:ed:47:6b:e1:
        d8:7b:f5:f9:52:07:41:f5:01:6c:50:6a:65:ef:43:46
    Fingerprint (SHA-256):
        75:1A:84:C0:23:DC:24:FA:48:34:39:D3:B8:00:2B:33:E3:79:B4:1F:EB:49:F7:FB:B1:93:06:D5:C8:6B:18:75
    Fingerprint (SHA1):
        58:FF:1B:90:08:A4:8B:28:26:8E:AE:69:C9:D2:DC:DF:48:2B:48:4D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13377: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #13378: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #13379: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #13380: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #13381: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #13382: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000953 (0x3019db79)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:22 2017
            Not After : Sun Aug 07 00:10:22 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:57:88:aa:bd:91:3a:94:3a:7b:38:17:d1:df:56:4c:
                    cc:42:52:e7:bc:b2:bc:fc:93:c5:36:31:fd:ff:cb:d4:
                    68:ae:fa:ca:0e:62:5f:d0:16:1f:a5:ad:4e:9b:46:a9:
                    d3:df:f4:c5:00:cf:2d:e2:19:d2:8e:38:d1:04:9b:f5:
                    3e:e1:7f:fe:f7:7f:87:bc:8f:6b:b4:f9:64:22:90:8c:
                    6d:ae:c9:eb:41:ee:32:7b:6a:2d:f5:97:f2:92:ff:94:
                    c3:2c:d6:e7:89:5b:5e:0f:cb:f7:de:ee:f3:ec:b1:cf:
                    c2:65:46:45:37:e5:dd:58:a3:3a:c1:e7:cf:f8:d1:19:
                    1f:5a:40:60:a0:83:d5:71:18:14:70:f4:90:e9:67:d6:
                    a2:23:6b:82:ea:08:0c:45:ab:03:cc:d7:36:4d:27:5f:
                    ba:57:b3:c3:09:db:dc:30:85:05:c2:e4:10:80:67:31:
                    a9:ba:74:0d:35:aa:c7:b1:f7:0b:93:ae:d9:e4:85:e1:
                    b1:95:31:c1:80:88:09:0c:4d:c5:20:cb:ec:d8:ac:fa:
                    4e:c8:d2:f9:64:fb:98:97:f2:31:a7:08:e0:ae:98:67:
                    af:1b:75:0b:7b:f9:a2:9d:ca:05:db:54:3f:3f:59:7d:
                    67:8e:1c:35:18:db:ac:d8:36:f7:e7:f0:a9:de:39:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        10:58:3a:6a:32:cc:c7:cc:b7:b8:a5:f8:9e:36:db:ab:
        64:87:4a:e4:e9:d1:16:16:44:1c:b5:93:83:94:a1:17:
        c9:cf:91:80:4f:80:9c:ad:13:61:f2:28:57:34:32:20:
        cb:18:65:e1:cc:b5:d0:86:96:b0:55:0f:bd:ec:0e:93:
        61:93:2c:7b:b9:04:2c:f0:6b:e2:29:7f:1f:0d:74:b0:
        98:79:fb:7b:24:d9:93:7d:67:14:98:67:67:e0:32:db:
        5e:38:18:03:4f:2e:25:9e:94:fc:99:e0:fa:68:a6:26:
        48:42:80:9f:c4:1d:f9:81:5a:70:ec:16:4c:88:df:fc:
        bf:44:ef:53:a9:eb:ca:36:87:9a:4a:2e:03:b6:5b:3b:
        77:3a:7a:58:e9:7d:49:43:ed:2b:76:99:0f:85:d7:bc:
        7c:2e:ce:8f:64:e9:de:da:1f:a0:57:b6:50:21:61:74:
        01:4e:ef:bf:fb:b4:25:40:40:25:e5:81:ee:2e:ff:93:
        9c:23:ce:d8:e4:46:11:10:41:e0:31:ab:f1:ff:ed:49:
        d1:91:1c:1c:ee:d8:81:08:e1:d1:10:62:49:5f:aa:bd:
        8c:6c:c3:60:67:3f:ce:73:b0:07:c6:df:ce:37:94:b4:
        22:1a:46:57:47:16:52:3b:55:24:4b:79:d8:23:f2:69
    Fingerprint (SHA-256):
        5A:24:1A:02:E9:D2:46:38:11:AE:A9:CA:3A:84:55:31:61:39:4E:D3:E7:AE:5B:8E:7B:13:12:BF:91:42:52:13
    Fingerprint (SHA1):
        3F:9A:58:9A:58:E8:CA:60:71:F9:D2:66:AF:14:4A:C1:B8:9F:BB:2F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13383: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000953 (0x3019db79)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:22 2017
            Not After : Sun Aug 07 00:10:22 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:57:88:aa:bd:91:3a:94:3a:7b:38:17:d1:df:56:4c:
                    cc:42:52:e7:bc:b2:bc:fc:93:c5:36:31:fd:ff:cb:d4:
                    68:ae:fa:ca:0e:62:5f:d0:16:1f:a5:ad:4e:9b:46:a9:
                    d3:df:f4:c5:00:cf:2d:e2:19:d2:8e:38:d1:04:9b:f5:
                    3e:e1:7f:fe:f7:7f:87:bc:8f:6b:b4:f9:64:22:90:8c:
                    6d:ae:c9:eb:41:ee:32:7b:6a:2d:f5:97:f2:92:ff:94:
                    c3:2c:d6:e7:89:5b:5e:0f:cb:f7:de:ee:f3:ec:b1:cf:
                    c2:65:46:45:37:e5:dd:58:a3:3a:c1:e7:cf:f8:d1:19:
                    1f:5a:40:60:a0:83:d5:71:18:14:70:f4:90:e9:67:d6:
                    a2:23:6b:82:ea:08:0c:45:ab:03:cc:d7:36:4d:27:5f:
                    ba:57:b3:c3:09:db:dc:30:85:05:c2:e4:10:80:67:31:
                    a9:ba:74:0d:35:aa:c7:b1:f7:0b:93:ae:d9:e4:85:e1:
                    b1:95:31:c1:80:88:09:0c:4d:c5:20:cb:ec:d8:ac:fa:
                    4e:c8:d2:f9:64:fb:98:97:f2:31:a7:08:e0:ae:98:67:
                    af:1b:75:0b:7b:f9:a2:9d:ca:05:db:54:3f:3f:59:7d:
                    67:8e:1c:35:18:db:ac:d8:36:f7:e7:f0:a9:de:39:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        10:58:3a:6a:32:cc:c7:cc:b7:b8:a5:f8:9e:36:db:ab:
        64:87:4a:e4:e9:d1:16:16:44:1c:b5:93:83:94:a1:17:
        c9:cf:91:80:4f:80:9c:ad:13:61:f2:28:57:34:32:20:
        cb:18:65:e1:cc:b5:d0:86:96:b0:55:0f:bd:ec:0e:93:
        61:93:2c:7b:b9:04:2c:f0:6b:e2:29:7f:1f:0d:74:b0:
        98:79:fb:7b:24:d9:93:7d:67:14:98:67:67:e0:32:db:
        5e:38:18:03:4f:2e:25:9e:94:fc:99:e0:fa:68:a6:26:
        48:42:80:9f:c4:1d:f9:81:5a:70:ec:16:4c:88:df:fc:
        bf:44:ef:53:a9:eb:ca:36:87:9a:4a:2e:03:b6:5b:3b:
        77:3a:7a:58:e9:7d:49:43:ed:2b:76:99:0f:85:d7:bc:
        7c:2e:ce:8f:64:e9:de:da:1f:a0:57:b6:50:21:61:74:
        01:4e:ef:bf:fb:b4:25:40:40:25:e5:81:ee:2e:ff:93:
        9c:23:ce:d8:e4:46:11:10:41:e0:31:ab:f1:ff:ed:49:
        d1:91:1c:1c:ee:d8:81:08:e1:d1:10:62:49:5f:aa:bd:
        8c:6c:c3:60:67:3f:ce:73:b0:07:c6:df:ce:37:94:b4:
        22:1a:46:57:47:16:52:3b:55:24:4b:79:d8:23:f2:69
    Fingerprint (SHA-256):
        5A:24:1A:02:E9:D2:46:38:11:AE:A9:CA:3A:84:55:31:61:39:4E:D3:E7:AE:5B:8E:7B:13:12:BF:91:42:52:13
    Fingerprint (SHA1):
        3F:9A:58:9A:58:E8:CA:60:71:F9:D2:66:AF:14:4A:C1:B8:9F:BB:2F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13384: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #13385: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807000958 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13386: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #13387: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #13388: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807000959 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13389: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #13390: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #13391: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807000960 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13392: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #13393: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #13394: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807000961 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13395: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #13396: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #13397: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807000962 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13398: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #13399: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #13400: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807000963 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13401: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #13402: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #13403: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807000964 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13404: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #13405: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #13406: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807000965 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13407: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #13408: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #13409: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807000966 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13410: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #13411: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #13412: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13413: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 807000967 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13414: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13415: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 807000968 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13416: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13417: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 807000969 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13418: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13419: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #13420: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #13421: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13422: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 807000970 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13423: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13424: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 807000971 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13425: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13426: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 807000972 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13427: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13428: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #13429: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #13430: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13431: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 807000973 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13432: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13433: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 807000974 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13434: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13435: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 807000975 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13436: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13437: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #13438: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #13439: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13440: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 807000976 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13441: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13442: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 807000977 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13443: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13444: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 807000978 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13445: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13446: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #13447: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13448: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13449: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 807000979   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13450: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13451: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #13452: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13453: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 807000980   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13454: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13455: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000958 (0x3019db7e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:28 2017
            Not After : Sun Aug 07 00:10:28 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:30:09:ae:f9:24:fa:3b:ef:f2:36:3b:d0:b6:f8:2b:
                    c4:ff:87:8c:1b:96:24:19:19:59:6a:94:83:9f:58:00:
                    8a:98:9e:03:79:de:4d:cc:d1:80:15:3b:1c:a4:05:91:
                    a9:b0:ee:2a:14:56:27:41:15:fb:63:e2:5e:84:10:0c:
                    5a:73:bf:be:12:d0:2c:3d:88:79:d9:c0:a0:cc:15:c8:
                    5d:1b:3b:c5:2b:ba:44:98:5b:07:5d:20:11:93:02:cd:
                    65:53:5d:bd:80:43:37:bd:56:10:03:a8:a4:d4:33:f2:
                    b4:52:61:80:2c:16:51:72:6d:e2:e1:df:a9:83:fe:4b:
                    97:43:91:ff:b5:65:f6:ac:4b:4d:ae:d4:9d:11:c8:ea:
                    41:df:68:b7:81:6b:f3:fa:21:67:e9:a7:35:3b:77:f4:
                    ea:3b:8f:13:1b:b3:ad:46:0b:9c:23:0c:17:af:71:bf:
                    a5:16:70:69:61:84:7b:1c:c2:a6:be:a6:5b:19:f1:3a:
                    a6:76:d3:71:1e:12:9b:44:39:93:6b:cf:06:75:56:9e:
                    d4:d5:da:50:92:30:0a:fb:d0:89:c7:a5:d1:5d:01:bc:
                    75:0c:55:ef:f9:6f:ab:03:50:34:50:7f:4e:6a:93:12:
                    9f:29:bc:b8:0a:f1:d3:07:5b:58:47:1e:86:19:b9:a5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        77:c1:4e:fa:fb:2b:ef:01:d9:17:f6:4e:f6:34:44:f7:
        67:d6:bc:c1:3f:28:b6:9f:f2:0f:c9:ed:1a:e4:d0:bf:
        b8:b2:b8:23:c0:13:b5:a3:c3:95:1f:68:dc:2f:a5:0d:
        4b:0e:6b:18:5a:3b:db:8f:c9:cf:f0:cb:e7:fe:6d:83:
        ea:06:77:23:b7:7e:6d:3c:df:93:fd:5d:2f:d5:90:5a:
        25:06:98:9f:57:af:84:c9:1d:b3:07:43:a0:8b:b9:ae:
        61:4d:a1:cb:22:58:df:74:de:88:5d:09:1b:62:85:26:
        fb:ce:e9:e3:f5:f6:81:ef:1d:98:4f:53:88:ab:2c:6e:
        f3:7e:e4:6b:36:42:cd:08:0b:f3:a0:aa:f6:d4:e2:d6:
        9e:0d:67:79:aa:51:8b:d8:cc:45:91:09:2c:34:74:58:
        af:31:7c:c0:b4:c9:8c:0e:df:f8:a8:a4:cd:a9:c6:0c:
        b4:d9:81:06:fa:17:26:b4:10:26:df:80:b8:8c:1c:db:
        3d:f3:43:78:e8:6b:90:ad:e0:d8:49:6b:b8:2c:6d:b6:
        41:65:0a:8f:20:7d:72:dd:b6:da:57:4e:79:05:03:59:
        ca:80:ed:07:37:33:6f:ca:b2:41:06:40:7b:21:2e:34:
        78:12:75:42:35:3c:3f:9a:bc:bc:e4:ce:d7:e2:43:20
    Fingerprint (SHA-256):
        05:93:3C:6E:E4:A7:3C:40:76:35:C3:9C:E4:58:BF:7E:AA:C8:CC:01:F3:BD:71:A0:87:AC:50:EA:23:49:44:F3
    Fingerprint (SHA1):
        94:FE:0D:1D:FB:19:02:97:07:64:86:CD:C5:C0:4E:60:3A:F9:45:DF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #13456: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000959 (0x3019db7f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:29 2017
            Not After : Sun Aug 07 00:10:29 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:58:71:3f:b7:c7:f2:b2:94:6c:65:8b:c7:87:3f:73:
                    e9:73:56:31:f8:f6:ec:10:73:7e:8f:d1:94:9e:50:70:
                    72:e6:7e:9f:ce:e8:6b:30:1e:5e:64:6a:dd:1c:dc:c0:
                    bd:0c:1c:41:7d:58:c4:40:39:d2:6e:c2:18:5a:65:ae:
                    e9:8b:57:77:6c:44:cc:6f:94:0c:08:1c:fb:cb:7f:db:
                    ee:46:ce:8d:88:0b:8e:4c:0c:35:11:c2:dd:57:25:d3:
                    74:44:ee:15:d5:92:81:d7:89:c9:ac:fb:59:c5:ba:14:
                    3a:c0:cb:2a:d0:59:bd:fc:f9:1f:91:3c:e7:2b:d5:2b:
                    e2:81:21:66:48:29:ae:11:c1:d9:5d:30:eb:91:51:bc:
                    ec:8b:5e:73:15:32:d1:50:f0:20:43:fb:ad:24:da:9a:
                    52:d1:c3:d0:af:36:06:ac:9a:9d:65:ef:92:11:de:e3:
                    7f:06:ca:a5:4d:b5:52:87:9b:c3:b8:dd:05:17:1b:80:
                    5f:b0:ee:33:ea:41:18:c6:f8:fa:5f:cf:e6:8b:5f:d0:
                    cf:de:10:81:ae:e8:69:80:03:42:6b:29:bb:df:d6:d3:
                    e3:a8:cf:31:be:d0:9c:19:35:82:ba:cd:46:c4:16:a2:
                    a2:54:b8:50:bd:eb:cc:65:71:16:24:d7:78:99:e2:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0e:cd:f3:d8:7f:5a:54:53:3a:f4:09:ce:fb:42:e3:e6:
        1c:2b:c9:9b:c0:4e:6f:c3:2a:d4:f6:a0:bf:91:e3:07:
        09:bd:bd:5a:39:aa:62:7c:6d:97:52:bb:5a:eb:63:24:
        54:79:79:fb:39:9b:b5:a1:d3:ba:ce:96:70:85:39:2f:
        dc:e5:01:75:3e:dd:e2:42:ea:55:97:82:38:8b:9f:f9:
        cb:e2:6c:d5:9a:86:24:19:fc:6f:a8:89:f2:97:3f:35:
        ae:12:81:a2:12:ec:c7:64:81:86:0f:91:3d:08:70:d9:
        e4:fd:b5:5b:72:65:30:9e:9d:8a:ea:38:54:fd:0c:c2:
        3a:1d:31:bb:ce:a7:9b:ee:18:40:87:c8:0d:8a:dc:83:
        f0:d0:16:b0:46:a7:da:47:a0:12:ee:26:d1:0a:1c:92:
        c8:e6:ea:db:5e:71:11:71:c8:7b:cb:e2:e7:c3:47:bb:
        58:62:59:c1:99:d2:61:58:a7:ef:f1:45:ef:7e:2e:58:
        ed:68:b0:0e:e0:25:e2:b8:06:c9:f9:1e:38:0a:8c:54:
        8b:5f:d2:b1:67:1d:7c:04:f2:9e:02:20:23:6f:03:67:
        bf:97:b7:1f:b9:3b:52:9e:97:fb:42:2d:72:b2:e0:bd:
        86:ad:cf:62:fc:1d:2a:42:82:37:33:2a:78:56:ce:43
    Fingerprint (SHA-256):
        E2:BB:80:B9:43:CC:8E:3B:50:FE:31:51:62:FC:FD:27:0C:96:67:8E:68:CF:E2:EF:58:54:84:CC:5E:D7:AF:59
    Fingerprint (SHA1):
        F7:5C:56:FE:A1:25:B5:45:CA:A3:A1:15:0E:94:C1:5A:04:36:AC:84
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #13457: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000960 (0x3019db80)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:30 2017
            Not After : Sun Aug 07 00:10:30 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:59:74:b3:89:81:f1:52:08:5f:cc:32:4b:3b:03:96:
                    52:44:48:06:d7:cb:82:06:07:91:cf:12:bb:9a:df:cc:
                    59:67:6e:1b:f7:31:bf:db:d2:3f:e1:e6:35:e4:c2:03:
                    61:c7:9f:40:3d:02:61:f8:42:16:a7:7f:57:47:5f:c9:
                    42:f0:08:ba:08:0e:78:6a:1a:d3:05:af:d2:c0:c0:4c:
                    8f:b5:46:e1:01:14:30:c4:4d:ed:ae:44:e5:8f:22:80:
                    71:ab:82:eb:2e:ca:78:dc:b4:c5:6c:fb:58:7b:41:db:
                    5a:ac:e1:e4:f2:94:51:ed:45:f5:8d:6a:5a:b4:67:eb:
                    99:db:c8:0c:00:56:45:53:d2:fc:58:59:fa:26:2c:60:
                    b1:9d:6b:86:94:41:b4:f2:27:42:21:c2:d6:f0:20:a0:
                    3a:e0:b6:cb:49:9f:11:e8:b1:51:03:c7:97:d6:b9:6e:
                    ed:67:0b:38:08:6e:6d:bc:1e:8c:44:e4:19:33:78:d7:
                    f2:ae:7e:9d:c3:fa:15:31:69:27:d5:5d:8b:03:ce:3a:
                    98:bb:b8:c2:0c:af:aa:86:a8:7a:4f:c9:e1:2b:19:e1:
                    b0:00:0a:c5:31:81:9b:ea:0d:f5:d7:80:e8:6a:21:8e:
                    26:7b:74:5e:6c:0d:e8:97:83:8f:66:f2:50:1a:f7:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9e:f6:e1:cc:98:7b:d4:6f:8d:91:75:f9:cb:d2:06:13:
        3e:c0:8c:d9:ce:23:17:f6:b3:89:7d:7d:50:7a:dd:0b:
        1b:0e:28:d9:5b:7d:3a:95:df:b2:ee:14:8b:92:fe:8f:
        74:d3:aa:11:b8:80:b2:cb:57:c8:47:d6:b4:8f:f2:39:
        18:90:17:8c:c0:ae:02:aa:db:ce:30:99:27:43:fe:80:
        1d:b0:c4:65:86:cc:f0:86:79:0d:4d:99:18:f2:82:18:
        25:a8:41:2f:fa:b3:af:d6:4f:c1:72:3a:75:9a:71:69:
        cb:5f:3b:a5:91:0f:c7:b5:4c:63:3a:97:18:52:a8:9d:
        a4:d2:c7:50:92:5d:87:72:e2:37:90:75:3a:48:83:31:
        04:29:c6:61:13:7b:82:71:c9:39:c3:1e:3e:75:51:7a:
        45:bb:d8:b0:f6:0e:80:12:1d:82:5a:28:86:71:69:c2:
        7e:a5:42:59:9c:ad:ed:0f:02:9d:df:01:bc:99:76:70:
        db:5a:bd:ff:21:bd:f7:f9:a7:94:82:4a:ab:39:f9:d9:
        8f:92:ac:5e:0c:af:37:b3:21:3e:e3:ed:c1:40:66:b1:
        d2:72:2e:70:f0:0b:37:83:2b:07:b9:b8:4e:38:fb:2d:
        cb:6a:dc:fc:62:72:4e:2e:22:13:a4:ea:8d:af:b2:e5
    Fingerprint (SHA-256):
        2F:60:11:11:C8:BA:DC:BA:5C:44:FE:BA:06:FE:66:65:AE:EC:83:FF:C7:BE:A6:DC:1E:49:71:FF:BA:20:FE:BF
    Fingerprint (SHA1):
        F0:24:9C:B8:C0:D1:DA:9E:1A:4D:FD:09:42:53:13:67:12:CA:49:FA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #13458: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000961 (0x3019db81)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:31 2017
            Not After : Sun Aug 07 00:10:31 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    de:b6:8c:be:73:cc:2b:4f:a4:43:c4:9e:41:b8:10:0f:
                    90:82:a7:33:5c:5b:0d:b5:c7:81:2d:b6:72:02:4f:ae:
                    62:20:5c:0f:30:8a:0c:d5:d4:18:df:f9:63:1c:fe:97:
                    5a:c9:ed:7c:17:fc:ea:99:4e:69:32:86:c7:25:b6:40:
                    3c:97:04:21:92:a4:cb:30:41:e3:74:c5:0a:b4:66:67:
                    4a:5e:8d:a8:9a:e9:82:65:cf:bb:dc:49:ed:e8:d1:dc:
                    8e:61:ea:f6:63:27:6d:78:4a:a9:fa:15:9a:ca:7d:e9:
                    66:69:a3:cc:8d:48:f7:4b:b7:1b:9a:a3:95:66:d9:65:
                    76:14:4a:37:77:3d:ec:38:94:db:19:3f:74:a7:b7:71:
                    00:93:08:e5:90:43:70:c8:7b:4d:57:f4:87:1c:2f:aa:
                    06:70:10:bc:da:be:5f:f7:76:68:83:f6:71:99:00:1b:
                    be:6c:9f:ca:43:8b:b4:1a:08:36:ca:45:ba:2a:56:2f:
                    29:4e:09:dd:ee:fd:18:de:1d:d5:b0:17:72:73:db:80:
                    57:11:c2:f0:38:1e:22:97:72:ea:b8:fe:16:e7:aa:b1:
                    8f:18:66:7f:82:b6:10:68:04:f6:d2:be:ea:c8:25:05:
                    e1:ed:db:1e:66:99:75:fa:dd:2b:c7:77:e3:41:63:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1c:b5:df:e1:f9:68:83:27:53:0b:ec:0f:88:4e:c2:b4:
        c7:3f:e4:3c:9b:21:47:81:2a:1b:21:5d:9f:4a:92:4d:
        67:04:01:ad:f8:6a:9d:75:02:20:d7:37:fe:c6:66:2d:
        1c:65:0c:9a:62:ba:15:18:50:43:24:7b:03:64:d8:cf:
        0f:27:88:1c:12:4e:c5:3d:75:21:bc:c9:0a:fd:25:e5:
        26:16:99:cc:be:44:06:06:d3:01:4a:50:49:05:a3:66:
        93:16:8a:6a:8b:44:d8:50:7f:d4:66:4c:57:8d:1b:03:
        b5:62:3a:70:de:04:51:73:86:b7:74:fb:71:f3:b1:27:
        c2:8d:99:67:f4:43:25:a8:7d:ec:8e:39:dd:c1:9b:1a:
        0c:5a:69:7f:c7:27:18:de:29:d2:fb:35:72:fe:b2:a5:
        84:e8:04:76:54:4a:e3:10:13:8c:8a:bd:34:40:9c:ac:
        53:ad:f4:e8:26:df:bd:13:62:44:bb:82:dc:46:3f:8b:
        4d:d1:ce:b1:34:9a:1f:1b:ca:9c:6e:1e:7d:4c:f0:e1:
        fb:25:a7:9f:bd:00:8b:eb:b7:f0:ac:e1:c1:fa:0b:3a:
        27:19:b5:b6:3d:e9:ce:8b:a9:b0:3a:2e:34:e0:62:9d:
        5e:64:08:ec:c1:ae:c6:24:d1:3c:e4:a1:99:e1:51:62
    Fingerprint (SHA-256):
        DE:00:AC:60:28:D3:2E:06:7E:71:4D:1C:F0:1D:00:13:B8:3F:81:06:1B:99:63:20:30:26:C0:56:E1:57:D7:89
    Fingerprint (SHA1):
        48:95:AF:80:9C:AA:BF:D6:19:00:95:21:4F:5E:B1:AF:F1:D7:AD:13
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #13459: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000962 (0x3019db82)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:31 2017
            Not After : Sun Aug 07 00:10:31 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:a8:cb:6c:10:2f:75:d3:40:f5:0a:d8:89:8a:4b:c3:
                    90:5d:a5:dd:18:98:c7:e3:ad:23:05:c0:e3:38:f1:4a:
                    b8:ab:c0:88:be:85:82:a7:4d:3c:fa:a7:44:c5:50:df:
                    1a:f8:c3:09:45:f0:3b:a5:47:7e:13:e0:3b:79:46:36:
                    06:f9:ad:f3:a6:5d:05:20:7b:ae:1e:21:c6:d8:de:5b:
                    38:80:91:1c:86:16:ea:1d:be:eb:e1:30:75:db:b9:1b:
                    dd:ea:bd:e3:ef:cc:91:07:c0:4a:9b:66:ca:91:ec:0e:
                    c7:27:6a:f6:b5:32:4a:cd:d3:e1:f5:11:b3:3c:8b:27:
                    a7:c0:61:15:60:5f:96:f0:49:71:06:95:f9:3a:a8:94:
                    01:89:48:bd:e5:5e:11:86:72:dc:a5:92:b8:eb:e0:43:
                    f3:0e:42:1b:fa:cd:3b:14:91:ca:a9:c7:47:92:01:4c:
                    5d:e7:9d:a4:ee:55:9f:1f:b6:f6:99:2e:b1:db:2c:30:
                    b4:ca:e6:48:65:34:a8:f6:56:da:f2:10:38:9e:25:4e:
                    c0:6e:d4:32:a3:10:74:4b:8b:9a:e4:8f:a6:0c:3c:ab:
                    be:42:b3:ed:5c:34:3b:db:bd:86:db:0c:ed:b2:f5:46:
                    73:c3:c0:84:fb:c1:49:0b:b8:24:96:8a:e1:ce:f1:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        49:9f:3c:6f:29:f3:60:d4:27:49:d3:9f:93:ca:11:56:
        4d:4f:ca:67:f7:eb:3d:f7:08:19:34:d7:18:37:0e:9c:
        9d:d0:6e:9f:4b:31:f9:6c:b2:e9:50:f5:85:0a:1e:75:
        b2:62:f2:1d:f6:03:2c:cc:f8:c6:4e:9f:6c:72:40:af:
        6c:74:8d:c2:60:40:5e:87:23:cb:dc:60:1e:6e:b6:ab:
        13:17:69:f7:64:34:3a:55:5e:fa:b3:38:bc:7a:99:30:
        c3:c1:10:25:13:60:76:86:18:3c:a5:4b:88:67:e1:ec:
        77:d9:cc:74:ce:4e:e0:ce:22:77:24:61:cd:d4:aa:ef:
        1f:ed:14:3b:71:50:ee:f0:26:23:f9:6a:70:36:09:00:
        e9:e5:70:4c:71:c1:c0:9b:f6:67:75:8c:82:88:39:50:
        ac:54:93:b8:de:6b:e8:c5:89:93:de:81:e4:4b:1c:ef:
        54:38:5a:50:d9:2d:37:56:c0:d0:29:dd:e2:d2:4e:28:
        d1:c2:e3:60:2f:37:a8:d9:ec:44:24:a3:a5:12:93:89:
        ee:7d:d4:4c:a0:07:ef:d9:50:37:8f:9e:5c:95:27:e0:
        6b:2b:30:6d:7f:f4:e4:18:5b:bc:7c:54:f8:b1:2c:25:
        e2:8b:01:98:be:c8:d8:ef:6c:86:58:64:8e:cf:f8:71
    Fingerprint (SHA-256):
        BF:F8:C6:F8:3A:0E:AE:8A:15:10:DF:62:FE:4B:09:BC:A3:4D:C8:06:A4:DB:2E:49:29:FE:E4:EC:36:BE:76:93
    Fingerprint (SHA1):
        50:D9:CD:C1:21:83:92:0A:E3:C6:F7:77:86:34:B8:67:AD:9D:5A:9A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #13460: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000963 (0x3019db83)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:32 2017
            Not After : Sun Aug 07 00:10:32 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    93:b3:a2:19:50:3a:4a:85:d3:7d:f0:a4:62:3e:cd:bc:
                    85:22:12:08:85:7f:1d:ee:f7:a2:f0:45:00:b0:82:a5:
                    bc:17:b7:0b:45:6d:2a:54:7f:8d:ec:67:9d:d9:e6:c1:
                    02:ce:81:e7:77:2c:4d:bf:8a:4c:d6:18:f4:ff:4c:86:
                    85:5e:74:9c:72:6f:33:42:82:02:17:b9:88:12:06:e9:
                    60:5f:cf:13:01:d9:9e:69:38:59:a0:78:86:6e:3f:ee:
                    56:81:8a:3e:d5:df:ff:0f:f6:ca:dc:0b:15:1e:5e:21:
                    f6:02:01:b9:f1:10:8d:1a:77:30:b4:c0:f5:40:1d:07:
                    de:cd:5c:b2:21:62:6a:8c:f8:05:02:b9:75:e8:4b:55:
                    e0:04:ca:f0:a5:aa:83:8d:ab:9c:7d:04:ae:67:60:d0:
                    f2:8d:be:f3:f2:57:d9:cd:b6:70:04:e5:d6:fb:8f:60:
                    46:33:ef:34:d2:3e:07:7d:77:7b:cc:70:f7:c1:35:cd:
                    67:cb:6f:11:1d:5c:f5:5d:41:12:d6:8d:2d:14:10:c1:
                    67:25:7d:e1:17:a1:4b:a4:4f:c4:bd:9a:42:a5:be:d2:
                    49:0e:40:5d:4a:a8:cb:4c:69:0a:40:32:8f:0e:2c:04:
                    56:d4:18:bb:59:7b:74:a4:01:62:34:e4:e8:62:24:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        03:eb:f8:d6:f4:22:53:bd:f8:39:27:e1:80:2e:61:4e:
        32:70:cb:4e:b7:4e:b1:81:54:94:35:a8:20:67:50:e8:
        0f:d5:f8:9c:a9:47:77:5c:e2:ba:d1:7b:7e:4d:2e:23:
        9d:f3:9a:fe:a8:1d:41:ae:20:6f:2a:e1:86:8c:c8:f6:
        06:32:5f:5d:1f:61:35:bc:cc:17:6c:e0:c6:74:c4:21:
        48:89:66:2b:95:4c:68:14:8a:04:76:d6:26:4e:d1:89:
        68:03:87:41:72:51:e9:50:ad:65:a2:be:78:b8:4b:04:
        b9:88:8f:b1:72:41:ed:2a:e7:66:f3:bc:04:5a:28:65:
        40:88:e9:8d:bc:fe:2d:70:7b:a4:45:90:df:36:7d:8e:
        40:76:5c:a7:ce:50:75:08:9d:0b:f7:5b:b8:d3:54:af:
        ad:d7:17:03:c0:d7:c8:9e:de:d3:52:96:d4:6c:00:87:
        ac:8e:db:33:58:79:2a:1c:de:3e:a8:c5:f6:ad:81:f8:
        b3:c3:35:db:cd:8d:ab:95:0f:ef:17:2e:ed:eb:c2:92:
        17:32:04:dc:34:1d:c8:cd:56:9f:eb:a7:1c:88:0f:5b:
        bf:de:44:20:e4:71:b1:59:ca:7f:26:23:fd:8a:4d:a5:
        a5:c8:a3:3d:15:d1:be:e0:30:d9:88:70:dd:92:c9:d1
    Fingerprint (SHA-256):
        1B:84:71:78:04:37:76:03:23:76:BE:A7:71:53:64:A6:80:76:FA:31:7C:0D:3C:FB:BE:90:B9:18:AC:31:A2:7B
    Fingerprint (SHA1):
        DF:2C:9A:38:86:7F:00:62:10:A8:40:54:24:2A:44:F2:68:D6:98:C5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #13461: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000964 (0x3019db84)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:34 2017
            Not After : Sun Aug 07 00:10:34 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:ab:96:75:59:92:39:e9:82:4f:a5:d6:f2:0a:d8:e5:
                    bf:44:76:a0:cd:54:68:7b:26:18:07:b5:46:18:65:44:
                    25:0a:b7:13:89:3b:fa:99:19:22:7d:df:17:d7:4c:3e:
                    8b:71:3d:c5:c5:90:be:76:e3:a8:a1:f1:1a:f9:67:61:
                    1e:be:46:10:37:c4:36:eb:39:82:c9:9f:41:dc:d3:76:
                    39:18:a1:d4:e5:2a:3e:7f:ee:68:0e:e1:5c:89:23:d3:
                    cb:4b:40:33:ba:cd:55:70:93:9c:78:a0:3c:e9:75:6d:
                    03:3c:c4:02:f7:27:b4:b2:8e:46:09:55:f2:6b:fe:08:
                    aa:58:ac:8a:26:6e:a9:2d:94:55:67:69:3f:64:70:30:
                    14:d1:25:21:b4:b9:03:cb:7c:f6:90:bc:8a:74:99:3c:
                    85:af:ef:11:69:dc:9d:78:0c:fe:60:ce:a5:a8:f0:78:
                    ba:c5:2d:c6:51:5f:e6:bd:78:41:75:37:c7:77:0e:5d:
                    62:1e:0d:d7:fb:25:a2:61:d8:a3:9b:16:95:6f:3d:62:
                    b9:38:e1:da:92:09:ff:5b:9b:0c:8f:83:14:af:4a:35:
                    fc:89:9f:75:bd:36:e1:eb:53:de:60:4a:10:c9:bd:0b:
                    98:e6:ed:0c:68:10:71:72:2b:b0:2c:a7:cf:7a:23:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:fb:a2:6a:7d:e5:48:35:e8:f9:a4:ab:9f:6c:84:f7:
        e1:21:c0:81:22:94:f6:25:51:21:f9:68:01:af:c9:a9:
        8a:79:47:fc:b7:e1:af:6f:ed:aa:58:95:79:5d:b5:11:
        39:71:ac:99:6d:33:58:01:cb:7b:4c:45:75:cb:07:cd:
        83:b1:9c:7d:85:97:12:de:d6:e3:94:d1:6c:89:27:ee:
        ca:98:34:fc:11:bb:eb:53:4b:1b:84:a9:e5:b9:4e:79:
        14:3c:9c:55:32:e2:39:82:3d:ba:71:95:e9:16:f3:99:
        8b:52:14:80:ab:9c:aa:23:fa:ab:85:f3:8b:1d:64:bd:
        06:1c:f3:ee:20:ac:ae:a1:82:76:d5:03:ed:56:32:90:
        d4:9e:ab:71:43:aa:98:7b:cf:75:5a:e1:f8:6c:eb:95:
        22:6d:9a:3e:9b:10:b1:6e:69:7c:a8:db:60:bc:88:6a:
        c6:f8:76:a8:1c:ab:ff:d6:12:95:76:7b:36:1a:83:b8:
        32:ce:09:ae:2d:d8:2d:10:58:d5:ea:06:62:5b:43:11:
        2a:8a:7c:2c:4f:d4:26:bc:d0:48:db:65:79:52:79:54:
        64:c1:26:0a:cb:4d:65:e4:10:4e:f2:86:72:7d:a5:ce:
        f5:68:3f:a6:66:8a:d8:20:0c:9d:90:48:c3:44:70:63
    Fingerprint (SHA-256):
        05:CA:8E:0B:62:2F:49:45:85:F6:B2:1D:87:BF:B0:CA:9F:0B:19:A3:2F:74:9C:3B:51:DB:AF:79:82:C6:1F:FB
    Fingerprint (SHA1):
        DC:7F:FF:67:48:A1:BA:8C:36:91:A8:50:07:6C:1C:B7:FC:6E:C7:5A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #13462: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000965 (0x3019db85)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:35 2017
            Not After : Sun Aug 07 00:10:35 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:b3:55:5f:48:51:30:2a:54:4f:8c:36:87:68:24:29:
                    7d:f3:95:dd:a9:c8:3b:24:bf:b5:da:15:b3:52:cc:dd:
                    d0:47:54:ba:74:56:4e:43:7b:ac:e6:9f:9e:49:e7:ef:
                    6e:c8:a5:f0:74:ee:dc:16:77:90:85:06:d4:1a:d5:90:
                    f6:55:f4:e8:89:c8:d9:e6:ec:9d:02:10:db:0e:25:d5:
                    98:c2:68:c5:e2:e2:45:a8:ea:af:26:47:46:fd:f1:4b:
                    b4:9e:fb:2f:9a:6f:f2:4d:ed:74:36:3c:cb:e9:30:fe:
                    f3:4e:64:5a:27:b1:d0:2f:ac:16:e3:02:20:d5:76:83:
                    6c:30:2c:05:71:cd:9d:d9:25:95:a7:a9:d8:7f:e0:88:
                    94:e5:c8:eb:05:18:d6:b8:5e:b5:75:fb:b5:a1:c3:49:
                    15:95:89:1a:14:b4:0e:ec:c7:bf:f1:9d:93:1f:d8:5b:
                    b9:12:30:46:53:c8:ee:06:93:a3:75:ca:af:7e:f0:01:
                    9e:6c:ff:57:6e:bb:e6:c1:81:dd:47:1f:4f:dc:02:01:
                    b5:cc:37:ce:b8:3e:bb:ed:98:9c:8d:19:16:c6:f0:b8:
                    58:3d:43:fd:45:57:52:60:9c:76:1d:08:7f:2a:b1:b3:
                    ac:bc:31:88:4f:fe:4e:30:ce:3a:05:95:2e:fd:97:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        e2:27:40:90:39:f9:2d:8d:24:7e:44:42:3b:ff:7d:cc:
        4d:77:10:ba:05:c5:10:a8:be:5f:0f:ca:0e:3b:31:47:
        0b:ba:5b:79:c7:2d:b4:2c:29:56:c2:2e:ab:26:f0:89:
        ea:d3:1a:39:34:dc:0b:08:2b:f1:7e:50:f9:09:b9:e6:
        2f:ad:c1:c9:28:d9:58:c0:fb:78:a7:00:ec:04:9a:85:
        d6:1f:a1:8e:a2:26:2f:e0:28:d7:03:68:cd:4d:11:39:
        60:da:b8:2e:b7:dd:2f:4a:77:c5:f7:27:e2:02:a9:19:
        3e:90:3c:43:97:5e:1a:3a:af:a8:b8:80:6f:5c:13:cd:
        c9:bd:14:39:76:1a:3c:ab:2c:3b:7e:0e:95:10:ba:3a:
        74:2b:d6:41:26:b9:2d:b0:39:62:73:d7:ed:e7:9f:eb:
        68:3b:2b:15:4f:98:36:03:ed:64:39:75:08:96:67:13:
        8e:15:bd:fd:f9:7d:36:c8:9a:9e:cd:82:74:81:b8:7d:
        d2:4c:b6:6e:c1:ec:3a:8b:61:f4:12:84:b1:63:16:e4:
        f1:ca:0a:11:69:44:69:13:5d:f3:99:9a:5d:49:ff:65:
        7c:98:75:d4:21:a5:b1:21:8c:7e:b5:ed:54:d6:01:9a:
        7a:72:f1:22:e6:e2:f6:13:de:fa:cd:db:18:89:90:cc
    Fingerprint (SHA-256):
        27:6C:9D:6B:4B:76:64:A2:AE:CB:98:44:AC:84:2A:C4:85:B3:4D:2F:79:1E:0C:07:E2:F4:74:F4:FD:62:40:C1
    Fingerprint (SHA1):
        8A:7C:CC:47:FD:DB:0E:F0:86:8E:17:F9:3F:F8:CC:99:68:EE:BD:83
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #13463: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000966 (0x3019db86)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:36 2017
            Not After : Sun Aug 07 00:10:36 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:1d:ba:81:f8:9a:91:5f:9e:84:50:8e:28:f8:78:85:
                    9e:ed:ef:23:51:81:17:f1:94:4e:5b:56:d3:f3:16:d7:
                    27:8d:3a:9e:80:14:f1:f9:97:42:0e:37:d7:0c:d3:c8:
                    43:4c:14:ce:da:ff:0b:70:60:d5:d2:98:bd:e4:76:d2:
                    8d:f3:09:ff:f3:d6:82:6d:d3:53:87:c7:e2:5f:af:37:
                    ee:0d:23:70:17:06:31:52:db:8c:52:c0:e0:13:8d:18:
                    8e:3a:c5:f2:63:c8:5c:50:83:5d:6a:0b:59:38:e9:a6:
                    c9:6e:38:5b:9c:6c:fe:a6:28:89:fa:c5:de:cc:67:8d:
                    89:e3:82:f6:fb:47:6b:e7:34:1c:97:9e:e1:a7:d1:b8:
                    7b:ef:3e:7b:fc:f9:86:53:80:35:a4:41:fc:5d:c5:c9:
                    99:e2:b3:77:85:c8:b2:55:05:a7:51:6a:db:b5:21:b8:
                    c5:f3:2c:84:69:78:2d:ba:28:3b:28:ca:39:f7:38:58:
                    dc:5c:56:b6:e5:75:67:3f:1f:67:14:0b:ba:2d:2c:2a:
                    29:64:ac:da:82:5c:b5:f8:24:d4:4a:ac:44:58:f3:1a:
                    fe:20:97:af:56:e4:ec:d9:6a:15:da:8b:2a:f8:4d:56:
                    9b:a8:e3:8f:a2:41:67:f3:76:6d:d3:98:77:6b:76:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        03:28:2f:05:36:60:b9:89:8f:5a:b1:13:26:ff:bd:a4:
        71:13:a4:c2:f5:00:2f:11:5f:5c:0e:c5:96:0d:1e:8d:
        6b:b4:fe:01:a5:68:55:65:84:45:0d:1c:88:7b:a3:99:
        99:cd:88:39:c6:d0:94:b9:04:84:91:da:2c:90:d0:33:
        29:63:38:d2:12:76:f5:3e:08:ed:ba:61:7e:e9:9b:84:
        33:c2:bf:2e:d2:26:85:ab:e1:3d:9a:bf:a4:39:c8:72:
        06:19:86:93:8f:ad:de:3a:a3:09:27:48:fd:b4:fb:0d:
        68:e6:d7:1c:9b:5b:21:97:5c:34:91:8a:ce:99:8e:d7:
        f1:d1:44:11:f9:34:29:d9:f7:92:92:96:58:e1:09:7e:
        37:d4:15:d5:ca:b5:10:75:04:a3:67:f4:60:49:3e:da:
        ce:8f:45:9d:53:dc:55:7d:77:76:4e:08:ac:ee:ce:db:
        94:75:a9:dc:55:49:13:18:17:95:1f:3b:bf:7d:fb:54:
        e1:44:c6:f0:ec:1f:c4:fd:21:81:c7:4a:56:5b:99:07:
        e6:29:3d:1a:d2:2f:04:f5:61:4c:47:31:da:d2:6e:fe:
        52:7c:14:e2:97:53:f5:75:29:dc:3e:6d:58:7d:f0:18:
        f1:7d:c0:c3:8d:2a:a8:83:00:6f:4b:e8:e8:9c:44:b6
    Fingerprint (SHA-256):
        6A:C1:AC:99:92:C4:C6:C9:B8:C2:B6:9A:88:93:F0:4C:64:14:F6:AD:1A:90:3F:79:2F:8E:62:A7:7D:32:FB:6F
    Fingerprint (SHA1):
        31:85:17:1C:DF:33:D3:E5:FE:CB:0E:4E:EB:CD:1F:AC:57:B7:B4:B0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #13464: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #13465: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807000981 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13466: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #13467: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13468: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13469: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 807000982   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13470: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13471: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #13472: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13473: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 807000983   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13474: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13475: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #13476: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13477: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 807000984   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13478: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13479: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #13480: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000981 (0x3019db95)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:44 2017
            Not After : Sun Aug 07 00:10:44 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:7c:c4:bc:41:b1:57:0e:fe:f9:67:bc:b5:c7:78:16:
                    ad:a6:08:9d:7f:22:a5:79:10:e2:3b:c6:57:98:3a:91:
                    5a:3e:de:1f:62:1b:69:fc:cc:b3:30:af:6f:32:6d:05:
                    d5:7d:29:cf:7a:b3:fa:b1:1b:ea:25:20:99:91:39:43:
                    ea:16:46:38:0e:e2:ab:9f:53:8f:b2:76:b6:fe:1e:cb:
                    0b:7b:ed:b1:14:f1:96:12:59:15:5d:59:d6:ae:85:b0:
                    1e:e6:85:d0:1e:20:5b:6d:df:fb:92:06:32:69:fc:98:
                    db:d3:79:91:44:d1:9a:73:1f:26:e8:22:ef:11:2f:ea:
                    21:54:10:0a:46:fa:ae:b6:40:e1:29:56:1f:02:65:97:
                    5c:e9:62:db:b3:da:62:5b:ab:93:bf:68:41:5d:56:38:
                    d6:29:47:46:06:f5:cd:86:1a:40:62:ab:bb:ac:47:6a:
                    d4:7a:dc:3f:48:a4:82:2b:46:b5:b4:51:ec:fb:7a:69:
                    2d:07:b1:8b:10:7c:0b:06:33:9a:1f:8f:27:43:92:89:
                    fb:ac:c8:71:c9:50:1f:ce:af:23:fe:22:b0:9e:93:9d:
                    ed:8f:60:33:ba:72:74:4c:8b:d5:e3:62:1b:48:42:a9:
                    a9:0e:cf:18:f6:e1:9d:dd:62:68:73:00:95:f3:ac:19
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3d:94:99:da:f1:01:e4:93:54:2d:6d:bd:eb:e9:d1:ae:
        7b:d4:19:94:ff:82:dd:be:3c:85:f4:9f:72:3a:4b:29:
        94:41:e5:56:7a:83:0e:9e:21:0b:24:7e:86:ce:7b:8b:
        d9:23:39:ed:89:91:5e:b2:f7:68:9b:d3:f9:e6:6d:a1:
        43:26:3d:f3:92:70:40:27:cf:41:48:35:53:04:30:b8:
        01:87:4b:97:70:0e:49:49:6b:b7:41:0c:2a:65:cb:ff:
        d7:bc:46:be:45:7f:4f:93:b2:69:dc:6e:56:f4:e6:dc:
        51:d1:38:14:3a:ac:25:31:03:40:2f:80:a3:09:03:a5:
        67:45:38:97:72:be:78:7e:fd:94:ce:61:4e:47:b7:e4:
        aa:04:70:46:09:67:e9:22:c3:62:79:b5:4d:86:b7:7c:
        0f:af:ba:61:04:c3:d6:14:6f:bb:b1:0e:c0:5c:4f:c6:
        26:83:35:16:01:64:da:a7:b8:ab:ea:d0:5b:12:65:94:
        28:29:25:50:3c:6d:e4:ce:bf:00:b3:ca:31:53:86:78:
        0b:32:6b:a5:09:b9:b1:27:82:da:57:1f:f0:da:d7:fb:
        72:f7:57:05:37:86:7f:fa:8d:29:84:37:ed:92:fa:fc:
        d3:2d:15:a5:e1:be:af:14:ee:68:63:79:1c:c8:cc:83
    Fingerprint (SHA-256):
        F3:B5:E6:A0:11:9D:63:35:40:A6:59:17:E3:90:3A:12:F7:C9:90:F2:7F:5F:7D:D4:27:99:3A:E0:DF:B7:4A:CF
    Fingerprint (SHA1):
        98:27:1B:CF:B0:BA:56:0C:26:BB:34:FB:8B:90:02:6D:59:D7:35:EA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13481: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13482: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000982 (0x3019db96)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:45 2017
            Not After : Sun Aug 07 00:10:45 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:1a:6b:ea:ac:25:52:5d:ee:c8:81:c2:38:7f:d1:23:
                    db:37:34:91:9a:65:dd:0e:12:d5:e1:62:11:24:07:0b:
                    03:ec:f0:51:b8:2c:c3:85:87:45:e7:0a:68:94:b9:53:
                    a6:06:f3:a6:f7:5c:44:21:a6:16:b3:eb:40:27:65:fc:
                    8f:d8:37:09:88:60:6c:b1:ba:e7:56:9a:92:67:c0:c0:
                    c3:0e:d4:59:6a:ac:39:79:06:1e:25:29:a7:66:28:26:
                    36:78:55:c4:4e:f3:13:bc:3d:a1:63:4e:4c:0c:ec:53:
                    67:e6:61:aa:bf:0d:be:b9:bd:1e:02:bd:88:87:cc:5a:
                    0e:50:ce:2c:6f:53:9b:ec:3f:31:b7:2f:09:9f:0d:37:
                    7d:0c:f0:ce:48:53:39:70:1f:78:93:f7:d0:e3:57:01:
                    34:2b:16:5d:48:4d:c8:53:74:02:0e:65:72:3c:c8:74:
                    4d:64:e0:59:4e:04:bc:0d:a4:f2:62:44:f5:37:8d:9e:
                    3e:46:b1:e7:48:3d:ec:42:21:b8:cb:81:00:b1:ed:87:
                    a0:53:14:42:b2:9e:43:54:60:09:f5:84:a7:e3:ee:8b:
                    c3:8e:85:02:21:3e:9e:ee:4b:08:aa:d8:13:1a:2a:55:
                    ff:52:2b:71:e1:fe:59:9d:22:ee:6d:b9:59:48:5c:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        91:7c:37:0c:cb:2e:c6:b5:0e:ea:2d:d0:6a:e0:2e:62:
        c0:ad:eb:91:51:77:89:2f:c0:ea:a7:15:fc:e5:92:8f:
        58:3a:bf:aa:65:ef:b3:4e:95:ce:5e:64:be:c6:74:d4:
        eb:11:b4:47:28:2a:50:c3:ce:3d:40:76:9d:89:8a:f4:
        5c:cc:46:fd:f0:ab:1d:c2:15:23:44:ba:f6:b1:4b:75:
        ec:43:93:4e:d8:20:02:01:16:cb:cd:93:a9:8a:c5:6b:
        59:4e:bc:e6:7e:e8:ba:92:eb:51:a6:bb:85:e7:27:50:
        d5:fa:88:40:3b:1c:de:20:00:d2:e7:36:c4:18:6d:62:
        7b:77:91:36:d1:28:88:0a:aa:a1:e7:2f:fa:88:6c:0d:
        ee:03:61:ab:14:ed:7c:4e:d2:31:95:13:78:f4:d1:5e:
        2c:30:31:a1:a3:80:f9:c0:2e:7f:7c:74:48:9b:e9:b3:
        06:e0:ba:b7:ca:e5:99:19:eb:c3:b7:6e:82:92:55:80:
        fc:28:9a:cf:21:9f:ff:96:ae:da:7c:84:82:37:18:f7:
        a2:0a:fb:0e:ba:91:d0:b3:8b:49:c5:a4:86:5a:d2:b6:
        ea:44:12:cd:d0:29:0c:43:67:67:eb:34:ae:2b:eb:c9:
        fb:f0:95:f7:ae:62:fc:c1:7b:94:46:c8:e1:d7:86:4b
    Fingerprint (SHA-256):
        05:25:98:DB:76:B1:1E:87:94:33:8E:B3:F2:79:22:90:1D:AB:15:2B:97:BA:29:5C:38:04:1B:86:29:E1:51:99
    Fingerprint (SHA1):
        9D:81:02:62:FB:74:70:DD:C1:48:10:57:42:93:D1:05:DC:96:18:99
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #13483: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13484: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000983 (0x3019db97)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:46 2017
            Not After : Sun Aug 07 00:10:46 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:39:b6:95:0a:71:bd:80:ec:d8:6e:e9:1b:dd:a7:ed:
                    0e:42:83:a2:d0:40:5d:29:7f:83:1d:80:9d:cc:3a:66:
                    75:27:6a:47:63:b7:a9:c3:4b:ab:26:4b:70:30:9f:1d:
                    92:ef:89:12:e4:bd:ff:37:d6:8d:1e:04:70:b6:6b:a3:
                    41:98:c8:d6:41:1d:b5:fb:9b:1f:15:23:3c:28:04:d0:
                    4f:21:9e:c4:9b:01:12:b6:7f:cd:18:9f:f8:66:fc:6f:
                    1b:24:c3:89:c7:db:da:4a:95:ff:79:fa:d1:0f:00:9e:
                    53:a7:5d:a1:c4:15:4d:31:29:9e:ee:b4:f2:40:38:da:
                    6f:d1:c4:7d:ed:65:ab:42:d4:a3:5c:b8:df:d2:01:59:
                    cf:f6:c6:fb:2f:52:7e:e7:31:d0:e7:d9:cb:6b:8f:9d:
                    f3:9b:a2:7f:16:a4:98:85:34:7f:17:22:f1:dd:f3:d6:
                    2f:9b:35:14:de:e3:fd:9b:ef:b7:f7:fa:9e:46:f6:56:
                    47:f8:e5:4c:e9:23:17:2a:ac:c4:50:b7:63:20:e1:40:
                    1f:2e:29:28:aa:42:8d:c9:98:95:26:79:82:5a:bf:83:
                    35:c4:70:b7:52:d7:e1:70:76:0a:20:fc:ab:be:70:dd:
                    81:0f:95:a0:37:21:53:53:ea:d7:fb:16:8a:35:bc:27
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:47:d9:c8:b3:23:c3:2b:04:75:63:f9:f3:ad:ef:97:
        1d:58:5f:61:d4:8e:b8:f3:93:be:d2:70:07:a3:88:c5:
        83:42:50:46:af:50:d9:0d:b1:99:00:f8:fb:ae:a5:a0:
        9f:79:fb:3c:cf:87:5c:d2:67:3a:2d:d9:a9:82:80:92:
        02:b5:0f:14:12:9c:a3:db:bb:72:2a:20:f8:bf:d7:49:
        e4:73:73:87:05:fc:c6:68:cd:dd:18:34:f5:36:a4:c7:
        70:ae:9f:b1:a1:9f:76:d0:80:1d:49:f9:f4:51:52:0e:
        5b:ad:42:07:1d:6a:c0:63:dc:a0:bd:8f:d1:57:f6:c3:
        8d:47:03:71:1b:ff:04:a4:00:f2:37:93:cc:19:1e:b2:
        0c:56:6a:a2:06:c4:74:66:14:50:28:5b:a3:1e:d5:e3:
        8d:cb:80:9d:3b:85:f9:5d:59:7d:95:9b:71:bf:e9:6b:
        1e:1d:c7:1a:ae:c4:d5:8a:fa:ab:20:46:68:a9:61:39:
        3d:35:64:d6:c3:9a:cb:85:47:bb:20:cd:11:bf:f3:df:
        79:e2:4c:be:d0:ad:7d:1a:93:a0:32:9b:c9:56:08:2e:
        9c:e7:9b:d7:41:8e:c7:e1:62:eb:e7:ac:31:16:bc:b7:
        ee:15:4f:f5:a1:a7:22:44:ac:40:5a:14:31:be:f5:b8
    Fingerprint (SHA-256):
        16:72:12:4F:61:AE:C9:43:E0:4F:97:B0:8A:21:64:CE:74:3E:E7:5C:39:16:BF:52:7B:E4:69:CD:F2:3A:68:C4
    Fingerprint (SHA1):
        65:47:3E:E9:00:C3:E6:30:6A:9E:BE:0F:40:12:DD:C3:18:43:0D:82
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #13485: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13486: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #13487: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #13488: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #13489: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000981 (0x3019db95)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:44 2017
            Not After : Sun Aug 07 00:10:44 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:7c:c4:bc:41:b1:57:0e:fe:f9:67:bc:b5:c7:78:16:
                    ad:a6:08:9d:7f:22:a5:79:10:e2:3b:c6:57:98:3a:91:
                    5a:3e:de:1f:62:1b:69:fc:cc:b3:30:af:6f:32:6d:05:
                    d5:7d:29:cf:7a:b3:fa:b1:1b:ea:25:20:99:91:39:43:
                    ea:16:46:38:0e:e2:ab:9f:53:8f:b2:76:b6:fe:1e:cb:
                    0b:7b:ed:b1:14:f1:96:12:59:15:5d:59:d6:ae:85:b0:
                    1e:e6:85:d0:1e:20:5b:6d:df:fb:92:06:32:69:fc:98:
                    db:d3:79:91:44:d1:9a:73:1f:26:e8:22:ef:11:2f:ea:
                    21:54:10:0a:46:fa:ae:b6:40:e1:29:56:1f:02:65:97:
                    5c:e9:62:db:b3:da:62:5b:ab:93:bf:68:41:5d:56:38:
                    d6:29:47:46:06:f5:cd:86:1a:40:62:ab:bb:ac:47:6a:
                    d4:7a:dc:3f:48:a4:82:2b:46:b5:b4:51:ec:fb:7a:69:
                    2d:07:b1:8b:10:7c:0b:06:33:9a:1f:8f:27:43:92:89:
                    fb:ac:c8:71:c9:50:1f:ce:af:23:fe:22:b0:9e:93:9d:
                    ed:8f:60:33:ba:72:74:4c:8b:d5:e3:62:1b:48:42:a9:
                    a9:0e:cf:18:f6:e1:9d:dd:62:68:73:00:95:f3:ac:19
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3d:94:99:da:f1:01:e4:93:54:2d:6d:bd:eb:e9:d1:ae:
        7b:d4:19:94:ff:82:dd:be:3c:85:f4:9f:72:3a:4b:29:
        94:41:e5:56:7a:83:0e:9e:21:0b:24:7e:86:ce:7b:8b:
        d9:23:39:ed:89:91:5e:b2:f7:68:9b:d3:f9:e6:6d:a1:
        43:26:3d:f3:92:70:40:27:cf:41:48:35:53:04:30:b8:
        01:87:4b:97:70:0e:49:49:6b:b7:41:0c:2a:65:cb:ff:
        d7:bc:46:be:45:7f:4f:93:b2:69:dc:6e:56:f4:e6:dc:
        51:d1:38:14:3a:ac:25:31:03:40:2f:80:a3:09:03:a5:
        67:45:38:97:72:be:78:7e:fd:94:ce:61:4e:47:b7:e4:
        aa:04:70:46:09:67:e9:22:c3:62:79:b5:4d:86:b7:7c:
        0f:af:ba:61:04:c3:d6:14:6f:bb:b1:0e:c0:5c:4f:c6:
        26:83:35:16:01:64:da:a7:b8:ab:ea:d0:5b:12:65:94:
        28:29:25:50:3c:6d:e4:ce:bf:00:b3:ca:31:53:86:78:
        0b:32:6b:a5:09:b9:b1:27:82:da:57:1f:f0:da:d7:fb:
        72:f7:57:05:37:86:7f:fa:8d:29:84:37:ed:92:fa:fc:
        d3:2d:15:a5:e1:be:af:14:ee:68:63:79:1c:c8:cc:83
    Fingerprint (SHA-256):
        F3:B5:E6:A0:11:9D:63:35:40:A6:59:17:E3:90:3A:12:F7:C9:90:F2:7F:5F:7D:D4:27:99:3A:E0:DF:B7:4A:CF
    Fingerprint (SHA1):
        98:27:1B:CF:B0:BA:56:0C:26:BB:34:FB:8B:90:02:6D:59:D7:35:EA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13490: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13491: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000982 (0x3019db96)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:45 2017
            Not After : Sun Aug 07 00:10:45 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:1a:6b:ea:ac:25:52:5d:ee:c8:81:c2:38:7f:d1:23:
                    db:37:34:91:9a:65:dd:0e:12:d5:e1:62:11:24:07:0b:
                    03:ec:f0:51:b8:2c:c3:85:87:45:e7:0a:68:94:b9:53:
                    a6:06:f3:a6:f7:5c:44:21:a6:16:b3:eb:40:27:65:fc:
                    8f:d8:37:09:88:60:6c:b1:ba:e7:56:9a:92:67:c0:c0:
                    c3:0e:d4:59:6a:ac:39:79:06:1e:25:29:a7:66:28:26:
                    36:78:55:c4:4e:f3:13:bc:3d:a1:63:4e:4c:0c:ec:53:
                    67:e6:61:aa:bf:0d:be:b9:bd:1e:02:bd:88:87:cc:5a:
                    0e:50:ce:2c:6f:53:9b:ec:3f:31:b7:2f:09:9f:0d:37:
                    7d:0c:f0:ce:48:53:39:70:1f:78:93:f7:d0:e3:57:01:
                    34:2b:16:5d:48:4d:c8:53:74:02:0e:65:72:3c:c8:74:
                    4d:64:e0:59:4e:04:bc:0d:a4:f2:62:44:f5:37:8d:9e:
                    3e:46:b1:e7:48:3d:ec:42:21:b8:cb:81:00:b1:ed:87:
                    a0:53:14:42:b2:9e:43:54:60:09:f5:84:a7:e3:ee:8b:
                    c3:8e:85:02:21:3e:9e:ee:4b:08:aa:d8:13:1a:2a:55:
                    ff:52:2b:71:e1:fe:59:9d:22:ee:6d:b9:59:48:5c:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        91:7c:37:0c:cb:2e:c6:b5:0e:ea:2d:d0:6a:e0:2e:62:
        c0:ad:eb:91:51:77:89:2f:c0:ea:a7:15:fc:e5:92:8f:
        58:3a:bf:aa:65:ef:b3:4e:95:ce:5e:64:be:c6:74:d4:
        eb:11:b4:47:28:2a:50:c3:ce:3d:40:76:9d:89:8a:f4:
        5c:cc:46:fd:f0:ab:1d:c2:15:23:44:ba:f6:b1:4b:75:
        ec:43:93:4e:d8:20:02:01:16:cb:cd:93:a9:8a:c5:6b:
        59:4e:bc:e6:7e:e8:ba:92:eb:51:a6:bb:85:e7:27:50:
        d5:fa:88:40:3b:1c:de:20:00:d2:e7:36:c4:18:6d:62:
        7b:77:91:36:d1:28:88:0a:aa:a1:e7:2f:fa:88:6c:0d:
        ee:03:61:ab:14:ed:7c:4e:d2:31:95:13:78:f4:d1:5e:
        2c:30:31:a1:a3:80:f9:c0:2e:7f:7c:74:48:9b:e9:b3:
        06:e0:ba:b7:ca:e5:99:19:eb:c3:b7:6e:82:92:55:80:
        fc:28:9a:cf:21:9f:ff:96:ae:da:7c:84:82:37:18:f7:
        a2:0a:fb:0e:ba:91:d0:b3:8b:49:c5:a4:86:5a:d2:b6:
        ea:44:12:cd:d0:29:0c:43:67:67:eb:34:ae:2b:eb:c9:
        fb:f0:95:f7:ae:62:fc:c1:7b:94:46:c8:e1:d7:86:4b
    Fingerprint (SHA-256):
        05:25:98:DB:76:B1:1E:87:94:33:8E:B3:F2:79:22:90:1D:AB:15:2B:97:BA:29:5C:38:04:1B:86:29:E1:51:99
    Fingerprint (SHA1):
        9D:81:02:62:FB:74:70:DD:C1:48:10:57:42:93:D1:05:DC:96:18:99
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #13492: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13493: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000983 (0x3019db97)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:46 2017
            Not After : Sun Aug 07 00:10:46 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:39:b6:95:0a:71:bd:80:ec:d8:6e:e9:1b:dd:a7:ed:
                    0e:42:83:a2:d0:40:5d:29:7f:83:1d:80:9d:cc:3a:66:
                    75:27:6a:47:63:b7:a9:c3:4b:ab:26:4b:70:30:9f:1d:
                    92:ef:89:12:e4:bd:ff:37:d6:8d:1e:04:70:b6:6b:a3:
                    41:98:c8:d6:41:1d:b5:fb:9b:1f:15:23:3c:28:04:d0:
                    4f:21:9e:c4:9b:01:12:b6:7f:cd:18:9f:f8:66:fc:6f:
                    1b:24:c3:89:c7:db:da:4a:95:ff:79:fa:d1:0f:00:9e:
                    53:a7:5d:a1:c4:15:4d:31:29:9e:ee:b4:f2:40:38:da:
                    6f:d1:c4:7d:ed:65:ab:42:d4:a3:5c:b8:df:d2:01:59:
                    cf:f6:c6:fb:2f:52:7e:e7:31:d0:e7:d9:cb:6b:8f:9d:
                    f3:9b:a2:7f:16:a4:98:85:34:7f:17:22:f1:dd:f3:d6:
                    2f:9b:35:14:de:e3:fd:9b:ef:b7:f7:fa:9e:46:f6:56:
                    47:f8:e5:4c:e9:23:17:2a:ac:c4:50:b7:63:20:e1:40:
                    1f:2e:29:28:aa:42:8d:c9:98:95:26:79:82:5a:bf:83:
                    35:c4:70:b7:52:d7:e1:70:76:0a:20:fc:ab:be:70:dd:
                    81:0f:95:a0:37:21:53:53:ea:d7:fb:16:8a:35:bc:27
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:47:d9:c8:b3:23:c3:2b:04:75:63:f9:f3:ad:ef:97:
        1d:58:5f:61:d4:8e:b8:f3:93:be:d2:70:07:a3:88:c5:
        83:42:50:46:af:50:d9:0d:b1:99:00:f8:fb:ae:a5:a0:
        9f:79:fb:3c:cf:87:5c:d2:67:3a:2d:d9:a9:82:80:92:
        02:b5:0f:14:12:9c:a3:db:bb:72:2a:20:f8:bf:d7:49:
        e4:73:73:87:05:fc:c6:68:cd:dd:18:34:f5:36:a4:c7:
        70:ae:9f:b1:a1:9f:76:d0:80:1d:49:f9:f4:51:52:0e:
        5b:ad:42:07:1d:6a:c0:63:dc:a0:bd:8f:d1:57:f6:c3:
        8d:47:03:71:1b:ff:04:a4:00:f2:37:93:cc:19:1e:b2:
        0c:56:6a:a2:06:c4:74:66:14:50:28:5b:a3:1e:d5:e3:
        8d:cb:80:9d:3b:85:f9:5d:59:7d:95:9b:71:bf:e9:6b:
        1e:1d:c7:1a:ae:c4:d5:8a:fa:ab:20:46:68:a9:61:39:
        3d:35:64:d6:c3:9a:cb:85:47:bb:20:cd:11:bf:f3:df:
        79:e2:4c:be:d0:ad:7d:1a:93:a0:32:9b:c9:56:08:2e:
        9c:e7:9b:d7:41:8e:c7:e1:62:eb:e7:ac:31:16:bc:b7:
        ee:15:4f:f5:a1:a7:22:44:ac:40:5a:14:31:be:f5:b8
    Fingerprint (SHA-256):
        16:72:12:4F:61:AE:C9:43:E0:4F:97:B0:8A:21:64:CE:74:3E:E7:5C:39:16:BF:52:7B:E4:69:CD:F2:3A:68:C4
    Fingerprint (SHA1):
        65:47:3E:E9:00:C3:E6:30:6A:9E:BE:0F:40:12:DD:C3:18:43:0D:82
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #13494: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13495: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #13496: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807000985 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13497: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #13498: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13499: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13500: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 807000986   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13501: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13502: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #13503: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13504: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 807000987   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13505: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13506: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #13507: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13508: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 807000988   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13509: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13510: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #13511: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13512: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 807000989   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13513: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13514: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #13515: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000985 (0x3019db99)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:49 2017
            Not After : Sun Aug 07 00:10:49 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:f0:ac:19:4f:a2:d1:99:c0:65:2e:40:a7:ce:68:69:
                    d3:07:a7:80:cb:6b:45:21:fd:2a:52:46:83:51:d9:95:
                    93:0b:69:d2:82:99:49:30:a5:2d:d0:f0:b1:e2:70:dc:
                    d4:7e:4b:ac:a7:4f:5a:12:39:01:d3:ab:a4:3b:cb:5a:
                    7c:57:33:43:49:c2:60:21:f0:ec:50:91:2c:eb:ce:67:
                    63:c2:7f:2f:3d:6b:44:c8:20:bd:ad:9e:dc:3b:86:ba:
                    6a:b0:a0:bb:be:9f:c8:6e:4b:4e:fb:11:68:3b:72:dc:
                    0f:d3:8b:58:05:13:d1:89:46:75:ea:76:c3:ad:86:84:
                    3b:10:b5:28:c6:80:4a:41:eb:91:7f:7f:50:1d:d1:b4:
                    24:1b:8b:64:4c:7e:79:82:63:81:f6:5c:d0:57:6e:f3:
                    14:ab:57:54:da:57:5d:33:99:cb:af:a4:f8:b1:63:e4:
                    a1:21:5f:d3:15:80:cb:31:fc:f6:8c:a0:90:e9:6c:c6:
                    31:96:da:86:c3:1a:df:d9:b0:dc:63:97:63:36:11:3e:
                    a5:42:15:7a:38:f8:9f:ca:9d:81:cc:94:3f:2f:66:39:
                    10:dd:dd:d8:86:89:77:58:ab:8b:a2:d0:88:a4:b6:5f:
                    57:8d:de:7a:e8:1d:4a:f7:c2:29:51:e3:a3:8e:af:45
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6f:53:b6:95:86:85:2d:de:18:ab:a3:e9:e0:e9:74:e4:
        89:e4:d0:54:b3:42:20:fc:75:e4:89:d4:8b:27:b8:35:
        69:33:de:28:ac:78:25:11:57:2e:df:57:a3:a2:a9:2a:
        9b:23:63:61:4a:fd:34:86:b7:4b:1e:35:00:62:7f:20:
        dc:a1:68:99:62:4c:72:e6:89:29:0f:97:52:14:ed:bb:
        d5:e2:b5:6b:4a:47:cc:a4:ce:52:c8:2e:7c:7d:28:d8:
        85:03:63:0b:23:2b:7b:0a:ce:84:24:a5:13:1d:a2:fc:
        89:58:22:dd:55:5d:5a:a9:0d:f4:3a:5c:62:90:46:2a:
        27:ce:68:1b:88:1b:34:0b:98:a3:37:e7:e0:1a:8b:29:
        75:b4:63:2c:70:3d:22:91:a5:cd:4c:ce:32:0b:09:30:
        97:da:59:ea:db:3c:d8:f4:ce:26:1e:a8:6c:32:27:bb:
        48:45:88:2c:f1:62:c7:e9:99:5a:37:17:17:ca:e2:8c:
        c9:4b:0e:a0:80:4f:2f:73:6d:3c:c7:64:b5:61:bd:0b:
        5e:c1:a9:2a:e5:67:2c:a9:34:61:ba:3a:46:91:aa:b3:
        88:55:a6:8e:39:e5:ec:86:e2:88:ee:88:b7:16:ba:53:
        9a:2f:c5:cd:4b:cd:1e:c6:11:84:39:b1:70:22:cc:9e
    Fingerprint (SHA-256):
        45:0C:2F:0B:A8:09:FB:F9:22:E2:71:EF:C7:65:C1:AE:12:5B:50:46:95:7E:6A:B4:97:1A:FA:27:3B:87:04:1E
    Fingerprint (SHA1):
        1C:5C:EE:FF:0F:71:C7:7F:66:16:69:1F:1D:33:BC:D3:15:BC:2F:F9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13516: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13517: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000986 (0x3019db9a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:50 2017
            Not After : Sun Aug 07 00:10:50 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:6d:28:99:21:5b:5c:97:18:f2:38:68:5f:17:1f:dc:
                    0a:77:59:87:87:38:a9:45:04:a0:f0:a0:b5:b1:eb:87:
                    10:ef:e2:3b:aa:46:be:06:e0:a9:0b:53:c0:fa:7d:45:
                    0e:16:54:ff:a0:e2:72:3a:6b:1e:8f:06:2f:9a:16:a2:
                    66:fc:54:b4:58:8e:25:a9:77:ff:67:f6:08:4a:80:dd:
                    5f:ec:38:0b:c7:09:a4:23:da:49:2d:08:f5:73:f0:9d:
                    bf:82:ed:ef:ba:bc:a1:f9:c6:ed:0f:d4:68:14:a5:9f:
                    0f:a6:b2:44:cd:24:90:e0:0a:31:58:82:57:15:c6:9f:
                    19:99:5d:36:01:4d:02:d3:ec:06:2b:77:8c:ba:a5:6b:
                    26:1a:42:ff:04:6e:3b:7f:ae:d1:b1:e5:b0:ad:cd:50:
                    e4:d4:5c:de:d0:9c:e3:1b:9b:3c:39:11:4f:fb:87:8c:
                    21:d5:7f:37:55:ba:57:cd:e1:c8:9b:74:60:0d:d9:26:
                    9d:87:a1:8d:d4:50:57:45:99:70:b1:8b:7c:ca:e6:a8:
                    7f:7e:fb:c6:ad:1c:71:a6:68:3f:04:dd:74:6e:56:c6:
                    d0:9b:5d:55:8f:3f:a7:39:7c:dd:1b:19:ab:2e:d7:2f:
                    0b:7f:d0:ae:87:82:b1:e8:3a:8d:4a:49:df:25:12:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        09:cd:cf:4c:77:6f:50:cd:41:b2:3d:dc:f3:e9:2b:2d:
        ae:9a:7b:99:d8:9b:19:1f:b4:45:77:66:87:f6:bf:d9:
        89:23:90:8c:3f:b9:35:89:94:38:7e:eb:2a:35:08:da:
        c6:7e:3e:9a:85:2a:a7:36:b1:f2:72:ec:d1:8d:bf:17:
        0a:ad:5a:a4:f1:ac:51:7b:55:f5:70:ab:9e:4a:8e:e4:
        0e:39:13:07:11:cc:7b:57:1e:5c:5c:06:87:2e:5b:8f:
        e8:ad:c7:ee:6d:b3:6c:06:9f:69:9e:8c:e1:3e:7c:dd:
        78:3b:dc:66:4f:1d:06:e4:db:6c:b1:17:c0:69:3b:f1:
        ae:f5:05:90:21:f7:5d:dd:e8:57:bf:9a:5e:f5:44:c9:
        c8:e7:4f:ff:2e:b9:ff:e8:75:dc:8f:9e:b2:c0:08:b7:
        a2:23:4a:c0:4e:ab:bd:c2:08:27:68:cf:60:2d:bf:76:
        2e:30:77:b3:f7:cc:a1:9b:ec:bf:bc:5c:f9:a9:0f:48:
        e4:a6:de:17:6d:f1:df:01:f4:39:b0:5b:71:a3:45:32:
        c7:33:36:64:46:65:31:95:4c:f2:55:b1:8c:97:05:e8:
        b5:6f:b6:af:0c:30:fd:f6:cd:93:46:cd:f6:c6:fb:b8:
        c4:92:63:8b:32:74:7a:85:fa:8e:2b:f0:25:78:99:73
    Fingerprint (SHA-256):
        73:48:AC:24:02:F4:88:A5:D1:CE:63:96:CE:0D:76:53:B8:41:E5:C0:BB:79:E7:F2:17:31:A2:83:D3:D8:C8:66
    Fingerprint (SHA1):
        FB:DA:81:19:7E:7C:EF:C9:82:C9:FC:EC:EC:53:B8:CD:F8:2E:B5:65
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #13518: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13519: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000987 (0x3019db9b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:51 2017
            Not After : Sun Aug 07 00:10:51 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:00:84:3d:f8:80:25:a7:c4:e4:68:d0:54:32:2b:c9:
                    13:5f:d0:b1:0c:55:75:80:e7:87:ca:08:43:e0:90:3d:
                    e9:2f:8c:b8:31:f6:fc:b4:53:6b:53:7b:9f:d3:f6:59:
                    cd:90:94:1d:bb:5e:b5:d3:fd:7b:ae:56:06:d2:f7:fd:
                    d6:3b:58:b7:d4:31:4f:55:02:c2:db:24:5c:5b:f0:f9:
                    ec:27:78:57:90:3a:6e:23:fe:b6:d7:9f:2c:5d:7d:1f:
                    14:0e:50:14:0c:c9:24:01:61:4a:96:2e:b7:95:30:c1:
                    17:19:cb:4f:71:a3:f1:88:90:04:1b:11:7d:b4:d3:78:
                    c6:fc:ec:44:95:11:39:93:39:11:db:06:65:97:95:32:
                    fd:67:7a:fa:39:50:37:f9:8b:65:ff:7b:a1:c0:cf:c5:
                    9e:e8:2c:18:6f:8e:59:22:88:2f:56:84:55:33:43:b5:
                    90:90:b9:0b:38:4c:65:90:4d:36:bd:b5:1d:89:06:c0:
                    8a:02:41:2c:f1:0b:9a:c4:f7:fe:24:9d:47:19:6f:45:
                    c3:0a:e5:83:34:2f:97:af:9d:f3:0e:b0:74:16:aa:39:
                    04:a5:ca:6d:09:18:1f:60:18:8e:69:fb:cf:9c:b2:fc:
                    ca:8a:46:cc:71:6d:c0:dc:bc:d2:ce:4f:01:4a:4a:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cc:47:d0:e9:13:a9:68:8a:28:d8:f6:c3:e9:63:aa:7b:
        f2:e2:a3:c8:cc:c7:90:0e:38:bb:00:96:b0:0e:64:e7:
        2e:95:df:57:f5:0c:9b:d4:85:5f:10:ac:4a:13:e9:55:
        3e:27:3d:54:5f:50:e1:bf:50:34:5f:ca:e8:66:66:c7:
        5c:40:f9:9f:80:97:7c:c4:72:fd:96:66:3c:c3:5a:bb:
        4c:ec:ac:1c:6b:f5:c1:fe:eb:72:b3:f6:f6:bf:a6:55:
        bd:a6:be:c0:d4:7c:81:bf:de:42:88:f4:ad:f3:03:83:
        68:74:e9:f0:42:6c:dc:b9:83:45:c4:25:69:96:32:c1:
        83:32:8a:9f:45:e7:2c:1f:92:99:f9:64:52:c4:76:87:
        e4:9c:d1:bf:28:33:50:c3:77:eb:9c:63:8a:e0:ad:23:
        5d:1b:d4:f2:0b:8c:4f:3b:81:d2:77:04:4b:40:42:6f:
        b9:c7:d5:23:86:bb:96:4b:97:02:01:ad:72:3f:33:57:
        49:d2:d3:01:53:dd:bc:36:a3:18:8c:83:36:78:6c:44:
        0e:2c:17:c8:e2:cb:4b:87:11:4f:51:11:c1:4d:da:48:
        43:3a:93:47:fa:d8:35:84:8e:e5:66:ce:fc:d6:99:7d:
        af:fc:03:95:08:bc:23:82:83:e8:05:11:6e:62:46:66
    Fingerprint (SHA-256):
        3A:2F:3A:02:B0:E8:5B:C2:78:AE:F3:9C:56:4D:4A:56:F9:99:88:25:EB:94:26:B2:F9:AE:2F:31:F1:65:44:3B
    Fingerprint (SHA1):
        79:C6:3C:22:4D:6C:87:12:1C:AB:48:23:5C:05:97:96:F2:F0:A3:F7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13520: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13521: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #13522: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #13523: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #13524: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000985 (0x3019db99)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:49 2017
            Not After : Sun Aug 07 00:10:49 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:f0:ac:19:4f:a2:d1:99:c0:65:2e:40:a7:ce:68:69:
                    d3:07:a7:80:cb:6b:45:21:fd:2a:52:46:83:51:d9:95:
                    93:0b:69:d2:82:99:49:30:a5:2d:d0:f0:b1:e2:70:dc:
                    d4:7e:4b:ac:a7:4f:5a:12:39:01:d3:ab:a4:3b:cb:5a:
                    7c:57:33:43:49:c2:60:21:f0:ec:50:91:2c:eb:ce:67:
                    63:c2:7f:2f:3d:6b:44:c8:20:bd:ad:9e:dc:3b:86:ba:
                    6a:b0:a0:bb:be:9f:c8:6e:4b:4e:fb:11:68:3b:72:dc:
                    0f:d3:8b:58:05:13:d1:89:46:75:ea:76:c3:ad:86:84:
                    3b:10:b5:28:c6:80:4a:41:eb:91:7f:7f:50:1d:d1:b4:
                    24:1b:8b:64:4c:7e:79:82:63:81:f6:5c:d0:57:6e:f3:
                    14:ab:57:54:da:57:5d:33:99:cb:af:a4:f8:b1:63:e4:
                    a1:21:5f:d3:15:80:cb:31:fc:f6:8c:a0:90:e9:6c:c6:
                    31:96:da:86:c3:1a:df:d9:b0:dc:63:97:63:36:11:3e:
                    a5:42:15:7a:38:f8:9f:ca:9d:81:cc:94:3f:2f:66:39:
                    10:dd:dd:d8:86:89:77:58:ab:8b:a2:d0:88:a4:b6:5f:
                    57:8d:de:7a:e8:1d:4a:f7:c2:29:51:e3:a3:8e:af:45
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6f:53:b6:95:86:85:2d:de:18:ab:a3:e9:e0:e9:74:e4:
        89:e4:d0:54:b3:42:20:fc:75:e4:89:d4:8b:27:b8:35:
        69:33:de:28:ac:78:25:11:57:2e:df:57:a3:a2:a9:2a:
        9b:23:63:61:4a:fd:34:86:b7:4b:1e:35:00:62:7f:20:
        dc:a1:68:99:62:4c:72:e6:89:29:0f:97:52:14:ed:bb:
        d5:e2:b5:6b:4a:47:cc:a4:ce:52:c8:2e:7c:7d:28:d8:
        85:03:63:0b:23:2b:7b:0a:ce:84:24:a5:13:1d:a2:fc:
        89:58:22:dd:55:5d:5a:a9:0d:f4:3a:5c:62:90:46:2a:
        27:ce:68:1b:88:1b:34:0b:98:a3:37:e7:e0:1a:8b:29:
        75:b4:63:2c:70:3d:22:91:a5:cd:4c:ce:32:0b:09:30:
        97:da:59:ea:db:3c:d8:f4:ce:26:1e:a8:6c:32:27:bb:
        48:45:88:2c:f1:62:c7:e9:99:5a:37:17:17:ca:e2:8c:
        c9:4b:0e:a0:80:4f:2f:73:6d:3c:c7:64:b5:61:bd:0b:
        5e:c1:a9:2a:e5:67:2c:a9:34:61:ba:3a:46:91:aa:b3:
        88:55:a6:8e:39:e5:ec:86:e2:88:ee:88:b7:16:ba:53:
        9a:2f:c5:cd:4b:cd:1e:c6:11:84:39:b1:70:22:cc:9e
    Fingerprint (SHA-256):
        45:0C:2F:0B:A8:09:FB:F9:22:E2:71:EF:C7:65:C1:AE:12:5B:50:46:95:7E:6A:B4:97:1A:FA:27:3B:87:04:1E
    Fingerprint (SHA1):
        1C:5C:EE:FF:0F:71:C7:7F:66:16:69:1F:1D:33:BC:D3:15:BC:2F:F9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13525: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13526: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000986 (0x3019db9a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:50 2017
            Not After : Sun Aug 07 00:10:50 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:6d:28:99:21:5b:5c:97:18:f2:38:68:5f:17:1f:dc:
                    0a:77:59:87:87:38:a9:45:04:a0:f0:a0:b5:b1:eb:87:
                    10:ef:e2:3b:aa:46:be:06:e0:a9:0b:53:c0:fa:7d:45:
                    0e:16:54:ff:a0:e2:72:3a:6b:1e:8f:06:2f:9a:16:a2:
                    66:fc:54:b4:58:8e:25:a9:77:ff:67:f6:08:4a:80:dd:
                    5f:ec:38:0b:c7:09:a4:23:da:49:2d:08:f5:73:f0:9d:
                    bf:82:ed:ef:ba:bc:a1:f9:c6:ed:0f:d4:68:14:a5:9f:
                    0f:a6:b2:44:cd:24:90:e0:0a:31:58:82:57:15:c6:9f:
                    19:99:5d:36:01:4d:02:d3:ec:06:2b:77:8c:ba:a5:6b:
                    26:1a:42:ff:04:6e:3b:7f:ae:d1:b1:e5:b0:ad:cd:50:
                    e4:d4:5c:de:d0:9c:e3:1b:9b:3c:39:11:4f:fb:87:8c:
                    21:d5:7f:37:55:ba:57:cd:e1:c8:9b:74:60:0d:d9:26:
                    9d:87:a1:8d:d4:50:57:45:99:70:b1:8b:7c:ca:e6:a8:
                    7f:7e:fb:c6:ad:1c:71:a6:68:3f:04:dd:74:6e:56:c6:
                    d0:9b:5d:55:8f:3f:a7:39:7c:dd:1b:19:ab:2e:d7:2f:
                    0b:7f:d0:ae:87:82:b1:e8:3a:8d:4a:49:df:25:12:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        09:cd:cf:4c:77:6f:50:cd:41:b2:3d:dc:f3:e9:2b:2d:
        ae:9a:7b:99:d8:9b:19:1f:b4:45:77:66:87:f6:bf:d9:
        89:23:90:8c:3f:b9:35:89:94:38:7e:eb:2a:35:08:da:
        c6:7e:3e:9a:85:2a:a7:36:b1:f2:72:ec:d1:8d:bf:17:
        0a:ad:5a:a4:f1:ac:51:7b:55:f5:70:ab:9e:4a:8e:e4:
        0e:39:13:07:11:cc:7b:57:1e:5c:5c:06:87:2e:5b:8f:
        e8:ad:c7:ee:6d:b3:6c:06:9f:69:9e:8c:e1:3e:7c:dd:
        78:3b:dc:66:4f:1d:06:e4:db:6c:b1:17:c0:69:3b:f1:
        ae:f5:05:90:21:f7:5d:dd:e8:57:bf:9a:5e:f5:44:c9:
        c8:e7:4f:ff:2e:b9:ff:e8:75:dc:8f:9e:b2:c0:08:b7:
        a2:23:4a:c0:4e:ab:bd:c2:08:27:68:cf:60:2d:bf:76:
        2e:30:77:b3:f7:cc:a1:9b:ec:bf:bc:5c:f9:a9:0f:48:
        e4:a6:de:17:6d:f1:df:01:f4:39:b0:5b:71:a3:45:32:
        c7:33:36:64:46:65:31:95:4c:f2:55:b1:8c:97:05:e8:
        b5:6f:b6:af:0c:30:fd:f6:cd:93:46:cd:f6:c6:fb:b8:
        c4:92:63:8b:32:74:7a:85:fa:8e:2b:f0:25:78:99:73
    Fingerprint (SHA-256):
        73:48:AC:24:02:F4:88:A5:D1:CE:63:96:CE:0D:76:53:B8:41:E5:C0:BB:79:E7:F2:17:31:A2:83:D3:D8:C8:66
    Fingerprint (SHA1):
        FB:DA:81:19:7E:7C:EF:C9:82:C9:FC:EC:EC:53:B8:CD:F8:2E:B5:65
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #13527: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13528: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000987 (0x3019db9b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:51 2017
            Not After : Sun Aug 07 00:10:51 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:00:84:3d:f8:80:25:a7:c4:e4:68:d0:54:32:2b:c9:
                    13:5f:d0:b1:0c:55:75:80:e7:87:ca:08:43:e0:90:3d:
                    e9:2f:8c:b8:31:f6:fc:b4:53:6b:53:7b:9f:d3:f6:59:
                    cd:90:94:1d:bb:5e:b5:d3:fd:7b:ae:56:06:d2:f7:fd:
                    d6:3b:58:b7:d4:31:4f:55:02:c2:db:24:5c:5b:f0:f9:
                    ec:27:78:57:90:3a:6e:23:fe:b6:d7:9f:2c:5d:7d:1f:
                    14:0e:50:14:0c:c9:24:01:61:4a:96:2e:b7:95:30:c1:
                    17:19:cb:4f:71:a3:f1:88:90:04:1b:11:7d:b4:d3:78:
                    c6:fc:ec:44:95:11:39:93:39:11:db:06:65:97:95:32:
                    fd:67:7a:fa:39:50:37:f9:8b:65:ff:7b:a1:c0:cf:c5:
                    9e:e8:2c:18:6f:8e:59:22:88:2f:56:84:55:33:43:b5:
                    90:90:b9:0b:38:4c:65:90:4d:36:bd:b5:1d:89:06:c0:
                    8a:02:41:2c:f1:0b:9a:c4:f7:fe:24:9d:47:19:6f:45:
                    c3:0a:e5:83:34:2f:97:af:9d:f3:0e:b0:74:16:aa:39:
                    04:a5:ca:6d:09:18:1f:60:18:8e:69:fb:cf:9c:b2:fc:
                    ca:8a:46:cc:71:6d:c0:dc:bc:d2:ce:4f:01:4a:4a:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cc:47:d0:e9:13:a9:68:8a:28:d8:f6:c3:e9:63:aa:7b:
        f2:e2:a3:c8:cc:c7:90:0e:38:bb:00:96:b0:0e:64:e7:
        2e:95:df:57:f5:0c:9b:d4:85:5f:10:ac:4a:13:e9:55:
        3e:27:3d:54:5f:50:e1:bf:50:34:5f:ca:e8:66:66:c7:
        5c:40:f9:9f:80:97:7c:c4:72:fd:96:66:3c:c3:5a:bb:
        4c:ec:ac:1c:6b:f5:c1:fe:eb:72:b3:f6:f6:bf:a6:55:
        bd:a6:be:c0:d4:7c:81:bf:de:42:88:f4:ad:f3:03:83:
        68:74:e9:f0:42:6c:dc:b9:83:45:c4:25:69:96:32:c1:
        83:32:8a:9f:45:e7:2c:1f:92:99:f9:64:52:c4:76:87:
        e4:9c:d1:bf:28:33:50:c3:77:eb:9c:63:8a:e0:ad:23:
        5d:1b:d4:f2:0b:8c:4f:3b:81:d2:77:04:4b:40:42:6f:
        b9:c7:d5:23:86:bb:96:4b:97:02:01:ad:72:3f:33:57:
        49:d2:d3:01:53:dd:bc:36:a3:18:8c:83:36:78:6c:44:
        0e:2c:17:c8:e2:cb:4b:87:11:4f:51:11:c1:4d:da:48:
        43:3a:93:47:fa:d8:35:84:8e:e5:66:ce:fc:d6:99:7d:
        af:fc:03:95:08:bc:23:82:83:e8:05:11:6e:62:46:66
    Fingerprint (SHA-256):
        3A:2F:3A:02:B0:E8:5B:C2:78:AE:F3:9C:56:4D:4A:56:F9:99:88:25:EB:94:26:B2:F9:AE:2F:31:F1:65:44:3B
    Fingerprint (SHA1):
        79:C6:3C:22:4D:6C:87:12:1C:AB:48:23:5C:05:97:96:F2:F0:A3:F7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13529: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13530: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000985 (0x3019db99)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:49 2017
            Not After : Sun Aug 07 00:10:49 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:f0:ac:19:4f:a2:d1:99:c0:65:2e:40:a7:ce:68:69:
                    d3:07:a7:80:cb:6b:45:21:fd:2a:52:46:83:51:d9:95:
                    93:0b:69:d2:82:99:49:30:a5:2d:d0:f0:b1:e2:70:dc:
                    d4:7e:4b:ac:a7:4f:5a:12:39:01:d3:ab:a4:3b:cb:5a:
                    7c:57:33:43:49:c2:60:21:f0:ec:50:91:2c:eb:ce:67:
                    63:c2:7f:2f:3d:6b:44:c8:20:bd:ad:9e:dc:3b:86:ba:
                    6a:b0:a0:bb:be:9f:c8:6e:4b:4e:fb:11:68:3b:72:dc:
                    0f:d3:8b:58:05:13:d1:89:46:75:ea:76:c3:ad:86:84:
                    3b:10:b5:28:c6:80:4a:41:eb:91:7f:7f:50:1d:d1:b4:
                    24:1b:8b:64:4c:7e:79:82:63:81:f6:5c:d0:57:6e:f3:
                    14:ab:57:54:da:57:5d:33:99:cb:af:a4:f8:b1:63:e4:
                    a1:21:5f:d3:15:80:cb:31:fc:f6:8c:a0:90:e9:6c:c6:
                    31:96:da:86:c3:1a:df:d9:b0:dc:63:97:63:36:11:3e:
                    a5:42:15:7a:38:f8:9f:ca:9d:81:cc:94:3f:2f:66:39:
                    10:dd:dd:d8:86:89:77:58:ab:8b:a2:d0:88:a4:b6:5f:
                    57:8d:de:7a:e8:1d:4a:f7:c2:29:51:e3:a3:8e:af:45
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6f:53:b6:95:86:85:2d:de:18:ab:a3:e9:e0:e9:74:e4:
        89:e4:d0:54:b3:42:20:fc:75:e4:89:d4:8b:27:b8:35:
        69:33:de:28:ac:78:25:11:57:2e:df:57:a3:a2:a9:2a:
        9b:23:63:61:4a:fd:34:86:b7:4b:1e:35:00:62:7f:20:
        dc:a1:68:99:62:4c:72:e6:89:29:0f:97:52:14:ed:bb:
        d5:e2:b5:6b:4a:47:cc:a4:ce:52:c8:2e:7c:7d:28:d8:
        85:03:63:0b:23:2b:7b:0a:ce:84:24:a5:13:1d:a2:fc:
        89:58:22:dd:55:5d:5a:a9:0d:f4:3a:5c:62:90:46:2a:
        27:ce:68:1b:88:1b:34:0b:98:a3:37:e7:e0:1a:8b:29:
        75:b4:63:2c:70:3d:22:91:a5:cd:4c:ce:32:0b:09:30:
        97:da:59:ea:db:3c:d8:f4:ce:26:1e:a8:6c:32:27:bb:
        48:45:88:2c:f1:62:c7:e9:99:5a:37:17:17:ca:e2:8c:
        c9:4b:0e:a0:80:4f:2f:73:6d:3c:c7:64:b5:61:bd:0b:
        5e:c1:a9:2a:e5:67:2c:a9:34:61:ba:3a:46:91:aa:b3:
        88:55:a6:8e:39:e5:ec:86:e2:88:ee:88:b7:16:ba:53:
        9a:2f:c5:cd:4b:cd:1e:c6:11:84:39:b1:70:22:cc:9e
    Fingerprint (SHA-256):
        45:0C:2F:0B:A8:09:FB:F9:22:E2:71:EF:C7:65:C1:AE:12:5B:50:46:95:7E:6A:B4:97:1A:FA:27:3B:87:04:1E
    Fingerprint (SHA1):
        1C:5C:EE:FF:0F:71:C7:7F:66:16:69:1F:1D:33:BC:D3:15:BC:2F:F9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13531: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000985 (0x3019db99)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:49 2017
            Not After : Sun Aug 07 00:10:49 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:f0:ac:19:4f:a2:d1:99:c0:65:2e:40:a7:ce:68:69:
                    d3:07:a7:80:cb:6b:45:21:fd:2a:52:46:83:51:d9:95:
                    93:0b:69:d2:82:99:49:30:a5:2d:d0:f0:b1:e2:70:dc:
                    d4:7e:4b:ac:a7:4f:5a:12:39:01:d3:ab:a4:3b:cb:5a:
                    7c:57:33:43:49:c2:60:21:f0:ec:50:91:2c:eb:ce:67:
                    63:c2:7f:2f:3d:6b:44:c8:20:bd:ad:9e:dc:3b:86:ba:
                    6a:b0:a0:bb:be:9f:c8:6e:4b:4e:fb:11:68:3b:72:dc:
                    0f:d3:8b:58:05:13:d1:89:46:75:ea:76:c3:ad:86:84:
                    3b:10:b5:28:c6:80:4a:41:eb:91:7f:7f:50:1d:d1:b4:
                    24:1b:8b:64:4c:7e:79:82:63:81:f6:5c:d0:57:6e:f3:
                    14:ab:57:54:da:57:5d:33:99:cb:af:a4:f8:b1:63:e4:
                    a1:21:5f:d3:15:80:cb:31:fc:f6:8c:a0:90:e9:6c:c6:
                    31:96:da:86:c3:1a:df:d9:b0:dc:63:97:63:36:11:3e:
                    a5:42:15:7a:38:f8:9f:ca:9d:81:cc:94:3f:2f:66:39:
                    10:dd:dd:d8:86:89:77:58:ab:8b:a2:d0:88:a4:b6:5f:
                    57:8d:de:7a:e8:1d:4a:f7:c2:29:51:e3:a3:8e:af:45
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6f:53:b6:95:86:85:2d:de:18:ab:a3:e9:e0:e9:74:e4:
        89:e4:d0:54:b3:42:20:fc:75:e4:89:d4:8b:27:b8:35:
        69:33:de:28:ac:78:25:11:57:2e:df:57:a3:a2:a9:2a:
        9b:23:63:61:4a:fd:34:86:b7:4b:1e:35:00:62:7f:20:
        dc:a1:68:99:62:4c:72:e6:89:29:0f:97:52:14:ed:bb:
        d5:e2:b5:6b:4a:47:cc:a4:ce:52:c8:2e:7c:7d:28:d8:
        85:03:63:0b:23:2b:7b:0a:ce:84:24:a5:13:1d:a2:fc:
        89:58:22:dd:55:5d:5a:a9:0d:f4:3a:5c:62:90:46:2a:
        27:ce:68:1b:88:1b:34:0b:98:a3:37:e7:e0:1a:8b:29:
        75:b4:63:2c:70:3d:22:91:a5:cd:4c:ce:32:0b:09:30:
        97:da:59:ea:db:3c:d8:f4:ce:26:1e:a8:6c:32:27:bb:
        48:45:88:2c:f1:62:c7:e9:99:5a:37:17:17:ca:e2:8c:
        c9:4b:0e:a0:80:4f:2f:73:6d:3c:c7:64:b5:61:bd:0b:
        5e:c1:a9:2a:e5:67:2c:a9:34:61:ba:3a:46:91:aa:b3:
        88:55:a6:8e:39:e5:ec:86:e2:88:ee:88:b7:16:ba:53:
        9a:2f:c5:cd:4b:cd:1e:c6:11:84:39:b1:70:22:cc:9e
    Fingerprint (SHA-256):
        45:0C:2F:0B:A8:09:FB:F9:22:E2:71:EF:C7:65:C1:AE:12:5B:50:46:95:7E:6A:B4:97:1A:FA:27:3B:87:04:1E
    Fingerprint (SHA1):
        1C:5C:EE:FF:0F:71:C7:7F:66:16:69:1F:1D:33:BC:D3:15:BC:2F:F9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13532: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000986 (0x3019db9a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:50 2017
            Not After : Sun Aug 07 00:10:50 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:6d:28:99:21:5b:5c:97:18:f2:38:68:5f:17:1f:dc:
                    0a:77:59:87:87:38:a9:45:04:a0:f0:a0:b5:b1:eb:87:
                    10:ef:e2:3b:aa:46:be:06:e0:a9:0b:53:c0:fa:7d:45:
                    0e:16:54:ff:a0:e2:72:3a:6b:1e:8f:06:2f:9a:16:a2:
                    66:fc:54:b4:58:8e:25:a9:77:ff:67:f6:08:4a:80:dd:
                    5f:ec:38:0b:c7:09:a4:23:da:49:2d:08:f5:73:f0:9d:
                    bf:82:ed:ef:ba:bc:a1:f9:c6:ed:0f:d4:68:14:a5:9f:
                    0f:a6:b2:44:cd:24:90:e0:0a:31:58:82:57:15:c6:9f:
                    19:99:5d:36:01:4d:02:d3:ec:06:2b:77:8c:ba:a5:6b:
                    26:1a:42:ff:04:6e:3b:7f:ae:d1:b1:e5:b0:ad:cd:50:
                    e4:d4:5c:de:d0:9c:e3:1b:9b:3c:39:11:4f:fb:87:8c:
                    21:d5:7f:37:55:ba:57:cd:e1:c8:9b:74:60:0d:d9:26:
                    9d:87:a1:8d:d4:50:57:45:99:70:b1:8b:7c:ca:e6:a8:
                    7f:7e:fb:c6:ad:1c:71:a6:68:3f:04:dd:74:6e:56:c6:
                    d0:9b:5d:55:8f:3f:a7:39:7c:dd:1b:19:ab:2e:d7:2f:
                    0b:7f:d0:ae:87:82:b1:e8:3a:8d:4a:49:df:25:12:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        09:cd:cf:4c:77:6f:50:cd:41:b2:3d:dc:f3:e9:2b:2d:
        ae:9a:7b:99:d8:9b:19:1f:b4:45:77:66:87:f6:bf:d9:
        89:23:90:8c:3f:b9:35:89:94:38:7e:eb:2a:35:08:da:
        c6:7e:3e:9a:85:2a:a7:36:b1:f2:72:ec:d1:8d:bf:17:
        0a:ad:5a:a4:f1:ac:51:7b:55:f5:70:ab:9e:4a:8e:e4:
        0e:39:13:07:11:cc:7b:57:1e:5c:5c:06:87:2e:5b:8f:
        e8:ad:c7:ee:6d:b3:6c:06:9f:69:9e:8c:e1:3e:7c:dd:
        78:3b:dc:66:4f:1d:06:e4:db:6c:b1:17:c0:69:3b:f1:
        ae:f5:05:90:21:f7:5d:dd:e8:57:bf:9a:5e:f5:44:c9:
        c8:e7:4f:ff:2e:b9:ff:e8:75:dc:8f:9e:b2:c0:08:b7:
        a2:23:4a:c0:4e:ab:bd:c2:08:27:68:cf:60:2d:bf:76:
        2e:30:77:b3:f7:cc:a1:9b:ec:bf:bc:5c:f9:a9:0f:48:
        e4:a6:de:17:6d:f1:df:01:f4:39:b0:5b:71:a3:45:32:
        c7:33:36:64:46:65:31:95:4c:f2:55:b1:8c:97:05:e8:
        b5:6f:b6:af:0c:30:fd:f6:cd:93:46:cd:f6:c6:fb:b8:
        c4:92:63:8b:32:74:7a:85:fa:8e:2b:f0:25:78:99:73
    Fingerprint (SHA-256):
        73:48:AC:24:02:F4:88:A5:D1:CE:63:96:CE:0D:76:53:B8:41:E5:C0:BB:79:E7:F2:17:31:A2:83:D3:D8:C8:66
    Fingerprint (SHA1):
        FB:DA:81:19:7E:7C:EF:C9:82:C9:FC:EC:EC:53:B8:CD:F8:2E:B5:65
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #13533: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000986 (0x3019db9a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:50 2017
            Not After : Sun Aug 07 00:10:50 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:6d:28:99:21:5b:5c:97:18:f2:38:68:5f:17:1f:dc:
                    0a:77:59:87:87:38:a9:45:04:a0:f0:a0:b5:b1:eb:87:
                    10:ef:e2:3b:aa:46:be:06:e0:a9:0b:53:c0:fa:7d:45:
                    0e:16:54:ff:a0:e2:72:3a:6b:1e:8f:06:2f:9a:16:a2:
                    66:fc:54:b4:58:8e:25:a9:77:ff:67:f6:08:4a:80:dd:
                    5f:ec:38:0b:c7:09:a4:23:da:49:2d:08:f5:73:f0:9d:
                    bf:82:ed:ef:ba:bc:a1:f9:c6:ed:0f:d4:68:14:a5:9f:
                    0f:a6:b2:44:cd:24:90:e0:0a:31:58:82:57:15:c6:9f:
                    19:99:5d:36:01:4d:02:d3:ec:06:2b:77:8c:ba:a5:6b:
                    26:1a:42:ff:04:6e:3b:7f:ae:d1:b1:e5:b0:ad:cd:50:
                    e4:d4:5c:de:d0:9c:e3:1b:9b:3c:39:11:4f:fb:87:8c:
                    21:d5:7f:37:55:ba:57:cd:e1:c8:9b:74:60:0d:d9:26:
                    9d:87:a1:8d:d4:50:57:45:99:70:b1:8b:7c:ca:e6:a8:
                    7f:7e:fb:c6:ad:1c:71:a6:68:3f:04:dd:74:6e:56:c6:
                    d0:9b:5d:55:8f:3f:a7:39:7c:dd:1b:19:ab:2e:d7:2f:
                    0b:7f:d0:ae:87:82:b1:e8:3a:8d:4a:49:df:25:12:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        09:cd:cf:4c:77:6f:50:cd:41:b2:3d:dc:f3:e9:2b:2d:
        ae:9a:7b:99:d8:9b:19:1f:b4:45:77:66:87:f6:bf:d9:
        89:23:90:8c:3f:b9:35:89:94:38:7e:eb:2a:35:08:da:
        c6:7e:3e:9a:85:2a:a7:36:b1:f2:72:ec:d1:8d:bf:17:
        0a:ad:5a:a4:f1:ac:51:7b:55:f5:70:ab:9e:4a:8e:e4:
        0e:39:13:07:11:cc:7b:57:1e:5c:5c:06:87:2e:5b:8f:
        e8:ad:c7:ee:6d:b3:6c:06:9f:69:9e:8c:e1:3e:7c:dd:
        78:3b:dc:66:4f:1d:06:e4:db:6c:b1:17:c0:69:3b:f1:
        ae:f5:05:90:21:f7:5d:dd:e8:57:bf:9a:5e:f5:44:c9:
        c8:e7:4f:ff:2e:b9:ff:e8:75:dc:8f:9e:b2:c0:08:b7:
        a2:23:4a:c0:4e:ab:bd:c2:08:27:68:cf:60:2d:bf:76:
        2e:30:77:b3:f7:cc:a1:9b:ec:bf:bc:5c:f9:a9:0f:48:
        e4:a6:de:17:6d:f1:df:01:f4:39:b0:5b:71:a3:45:32:
        c7:33:36:64:46:65:31:95:4c:f2:55:b1:8c:97:05:e8:
        b5:6f:b6:af:0c:30:fd:f6:cd:93:46:cd:f6:c6:fb:b8:
        c4:92:63:8b:32:74:7a:85:fa:8e:2b:f0:25:78:99:73
    Fingerprint (SHA-256):
        73:48:AC:24:02:F4:88:A5:D1:CE:63:96:CE:0D:76:53:B8:41:E5:C0:BB:79:E7:F2:17:31:A2:83:D3:D8:C8:66
    Fingerprint (SHA1):
        FB:DA:81:19:7E:7C:EF:C9:82:C9:FC:EC:EC:53:B8:CD:F8:2E:B5:65
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #13534: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000987 (0x3019db9b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:51 2017
            Not After : Sun Aug 07 00:10:51 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:00:84:3d:f8:80:25:a7:c4:e4:68:d0:54:32:2b:c9:
                    13:5f:d0:b1:0c:55:75:80:e7:87:ca:08:43:e0:90:3d:
                    e9:2f:8c:b8:31:f6:fc:b4:53:6b:53:7b:9f:d3:f6:59:
                    cd:90:94:1d:bb:5e:b5:d3:fd:7b:ae:56:06:d2:f7:fd:
                    d6:3b:58:b7:d4:31:4f:55:02:c2:db:24:5c:5b:f0:f9:
                    ec:27:78:57:90:3a:6e:23:fe:b6:d7:9f:2c:5d:7d:1f:
                    14:0e:50:14:0c:c9:24:01:61:4a:96:2e:b7:95:30:c1:
                    17:19:cb:4f:71:a3:f1:88:90:04:1b:11:7d:b4:d3:78:
                    c6:fc:ec:44:95:11:39:93:39:11:db:06:65:97:95:32:
                    fd:67:7a:fa:39:50:37:f9:8b:65:ff:7b:a1:c0:cf:c5:
                    9e:e8:2c:18:6f:8e:59:22:88:2f:56:84:55:33:43:b5:
                    90:90:b9:0b:38:4c:65:90:4d:36:bd:b5:1d:89:06:c0:
                    8a:02:41:2c:f1:0b:9a:c4:f7:fe:24:9d:47:19:6f:45:
                    c3:0a:e5:83:34:2f:97:af:9d:f3:0e:b0:74:16:aa:39:
                    04:a5:ca:6d:09:18:1f:60:18:8e:69:fb:cf:9c:b2:fc:
                    ca:8a:46:cc:71:6d:c0:dc:bc:d2:ce:4f:01:4a:4a:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cc:47:d0:e9:13:a9:68:8a:28:d8:f6:c3:e9:63:aa:7b:
        f2:e2:a3:c8:cc:c7:90:0e:38:bb:00:96:b0:0e:64:e7:
        2e:95:df:57:f5:0c:9b:d4:85:5f:10:ac:4a:13:e9:55:
        3e:27:3d:54:5f:50:e1:bf:50:34:5f:ca:e8:66:66:c7:
        5c:40:f9:9f:80:97:7c:c4:72:fd:96:66:3c:c3:5a:bb:
        4c:ec:ac:1c:6b:f5:c1:fe:eb:72:b3:f6:f6:bf:a6:55:
        bd:a6:be:c0:d4:7c:81:bf:de:42:88:f4:ad:f3:03:83:
        68:74:e9:f0:42:6c:dc:b9:83:45:c4:25:69:96:32:c1:
        83:32:8a:9f:45:e7:2c:1f:92:99:f9:64:52:c4:76:87:
        e4:9c:d1:bf:28:33:50:c3:77:eb:9c:63:8a:e0:ad:23:
        5d:1b:d4:f2:0b:8c:4f:3b:81:d2:77:04:4b:40:42:6f:
        b9:c7:d5:23:86:bb:96:4b:97:02:01:ad:72:3f:33:57:
        49:d2:d3:01:53:dd:bc:36:a3:18:8c:83:36:78:6c:44:
        0e:2c:17:c8:e2:cb:4b:87:11:4f:51:11:c1:4d:da:48:
        43:3a:93:47:fa:d8:35:84:8e:e5:66:ce:fc:d6:99:7d:
        af:fc:03:95:08:bc:23:82:83:e8:05:11:6e:62:46:66
    Fingerprint (SHA-256):
        3A:2F:3A:02:B0:E8:5B:C2:78:AE:F3:9C:56:4D:4A:56:F9:99:88:25:EB:94:26:B2:F9:AE:2F:31:F1:65:44:3B
    Fingerprint (SHA1):
        79:C6:3C:22:4D:6C:87:12:1C:AB:48:23:5C:05:97:96:F2:F0:A3:F7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #13535: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000987 (0x3019db9b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:51 2017
            Not After : Sun Aug 07 00:10:51 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:00:84:3d:f8:80:25:a7:c4:e4:68:d0:54:32:2b:c9:
                    13:5f:d0:b1:0c:55:75:80:e7:87:ca:08:43:e0:90:3d:
                    e9:2f:8c:b8:31:f6:fc:b4:53:6b:53:7b:9f:d3:f6:59:
                    cd:90:94:1d:bb:5e:b5:d3:fd:7b:ae:56:06:d2:f7:fd:
                    d6:3b:58:b7:d4:31:4f:55:02:c2:db:24:5c:5b:f0:f9:
                    ec:27:78:57:90:3a:6e:23:fe:b6:d7:9f:2c:5d:7d:1f:
                    14:0e:50:14:0c:c9:24:01:61:4a:96:2e:b7:95:30:c1:
                    17:19:cb:4f:71:a3:f1:88:90:04:1b:11:7d:b4:d3:78:
                    c6:fc:ec:44:95:11:39:93:39:11:db:06:65:97:95:32:
                    fd:67:7a:fa:39:50:37:f9:8b:65:ff:7b:a1:c0:cf:c5:
                    9e:e8:2c:18:6f:8e:59:22:88:2f:56:84:55:33:43:b5:
                    90:90:b9:0b:38:4c:65:90:4d:36:bd:b5:1d:89:06:c0:
                    8a:02:41:2c:f1:0b:9a:c4:f7:fe:24:9d:47:19:6f:45:
                    c3:0a:e5:83:34:2f:97:af:9d:f3:0e:b0:74:16:aa:39:
                    04:a5:ca:6d:09:18:1f:60:18:8e:69:fb:cf:9c:b2:fc:
                    ca:8a:46:cc:71:6d:c0:dc:bc:d2:ce:4f:01:4a:4a:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cc:47:d0:e9:13:a9:68:8a:28:d8:f6:c3:e9:63:aa:7b:
        f2:e2:a3:c8:cc:c7:90:0e:38:bb:00:96:b0:0e:64:e7:
        2e:95:df:57:f5:0c:9b:d4:85:5f:10:ac:4a:13:e9:55:
        3e:27:3d:54:5f:50:e1:bf:50:34:5f:ca:e8:66:66:c7:
        5c:40:f9:9f:80:97:7c:c4:72:fd:96:66:3c:c3:5a:bb:
        4c:ec:ac:1c:6b:f5:c1:fe:eb:72:b3:f6:f6:bf:a6:55:
        bd:a6:be:c0:d4:7c:81:bf:de:42:88:f4:ad:f3:03:83:
        68:74:e9:f0:42:6c:dc:b9:83:45:c4:25:69:96:32:c1:
        83:32:8a:9f:45:e7:2c:1f:92:99:f9:64:52:c4:76:87:
        e4:9c:d1:bf:28:33:50:c3:77:eb:9c:63:8a:e0:ad:23:
        5d:1b:d4:f2:0b:8c:4f:3b:81:d2:77:04:4b:40:42:6f:
        b9:c7:d5:23:86:bb:96:4b:97:02:01:ad:72:3f:33:57:
        49:d2:d3:01:53:dd:bc:36:a3:18:8c:83:36:78:6c:44:
        0e:2c:17:c8:e2:cb:4b:87:11:4f:51:11:c1:4d:da:48:
        43:3a:93:47:fa:d8:35:84:8e:e5:66:ce:fc:d6:99:7d:
        af:fc:03:95:08:bc:23:82:83:e8:05:11:6e:62:46:66
    Fingerprint (SHA-256):
        3A:2F:3A:02:B0:E8:5B:C2:78:AE:F3:9C:56:4D:4A:56:F9:99:88:25:EB:94:26:B2:F9:AE:2F:31:F1:65:44:3B
    Fingerprint (SHA1):
        79:C6:3C:22:4D:6C:87:12:1C:AB:48:23:5C:05:97:96:F2:F0:A3:F7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #13536: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #13537: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807000990 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13538: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #13539: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13540: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13541: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 807000991   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13542: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13543: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #13544: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13545: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 807000992   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #13546: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13547: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #13548: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13549: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 807000993   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13550: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13551: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #13552: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13553: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 807000994   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13554: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13555: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #13556: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13557: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 807000995   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13558: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13559: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #13560: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13561: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 807000996   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13562: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13563: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #13564: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #13565: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #13566: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #13567: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #13568: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000990 (0x3019db9e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:56 2017
            Not After : Sun Aug 07 00:10:56 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dc:52:0e:c7:a1:e4:c5:87:35:b4:38:af:fd:35:53:9c:
                    d0:f0:7d:b7:b8:fb:34:0e:69:a2:2a:86:29:49:a9:6f:
                    9b:8f:68:a4:db:2a:70:56:40:11:44:b3:14:de:40:dd:
                    b7:0c:d6:96:be:d0:66:07:31:a4:12:04:53:ae:49:ad:
                    b0:49:e5:90:5e:1c:a4:4a:54:ad:70:20:89:e4:d8:5f:
                    bd:44:58:5e:86:fd:ae:fe:45:95:ab:6e:b4:bb:89:3f:
                    8d:67:7b:25:75:b0:bb:6f:62:54:2d:7a:d2:89:93:50:
                    8b:e3:47:e1:de:f2:72:09:00:65:23:f6:5f:57:f0:ce:
                    97:dc:09:4c:0a:72:69:01:4d:32:44:e9:bf:50:94:20:
                    48:27:2f:78:1a:5b:9e:c2:3f:21:e9:c7:6e:2a:92:5c:
                    72:c0:21:ef:38:b3:08:95:99:66:e2:80:69:cb:a1:d3:
                    c3:e2:d8:02:a3:d6:56:0e:f7:00:fb:8d:88:de:3f:ca:
                    66:03:ba:26:95:8c:c0:0a:5f:62:30:07:c5:76:d9:22:
                    86:79:b9:f5:60:1b:2d:16:43:f3:aa:14:f9:b1:e0:0f:
                    42:f0:8f:15:4e:4f:27:6c:8f:40:d9:a3:df:95:0e:e8:
                    43:0a:f9:2c:06:1e:97:52:5f:66:8f:96:fa:15:71:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        78:dd:c5:80:0d:87:c1:24:90:cd:63:33:8e:0a:19:0e:
        f1:0c:3f:09:bc:62:c2:af:ea:a1:26:d4:00:5f:97:e8:
        19:48:90:b5:63:8f:15:aa:af:dc:f1:c1:9d:80:c8:a7:
        5e:7f:73:33:27:33:9b:39:80:14:80:e9:5e:4f:70:c3:
        fe:65:2a:1a:58:f1:51:8c:ac:93:6f:3d:0c:1b:f8:14:
        c4:d2:5f:c4:97:62:a8:5a:99:0c:3b:26:af:89:6e:a0:
        da:4c:4e:7d:1d:ad:78:ba:16:f4:bd:12:c5:e5:7f:22:
        26:e9:5b:59:f1:2d:11:c7:e4:70:ad:bf:c0:1f:83:ce:
        dc:d1:62:cc:5a:62:1e:b1:9d:a6:8a:f8:d3:54:94:10:
        ea:fb:76:dd:16:14:35:e6:ad:6f:26:4e:04:8a:db:09:
        94:ad:f9:07:c1:18:fb:bb:1d:c6:a4:af:a4:81:3b:6d:
        c6:bd:0c:db:5c:05:fa:bb:3f:29:20:a7:1b:22:e3:5f:
        45:de:8e:ff:b4:18:23:25:24:5b:1c:f3:18:58:15:8c:
        ed:6d:45:44:51:2c:b5:d5:92:11:b6:cc:d8:69:48:24:
        3a:7d:9e:90:51:fa:6a:6d:ce:75:33:5b:50:f4:ca:58:
        ca:d5:f5:e9:2e:b4:0f:53:6f:0c:f8:46:d8:b6:c3:e0
    Fingerprint (SHA-256):
        4F:36:9E:67:56:E4:E9:2F:5E:C7:1F:84:B0:C2:75:16:70:AB:52:22:4D:5D:E3:55:FB:98:78:0A:E6:1B:05:AB
    Fingerprint (SHA1):
        15:AB:A1:85:1D:FE:26:4D:BD:0B:16:DB:85:D7:96:A5:6A:FD:6B:F4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13569: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13570: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13571: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13572: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000990 (0x3019db9e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:10:56 2017
            Not After : Sun Aug 07 00:10:56 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dc:52:0e:c7:a1:e4:c5:87:35:b4:38:af:fd:35:53:9c:
                    d0:f0:7d:b7:b8:fb:34:0e:69:a2:2a:86:29:49:a9:6f:
                    9b:8f:68:a4:db:2a:70:56:40:11:44:b3:14:de:40:dd:
                    b7:0c:d6:96:be:d0:66:07:31:a4:12:04:53:ae:49:ad:
                    b0:49:e5:90:5e:1c:a4:4a:54:ad:70:20:89:e4:d8:5f:
                    bd:44:58:5e:86:fd:ae:fe:45:95:ab:6e:b4:bb:89:3f:
                    8d:67:7b:25:75:b0:bb:6f:62:54:2d:7a:d2:89:93:50:
                    8b:e3:47:e1:de:f2:72:09:00:65:23:f6:5f:57:f0:ce:
                    97:dc:09:4c:0a:72:69:01:4d:32:44:e9:bf:50:94:20:
                    48:27:2f:78:1a:5b:9e:c2:3f:21:e9:c7:6e:2a:92:5c:
                    72:c0:21:ef:38:b3:08:95:99:66:e2:80:69:cb:a1:d3:
                    c3:e2:d8:02:a3:d6:56:0e:f7:00:fb:8d:88:de:3f:ca:
                    66:03:ba:26:95:8c:c0:0a:5f:62:30:07:c5:76:d9:22:
                    86:79:b9:f5:60:1b:2d:16:43:f3:aa:14:f9:b1:e0:0f:
                    42:f0:8f:15:4e:4f:27:6c:8f:40:d9:a3:df:95:0e:e8:
                    43:0a:f9:2c:06:1e:97:52:5f:66:8f:96:fa:15:71:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        78:dd:c5:80:0d:87:c1:24:90:cd:63:33:8e:0a:19:0e:
        f1:0c:3f:09:bc:62:c2:af:ea:a1:26:d4:00:5f:97:e8:
        19:48:90:b5:63:8f:15:aa:af:dc:f1:c1:9d:80:c8:a7:
        5e:7f:73:33:27:33:9b:39:80:14:80:e9:5e:4f:70:c3:
        fe:65:2a:1a:58:f1:51:8c:ac:93:6f:3d:0c:1b:f8:14:
        c4:d2:5f:c4:97:62:a8:5a:99:0c:3b:26:af:89:6e:a0:
        da:4c:4e:7d:1d:ad:78:ba:16:f4:bd:12:c5:e5:7f:22:
        26:e9:5b:59:f1:2d:11:c7:e4:70:ad:bf:c0:1f:83:ce:
        dc:d1:62:cc:5a:62:1e:b1:9d:a6:8a:f8:d3:54:94:10:
        ea:fb:76:dd:16:14:35:e6:ad:6f:26:4e:04:8a:db:09:
        94:ad:f9:07:c1:18:fb:bb:1d:c6:a4:af:a4:81:3b:6d:
        c6:bd:0c:db:5c:05:fa:bb:3f:29:20:a7:1b:22:e3:5f:
        45:de:8e:ff:b4:18:23:25:24:5b:1c:f3:18:58:15:8c:
        ed:6d:45:44:51:2c:b5:d5:92:11:b6:cc:d8:69:48:24:
        3a:7d:9e:90:51:fa:6a:6d:ce:75:33:5b:50:f4:ca:58:
        ca:d5:f5:e9:2e:b4:0f:53:6f:0c:f8:46:d8:b6:c3:e0
    Fingerprint (SHA-256):
        4F:36:9E:67:56:E4:E9:2F:5E:C7:1F:84:B0:C2:75:16:70:AB:52:22:4D:5D:E3:55:FB:98:78:0A:E6:1B:05:AB
    Fingerprint (SHA1):
        15:AB:A1:85:1D:FE:26:4D:BD:0B:16:DB:85:D7:96:A5:6A:FD:6B:F4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13573: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13574: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #13575: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807000997 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13576: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #13577: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13578: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13579: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 807000998   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #13580: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13581: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #13582: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13583: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 807000999   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13584: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13585: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #13586: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13587: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 807001000   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13588: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13589: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #13590: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13591: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 807001001   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13592: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13593: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #13594: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13595: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 807001002   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13596: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13597: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #13598: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13599: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 807001003   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13600: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13601: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #13602: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13603: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 807001004   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13604: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13605: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #13606: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13607: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 807001005   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #13608: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13609: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #13610: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13611: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 807001006   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13612: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13613: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #13614: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13615: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 807001007   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13616: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13617: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #13618: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13619: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 807001008   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13620: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13621: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #13622: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13623: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 807001009   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13624: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13625: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #13626: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13627: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 807001010   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13628: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13629: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #13630: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13631: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 807001011   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13632: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13633: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #13634: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13635: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 807001012   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13636: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13637: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #13638: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13639: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 807001013   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13640: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13641: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #13642: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13643: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 807001014   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #13644: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13645: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #13646: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13647: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 807001015   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13648: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13649: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #13650: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13651: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 807001016   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13652: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13653: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #13654: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13655: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 807001017   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13656: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13657: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #13658: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13659: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 807001018   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13660: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13661: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #13662: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13663: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 807001019   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13664: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13665: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #13666: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13667: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 807001020   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13668: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13669: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #13670: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13671: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 807001021   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13672: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13673: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #13674: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13675: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 807001022   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13676: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13677: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #13678: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13679: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 807001023   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13680: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13681: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #13682: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13683: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 807001024   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13684: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13685: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #13686: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13687: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 807001025   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13688: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13689: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #13690: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13691: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 807001026   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13692: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13693: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #13694: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000997 (0x3019dba5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:11:04 2017
            Not After : Sun Aug 07 00:11:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:0a:c4:e2:2c:16:db:2d:44:b2:83:57:40:0a:e5:71:
                    6a:bf:6d:45:dd:5d:ff:5e:d9:00:2c:64:e9:8d:1a:4c:
                    85:b4:96:b0:2d:06:c1:65:b8:f0:91:84:23:1e:d4:d0:
                    25:56:ef:65:63:dc:a7:8a:d8:98:35:42:48:e8:c9:73:
                    3b:e9:b2:85:de:a8:61:34:6f:71:92:77:e0:f2:2d:b7:
                    51:ce:7a:a1:94:e2:bd:d9:2d:02:cc:1b:95:99:64:65:
                    a0:99:ac:75:b3:f8:6a:39:f5:79:6e:07:cf:4e:df:28:
                    63:5e:f6:bc:ee:94:87:dd:20:e1:cf:e9:f9:c5:f0:d8:
                    49:91:97:34:b0:0b:13:cb:11:00:01:67:3c:86:4d:3b:
                    4e:bc:5f:b2:ec:38:3f:b1:af:c9:34:48:d1:fe:e6:92:
                    b1:fb:e3:2a:df:d8:f6:2d:23:5a:69:c7:f2:30:5d:c1:
                    35:08:b7:13:04:7f:ef:1b:33:a1:f7:22:a7:f9:33:04:
                    ec:f2:73:c6:77:af:ea:92:55:2e:0d:01:3f:4c:86:f9:
                    45:70:96:c4:a1:bc:42:d1:21:05:17:db:7e:4e:d9:ba:
                    7c:98:b6:26:b5:6d:af:04:46:2c:a3:b4:33:93:e4:e9:
                    29:87:30:4d:0d:b1:f9:1c:31:32:ed:8a:7b:05:e7:bf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1f:90:f3:0a:c6:0a:32:b8:72:80:2b:51:bb:98:54:ec:
        81:65:35:08:df:05:b6:e8:74:d3:ce:64:3b:65:ef:34:
        b1:68:1b:2b:6b:bb:2b:69:b0:09:3c:6d:44:62:7e:af:
        a8:a2:b9:d6:d2:47:26:5e:fa:49:e6:e5:7e:14:11:a9:
        48:61:24:a0:78:e7:21:d8:49:22:5e:64:d4:03:92:3e:
        6f:a3:1f:d7:95:7f:62:a7:53:3e:ec:b4:67:49:0d:0f:
        e9:7d:97:c9:b7:bb:87:50:18:9f:5e:70:d0:eb:8f:87:
        ba:78:ad:ba:d1:0f:16:76:4f:20:f0:06:c4:ee:16:e0:
        b0:74:85:ad:87:ed:4e:f1:40:af:a0:2f:51:02:38:d6:
        cd:8d:f3:cb:4c:03:05:77:ef:8f:e1:7e:5a:1a:83:56:
        f6:32:95:b7:b2:7e:5e:2f:ec:b3:1e:c5:f8:61:37:f7:
        2b:6d:86:e3:61:19:21:fd:ca:71:d4:fc:14:ce:f5:30:
        26:e0:61:17:83:b5:57:76:34:9c:be:c1:ae:43:89:71:
        36:1b:db:b2:e5:8c:82:1d:59:f2:aa:21:ae:c6:3f:28:
        31:97:76:86:94:48:cb:c6:4f:fe:07:aa:98:18:d0:6d:
        2c:a5:a3:02:66:ea:7e:0c:f4:97:f8:47:20:c7:26:ac
    Fingerprint (SHA-256):
        3E:C8:44:58:8E:39:3A:10:CE:40:E6:A4:A0:51:60:F7:08:59:89:AA:12:11:1A:89:8E:0D:E1:09:0D:F2:2D:54
    Fingerprint (SHA1):
        5F:13:C2:B7:22:86:96:16:1C:2B:A9:A6:38:E6:86:3C:98:CE:82:AC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13695: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13696: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000997 (0x3019dba5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:11:04 2017
            Not After : Sun Aug 07 00:11:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:0a:c4:e2:2c:16:db:2d:44:b2:83:57:40:0a:e5:71:
                    6a:bf:6d:45:dd:5d:ff:5e:d9:00:2c:64:e9:8d:1a:4c:
                    85:b4:96:b0:2d:06:c1:65:b8:f0:91:84:23:1e:d4:d0:
                    25:56:ef:65:63:dc:a7:8a:d8:98:35:42:48:e8:c9:73:
                    3b:e9:b2:85:de:a8:61:34:6f:71:92:77:e0:f2:2d:b7:
                    51:ce:7a:a1:94:e2:bd:d9:2d:02:cc:1b:95:99:64:65:
                    a0:99:ac:75:b3:f8:6a:39:f5:79:6e:07:cf:4e:df:28:
                    63:5e:f6:bc:ee:94:87:dd:20:e1:cf:e9:f9:c5:f0:d8:
                    49:91:97:34:b0:0b:13:cb:11:00:01:67:3c:86:4d:3b:
                    4e:bc:5f:b2:ec:38:3f:b1:af:c9:34:48:d1:fe:e6:92:
                    b1:fb:e3:2a:df:d8:f6:2d:23:5a:69:c7:f2:30:5d:c1:
                    35:08:b7:13:04:7f:ef:1b:33:a1:f7:22:a7:f9:33:04:
                    ec:f2:73:c6:77:af:ea:92:55:2e:0d:01:3f:4c:86:f9:
                    45:70:96:c4:a1:bc:42:d1:21:05:17:db:7e:4e:d9:ba:
                    7c:98:b6:26:b5:6d:af:04:46:2c:a3:b4:33:93:e4:e9:
                    29:87:30:4d:0d:b1:f9:1c:31:32:ed:8a:7b:05:e7:bf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1f:90:f3:0a:c6:0a:32:b8:72:80:2b:51:bb:98:54:ec:
        81:65:35:08:df:05:b6:e8:74:d3:ce:64:3b:65:ef:34:
        b1:68:1b:2b:6b:bb:2b:69:b0:09:3c:6d:44:62:7e:af:
        a8:a2:b9:d6:d2:47:26:5e:fa:49:e6:e5:7e:14:11:a9:
        48:61:24:a0:78:e7:21:d8:49:22:5e:64:d4:03:92:3e:
        6f:a3:1f:d7:95:7f:62:a7:53:3e:ec:b4:67:49:0d:0f:
        e9:7d:97:c9:b7:bb:87:50:18:9f:5e:70:d0:eb:8f:87:
        ba:78:ad:ba:d1:0f:16:76:4f:20:f0:06:c4:ee:16:e0:
        b0:74:85:ad:87:ed:4e:f1:40:af:a0:2f:51:02:38:d6:
        cd:8d:f3:cb:4c:03:05:77:ef:8f:e1:7e:5a:1a:83:56:
        f6:32:95:b7:b2:7e:5e:2f:ec:b3:1e:c5:f8:61:37:f7:
        2b:6d:86:e3:61:19:21:fd:ca:71:d4:fc:14:ce:f5:30:
        26:e0:61:17:83:b5:57:76:34:9c:be:c1:ae:43:89:71:
        36:1b:db:b2:e5:8c:82:1d:59:f2:aa:21:ae:c6:3f:28:
        31:97:76:86:94:48:cb:c6:4f:fe:07:aa:98:18:d0:6d:
        2c:a5:a3:02:66:ea:7e:0c:f4:97:f8:47:20:c7:26:ac
    Fingerprint (SHA-256):
        3E:C8:44:58:8E:39:3A:10:CE:40:E6:A4:A0:51:60:F7:08:59:89:AA:12:11:1A:89:8E:0D:E1:09:0D:F2:2D:54
    Fingerprint (SHA1):
        5F:13:C2:B7:22:86:96:16:1C:2B:A9:A6:38:E6:86:3C:98:CE:82:AC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13697: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13698: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13699: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13700: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000997 (0x3019dba5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:11:04 2017
            Not After : Sun Aug 07 00:11:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:0a:c4:e2:2c:16:db:2d:44:b2:83:57:40:0a:e5:71:
                    6a:bf:6d:45:dd:5d:ff:5e:d9:00:2c:64:e9:8d:1a:4c:
                    85:b4:96:b0:2d:06:c1:65:b8:f0:91:84:23:1e:d4:d0:
                    25:56:ef:65:63:dc:a7:8a:d8:98:35:42:48:e8:c9:73:
                    3b:e9:b2:85:de:a8:61:34:6f:71:92:77:e0:f2:2d:b7:
                    51:ce:7a:a1:94:e2:bd:d9:2d:02:cc:1b:95:99:64:65:
                    a0:99:ac:75:b3:f8:6a:39:f5:79:6e:07:cf:4e:df:28:
                    63:5e:f6:bc:ee:94:87:dd:20:e1:cf:e9:f9:c5:f0:d8:
                    49:91:97:34:b0:0b:13:cb:11:00:01:67:3c:86:4d:3b:
                    4e:bc:5f:b2:ec:38:3f:b1:af:c9:34:48:d1:fe:e6:92:
                    b1:fb:e3:2a:df:d8:f6:2d:23:5a:69:c7:f2:30:5d:c1:
                    35:08:b7:13:04:7f:ef:1b:33:a1:f7:22:a7:f9:33:04:
                    ec:f2:73:c6:77:af:ea:92:55:2e:0d:01:3f:4c:86:f9:
                    45:70:96:c4:a1:bc:42:d1:21:05:17:db:7e:4e:d9:ba:
                    7c:98:b6:26:b5:6d:af:04:46:2c:a3:b4:33:93:e4:e9:
                    29:87:30:4d:0d:b1:f9:1c:31:32:ed:8a:7b:05:e7:bf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1f:90:f3:0a:c6:0a:32:b8:72:80:2b:51:bb:98:54:ec:
        81:65:35:08:df:05:b6:e8:74:d3:ce:64:3b:65:ef:34:
        b1:68:1b:2b:6b:bb:2b:69:b0:09:3c:6d:44:62:7e:af:
        a8:a2:b9:d6:d2:47:26:5e:fa:49:e6:e5:7e:14:11:a9:
        48:61:24:a0:78:e7:21:d8:49:22:5e:64:d4:03:92:3e:
        6f:a3:1f:d7:95:7f:62:a7:53:3e:ec:b4:67:49:0d:0f:
        e9:7d:97:c9:b7:bb:87:50:18:9f:5e:70:d0:eb:8f:87:
        ba:78:ad:ba:d1:0f:16:76:4f:20:f0:06:c4:ee:16:e0:
        b0:74:85:ad:87:ed:4e:f1:40:af:a0:2f:51:02:38:d6:
        cd:8d:f3:cb:4c:03:05:77:ef:8f:e1:7e:5a:1a:83:56:
        f6:32:95:b7:b2:7e:5e:2f:ec:b3:1e:c5:f8:61:37:f7:
        2b:6d:86:e3:61:19:21:fd:ca:71:d4:fc:14:ce:f5:30:
        26:e0:61:17:83:b5:57:76:34:9c:be:c1:ae:43:89:71:
        36:1b:db:b2:e5:8c:82:1d:59:f2:aa:21:ae:c6:3f:28:
        31:97:76:86:94:48:cb:c6:4f:fe:07:aa:98:18:d0:6d:
        2c:a5:a3:02:66:ea:7e:0c:f4:97:f8:47:20:c7:26:ac
    Fingerprint (SHA-256):
        3E:C8:44:58:8E:39:3A:10:CE:40:E6:A4:A0:51:60:F7:08:59:89:AA:12:11:1A:89:8E:0D:E1:09:0D:F2:2D:54
    Fingerprint (SHA1):
        5F:13:C2:B7:22:86:96:16:1C:2B:A9:A6:38:E6:86:3C:98:CE:82:AC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13701: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13702: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13703: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13704: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000997 (0x3019dba5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:11:04 2017
            Not After : Sun Aug 07 00:11:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:0a:c4:e2:2c:16:db:2d:44:b2:83:57:40:0a:e5:71:
                    6a:bf:6d:45:dd:5d:ff:5e:d9:00:2c:64:e9:8d:1a:4c:
                    85:b4:96:b0:2d:06:c1:65:b8:f0:91:84:23:1e:d4:d0:
                    25:56:ef:65:63:dc:a7:8a:d8:98:35:42:48:e8:c9:73:
                    3b:e9:b2:85:de:a8:61:34:6f:71:92:77:e0:f2:2d:b7:
                    51:ce:7a:a1:94:e2:bd:d9:2d:02:cc:1b:95:99:64:65:
                    a0:99:ac:75:b3:f8:6a:39:f5:79:6e:07:cf:4e:df:28:
                    63:5e:f6:bc:ee:94:87:dd:20:e1:cf:e9:f9:c5:f0:d8:
                    49:91:97:34:b0:0b:13:cb:11:00:01:67:3c:86:4d:3b:
                    4e:bc:5f:b2:ec:38:3f:b1:af:c9:34:48:d1:fe:e6:92:
                    b1:fb:e3:2a:df:d8:f6:2d:23:5a:69:c7:f2:30:5d:c1:
                    35:08:b7:13:04:7f:ef:1b:33:a1:f7:22:a7:f9:33:04:
                    ec:f2:73:c6:77:af:ea:92:55:2e:0d:01:3f:4c:86:f9:
                    45:70:96:c4:a1:bc:42:d1:21:05:17:db:7e:4e:d9:ba:
                    7c:98:b6:26:b5:6d:af:04:46:2c:a3:b4:33:93:e4:e9:
                    29:87:30:4d:0d:b1:f9:1c:31:32:ed:8a:7b:05:e7:bf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1f:90:f3:0a:c6:0a:32:b8:72:80:2b:51:bb:98:54:ec:
        81:65:35:08:df:05:b6:e8:74:d3:ce:64:3b:65:ef:34:
        b1:68:1b:2b:6b:bb:2b:69:b0:09:3c:6d:44:62:7e:af:
        a8:a2:b9:d6:d2:47:26:5e:fa:49:e6:e5:7e:14:11:a9:
        48:61:24:a0:78:e7:21:d8:49:22:5e:64:d4:03:92:3e:
        6f:a3:1f:d7:95:7f:62:a7:53:3e:ec:b4:67:49:0d:0f:
        e9:7d:97:c9:b7:bb:87:50:18:9f:5e:70:d0:eb:8f:87:
        ba:78:ad:ba:d1:0f:16:76:4f:20:f0:06:c4:ee:16:e0:
        b0:74:85:ad:87:ed:4e:f1:40:af:a0:2f:51:02:38:d6:
        cd:8d:f3:cb:4c:03:05:77:ef:8f:e1:7e:5a:1a:83:56:
        f6:32:95:b7:b2:7e:5e:2f:ec:b3:1e:c5:f8:61:37:f7:
        2b:6d:86:e3:61:19:21:fd:ca:71:d4:fc:14:ce:f5:30:
        26:e0:61:17:83:b5:57:76:34:9c:be:c1:ae:43:89:71:
        36:1b:db:b2:e5:8c:82:1d:59:f2:aa:21:ae:c6:3f:28:
        31:97:76:86:94:48:cb:c6:4f:fe:07:aa:98:18:d0:6d:
        2c:a5:a3:02:66:ea:7e:0c:f4:97:f8:47:20:c7:26:ac
    Fingerprint (SHA-256):
        3E:C8:44:58:8E:39:3A:10:CE:40:E6:A4:A0:51:60:F7:08:59:89:AA:12:11:1A:89:8E:0D:E1:09:0D:F2:2D:54
    Fingerprint (SHA1):
        5F:13:C2:B7:22:86:96:16:1C:2B:A9:A6:38:E6:86:3C:98:CE:82:AC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13705: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000997 (0x3019dba5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:11:04 2017
            Not After : Sun Aug 07 00:11:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:0a:c4:e2:2c:16:db:2d:44:b2:83:57:40:0a:e5:71:
                    6a:bf:6d:45:dd:5d:ff:5e:d9:00:2c:64:e9:8d:1a:4c:
                    85:b4:96:b0:2d:06:c1:65:b8:f0:91:84:23:1e:d4:d0:
                    25:56:ef:65:63:dc:a7:8a:d8:98:35:42:48:e8:c9:73:
                    3b:e9:b2:85:de:a8:61:34:6f:71:92:77:e0:f2:2d:b7:
                    51:ce:7a:a1:94:e2:bd:d9:2d:02:cc:1b:95:99:64:65:
                    a0:99:ac:75:b3:f8:6a:39:f5:79:6e:07:cf:4e:df:28:
                    63:5e:f6:bc:ee:94:87:dd:20:e1:cf:e9:f9:c5:f0:d8:
                    49:91:97:34:b0:0b:13:cb:11:00:01:67:3c:86:4d:3b:
                    4e:bc:5f:b2:ec:38:3f:b1:af:c9:34:48:d1:fe:e6:92:
                    b1:fb:e3:2a:df:d8:f6:2d:23:5a:69:c7:f2:30:5d:c1:
                    35:08:b7:13:04:7f:ef:1b:33:a1:f7:22:a7:f9:33:04:
                    ec:f2:73:c6:77:af:ea:92:55:2e:0d:01:3f:4c:86:f9:
                    45:70:96:c4:a1:bc:42:d1:21:05:17:db:7e:4e:d9:ba:
                    7c:98:b6:26:b5:6d:af:04:46:2c:a3:b4:33:93:e4:e9:
                    29:87:30:4d:0d:b1:f9:1c:31:32:ed:8a:7b:05:e7:bf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1f:90:f3:0a:c6:0a:32:b8:72:80:2b:51:bb:98:54:ec:
        81:65:35:08:df:05:b6:e8:74:d3:ce:64:3b:65:ef:34:
        b1:68:1b:2b:6b:bb:2b:69:b0:09:3c:6d:44:62:7e:af:
        a8:a2:b9:d6:d2:47:26:5e:fa:49:e6:e5:7e:14:11:a9:
        48:61:24:a0:78:e7:21:d8:49:22:5e:64:d4:03:92:3e:
        6f:a3:1f:d7:95:7f:62:a7:53:3e:ec:b4:67:49:0d:0f:
        e9:7d:97:c9:b7:bb:87:50:18:9f:5e:70:d0:eb:8f:87:
        ba:78:ad:ba:d1:0f:16:76:4f:20:f0:06:c4:ee:16:e0:
        b0:74:85:ad:87:ed:4e:f1:40:af:a0:2f:51:02:38:d6:
        cd:8d:f3:cb:4c:03:05:77:ef:8f:e1:7e:5a:1a:83:56:
        f6:32:95:b7:b2:7e:5e:2f:ec:b3:1e:c5:f8:61:37:f7:
        2b:6d:86:e3:61:19:21:fd:ca:71:d4:fc:14:ce:f5:30:
        26:e0:61:17:83:b5:57:76:34:9c:be:c1:ae:43:89:71:
        36:1b:db:b2:e5:8c:82:1d:59:f2:aa:21:ae:c6:3f:28:
        31:97:76:86:94:48:cb:c6:4f:fe:07:aa:98:18:d0:6d:
        2c:a5:a3:02:66:ea:7e:0c:f4:97:f8:47:20:c7:26:ac
    Fingerprint (SHA-256):
        3E:C8:44:58:8E:39:3A:10:CE:40:E6:A4:A0:51:60:F7:08:59:89:AA:12:11:1A:89:8E:0D:E1:09:0D:F2:2D:54
    Fingerprint (SHA1):
        5F:13:C2:B7:22:86:96:16:1C:2B:A9:A6:38:E6:86:3C:98:CE:82:AC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13706: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13707: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000997 (0x3019dba5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:11:04 2017
            Not After : Sun Aug 07 00:11:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:0a:c4:e2:2c:16:db:2d:44:b2:83:57:40:0a:e5:71:
                    6a:bf:6d:45:dd:5d:ff:5e:d9:00:2c:64:e9:8d:1a:4c:
                    85:b4:96:b0:2d:06:c1:65:b8:f0:91:84:23:1e:d4:d0:
                    25:56:ef:65:63:dc:a7:8a:d8:98:35:42:48:e8:c9:73:
                    3b:e9:b2:85:de:a8:61:34:6f:71:92:77:e0:f2:2d:b7:
                    51:ce:7a:a1:94:e2:bd:d9:2d:02:cc:1b:95:99:64:65:
                    a0:99:ac:75:b3:f8:6a:39:f5:79:6e:07:cf:4e:df:28:
                    63:5e:f6:bc:ee:94:87:dd:20:e1:cf:e9:f9:c5:f0:d8:
                    49:91:97:34:b0:0b:13:cb:11:00:01:67:3c:86:4d:3b:
                    4e:bc:5f:b2:ec:38:3f:b1:af:c9:34:48:d1:fe:e6:92:
                    b1:fb:e3:2a:df:d8:f6:2d:23:5a:69:c7:f2:30:5d:c1:
                    35:08:b7:13:04:7f:ef:1b:33:a1:f7:22:a7:f9:33:04:
                    ec:f2:73:c6:77:af:ea:92:55:2e:0d:01:3f:4c:86:f9:
                    45:70:96:c4:a1:bc:42:d1:21:05:17:db:7e:4e:d9:ba:
                    7c:98:b6:26:b5:6d:af:04:46:2c:a3:b4:33:93:e4:e9:
                    29:87:30:4d:0d:b1:f9:1c:31:32:ed:8a:7b:05:e7:bf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1f:90:f3:0a:c6:0a:32:b8:72:80:2b:51:bb:98:54:ec:
        81:65:35:08:df:05:b6:e8:74:d3:ce:64:3b:65:ef:34:
        b1:68:1b:2b:6b:bb:2b:69:b0:09:3c:6d:44:62:7e:af:
        a8:a2:b9:d6:d2:47:26:5e:fa:49:e6:e5:7e:14:11:a9:
        48:61:24:a0:78:e7:21:d8:49:22:5e:64:d4:03:92:3e:
        6f:a3:1f:d7:95:7f:62:a7:53:3e:ec:b4:67:49:0d:0f:
        e9:7d:97:c9:b7:bb:87:50:18:9f:5e:70:d0:eb:8f:87:
        ba:78:ad:ba:d1:0f:16:76:4f:20:f0:06:c4:ee:16:e0:
        b0:74:85:ad:87:ed:4e:f1:40:af:a0:2f:51:02:38:d6:
        cd:8d:f3:cb:4c:03:05:77:ef:8f:e1:7e:5a:1a:83:56:
        f6:32:95:b7:b2:7e:5e:2f:ec:b3:1e:c5:f8:61:37:f7:
        2b:6d:86:e3:61:19:21:fd:ca:71:d4:fc:14:ce:f5:30:
        26:e0:61:17:83:b5:57:76:34:9c:be:c1:ae:43:89:71:
        36:1b:db:b2:e5:8c:82:1d:59:f2:aa:21:ae:c6:3f:28:
        31:97:76:86:94:48:cb:c6:4f:fe:07:aa:98:18:d0:6d:
        2c:a5:a3:02:66:ea:7e:0c:f4:97:f8:47:20:c7:26:ac
    Fingerprint (SHA-256):
        3E:C8:44:58:8E:39:3A:10:CE:40:E6:A4:A0:51:60:F7:08:59:89:AA:12:11:1A:89:8E:0D:E1:09:0D:F2:2D:54
    Fingerprint (SHA1):
        5F:13:C2:B7:22:86:96:16:1C:2B:A9:A6:38:E6:86:3C:98:CE:82:AC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13708: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13709: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13710: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13711: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000997 (0x3019dba5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:11:04 2017
            Not After : Sun Aug 07 00:11:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:0a:c4:e2:2c:16:db:2d:44:b2:83:57:40:0a:e5:71:
                    6a:bf:6d:45:dd:5d:ff:5e:d9:00:2c:64:e9:8d:1a:4c:
                    85:b4:96:b0:2d:06:c1:65:b8:f0:91:84:23:1e:d4:d0:
                    25:56:ef:65:63:dc:a7:8a:d8:98:35:42:48:e8:c9:73:
                    3b:e9:b2:85:de:a8:61:34:6f:71:92:77:e0:f2:2d:b7:
                    51:ce:7a:a1:94:e2:bd:d9:2d:02:cc:1b:95:99:64:65:
                    a0:99:ac:75:b3:f8:6a:39:f5:79:6e:07:cf:4e:df:28:
                    63:5e:f6:bc:ee:94:87:dd:20:e1:cf:e9:f9:c5:f0:d8:
                    49:91:97:34:b0:0b:13:cb:11:00:01:67:3c:86:4d:3b:
                    4e:bc:5f:b2:ec:38:3f:b1:af:c9:34:48:d1:fe:e6:92:
                    b1:fb:e3:2a:df:d8:f6:2d:23:5a:69:c7:f2:30:5d:c1:
                    35:08:b7:13:04:7f:ef:1b:33:a1:f7:22:a7:f9:33:04:
                    ec:f2:73:c6:77:af:ea:92:55:2e:0d:01:3f:4c:86:f9:
                    45:70:96:c4:a1:bc:42:d1:21:05:17:db:7e:4e:d9:ba:
                    7c:98:b6:26:b5:6d:af:04:46:2c:a3:b4:33:93:e4:e9:
                    29:87:30:4d:0d:b1:f9:1c:31:32:ed:8a:7b:05:e7:bf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1f:90:f3:0a:c6:0a:32:b8:72:80:2b:51:bb:98:54:ec:
        81:65:35:08:df:05:b6:e8:74:d3:ce:64:3b:65:ef:34:
        b1:68:1b:2b:6b:bb:2b:69:b0:09:3c:6d:44:62:7e:af:
        a8:a2:b9:d6:d2:47:26:5e:fa:49:e6:e5:7e:14:11:a9:
        48:61:24:a0:78:e7:21:d8:49:22:5e:64:d4:03:92:3e:
        6f:a3:1f:d7:95:7f:62:a7:53:3e:ec:b4:67:49:0d:0f:
        e9:7d:97:c9:b7:bb:87:50:18:9f:5e:70:d0:eb:8f:87:
        ba:78:ad:ba:d1:0f:16:76:4f:20:f0:06:c4:ee:16:e0:
        b0:74:85:ad:87:ed:4e:f1:40:af:a0:2f:51:02:38:d6:
        cd:8d:f3:cb:4c:03:05:77:ef:8f:e1:7e:5a:1a:83:56:
        f6:32:95:b7:b2:7e:5e:2f:ec:b3:1e:c5:f8:61:37:f7:
        2b:6d:86:e3:61:19:21:fd:ca:71:d4:fc:14:ce:f5:30:
        26:e0:61:17:83:b5:57:76:34:9c:be:c1:ae:43:89:71:
        36:1b:db:b2:e5:8c:82:1d:59:f2:aa:21:ae:c6:3f:28:
        31:97:76:86:94:48:cb:c6:4f:fe:07:aa:98:18:d0:6d:
        2c:a5:a3:02:66:ea:7e:0c:f4:97:f8:47:20:c7:26:ac
    Fingerprint (SHA-256):
        3E:C8:44:58:8E:39:3A:10:CE:40:E6:A4:A0:51:60:F7:08:59:89:AA:12:11:1A:89:8E:0D:E1:09:0D:F2:2D:54
    Fingerprint (SHA1):
        5F:13:C2:B7:22:86:96:16:1C:2B:A9:A6:38:E6:86:3C:98:CE:82:AC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13712: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000997 (0x3019dba5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:11:04 2017
            Not After : Sun Aug 07 00:11:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:0a:c4:e2:2c:16:db:2d:44:b2:83:57:40:0a:e5:71:
                    6a:bf:6d:45:dd:5d:ff:5e:d9:00:2c:64:e9:8d:1a:4c:
                    85:b4:96:b0:2d:06:c1:65:b8:f0:91:84:23:1e:d4:d0:
                    25:56:ef:65:63:dc:a7:8a:d8:98:35:42:48:e8:c9:73:
                    3b:e9:b2:85:de:a8:61:34:6f:71:92:77:e0:f2:2d:b7:
                    51:ce:7a:a1:94:e2:bd:d9:2d:02:cc:1b:95:99:64:65:
                    a0:99:ac:75:b3:f8:6a:39:f5:79:6e:07:cf:4e:df:28:
                    63:5e:f6:bc:ee:94:87:dd:20:e1:cf:e9:f9:c5:f0:d8:
                    49:91:97:34:b0:0b:13:cb:11:00:01:67:3c:86:4d:3b:
                    4e:bc:5f:b2:ec:38:3f:b1:af:c9:34:48:d1:fe:e6:92:
                    b1:fb:e3:2a:df:d8:f6:2d:23:5a:69:c7:f2:30:5d:c1:
                    35:08:b7:13:04:7f:ef:1b:33:a1:f7:22:a7:f9:33:04:
                    ec:f2:73:c6:77:af:ea:92:55:2e:0d:01:3f:4c:86:f9:
                    45:70:96:c4:a1:bc:42:d1:21:05:17:db:7e:4e:d9:ba:
                    7c:98:b6:26:b5:6d:af:04:46:2c:a3:b4:33:93:e4:e9:
                    29:87:30:4d:0d:b1:f9:1c:31:32:ed:8a:7b:05:e7:bf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1f:90:f3:0a:c6:0a:32:b8:72:80:2b:51:bb:98:54:ec:
        81:65:35:08:df:05:b6:e8:74:d3:ce:64:3b:65:ef:34:
        b1:68:1b:2b:6b:bb:2b:69:b0:09:3c:6d:44:62:7e:af:
        a8:a2:b9:d6:d2:47:26:5e:fa:49:e6:e5:7e:14:11:a9:
        48:61:24:a0:78:e7:21:d8:49:22:5e:64:d4:03:92:3e:
        6f:a3:1f:d7:95:7f:62:a7:53:3e:ec:b4:67:49:0d:0f:
        e9:7d:97:c9:b7:bb:87:50:18:9f:5e:70:d0:eb:8f:87:
        ba:78:ad:ba:d1:0f:16:76:4f:20:f0:06:c4:ee:16:e0:
        b0:74:85:ad:87:ed:4e:f1:40:af:a0:2f:51:02:38:d6:
        cd:8d:f3:cb:4c:03:05:77:ef:8f:e1:7e:5a:1a:83:56:
        f6:32:95:b7:b2:7e:5e:2f:ec:b3:1e:c5:f8:61:37:f7:
        2b:6d:86:e3:61:19:21:fd:ca:71:d4:fc:14:ce:f5:30:
        26:e0:61:17:83:b5:57:76:34:9c:be:c1:ae:43:89:71:
        36:1b:db:b2:e5:8c:82:1d:59:f2:aa:21:ae:c6:3f:28:
        31:97:76:86:94:48:cb:c6:4f:fe:07:aa:98:18:d0:6d:
        2c:a5:a3:02:66:ea:7e:0c:f4:97:f8:47:20:c7:26:ac
    Fingerprint (SHA-256):
        3E:C8:44:58:8E:39:3A:10:CE:40:E6:A4:A0:51:60:F7:08:59:89:AA:12:11:1A:89:8E:0D:E1:09:0D:F2:2D:54
    Fingerprint (SHA1):
        5F:13:C2:B7:22:86:96:16:1C:2B:A9:A6:38:E6:86:3C:98:CE:82:AC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #13713: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000997 (0x3019dba5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:11:04 2017
            Not After : Sun Aug 07 00:11:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:0a:c4:e2:2c:16:db:2d:44:b2:83:57:40:0a:e5:71:
                    6a:bf:6d:45:dd:5d:ff:5e:d9:00:2c:64:e9:8d:1a:4c:
                    85:b4:96:b0:2d:06:c1:65:b8:f0:91:84:23:1e:d4:d0:
                    25:56:ef:65:63:dc:a7:8a:d8:98:35:42:48:e8:c9:73:
                    3b:e9:b2:85:de:a8:61:34:6f:71:92:77:e0:f2:2d:b7:
                    51:ce:7a:a1:94:e2:bd:d9:2d:02:cc:1b:95:99:64:65:
                    a0:99:ac:75:b3:f8:6a:39:f5:79:6e:07:cf:4e:df:28:
                    63:5e:f6:bc:ee:94:87:dd:20:e1:cf:e9:f9:c5:f0:d8:
                    49:91:97:34:b0:0b:13:cb:11:00:01:67:3c:86:4d:3b:
                    4e:bc:5f:b2:ec:38:3f:b1:af:c9:34:48:d1:fe:e6:92:
                    b1:fb:e3:2a:df:d8:f6:2d:23:5a:69:c7:f2:30:5d:c1:
                    35:08:b7:13:04:7f:ef:1b:33:a1:f7:22:a7:f9:33:04:
                    ec:f2:73:c6:77:af:ea:92:55:2e:0d:01:3f:4c:86:f9:
                    45:70:96:c4:a1:bc:42:d1:21:05:17:db:7e:4e:d9:ba:
                    7c:98:b6:26:b5:6d:af:04:46:2c:a3:b4:33:93:e4:e9:
                    29:87:30:4d:0d:b1:f9:1c:31:32:ed:8a:7b:05:e7:bf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1f:90:f3:0a:c6:0a:32:b8:72:80:2b:51:bb:98:54:ec:
        81:65:35:08:df:05:b6:e8:74:d3:ce:64:3b:65:ef:34:
        b1:68:1b:2b:6b:bb:2b:69:b0:09:3c:6d:44:62:7e:af:
        a8:a2:b9:d6:d2:47:26:5e:fa:49:e6:e5:7e:14:11:a9:
        48:61:24:a0:78:e7:21:d8:49:22:5e:64:d4:03:92:3e:
        6f:a3:1f:d7:95:7f:62:a7:53:3e:ec:b4:67:49:0d:0f:
        e9:7d:97:c9:b7:bb:87:50:18:9f:5e:70:d0:eb:8f:87:
        ba:78:ad:ba:d1:0f:16:76:4f:20:f0:06:c4:ee:16:e0:
        b0:74:85:ad:87:ed:4e:f1:40:af:a0:2f:51:02:38:d6:
        cd:8d:f3:cb:4c:03:05:77:ef:8f:e1:7e:5a:1a:83:56:
        f6:32:95:b7:b2:7e:5e:2f:ec:b3:1e:c5:f8:61:37:f7:
        2b:6d:86:e3:61:19:21:fd:ca:71:d4:fc:14:ce:f5:30:
        26:e0:61:17:83:b5:57:76:34:9c:be:c1:ae:43:89:71:
        36:1b:db:b2:e5:8c:82:1d:59:f2:aa:21:ae:c6:3f:28:
        31:97:76:86:94:48:cb:c6:4f:fe:07:aa:98:18:d0:6d:
        2c:a5:a3:02:66:ea:7e:0c:f4:97:f8:47:20:c7:26:ac
    Fingerprint (SHA-256):
        3E:C8:44:58:8E:39:3A:10:CE:40:E6:A4:A0:51:60:F7:08:59:89:AA:12:11:1A:89:8E:0D:E1:09:0D:F2:2D:54
    Fingerprint (SHA1):
        5F:13:C2:B7:22:86:96:16:1C:2B:A9:A6:38:E6:86:3C:98:CE:82:AC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #13714: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000997 (0x3019dba5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:11:04 2017
            Not After : Sun Aug 07 00:11:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:0a:c4:e2:2c:16:db:2d:44:b2:83:57:40:0a:e5:71:
                    6a:bf:6d:45:dd:5d:ff:5e:d9:00:2c:64:e9:8d:1a:4c:
                    85:b4:96:b0:2d:06:c1:65:b8:f0:91:84:23:1e:d4:d0:
                    25:56:ef:65:63:dc:a7:8a:d8:98:35:42:48:e8:c9:73:
                    3b:e9:b2:85:de:a8:61:34:6f:71:92:77:e0:f2:2d:b7:
                    51:ce:7a:a1:94:e2:bd:d9:2d:02:cc:1b:95:99:64:65:
                    a0:99:ac:75:b3:f8:6a:39:f5:79:6e:07:cf:4e:df:28:
                    63:5e:f6:bc:ee:94:87:dd:20:e1:cf:e9:f9:c5:f0:d8:
                    49:91:97:34:b0:0b:13:cb:11:00:01:67:3c:86:4d:3b:
                    4e:bc:5f:b2:ec:38:3f:b1:af:c9:34:48:d1:fe:e6:92:
                    b1:fb:e3:2a:df:d8:f6:2d:23:5a:69:c7:f2:30:5d:c1:
                    35:08:b7:13:04:7f:ef:1b:33:a1:f7:22:a7:f9:33:04:
                    ec:f2:73:c6:77:af:ea:92:55:2e:0d:01:3f:4c:86:f9:
                    45:70:96:c4:a1:bc:42:d1:21:05:17:db:7e:4e:d9:ba:
                    7c:98:b6:26:b5:6d:af:04:46:2c:a3:b4:33:93:e4:e9:
                    29:87:30:4d:0d:b1:f9:1c:31:32:ed:8a:7b:05:e7:bf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1f:90:f3:0a:c6:0a:32:b8:72:80:2b:51:bb:98:54:ec:
        81:65:35:08:df:05:b6:e8:74:d3:ce:64:3b:65:ef:34:
        b1:68:1b:2b:6b:bb:2b:69:b0:09:3c:6d:44:62:7e:af:
        a8:a2:b9:d6:d2:47:26:5e:fa:49:e6:e5:7e:14:11:a9:
        48:61:24:a0:78:e7:21:d8:49:22:5e:64:d4:03:92:3e:
        6f:a3:1f:d7:95:7f:62:a7:53:3e:ec:b4:67:49:0d:0f:
        e9:7d:97:c9:b7:bb:87:50:18:9f:5e:70:d0:eb:8f:87:
        ba:78:ad:ba:d1:0f:16:76:4f:20:f0:06:c4:ee:16:e0:
        b0:74:85:ad:87:ed:4e:f1:40:af:a0:2f:51:02:38:d6:
        cd:8d:f3:cb:4c:03:05:77:ef:8f:e1:7e:5a:1a:83:56:
        f6:32:95:b7:b2:7e:5e:2f:ec:b3:1e:c5:f8:61:37:f7:
        2b:6d:86:e3:61:19:21:fd:ca:71:d4:fc:14:ce:f5:30:
        26:e0:61:17:83:b5:57:76:34:9c:be:c1:ae:43:89:71:
        36:1b:db:b2:e5:8c:82:1d:59:f2:aa:21:ae:c6:3f:28:
        31:97:76:86:94:48:cb:c6:4f:fe:07:aa:98:18:d0:6d:
        2c:a5:a3:02:66:ea:7e:0c:f4:97:f8:47:20:c7:26:ac
    Fingerprint (SHA-256):
        3E:C8:44:58:8E:39:3A:10:CE:40:E6:A4:A0:51:60:F7:08:59:89:AA:12:11:1A:89:8E:0D:E1:09:0D:F2:2D:54
    Fingerprint (SHA1):
        5F:13:C2:B7:22:86:96:16:1C:2B:A9:A6:38:E6:86:3C:98:CE:82:AC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #13715: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000997 (0x3019dba5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:11:04 2017
            Not After : Sun Aug 07 00:11:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:0a:c4:e2:2c:16:db:2d:44:b2:83:57:40:0a:e5:71:
                    6a:bf:6d:45:dd:5d:ff:5e:d9:00:2c:64:e9:8d:1a:4c:
                    85:b4:96:b0:2d:06:c1:65:b8:f0:91:84:23:1e:d4:d0:
                    25:56:ef:65:63:dc:a7:8a:d8:98:35:42:48:e8:c9:73:
                    3b:e9:b2:85:de:a8:61:34:6f:71:92:77:e0:f2:2d:b7:
                    51:ce:7a:a1:94:e2:bd:d9:2d:02:cc:1b:95:99:64:65:
                    a0:99:ac:75:b3:f8:6a:39:f5:79:6e:07:cf:4e:df:28:
                    63:5e:f6:bc:ee:94:87:dd:20:e1:cf:e9:f9:c5:f0:d8:
                    49:91:97:34:b0:0b:13:cb:11:00:01:67:3c:86:4d:3b:
                    4e:bc:5f:b2:ec:38:3f:b1:af:c9:34:48:d1:fe:e6:92:
                    b1:fb:e3:2a:df:d8:f6:2d:23:5a:69:c7:f2:30:5d:c1:
                    35:08:b7:13:04:7f:ef:1b:33:a1:f7:22:a7:f9:33:04:
                    ec:f2:73:c6:77:af:ea:92:55:2e:0d:01:3f:4c:86:f9:
                    45:70:96:c4:a1:bc:42:d1:21:05:17:db:7e:4e:d9:ba:
                    7c:98:b6:26:b5:6d:af:04:46:2c:a3:b4:33:93:e4:e9:
                    29:87:30:4d:0d:b1:f9:1c:31:32:ed:8a:7b:05:e7:bf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1f:90:f3:0a:c6:0a:32:b8:72:80:2b:51:bb:98:54:ec:
        81:65:35:08:df:05:b6:e8:74:d3:ce:64:3b:65:ef:34:
        b1:68:1b:2b:6b:bb:2b:69:b0:09:3c:6d:44:62:7e:af:
        a8:a2:b9:d6:d2:47:26:5e:fa:49:e6:e5:7e:14:11:a9:
        48:61:24:a0:78:e7:21:d8:49:22:5e:64:d4:03:92:3e:
        6f:a3:1f:d7:95:7f:62:a7:53:3e:ec:b4:67:49:0d:0f:
        e9:7d:97:c9:b7:bb:87:50:18:9f:5e:70:d0:eb:8f:87:
        ba:78:ad:ba:d1:0f:16:76:4f:20:f0:06:c4:ee:16:e0:
        b0:74:85:ad:87:ed:4e:f1:40:af:a0:2f:51:02:38:d6:
        cd:8d:f3:cb:4c:03:05:77:ef:8f:e1:7e:5a:1a:83:56:
        f6:32:95:b7:b2:7e:5e:2f:ec:b3:1e:c5:f8:61:37:f7:
        2b:6d:86:e3:61:19:21:fd:ca:71:d4:fc:14:ce:f5:30:
        26:e0:61:17:83:b5:57:76:34:9c:be:c1:ae:43:89:71:
        36:1b:db:b2:e5:8c:82:1d:59:f2:aa:21:ae:c6:3f:28:
        31:97:76:86:94:48:cb:c6:4f:fe:07:aa:98:18:d0:6d:
        2c:a5:a3:02:66:ea:7e:0c:f4:97:f8:47:20:c7:26:ac
    Fingerprint (SHA-256):
        3E:C8:44:58:8E:39:3A:10:CE:40:E6:A4:A0:51:60:F7:08:59:89:AA:12:11:1A:89:8E:0D:E1:09:0D:F2:2D:54
    Fingerprint (SHA1):
        5F:13:C2:B7:22:86:96:16:1C:2B:A9:A6:38:E6:86:3C:98:CE:82:AC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #13716: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807000997 (0x3019dba5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:11:04 2017
            Not After : Sun Aug 07 00:11:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:0a:c4:e2:2c:16:db:2d:44:b2:83:57:40:0a:e5:71:
                    6a:bf:6d:45:dd:5d:ff:5e:d9:00:2c:64:e9:8d:1a:4c:
                    85:b4:96:b0:2d:06:c1:65:b8:f0:91:84:23:1e:d4:d0:
                    25:56:ef:65:63:dc:a7:8a:d8:98:35:42:48:e8:c9:73:
                    3b:e9:b2:85:de:a8:61:34:6f:71:92:77:e0:f2:2d:b7:
                    51:ce:7a:a1:94:e2:bd:d9:2d:02:cc:1b:95:99:64:65:
                    a0:99:ac:75:b3:f8:6a:39:f5:79:6e:07:cf:4e:df:28:
                    63:5e:f6:bc:ee:94:87:dd:20:e1:cf:e9:f9:c5:f0:d8:
                    49:91:97:34:b0:0b:13:cb:11:00:01:67:3c:86:4d:3b:
                    4e:bc:5f:b2:ec:38:3f:b1:af:c9:34:48:d1:fe:e6:92:
                    b1:fb:e3:2a:df:d8:f6:2d:23:5a:69:c7:f2:30:5d:c1:
                    35:08:b7:13:04:7f:ef:1b:33:a1:f7:22:a7:f9:33:04:
                    ec:f2:73:c6:77:af:ea:92:55:2e:0d:01:3f:4c:86:f9:
                    45:70:96:c4:a1:bc:42:d1:21:05:17:db:7e:4e:d9:ba:
                    7c:98:b6:26:b5:6d:af:04:46:2c:a3:b4:33:93:e4:e9:
                    29:87:30:4d:0d:b1:f9:1c:31:32:ed:8a:7b:05:e7:bf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1f:90:f3:0a:c6:0a:32:b8:72:80:2b:51:bb:98:54:ec:
        81:65:35:08:df:05:b6:e8:74:d3:ce:64:3b:65:ef:34:
        b1:68:1b:2b:6b:bb:2b:69:b0:09:3c:6d:44:62:7e:af:
        a8:a2:b9:d6:d2:47:26:5e:fa:49:e6:e5:7e:14:11:a9:
        48:61:24:a0:78:e7:21:d8:49:22:5e:64:d4:03:92:3e:
        6f:a3:1f:d7:95:7f:62:a7:53:3e:ec:b4:67:49:0d:0f:
        e9:7d:97:c9:b7:bb:87:50:18:9f:5e:70:d0:eb:8f:87:
        ba:78:ad:ba:d1:0f:16:76:4f:20:f0:06:c4:ee:16:e0:
        b0:74:85:ad:87:ed:4e:f1:40:af:a0:2f:51:02:38:d6:
        cd:8d:f3:cb:4c:03:05:77:ef:8f:e1:7e:5a:1a:83:56:
        f6:32:95:b7:b2:7e:5e:2f:ec:b3:1e:c5:f8:61:37:f7:
        2b:6d:86:e3:61:19:21:fd:ca:71:d4:fc:14:ce:f5:30:
        26:e0:61:17:83:b5:57:76:34:9c:be:c1:ae:43:89:71:
        36:1b:db:b2:e5:8c:82:1d:59:f2:aa:21:ae:c6:3f:28:
        31:97:76:86:94:48:cb:c6:4f:fe:07:aa:98:18:d0:6d:
        2c:a5:a3:02:66:ea:7e:0c:f4:97:f8:47:20:c7:26:ac
    Fingerprint (SHA-256):
        3E:C8:44:58:8E:39:3A:10:CE:40:E6:A4:A0:51:60:F7:08:59:89:AA:12:11:1A:89:8E:0D:E1:09:0D:F2:2D:54
    Fingerprint (SHA1):
        5F:13:C2:B7:22:86:96:16:1C:2B:A9:A6:38:E6:86:3C:98:CE:82:AC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #13717: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13718: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #13719: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001027 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13720: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #13721: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #13722: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13723: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 807001028   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13724: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13725: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #13726: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13727: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 807001029   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13728: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13729: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #13730: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13731: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 807001030   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13732: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13733: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #13734: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13735: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 807001031   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13736: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13737: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #13738: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13739: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 807001032   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13740: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13741: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #13742: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13743: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 807001033   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13744: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13745: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #13746: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001027 (0x3019dbc3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:11:36 2017
            Not After : Sun Aug 07 00:11:36 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:92:85:01:8e:2b:36:8f:44:a6:78:48:c0:ce:9d:cd:
                    64:fe:a5:c5:8f:63:b7:d1:a5:39:38:96:09:b8:03:ed:
                    6e:6f:48:47:d3:62:f6:e1:53:ca:a4:cc:05:63:fc:fa:
                    5d:93:a6:e8:d0:9c:b9:08:39:57:a2:60:c8:4e:05:86:
                    5d:30:5a:86:8c:c7:2b:8c:a4:87:4c:78:b6:ee:17:0c:
                    90:1b:54:35:4a:3d:10:c3:11:17:a6:45:5a:f2:b7:9a:
                    91:ea:6e:79:62:9e:2f:00:8a:e1:96:46:43:54:cd:50:
                    db:fc:57:f5:49:94:2a:27:2d:c6:c8:e8:37:bf:a0:cb:
                    b2:41:63:55:d9:9b:e7:47:61:61:99:73:fd:6a:b9:44:
                    09:a2:b9:f8:f4:c2:f9:00:16:76:87:43:e6:65:87:94:
                    37:6c:e5:a4:ec:86:dc:ad:30:d6:ca:43:ef:0b:9f:0d:
                    05:03:54:8a:af:cd:ad:20:f3:9b:8a:f3:b7:69:c2:8e:
                    a6:6a:8e:00:2a:24:5e:db:87:48:a0:87:64:d3:16:e4:
                    dc:65:a6:68:26:42:dc:ed:20:0e:d8:1f:f3:ba:06:ac:
                    89:a4:56:0f:b4:7d:d9:20:3b:f0:23:dd:5c:19:08:14:
                    7e:11:45:d4:69:32:5c:0f:11:10:45:e8:c4:d0:a0:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        65:1a:8e:c3:a0:c0:1a:cd:8f:66:41:ce:cd:2c:41:70:
        48:bc:70:32:64:ca:cb:1f:73:07:1f:ee:9f:c3:b0:68:
        5a:bc:1a:37:ad:f9:ec:ba:9c:09:66:81:20:bb:1b:71:
        15:5d:3e:b9:ce:56:cc:e5:39:4a:0b:b2:7c:86:f9:51:
        77:e5:aa:c4:71:1e:51:4a:77:02:f2:0d:2d:0a:e4:5d:
        6d:15:b7:41:da:0f:fd:d3:4c:ef:0e:89:8d:9d:d9:69:
        5f:ac:e6:a1:59:ff:e0:33:b0:b3:78:50:0b:33:de:e5:
        6f:69:ca:47:b3:d6:13:18:c6:a3:56:49:39:52:5b:84:
        9c:3f:38:27:0e:80:dd:ba:50:29:9f:c9:c4:9b:85:91:
        70:36:b9:ea:3d:ce:ee:61:9e:5f:20:de:f2:8d:a9:61:
        4b:b2:4b:53:ab:08:1e:08:19:5b:b4:15:aa:2a:c5:00:
        bd:14:2f:35:f9:34:5f:c7:b7:8d:c3:fe:2e:8a:79:04:
        8d:ab:04:a8:f0:5b:5d:88:28:e4:56:ff:c7:0c:f5:de:
        b5:57:e5:fc:73:2a:26:bb:81:1a:79:f1:6a:41:9c:c5:
        ba:1b:83:79:9d:ff:a6:11:49:31:e8:4a:c5:36:6d:7d:
        7d:1c:74:1c:06:b5:f2:03:b0:b3:d9:29:af:79:64:32
    Fingerprint (SHA-256):
        15:1C:AB:56:8F:06:E8:43:77:F6:5D:77:BB:AF:3C:65:16:D8:25:D6:D1:56:36:AD:A1:92:66:F0:CE:66:8E:97
    Fingerprint (SHA1):
        02:AB:31:8A:6E:C5:BB:93:6B:DF:93:7F:56:B8:96:C6:A4:84:9E:A9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #13747: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13748: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13749: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #13750: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001027 (0x3019dbc3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:11:36 2017
            Not After : Sun Aug 07 00:11:36 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:92:85:01:8e:2b:36:8f:44:a6:78:48:c0:ce:9d:cd:
                    64:fe:a5:c5:8f:63:b7:d1:a5:39:38:96:09:b8:03:ed:
                    6e:6f:48:47:d3:62:f6:e1:53:ca:a4:cc:05:63:fc:fa:
                    5d:93:a6:e8:d0:9c:b9:08:39:57:a2:60:c8:4e:05:86:
                    5d:30:5a:86:8c:c7:2b:8c:a4:87:4c:78:b6:ee:17:0c:
                    90:1b:54:35:4a:3d:10:c3:11:17:a6:45:5a:f2:b7:9a:
                    91:ea:6e:79:62:9e:2f:00:8a:e1:96:46:43:54:cd:50:
                    db:fc:57:f5:49:94:2a:27:2d:c6:c8:e8:37:bf:a0:cb:
                    b2:41:63:55:d9:9b:e7:47:61:61:99:73:fd:6a:b9:44:
                    09:a2:b9:f8:f4:c2:f9:00:16:76:87:43:e6:65:87:94:
                    37:6c:e5:a4:ec:86:dc:ad:30:d6:ca:43:ef:0b:9f:0d:
                    05:03:54:8a:af:cd:ad:20:f3:9b:8a:f3:b7:69:c2:8e:
                    a6:6a:8e:00:2a:24:5e:db:87:48:a0:87:64:d3:16:e4:
                    dc:65:a6:68:26:42:dc:ed:20:0e:d8:1f:f3:ba:06:ac:
                    89:a4:56:0f:b4:7d:d9:20:3b:f0:23:dd:5c:19:08:14:
                    7e:11:45:d4:69:32:5c:0f:11:10:45:e8:c4:d0:a0:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        65:1a:8e:c3:a0:c0:1a:cd:8f:66:41:ce:cd:2c:41:70:
        48:bc:70:32:64:ca:cb:1f:73:07:1f:ee:9f:c3:b0:68:
        5a:bc:1a:37:ad:f9:ec:ba:9c:09:66:81:20:bb:1b:71:
        15:5d:3e:b9:ce:56:cc:e5:39:4a:0b:b2:7c:86:f9:51:
        77:e5:aa:c4:71:1e:51:4a:77:02:f2:0d:2d:0a:e4:5d:
        6d:15:b7:41:da:0f:fd:d3:4c:ef:0e:89:8d:9d:d9:69:
        5f:ac:e6:a1:59:ff:e0:33:b0:b3:78:50:0b:33:de:e5:
        6f:69:ca:47:b3:d6:13:18:c6:a3:56:49:39:52:5b:84:
        9c:3f:38:27:0e:80:dd:ba:50:29:9f:c9:c4:9b:85:91:
        70:36:b9:ea:3d:ce:ee:61:9e:5f:20:de:f2:8d:a9:61:
        4b:b2:4b:53:ab:08:1e:08:19:5b:b4:15:aa:2a:c5:00:
        bd:14:2f:35:f9:34:5f:c7:b7:8d:c3:fe:2e:8a:79:04:
        8d:ab:04:a8:f0:5b:5d:88:28:e4:56:ff:c7:0c:f5:de:
        b5:57:e5:fc:73:2a:26:bb:81:1a:79:f1:6a:41:9c:c5:
        ba:1b:83:79:9d:ff:a6:11:49:31:e8:4a:c5:36:6d:7d:
        7d:1c:74:1c:06:b5:f2:03:b0:b3:d9:29:af:79:64:32
    Fingerprint (SHA-256):
        15:1C:AB:56:8F:06:E8:43:77:F6:5D:77:BB:AF:3C:65:16:D8:25:D6:D1:56:36:AD:A1:92:66:F0:CE:66:8E:97
    Fingerprint (SHA1):
        02:AB:31:8A:6E:C5:BB:93:6B:DF:93:7F:56:B8:96:C6:A4:84:9E:A9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #13751: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13752: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13753: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #13754: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001034 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13755: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #13756: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13757: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13758: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 807001035   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #13759: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13760: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #13761: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13762: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 807001036   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13763: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13764: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #13765: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13766: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 807001037   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13767: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13768: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #13769: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #13770: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #13771: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #13772: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001034 (0x3019dbca)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:11:44 2017
            Not After : Sun Aug 07 00:11:44 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:71:e5:23:f0:58:5d:55:68:4f:89:5c:14:33:5d:47:
                    dc:a6:28:3f:8b:30:7a:46:14:31:5c:09:1e:bc:4e:b9:
                    6b:19:32:56:12:3b:9f:e6:43:9c:fb:99:6a:e2:2e:d3:
                    9a:06:ed:82:40:eb:c3:3b:a1:08:07:8c:14:57:46:0c:
                    9e:45:f3:8b:12:e6:0f:69:85:f4:6c:62:8b:a0:65:10:
                    2a:91:e1:ce:e0:e6:0e:8f:2b:5e:58:e2:32:5b:17:4a:
                    aa:86:ae:4d:9d:8e:c9:0d:11:06:12:bf:9b:25:8b:4b:
                    dd:d2:3e:70:bf:c8:46:90:32:26:db:15:e1:98:c7:89:
                    5f:99:e6:02:c5:10:66:e1:6d:8c:cc:05:c7:66:f8:b3:
                    89:56:44:c3:2e:9d:a2:ca:e8:50:db:df:df:16:e4:78:
                    87:f1:13:66:1e:3f:74:2f:c1:d2:7e:85:af:c0:a6:2b:
                    09:b8:84:33:9e:dd:48:e4:f7:bf:6f:83:7a:b1:82:3d:
                    20:77:84:b5:c5:22:0d:99:13:a0:0f:fa:f7:1e:a6:eb:
                    f3:d9:cb:55:6c:2b:8c:0c:1c:08:e2:d1:2f:8e:b4:ee:
                    6e:50:08:4d:af:48:f4:9b:11:7b:10:41:30:ff:b0:76:
                    3a:33:60:a8:d7:58:66:01:b4:97:e7:41:66:85:6c:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:d5:de:7b:77:f3:a4:a9:97:1f:31:c7:d2:3c:bb:62:
        b0:53:e2:14:b8:05:19:69:3e:25:86:f2:4b:e0:28:f2:
        c2:2f:a8:3c:6e:8b:49:2d:ed:75:cf:81:aa:05:31:b9:
        f9:37:7a:bd:a2:5f:2c:90:40:da:a8:f4:1e:86:35:d8:
        b5:ee:e4:ed:5f:51:e1:70:ab:25:ab:cd:ea:0b:26:17:
        08:82:0b:3b:e8:93:dc:9c:f1:8b:f1:f5:7f:f6:3c:45:
        81:37:90:83:5c:c6:b2:32:21:da:5c:49:f6:f0:fc:99:
        88:a2:b4:04:66:84:a6:93:4a:d2:b8:3f:08:1c:89:f1:
        f1:9f:64:c2:1f:f8:e3:02:d4:e7:52:f2:b2:ee:64:1a:
        a8:cc:30:9b:5d:15:1e:41:4a:ec:25:51:d2:70:18:b3:
        41:8f:c2:6b:88:bd:d3:10:88:0f:31:f1:9c:92:4c:e2:
        fc:6f:4a:af:97:09:a5:5b:85:52:4e:6e:e6:38:10:37:
        0b:a3:b4:1a:0d:4d:79:bd:7f:f4:b4:8b:88:62:ce:19:
        ff:b2:52:0c:50:cb:bd:2b:15:63:86:0a:48:26:2b:ef:
        d2:57:64:4c:94:b1:4c:31:9c:b4:85:23:71:31:0d:3a:
        fa:13:ae:17:f0:4c:0e:9c:f9:1f:f2:9e:d1:89:ef:e2
    Fingerprint (SHA-256):
        42:6D:A2:E9:4F:8E:0F:83:C8:3A:4B:84:EA:A3:85:1E:6D:B3:91:24:B6:C5:F6:1C:FA:A3:81:C2:16:23:CF:0F
    Fingerprint (SHA1):
        F2:33:0D:6B:B0:42:54:D0:DF:BE:BD:26:2A:D2:74:FF:A7:45:C1:63
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13773: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13774: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13775: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001035 (0x3019dbcb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:11:45 2017
            Not After : Sun Aug 07 00:11:45 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:58:94:54:a8:56:bb:7b:18:b1:0e:70:6f:ac:fe:38:
                    e9:5b:48:f3:0f:1f:c4:40:71:78:98:e4:00:e8:eb:e2:
                    74:b4:68:4a:14:a5:1f:55:e0:9b:91:44:5a:1b:06:b8:
                    ff:c9:27:51:be:37:45:df:1e:d1:fc:6c:fb:6d:bf:d7:
                    0d:ca:8e:20:b6:8a:6d:c9:03:74:58:a0:d6:cf:2a:36:
                    25:41:a4:ce:9d:0b:94:de:74:4a:30:9e:1b:9b:fb:c1:
                    de:a3:f5:3f:e8:fc:b5:2f:2c:aa:1b:26:55:f6:4b:60:
                    17:96:b9:8f:e1:f2:c6:76:8c:6d:47:cc:ee:9e:71:bd:
                    8a:da:3e:55:ed:c0:e5:45:35:1f:49:f2:cd:44:b0:3e:
                    fd:01:6a:3b:25:b5:8a:7c:e9:f9:7c:09:94:ab:c2:3a:
                    af:86:e8:fe:03:62:44:e7:dd:ef:df:39:75:34:27:09:
                    3f:a6:3d:21:4a:48:88:5c:7d:a3:da:5d:68:bf:73:10:
                    c2:12:3f:0f:db:60:58:17:8c:5d:9a:09:f4:d6:40:3e:
                    fc:86:f6:26:81:6f:ae:2f:11:56:05:b9:36:46:bc:e9:
                    dd:2d:12:09:8e:e1:56:c5:2d:29:e7:fb:3e:25:36:60:
                    e7:f6:f1:9f:04:fc:11:53:3f:f5:06:ca:50:4e:12:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        32:bf:4f:57:b9:31:77:db:bf:8a:b9:0b:a5:c5:7e:fc:
        77:99:ae:2e:92:f4:9c:e1:fa:cc:aa:c4:f4:33:34:72:
        b2:dd:de:a8:2e:2a:32:8c:87:16:51:4f:98:67:c9:c1:
        12:d8:6a:19:61:53:54:e0:73:d4:56:f5:2b:16:c7:a0:
        69:6d:98:86:8a:64:2d:ba:51:09:ee:a1:e1:d1:33:49:
        d8:a0:ff:1c:8a:14:2c:8d:3e:ea:f5:f5:fb:30:66:0a:
        9a:04:e6:09:e4:4e:ef:c2:cd:0c:d1:a8:40:fa:34:52:
        7e:aa:ba:2f:67:40:ee:35:6d:9a:2f:c7:10:87:8c:87:
        85:1d:f4:08:63:4a:98:a9:f6:71:85:e4:a9:ad:1e:8b:
        35:03:47:48:a6:f3:90:f0:bf:ca:3e:69:8b:fe:e5:d4:
        b5:15:72:71:80:ab:13:1b:b1:2c:b4:84:1d:1f:69:6c:
        4e:f3:af:f3:57:68:d3:7e:3a:01:3e:b3:48:bb:de:34:
        7b:4d:3e:f5:47:aa:a9:d7:7a:cf:92:91:8f:cf:7f:85:
        fe:60:05:dd:99:51:e9:77:c3:70:3e:6b:7a:72:47:93:
        93:1c:e2:d6:91:f6:ab:c4:fb:bc:57:6b:1d:48:f1:46:
        eb:52:0a:6c:fe:9a:bc:02:9b:fe:9b:b1:fa:b6:bc:16
    Fingerprint (SHA-256):
        F5:80:D6:98:A5:A2:E6:52:D1:E4:9F:B2:FC:EF:15:0E:3E:15:B6:C4:CF:9E:DE:BF:55:A0:40:6E:39:17:C8:B7
    Fingerprint (SHA1):
        93:40:9D:05:26:71:A5:47:1B:F2:9D:B8:CE:4F:B3:33:A5:9F:48:E9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #13776: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13777: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001036 (0x3019dbcc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Mon Aug 07 00:11:46 2017
            Not After : Sun Aug 07 00:11:46 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:0a:32:3b:a1:f5:d4:88:51:49:71:ce:71:89:2e:d1:
                    bb:2a:06:28:06:ba:92:7d:8f:4a:76:b2:f7:d6:f5:4a:
                    74:81:7c:f5:33:3d:d7:4d:cb:86:6d:75:ed:db:6c:f9:
                    82:c5:05:a4:49:f3:74:80:33:dd:ee:5c:73:ab:33:76:
                    52:f1:a9:be:a5:62:83:46:5c:b4:27:85:3b:67:bc:c1:
                    f3:25:5d:16:76:db:0e:5f:ec:9b:d8:76:d8:46:76:9b:
                    38:7a:09:4c:29:8e:c3:c8:2c:c3:0a:25:a8:8b:a9:f7:
                    6f:44:18:33:66:18:95:f0:ae:f9:60:77:11:7b:54:fe:
                    31:db:ba:22:10:7a:48:da:17:00:80:0f:35:0b:0e:8d:
                    e0:f5:1c:58:93:14:bf:6e:4e:91:38:c4:bd:11:59:69:
                    e5:61:12:d2:2a:f1:3b:f5:10:08:77:1e:9e:4e:75:73:
                    9d:65:75:20:54:7f:94:c4:32:56:44:7c:17:b8:2e:7e:
                    d2:0f:cf:1c:85:4d:15:44:5a:c9:6e:cb:07:a4:f8:9b:
                    9f:6a:23:dd:dc:cf:c6:04:b7:32:18:f2:19:1d:95:5b:
                    dc:be:21:29:23:f0:14:06:83:b6:29:b5:d0:87:ff:f0:
                    87:b7:6f:ac:5d:80:0a:2c:b8:ef:6d:b0:9b:94:0f:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        aa:f3:f3:97:07:5c:78:82:0c:66:fb:1e:50:7b:2a:5e:
        9f:16:36:9d:df:91:b4:2d:e9:ba:f9:3f:a9:ab:c8:3b:
        ab:42:d1:73:8a:9f:f5:ec:ec:09:59:67:82:8f:91:1b:
        b8:47:3d:72:e7:92:d4:08:6e:57:b4:88:bf:62:3e:5d:
        d7:bf:26:3c:4f:35:a7:6e:27:14:93:15:f2:3e:16:1a:
        0d:ea:e2:01:ad:f5:2f:96:b8:47:42:75:2a:cc:62:77:
        99:ab:8d:53:f5:a3:2b:06:21:27:a5:36:33:cf:cb:e1:
        db:29:24:eb:59:73:33:1d:61:1e:6a:ef:31:fa:43:80:
        b7:d3:5e:5e:da:90:5f:7e:ab:8b:e0:0e:11:8c:c0:17:
        a6:22:65:7a:3e:ce:5f:72:f5:1f:3e:39:57:b1:5b:f9:
        62:85:b0:d0:3f:dc:94:af:d9:a9:05:d9:d7:e7:7f:6b:
        2f:f0:ac:d3:b4:6e:c3:b0:45:c1:f7:fb:d0:e7:f3:01:
        7d:06:68:4a:c7:fc:00:57:45:8a:ae:d5:c8:4e:00:a5:
        7d:49:2d:de:85:f3:47:a8:9a:7b:da:85:71:d4:5c:dd:
        3e:84:35:26:56:c3:51:a6:7c:0e:76:0b:10:75:d4:6a:
        a5:ed:e3:b3:72:32:28:d8:48:cc:f4:77:ea:c4:95:9c
    Fingerprint (SHA-256):
        1B:A7:41:D5:7E:4C:18:F7:D4:66:C4:CA:64:CC:BF:89:FE:98:43:68:51:66:55:CF:4F:54:20:EE:59:DF:94:AC
    Fingerprint (SHA1):
        80:0A:5C:15:DF:D9:B2:05:7A:61:6A:C4:BF:15:BA:6E:D9:8C:AC:0F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #13778: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #13779: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001038 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13780: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #13781: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13782: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13783: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 807001039   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13784: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13785: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #13786: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13787: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 807001040   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #13788: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13789: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #13790: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13791: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 807001041   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13792: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13793: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #13794: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13795: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 807001042   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13796: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13797: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #13798: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #13799: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #13800: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #13801: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #13802: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001038 (0x3019dbce)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:11:49 2017
            Not After : Sun Aug 07 00:11:49 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:28:40:07:bb:6c:e7:fc:a2:45:5a:4f:9b:4a:8e:b5:
                    3f:f2:68:a9:4d:29:8c:13:0d:61:87:65:8e:10:fd:47:
                    71:ea:4f:52:3c:e5:1c:f5:fd:df:5e:6d:dd:66:fa:b9:
                    93:7b:34:69:dd:e6:42:d1:51:13:01:45:7b:35:69:48:
                    dc:f4:22:05:1c:13:88:74:75:45:5b:55:11:49:c0:11:
                    be:b2:1f:fc:bc:a3:9a:e4:a9:bb:5e:6a:50:52:d6:c4:
                    88:20:e5:30:98:77:1f:4b:a1:84:3b:fb:82:81:62:76:
                    a4:e5:4f:c5:d5:99:3c:92:d7:be:34:79:14:34:56:b6:
                    9e:3c:34:09:e0:84:a5:f7:48:11:5f:a2:c5:d7:51:ae:
                    15:df:d2:f4:f6:1b:e4:03:2a:07:4d:ab:90:38:54:70:
                    a7:6d:8b:9f:a6:eb:d4:cb:bb:b9:3e:c5:96:2e:01:45:
                    b2:ab:61:5a:62:90:aa:58:5c:c8:06:e2:1f:f4:7b:08:
                    fa:89:10:c4:d9:10:f0:82:5f:a4:eb:8a:4c:d9:90:2c:
                    d5:1b:85:8a:4a:19:a8:e3:a9:93:60:f0:22:7e:3f:d5:
                    38:0d:d3:32:a0:4b:fd:8e:fc:48:3a:9b:d3:7d:34:8d:
                    39:08:99:41:b3:48:ef:68:2d:50:a9:45:13:59:53:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:03:76:c3:bd:26:36:3e:61:89:1b:14:72:c2:c3:c6:
        6d:b6:eb:ed:70:7b:43:33:72:f5:d9:c9:a4:b0:b6:87:
        3d:3f:8d:e0:b0:fa:32:d3:63:2e:9e:6e:f4:c8:a6:41:
        b2:ff:aa:fc:a6:34:a0:8e:22:0a:59:8c:87:85:ee:17:
        3d:09:f0:3a:8c:2b:9f:61:51:1a:ab:d9:33:6b:82:b3:
        1e:4b:d5:84:0d:15:1d:7c:f0:48:75:f7:d2:82:f7:10:
        a6:31:b0:24:1c:7b:1b:66:23:dc:cc:a5:da:82:70:97:
        6f:39:ff:c2:ee:8b:c5:c8:e5:00:86:d3:aa:dc:86:0c:
        48:78:4c:42:0e:89:ee:39:d8:4c:60:ec:76:33:7d:e5:
        cf:14:d3:fe:04:a3:3b:32:6d:06:df:2a:28:64:0f:0f:
        f3:67:ee:fb:60:66:b3:8f:6c:5a:f3:e0:0c:a2:be:c4:
        f8:86:e7:4e:1e:7d:e8:e0:80:de:59:b5:b2:c1:3e:d4:
        c5:dd:b0:ff:01:9e:6b:c4:31:08:fb:05:e4:8f:a8:02:
        e6:26:8c:76:ee:44:b3:61:37:62:59:b4:55:79:73:48:
        25:b8:77:f0:6b:18:a0:b9:2e:aa:17:ef:71:85:d4:65:
        0d:d7:bf:0c:d1:d2:eb:39:b8:f2:0e:b8:53:2c:ba:69
    Fingerprint (SHA-256):
        1E:36:08:89:30:02:A8:58:BE:43:D3:47:D4:79:F4:52:D9:88:43:0B:34:A1:06:BF:5E:DC:43:C4:A8:98:00:95
    Fingerprint (SHA1):
        EC:00:07:D3:0C:AD:7E:F9:F9:44:3D:AD:6B:CB:3A:3C:CA:E0:7F:81
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13803: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13804: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001039 (0x3019dbcf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:11:50 2017
            Not After : Sun Aug 07 00:11:50 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:94:9b:3c:36:2c:23:52:53:83:d4:08:a0:93:9f:3c:
                    49:7a:cf:0b:5b:fb:00:93:8d:e1:81:28:13:7b:cd:d7:
                    d0:8a:c7:89:77:38:24:49:c8:ce:0c:66:9b:40:68:37:
                    bd:4b:69:18:66:87:81:0a:05:82:ce:b1:a7:85:f3:07:
                    eb:88:61:3f:9e:0b:33:13:bd:e4:38:5a:d8:0f:80:ef:
                    c9:1c:6d:ff:c8:85:a2:e9:0e:78:46:9d:88:98:bc:a4:
                    76:79:2b:ee:65:ee:9d:0c:36:41:1d:83:7b:0e:c5:58:
                    26:2b:47:80:e5:16:75:a1:4c:88:33:ed:b9:77:e6:90:
                    d3:0b:33:bf:a2:c6:78:cb:35:1e:da:ae:04:18:1f:cb:
                    99:84:f1:b0:46:b5:26:12:7c:44:32:b4:59:27:ac:5a:
                    a7:de:4f:61:ca:12:3e:cd:65:cc:ab:c1:f4:a1:c9:18:
                    4b:e7:c4:61:27:36:b8:c7:ad:9d:ff:e2:c1:96:e3:dc:
                    1e:bb:09:24:1d:4b:ce:95:8b:8c:00:e7:66:4a:4f:5e:
                    57:1a:61:f3:37:6c:ad:a5:00:94:fb:10:bf:52:7e:ce:
                    d6:f4:f8:5d:24:49:13:ec:f6:f7:24:a7:f9:54:a6:d6:
                    aa:41:7d:1d:d8:ed:fc:33:9a:03:ae:aa:75:0e:b6:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c8:33:cf:dd:d8:6b:de:8b:ea:a1:89:d2:37:56:95:8a:
        21:94:3b:dc:1e:2a:db:a6:c5:00:0f:33:e0:6f:37:69:
        e8:6f:b3:16:72:e0:42:a5:88:fa:5d:66:cd:b4:67:40:
        bb:f6:ec:ce:08:b5:c5:5d:b7:a0:f4:06:4f:57:c5:aa:
        26:53:98:fc:b3:04:b8:2e:7b:4a:cf:cd:a2:77:b6:47:
        f3:9f:b0:ab:8a:4a:fd:52:64:e9:f7:bf:63:65:05:9f:
        95:de:ba:2c:e2:21:1d:24:73:19:57:9f:c1:2a:f0:ac:
        f8:f9:a6:11:01:7e:23:9b:0a:15:6f:e5:c7:64:ed:85:
        89:3e:5e:9b:77:bc:11:4c:8b:53:8c:00:fd:44:04:19:
        0c:8a:5d:71:ee:c4:af:00:48:ef:14:4f:2e:f2:f3:fe:
        0e:24:82:ec:4b:d2:14:e5:9d:7c:1f:e7:9f:99:7f:c6:
        0a:ed:4b:ef:96:cf:88:a7:d9:7e:98:4f:fb:70:95:b7:
        85:92:f2:76:f0:13:7e:42:b2:aa:d4:93:83:23:f1:5b:
        e3:93:db:a9:7f:c0:d8:67:e3:6a:4c:13:f3:08:cc:2c:
        52:f7:7d:ec:88:02:80:7c:99:2a:36:26:55:79:00:a1:
        93:8f:18:44:0e:e6:2b:60:a9:2c:82:a4:e5:0d:e5:5f
    Fingerprint (SHA-256):
        E8:08:95:2C:CD:FD:EF:B1:5A:C5:EF:E3:E6:50:22:68:EB:CF:B6:30:85:0B:96:6B:C5:F1:77:2C:A4:86:C8:9E
    Fingerprint (SHA1):
        C4:AE:EE:02:EE:C5:21:E2:F2:05:F4:53:08:32:EF:77:5D:DA:1D:12
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #13805: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13806: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13807: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001040 (0x3019dbd0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Mon Aug 07 00:11:51 2017
            Not After : Sun Aug 07 00:11:51 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:30:c9:2b:19:f7:95:2c:84:99:83:67:4f:1d:2d:dc:
                    45:d4:1a:1c:e8:a2:d4:08:87:ab:ed:6c:ff:7e:0e:38:
                    d7:04:e2:6c:1a:d8:98:8e:a2:12:b7:2b:27:a1:37:8d:
                    7f:3d:7a:0a:70:1b:0a:f2:15:c8:76:f7:40:d0:c5:28:
                    db:b1:31:f4:dd:af:ce:63:f7:62:80:dc:4f:0d:24:40:
                    0a:49:91:87:a3:6f:1c:8e:1c:d4:b6:3c:b7:cf:70:d4:
                    b1:ba:07:d9:45:fa:b1:51:09:e0:f1:40:c6:dd:1a:f3:
                    66:42:1a:b1:ec:be:17:81:9b:de:bb:45:b5:af:dd:af:
                    c2:4a:3f:08:4e:73:04:25:ea:fb:c5:18:b3:34:5e:06:
                    4d:e6:cd:c6:20:7d:83:1b:6b:6d:5b:4c:57:4d:7b:1b:
                    dd:69:c3:60:b9:0b:1d:10:3b:0c:7e:29:d4:a8:55:07:
                    db:ed:40:f0:2e:b0:47:c3:22:1e:d5:ad:87:78:25:02:
                    2f:cd:3c:a9:e5:5e:4b:df:34:77:9f:6d:03:6a:a9:c6:
                    92:62:5f:7a:94:7a:04:d7:f4:89:90:b7:fd:7f:82:89:
                    27:53:46:58:db:99:d1:e7:a0:4c:03:bf:a8:66:eb:79:
                    1c:90:5c:36:47:76:83:0a:e5:d0:fa:92:0b:e0:b3:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        17:47:83:a6:35:68:3a:91:6a:9b:3b:eb:07:35:ff:c7:
        f7:14:e5:e7:21:28:42:4c:d8:24:f7:68:f3:50:7a:74:
        16:9a:05:27:e6:ae:86:e8:d2:8a:f6:e0:81:0b:bc:d0:
        0e:8f:40:e4:b8:ce:29:69:4c:f9:9d:cc:62:b9:16:fc:
        30:1a:60:22:5b:f4:35:7b:7a:84:fb:a9:f5:0a:b1:0c:
        8c:7e:7b:63:43:3e:64:43:96:fd:69:cf:70:b3:21:6f:
        13:4a:ab:5e:0e:11:86:84:37:00:5e:92:cd:6a:35:3a:
        0f:14:0f:6d:2d:06:37:ab:30:93:01:4f:9e:cf:2a:bd:
        77:75:1d:9c:79:40:ac:87:2b:b6:ae:1f:09:db:2f:b6:
        3e:8e:87:4c:5c:e7:f6:8f:50:40:ca:67:8c:f2:0a:c6:
        14:5b:e2:09:aa:33:47:08:fc:e0:34:67:a3:1a:fb:88:
        58:5b:61:4d:8b:53:b6:fe:bb:45:45:02:07:e2:98:b2:
        12:e4:c4:17:8b:6e:0f:f9:c1:03:44:6e:f6:f0:27:24:
        ba:81:62:d2:dc:21:5e:07:00:b3:74:96:f8:3c:ae:47:
        90:e4:93:98:6c:59:8c:90:41:46:b4:d3:6c:a0:17:ce:
        42:40:67:77:49:e7:bf:4e:45:a4:8e:f4:1d:5f:19:a8
    Fingerprint (SHA-256):
        80:A3:BD:7C:E9:BF:FC:80:00:D8:25:04:C0:A9:26:38:6E:A7:FE:F7:21:CB:99:DD:E2:59:83:36:01:8A:59:D8
    Fingerprint (SHA1):
        8F:13:EA:4B:FE:78:BB:DB:40:3A:32:62:7A:CE:D6:8B:8C:1D:4D:1F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #13808: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #13809: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001043 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13810: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #13811: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13812: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13813: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 807001044   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13814: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13815: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #13816: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13817: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 807001045   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA1Root-807000952.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13818: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13819: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #13820: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13821: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 807001046   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13822: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13823: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #13824: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001043 (0x3019dbd3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:11:56 2017
            Not After : Sun Aug 07 00:11:56 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:66:9b:c3:7f:ed:29:31:b8:d4:7a:44:87:92:81:1e:
                    17:95:5e:6e:ab:7b:50:07:b6:1d:f8:c1:b1:de:d7:2d:
                    34:0f:53:19:66:ab:bc:e9:d9:48:5a:4d:24:d0:87:e5:
                    bd:cd:56:e1:f9:c6:91:22:60:d3:d7:ba:87:39:b6:22:
                    1b:48:77:79:e2:d9:f7:7e:7b:b9:5c:93:5b:c1:7b:80:
                    e1:e8:1d:5e:81:c1:9e:88:69:75:a8:3a:c7:fb:b9:a5:
                    b8:ed:b3:f3:8f:ea:e3:d3:cf:40:7d:68:33:77:d7:ef:
                    cf:c8:3e:44:e8:26:c4:5e:9b:d1:ad:57:64:e7:77:08:
                    42:53:49:a9:5f:89:8b:ef:91:15:a1:2d:59:8a:69:75:
                    46:9f:43:b0:94:0d:8a:0d:12:52:4f:80:ca:7a:a0:ab:
                    6a:bc:83:10:8b:1d:27:8f:03:cc:7e:d4:a0:bd:c1:00:
                    27:01:3e:fc:59:d2:fe:be:4a:cd:87:45:fe:06:db:f5:
                    3e:e0:14:ea:54:2c:5c:06:5f:d8:79:b9:a4:5b:53:f0:
                    9a:1c:ad:56:99:4a:54:80:e7:04:c8:5f:02:05:77:e4:
                    73:90:a6:f3:b1:76:98:0d:b6:11:20:63:86:a6:a7:d4:
                    f5:70:5e:77:4d:3f:66:33:54:84:16:0e:b5:b8:20:27
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1c:01:3e:df:b0:12:da:47:69:d6:c8:53:06:c5:77:1c:
        19:a9:0d:68:96:16:f9:1f:5a:4b:85:a5:ed:16:03:13:
        68:71:34:33:c8:12:0a:ec:9a:1a:65:0f:f4:ba:cd:55:
        71:1b:5d:9b:79:21:85:9b:f8:6c:7b:9a:11:c1:30:4b:
        5e:a0:a1:28:c2:ed:9a:82:ea:60:82:43:9b:1c:6e:e7:
        09:ab:64:8f:97:7e:a6:00:00:07:a8:ef:b8:ea:cb:93:
        99:cc:4c:88:27:d0:ce:bb:01:c0:ee:70:d6:95:69:53:
        60:c5:b9:96:d3:d8:e9:27:c7:ca:16:6a:fd:8b:0c:aa:
        ec:6d:b6:c1:5e:80:0e:83:81:9e:82:5a:0f:fc:0e:5f:
        0c:96:82:60:25:e3:23:77:0e:1f:7e:c7:a8:91:a7:e4:
        1f:46:ca:e7:07:59:eb:2d:47:ae:ed:31:cd:b7:eb:56:
        e8:7c:1c:d4:dc:2d:d0:02:c3:0c:5c:0d:11:0e:e0:90:
        5c:f7:ca:9c:bb:ae:fe:9f:10:61:d2:5d:36:0c:58:05:
        53:ee:24:c7:5d:64:7c:a9:55:82:a1:6e:9f:9f:b0:96:
        30:b9:81:81:95:f9:ab:5d:39:35:4d:a8:1c:0b:37:df:
        83:5a:2d:0a:f2:90:b9:f8:dd:be:d6:b3:86:11:d9:e7
    Fingerprint (SHA-256):
        C2:CB:EB:AA:52:FB:72:65:43:6E:98:C9:CD:2C:79:A2:34:A2:B0:18:F0:2C:6B:88:A0:6D:27:23:58:AF:55:DE
    Fingerprint (SHA1):
        4D:D9:6F:42:53:A9:68:44:BC:16:FE:17:AD:51:53:47:CA:DA:A6:16
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13825: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #13826: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001047 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13827: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #13828: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #13829: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001048 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13830: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #13831: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #13832: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13833: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 807001049 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13834: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13835: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 807001050 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13836: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13837: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #13838: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13839: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13840: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 807001051   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-Bridge-807000953.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13841: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13842: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #13843: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13844: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 807001052   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13845: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13846: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #13847: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001047 (0x3019dbd7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Mon Aug 07 00:12:00 2017
            Not After : Sun Aug 07 00:12:00 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:b4:f3:32:e1:61:6d:97:ed:b3:6b:a1:76:f0:5d:be:
                    6a:c9:88:20:32:6a:61:49:96:b1:6a:a2:fc:3f:04:52:
                    cd:a8:8a:bd:48:e4:51:94:ac:b3:a8:14:10:7d:6d:b2:
                    e2:f1:a1:12:de:86:81:96:21:36:65:2d:20:41:55:1f:
                    e1:ca:71:88:e9:cf:3b:62:0b:d2:05:11:54:af:3f:4c:
                    e7:33:5d:31:e1:78:ac:bf:8d:78:48:a1:cc:34:8e:6d:
                    94:d0:63:ad:51:fb:13:c3:8a:02:18:ea:a5:3c:21:be:
                    38:3e:06:7a:2c:30:7f:20:2d:6f:81:16:34:11:86:ea:
                    6c:1a:72:13:01:54:4a:44:aa:24:72:e0:87:c0:0b:5e:
                    40:01:8a:0e:0d:7e:a4:4e:3b:43:9d:33:24:85:db:85:
                    a7:45:4a:ac:64:f6:ae:0e:77:63:09:3e:40:b7:3e:c6:
                    bb:39:fe:29:e2:a8:07:77:bb:2e:7d:65:a8:58:6d:c0:
                    e7:f5:e4:2d:ef:35:b9:93:ac:58:c4:d6:1c:55:be:18:
                    1d:7b:20:63:6e:20:0e:18:1a:77:b5:5f:08:be:a9:21:
                    32:c7:71:8d:06:8e:24:22:ec:86:c0:af:b5:fb:aa:92:
                    09:01:78:8f:81:e8:80:f6:7c:a1:21:45:a3:dc:b1:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:43:31:3d:10:d7:21:d7:91:ad:24:37:09:70:69:3a:
        90:53:24:4b:8e:54:4f:5a:a0:1c:be:19:18:67:23:c5:
        dd:31:c9:60:4e:4a:bc:66:eb:75:02:d9:e4:f1:be:ed:
        d3:92:25:76:e4:3e:37:92:16:0e:bf:f9:bd:43:1c:66:
        01:d5:34:7f:d5:23:28:15:4a:d1:61:db:22:c8:f8:bb:
        4b:e0:27:a4:61:0f:4e:55:67:a8:d3:3b:c0:97:89:17:
        1f:ed:11:e1:08:e8:65:b1:b9:74:32:70:0c:6d:58:b0:
        82:f2:64:a6:60:11:93:5c:e1:49:e4:f3:ae:44:7e:38:
        9b:7b:75:89:50:47:d8:40:ce:ca:71:56:75:01:95:a3:
        c3:ba:c7:94:52:1c:22:de:52:0a:2c:35:82:ca:17:1f:
        52:73:1b:55:98:e8:57:cf:aa:d1:b7:85:85:46:f2:35:
        ea:3d:31:bf:27:9e:52:d0:33:54:9b:01:d6:71:80:b5:
        ba:11:48:6e:3b:30:e2:1c:cb:70:0f:a4:7f:3f:0a:90:
        c1:27:76:68:e4:0b:55:30:96:9b:d2:d4:f6:90:30:2c:
        4b:99:d2:54:30:f1:aa:19:e5:ce:1c:eb:b1:b4:74:c6:
        ff:c3:a5:bc:65:e2:5f:3a:70:b8:c6:d2:96:15:fb:aa
    Fingerprint (SHA-256):
        EE:22:05:CA:D6:59:35:AC:85:AF:EB:C3:1A:3B:8D:F5:68:E0:97:09:3F:48:75:66:61:66:67:EE:F7:B0:31:AE
    Fingerprint (SHA1):
        0D:A4:47:9E:22:54:05:B5:15:50:2F:2F:DF:D8:47:27:00:2C:B6:65
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13848: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001048 (0x3019dbd8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Mon Aug 07 00:12:01 2017
            Not After : Sun Aug 07 00:12:01 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f6:1c:e1:01:1e:00:ba:95:f1:4f:bf:fa:7c:b4:2a:14:
                    f5:9a:81:95:6e:69:27:5f:6b:2c:b5:81:6b:e4:ec:28:
                    42:d0:7b:9d:a1:5c:db:92:85:32:07:26:bd:bb:a9:1e:
                    46:0c:5c:41:31:aa:cd:04:c0:4b:e4:78:ae:66:e1:12:
                    c4:74:8a:cf:bb:ab:bd:c1:40:76:e8:65:73:b3:1d:b2:
                    4c:43:92:c7:62:8f:f7:71:a4:73:e7:53:0a:f4:c5:9b:
                    19:1d:27:4e:a1:83:78:d5:28:0b:fb:14:74:98:c8:fc:
                    40:dc:c9:5d:85:64:1f:4c:39:b8:e2:af:f8:f8:15:0a:
                    6f:28:35:ad:4f:c6:e9:1a:53:b0:e2:8c:f9:1d:bd:fa:
                    81:57:e7:5d:02:36:24:f1:93:90:d1:62:9d:d2:91:c6:
                    1d:48:27:84:3a:70:e3:de:b0:7e:ae:74:51:45:3f:d7:
                    69:22:5a:b8:ab:ef:93:72:c6:07:f9:36:4c:47:1f:e6:
                    72:96:83:11:01:19:fc:63:d1:c8:12:10:91:0d:0f:50:
                    83:0a:43:45:83:c3:d6:2e:3c:7f:b2:14:37:c9:3b:13:
                    51:60:9a:08:84:e7:28:79:46:b5:a6:07:db:e0:d3:8c:
                    b9:0b:f3:4f:8f:aa:c2:04:1f:3a:87:64:5e:20:c7:c7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        76:c0:0d:4f:c4:4e:bb:d3:55:4b:16:88:4d:ec:4b:b5:
        fa:48:ad:5f:12:88:f6:ba:43:46:47:2a:52:11:85:2f:
        0a:ba:c4:c2:10:7a:19:ee:7a:85:86:65:ce:14:5a:cd:
        23:9a:27:dd:df:9f:be:e8:3c:54:62:19:f4:d5:3a:39:
        d7:ee:f1:d4:08:64:ff:43:bf:c9:91:5e:b5:17:ac:df:
        45:eb:f5:ba:b3:c5:15:52:c3:40:ee:71:b9:17:e7:ce:
        48:2a:04:c0:f1:b2:89:80:ac:d6:43:76:9f:59:99:8e:
        b6:81:44:28:fb:09:74:34:03:5a:fa:fc:27:01:d7:31:
        7b:28:c6:16:01:15:81:ac:5b:43:37:2b:20:99:ad:02:
        38:cd:15:04:4c:22:0a:36:23:39:f7:5e:bf:9d:1c:cb:
        38:66:f9:3f:30:b5:76:8f:aa:1a:eb:17:11:f2:99:91:
        f2:f0:03:f1:7f:dd:82:67:ce:19:81:65:26:ae:c6:4e:
        d6:e8:45:fa:6b:da:99:35:6c:29:10:c1:a6:6b:2b:18:
        a5:4a:ae:66:26:11:48:45:92:c7:27:93:59:9a:7e:b6:
        5b:fc:41:36:7e:9f:0a:a3:62:14:62:da:02:a2:23:77:
        85:a1:f7:0b:be:e2:9b:4c:14:9f:d4:5b:fd:b4:04:38
    Fingerprint (SHA-256):
        B0:0F:59:63:CC:41:CF:E5:EA:CE:B6:15:5A:94:59:47:A2:AF:C9:91:3B:F3:64:6B:94:BC:D6:B1:19:69:B4:A5
    Fingerprint (SHA1):
        78:16:A8:34:22:71:35:59:50:10:2B:20:B3:C2:AE:96:86:83:64:75
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13849: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001048 (0x3019dbd8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Mon Aug 07 00:12:01 2017
            Not After : Sun Aug 07 00:12:01 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f6:1c:e1:01:1e:00:ba:95:f1:4f:bf:fa:7c:b4:2a:14:
                    f5:9a:81:95:6e:69:27:5f:6b:2c:b5:81:6b:e4:ec:28:
                    42:d0:7b:9d:a1:5c:db:92:85:32:07:26:bd:bb:a9:1e:
                    46:0c:5c:41:31:aa:cd:04:c0:4b:e4:78:ae:66:e1:12:
                    c4:74:8a:cf:bb:ab:bd:c1:40:76:e8:65:73:b3:1d:b2:
                    4c:43:92:c7:62:8f:f7:71:a4:73:e7:53:0a:f4:c5:9b:
                    19:1d:27:4e:a1:83:78:d5:28:0b:fb:14:74:98:c8:fc:
                    40:dc:c9:5d:85:64:1f:4c:39:b8:e2:af:f8:f8:15:0a:
                    6f:28:35:ad:4f:c6:e9:1a:53:b0:e2:8c:f9:1d:bd:fa:
                    81:57:e7:5d:02:36:24:f1:93:90:d1:62:9d:d2:91:c6:
                    1d:48:27:84:3a:70:e3:de:b0:7e:ae:74:51:45:3f:d7:
                    69:22:5a:b8:ab:ef:93:72:c6:07:f9:36:4c:47:1f:e6:
                    72:96:83:11:01:19:fc:63:d1:c8:12:10:91:0d:0f:50:
                    83:0a:43:45:83:c3:d6:2e:3c:7f:b2:14:37:c9:3b:13:
                    51:60:9a:08:84:e7:28:79:46:b5:a6:07:db:e0:d3:8c:
                    b9:0b:f3:4f:8f:aa:c2:04:1f:3a:87:64:5e:20:c7:c7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        76:c0:0d:4f:c4:4e:bb:d3:55:4b:16:88:4d:ec:4b:b5:
        fa:48:ad:5f:12:88:f6:ba:43:46:47:2a:52:11:85:2f:
        0a:ba:c4:c2:10:7a:19:ee:7a:85:86:65:ce:14:5a:cd:
        23:9a:27:dd:df:9f:be:e8:3c:54:62:19:f4:d5:3a:39:
        d7:ee:f1:d4:08:64:ff:43:bf:c9:91:5e:b5:17:ac:df:
        45:eb:f5:ba:b3:c5:15:52:c3:40:ee:71:b9:17:e7:ce:
        48:2a:04:c0:f1:b2:89:80:ac:d6:43:76:9f:59:99:8e:
        b6:81:44:28:fb:09:74:34:03:5a:fa:fc:27:01:d7:31:
        7b:28:c6:16:01:15:81:ac:5b:43:37:2b:20:99:ad:02:
        38:cd:15:04:4c:22:0a:36:23:39:f7:5e:bf:9d:1c:cb:
        38:66:f9:3f:30:b5:76:8f:aa:1a:eb:17:11:f2:99:91:
        f2:f0:03:f1:7f:dd:82:67:ce:19:81:65:26:ae:c6:4e:
        d6:e8:45:fa:6b:da:99:35:6c:29:10:c1:a6:6b:2b:18:
        a5:4a:ae:66:26:11:48:45:92:c7:27:93:59:9a:7e:b6:
        5b:fc:41:36:7e:9f:0a:a3:62:14:62:da:02:a2:23:77:
        85:a1:f7:0b:be:e2:9b:4c:14:9f:d4:5b:fd:b4:04:38
    Fingerprint (SHA-256):
        B0:0F:59:63:CC:41:CF:E5:EA:CE:B6:15:5A:94:59:47:A2:AF:C9:91:3B:F3:64:6B:94:BC:D6:B1:19:69:B4:A5
    Fingerprint (SHA1):
        78:16:A8:34:22:71:35:59:50:10:2B:20:B3:C2:AE:96:86:83:64:75
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13850: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #13851: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001053 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13852: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #13853: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #13854: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001054 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13855: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #13856: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #13857: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13858: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 807001055 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13859: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13860: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 807001056 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13861: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13862: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #13863: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13864: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13865: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 807001057   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-Bridge-807000954.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13866: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13867: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #13868: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13869: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 807001058   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13870: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13871: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #13872: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13873: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 807001059   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-BridgeNavy-807000955.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13874: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13875: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #13876: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13877: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 807001060   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13878: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13879: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #13880: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001053 (0x3019dbdd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Mon Aug 07 00:12:05 2017
            Not After : Sun Aug 07 00:12:05 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:56:ee:b2:f8:3b:0b:1e:b0:4a:2b:22:a1:3e:55:19:
                    db:ec:77:41:39:0f:b7:1c:4f:1c:07:70:3c:ac:39:1b:
                    ca:4f:1b:5c:02:de:90:f5:58:ca:ab:36:1c:5b:ef:5e:
                    aa:ef:f0:d2:99:fc:85:b0:46:9f:56:a5:74:68:2d:3f:
                    73:6b:2e:2f:ce:46:2b:a1:15:67:dc:83:87:0c:1b:a7:
                    f6:bb:27:5b:2c:18:44:cb:a7:c4:af:92:04:66:d3:01:
                    7e:46:cb:78:7a:7a:d4:1a:62:12:90:52:e5:19:c6:75:
                    1e:62:a2:3a:2a:2c:85:59:ee:db:09:57:e6:1e:07:bf:
                    35:41:e3:9a:95:ab:17:bd:6a:88:02:b2:3d:89:3f:20:
                    a6:0f:57:88:bf:4d:f2:fd:ea:b6:f8:f8:ff:e4:1d:a0:
                    cd:91:67:a8:aa:dc:d2:a9:44:56:c4:cb:54:5e:88:29:
                    ba:89:52:e2:12:85:60:62:15:69:3c:8b:81:c0:1d:b5:
                    69:e3:cc:66:12:18:72:fa:99:0f:8e:d8:b8:fa:0a:b6:
                    9c:05:69:59:f0:bf:04:86:af:9f:1d:e9:22:69:12:47:
                    c2:3e:ac:9a:f2:77:56:1a:a7:4c:4d:98:1f:5a:ce:b6:
                    3c:87:79:99:7d:01:24:71:d3:12:71:5e:4c:6f:68:9b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:eb:c6:ff:1b:eb:20:89:76:36:e8:19:b8:18:c2:0a:
        0d:43:d1:e2:a3:23:3a:6f:57:2e:18:56:25:b6:2e:42:
        e4:18:65:8f:c9:93:95:98:3a:ed:dd:01:37:eb:dd:20:
        f5:ce:dd:f7:06:11:35:df:62:a6:f2:65:57:e7:43:c5:
        18:41:2b:48:9a:be:0c:ed:d0:0e:52:4e:c1:83:01:9d:
        63:10:8f:c9:25:6b:10:52:25:eb:df:0b:58:05:2b:54:
        49:6d:f9:a4:24:64:4e:21:96:11:88:90:8e:e9:03:2b:
        cf:c1:82:0c:c2:8e:fe:bd:1b:21:1a:bb:92:4d:da:13:
        1c:ea:2e:b2:1a:4f:97:a3:37:ee:2f:af:27:f0:e9:19:
        7e:8f:43:29:57:65:82:c6:65:66:c6:0e:bc:87:2c:10:
        62:87:91:bd:f9:0d:49:43:02:63:10:87:35:35:9b:dc:
        a6:d1:fa:8f:0e:88:bb:5d:8c:4c:21:4c:c9:70:e8:c9:
        f7:c3:c0:cc:43:73:dc:b4:21:b0:9c:29:ea:0c:0a:f7:
        70:b1:b4:64:f1:79:99:2d:2a:af:62:06:b3:03:4b:c4:
        eb:d4:6c:66:4b:76:0d:33:a2:39:82:cd:71:99:33:86:
        bd:37:c7:25:8b:a0:54:a3:f5:17:11:f6:24:8c:18:dc
    Fingerprint (SHA-256):
        2B:6A:6E:73:52:68:D7:83:E5:0E:EE:AD:DF:68:04:FB:C1:E8:81:7D:8D:2C:3C:EC:C3:DC:0E:01:F6:A7:52:E8
    Fingerprint (SHA1):
        46:14:C5:1D:9C:B5:FE:37:77:88:34:81:F0:81:84:BA:B0:9A:85:D5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13881: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001054 (0x3019dbde)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Mon Aug 07 00:12:06 2017
            Not After : Sun Aug 07 00:12:06 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    eb:02:00:e2:1e:c4:95:e9:db:5d:cc:f2:07:9a:03:08:
                    56:57:66:0c:ec:69:e0:91:67:33:8c:03:61:2e:0a:55:
                    d4:f3:bb:d4:ee:82:85:f9:b6:b2:d2:d7:89:18:af:d4:
                    79:46:14:a6:ac:e6:b9:97:be:79:3b:15:9e:65:50:0e:
                    18:fe:8d:6f:44:64:20:38:83:a3:8b:8a:d6:37:e9:f8:
                    59:c4:cf:c3:33:25:67:e3:39:7b:11:64:c8:69:9d:4c:
                    ca:7e:a0:92:80:1a:ea:13:cf:e3:49:d3:4f:ed:23:2c:
                    fc:cd:bb:37:c4:fb:70:67:bb:5b:47:71:1a:f5:e0:c6:
                    ad:6a:18:d1:1b:05:f2:51:84:62:3d:33:15:44:c8:ae:
                    e6:1e:77:d3:5a:98:be:12:aa:3a:48:e2:62:29:b3:90:
                    59:41:d6:e0:22:c9:8b:60:d0:3a:77:a5:b5:e6:ae:26:
                    68:1c:cc:32:6e:ac:63:2a:1f:d7:1f:d2:8d:7b:1a:cd:
                    a9:81:f2:c8:f0:bd:44:dd:80:43:46:a6:0d:44:23:d1:
                    75:d1:04:e5:5a:3e:c2:0c:67:7c:a2:51:d0:01:0b:3c:
                    b7:73:53:cd:88:f1:d2:4f:38:0f:42:05:51:1e:46:11:
                    f9:8d:fa:c1:3b:97:65:ed:9d:55:d7:78:81:7b:3a:21
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:53:60:3d:ed:f6:30:3d:a1:30:c7:d1:bb:54:a8:f4:
        d8:1a:0a:b7:9f:50:b9:c5:35:cd:49:de:23:9b:2f:c3:
        af:13:0b:96:11:cb:87:28:37:b7:64:20:c6:6f:96:d2:
        ac:18:ca:d6:58:5f:92:51:4d:9b:55:65:d3:77:37:b9:
        40:6f:7b:b7:b8:81:10:6b:36:cd:5d:6d:ce:ee:88:25:
        ff:be:a5:50:51:84:23:42:bf:d0:b9:0a:df:b4:64:d5:
        bd:3b:15:28:86:3c:f7:b1:53:6c:9f:b0:1e:94:58:49:
        9f:cd:4a:31:07:d1:f9:7a:56:86:2b:b9:58:6e:82:1e:
        e4:dc:27:a6:9f:1a:fe:73:e5:06:fe:84:c9:38:93:9b:
        98:13:b1:d6:65:eb:dc:88:05:70:da:8c:08:02:81:ef:
        80:88:27:10:6e:8a:e9:cc:48:5f:9f:00:4b:56:79:d6:
        67:f1:5b:ea:d0:bd:e3:6b:82:60:df:c8:59:c1:2c:da:
        66:ce:d3:e5:96:40:94:7c:9e:67:1e:7f:d1:61:4b:5f:
        cf:ab:c3:08:99:97:23:a5:d8:52:aa:45:2e:85:a1:62:
        42:17:1c:67:d6:b8:a5:33:0a:c5:59:ba:b0:80:55:01:
        09:8e:ee:4c:af:85:5e:30:4c:da:96:22:a2:b2:fd:4b
    Fingerprint (SHA-256):
        D8:5B:9F:C8:9C:20:AE:38:3D:F5:12:03:3C:9F:DF:FF:7C:F2:EA:C0:83:B5:74:9C:32:19:B8:08:AF:6A:E2:AE
    Fingerprint (SHA1):
        B6:69:1C:A1:E7:85:83:E4:92:4F:06:C6:DF:F2:B8:3F:01:3B:02:6B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13882: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001054 (0x3019dbde)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Mon Aug 07 00:12:06 2017
            Not After : Sun Aug 07 00:12:06 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    eb:02:00:e2:1e:c4:95:e9:db:5d:cc:f2:07:9a:03:08:
                    56:57:66:0c:ec:69:e0:91:67:33:8c:03:61:2e:0a:55:
                    d4:f3:bb:d4:ee:82:85:f9:b6:b2:d2:d7:89:18:af:d4:
                    79:46:14:a6:ac:e6:b9:97:be:79:3b:15:9e:65:50:0e:
                    18:fe:8d:6f:44:64:20:38:83:a3:8b:8a:d6:37:e9:f8:
                    59:c4:cf:c3:33:25:67:e3:39:7b:11:64:c8:69:9d:4c:
                    ca:7e:a0:92:80:1a:ea:13:cf:e3:49:d3:4f:ed:23:2c:
                    fc:cd:bb:37:c4:fb:70:67:bb:5b:47:71:1a:f5:e0:c6:
                    ad:6a:18:d1:1b:05:f2:51:84:62:3d:33:15:44:c8:ae:
                    e6:1e:77:d3:5a:98:be:12:aa:3a:48:e2:62:29:b3:90:
                    59:41:d6:e0:22:c9:8b:60:d0:3a:77:a5:b5:e6:ae:26:
                    68:1c:cc:32:6e:ac:63:2a:1f:d7:1f:d2:8d:7b:1a:cd:
                    a9:81:f2:c8:f0:bd:44:dd:80:43:46:a6:0d:44:23:d1:
                    75:d1:04:e5:5a:3e:c2:0c:67:7c:a2:51:d0:01:0b:3c:
                    b7:73:53:cd:88:f1:d2:4f:38:0f:42:05:51:1e:46:11:
                    f9:8d:fa:c1:3b:97:65:ed:9d:55:d7:78:81:7b:3a:21
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:53:60:3d:ed:f6:30:3d:a1:30:c7:d1:bb:54:a8:f4:
        d8:1a:0a:b7:9f:50:b9:c5:35:cd:49:de:23:9b:2f:c3:
        af:13:0b:96:11:cb:87:28:37:b7:64:20:c6:6f:96:d2:
        ac:18:ca:d6:58:5f:92:51:4d:9b:55:65:d3:77:37:b9:
        40:6f:7b:b7:b8:81:10:6b:36:cd:5d:6d:ce:ee:88:25:
        ff:be:a5:50:51:84:23:42:bf:d0:b9:0a:df:b4:64:d5:
        bd:3b:15:28:86:3c:f7:b1:53:6c:9f:b0:1e:94:58:49:
        9f:cd:4a:31:07:d1:f9:7a:56:86:2b:b9:58:6e:82:1e:
        e4:dc:27:a6:9f:1a:fe:73:e5:06:fe:84:c9:38:93:9b:
        98:13:b1:d6:65:eb:dc:88:05:70:da:8c:08:02:81:ef:
        80:88:27:10:6e:8a:e9:cc:48:5f:9f:00:4b:56:79:d6:
        67:f1:5b:ea:d0:bd:e3:6b:82:60:df:c8:59:c1:2c:da:
        66:ce:d3:e5:96:40:94:7c:9e:67:1e:7f:d1:61:4b:5f:
        cf:ab:c3:08:99:97:23:a5:d8:52:aa:45:2e:85:a1:62:
        42:17:1c:67:d6:b8:a5:33:0a:c5:59:ba:b0:80:55:01:
        09:8e:ee:4c:af:85:5e:30:4c:da:96:22:a2:b2:fd:4b
    Fingerprint (SHA-256):
        D8:5B:9F:C8:9C:20:AE:38:3D:F5:12:03:3C:9F:DF:FF:7C:F2:EA:C0:83:B5:74:9C:32:19:B8:08:AF:6A:E2:AE
    Fingerprint (SHA1):
        B6:69:1C:A1:E7:85:83:E4:92:4F:06:C6:DF:F2:B8:3F:01:3B:02:6B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13883: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #13884: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001053 (0x3019dbdd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Mon Aug 07 00:12:05 2017
            Not After : Sun Aug 07 00:12:05 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:56:ee:b2:f8:3b:0b:1e:b0:4a:2b:22:a1:3e:55:19:
                    db:ec:77:41:39:0f:b7:1c:4f:1c:07:70:3c:ac:39:1b:
                    ca:4f:1b:5c:02:de:90:f5:58:ca:ab:36:1c:5b:ef:5e:
                    aa:ef:f0:d2:99:fc:85:b0:46:9f:56:a5:74:68:2d:3f:
                    73:6b:2e:2f:ce:46:2b:a1:15:67:dc:83:87:0c:1b:a7:
                    f6:bb:27:5b:2c:18:44:cb:a7:c4:af:92:04:66:d3:01:
                    7e:46:cb:78:7a:7a:d4:1a:62:12:90:52:e5:19:c6:75:
                    1e:62:a2:3a:2a:2c:85:59:ee:db:09:57:e6:1e:07:bf:
                    35:41:e3:9a:95:ab:17:bd:6a:88:02:b2:3d:89:3f:20:
                    a6:0f:57:88:bf:4d:f2:fd:ea:b6:f8:f8:ff:e4:1d:a0:
                    cd:91:67:a8:aa:dc:d2:a9:44:56:c4:cb:54:5e:88:29:
                    ba:89:52:e2:12:85:60:62:15:69:3c:8b:81:c0:1d:b5:
                    69:e3:cc:66:12:18:72:fa:99:0f:8e:d8:b8:fa:0a:b6:
                    9c:05:69:59:f0:bf:04:86:af:9f:1d:e9:22:69:12:47:
                    c2:3e:ac:9a:f2:77:56:1a:a7:4c:4d:98:1f:5a:ce:b6:
                    3c:87:79:99:7d:01:24:71:d3:12:71:5e:4c:6f:68:9b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:eb:c6:ff:1b:eb:20:89:76:36:e8:19:b8:18:c2:0a:
        0d:43:d1:e2:a3:23:3a:6f:57:2e:18:56:25:b6:2e:42:
        e4:18:65:8f:c9:93:95:98:3a:ed:dd:01:37:eb:dd:20:
        f5:ce:dd:f7:06:11:35:df:62:a6:f2:65:57:e7:43:c5:
        18:41:2b:48:9a:be:0c:ed:d0:0e:52:4e:c1:83:01:9d:
        63:10:8f:c9:25:6b:10:52:25:eb:df:0b:58:05:2b:54:
        49:6d:f9:a4:24:64:4e:21:96:11:88:90:8e:e9:03:2b:
        cf:c1:82:0c:c2:8e:fe:bd:1b:21:1a:bb:92:4d:da:13:
        1c:ea:2e:b2:1a:4f:97:a3:37:ee:2f:af:27:f0:e9:19:
        7e:8f:43:29:57:65:82:c6:65:66:c6:0e:bc:87:2c:10:
        62:87:91:bd:f9:0d:49:43:02:63:10:87:35:35:9b:dc:
        a6:d1:fa:8f:0e:88:bb:5d:8c:4c:21:4c:c9:70:e8:c9:
        f7:c3:c0:cc:43:73:dc:b4:21:b0:9c:29:ea:0c:0a:f7:
        70:b1:b4:64:f1:79:99:2d:2a:af:62:06:b3:03:4b:c4:
        eb:d4:6c:66:4b:76:0d:33:a2:39:82:cd:71:99:33:86:
        bd:37:c7:25:8b:a0:54:a3:f5:17:11:f6:24:8c:18:dc
    Fingerprint (SHA-256):
        2B:6A:6E:73:52:68:D7:83:E5:0E:EE:AD:DF:68:04:FB:C1:E8:81:7D:8D:2C:3C:EC:C3:DC:0E:01:F6:A7:52:E8
    Fingerprint (SHA1):
        46:14:C5:1D:9C:B5:FE:37:77:88:34:81:F0:81:84:BA:B0:9A:85:D5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13885: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001054 (0x3019dbde)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Mon Aug 07 00:12:06 2017
            Not After : Sun Aug 07 00:12:06 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    eb:02:00:e2:1e:c4:95:e9:db:5d:cc:f2:07:9a:03:08:
                    56:57:66:0c:ec:69:e0:91:67:33:8c:03:61:2e:0a:55:
                    d4:f3:bb:d4:ee:82:85:f9:b6:b2:d2:d7:89:18:af:d4:
                    79:46:14:a6:ac:e6:b9:97:be:79:3b:15:9e:65:50:0e:
                    18:fe:8d:6f:44:64:20:38:83:a3:8b:8a:d6:37:e9:f8:
                    59:c4:cf:c3:33:25:67:e3:39:7b:11:64:c8:69:9d:4c:
                    ca:7e:a0:92:80:1a:ea:13:cf:e3:49:d3:4f:ed:23:2c:
                    fc:cd:bb:37:c4:fb:70:67:bb:5b:47:71:1a:f5:e0:c6:
                    ad:6a:18:d1:1b:05:f2:51:84:62:3d:33:15:44:c8:ae:
                    e6:1e:77:d3:5a:98:be:12:aa:3a:48:e2:62:29:b3:90:
                    59:41:d6:e0:22:c9:8b:60:d0:3a:77:a5:b5:e6:ae:26:
                    68:1c:cc:32:6e:ac:63:2a:1f:d7:1f:d2:8d:7b:1a:cd:
                    a9:81:f2:c8:f0:bd:44:dd:80:43:46:a6:0d:44:23:d1:
                    75:d1:04:e5:5a:3e:c2:0c:67:7c:a2:51:d0:01:0b:3c:
                    b7:73:53:cd:88:f1:d2:4f:38:0f:42:05:51:1e:46:11:
                    f9:8d:fa:c1:3b:97:65:ed:9d:55:d7:78:81:7b:3a:21
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:53:60:3d:ed:f6:30:3d:a1:30:c7:d1:bb:54:a8:f4:
        d8:1a:0a:b7:9f:50:b9:c5:35:cd:49:de:23:9b:2f:c3:
        af:13:0b:96:11:cb:87:28:37:b7:64:20:c6:6f:96:d2:
        ac:18:ca:d6:58:5f:92:51:4d:9b:55:65:d3:77:37:b9:
        40:6f:7b:b7:b8:81:10:6b:36:cd:5d:6d:ce:ee:88:25:
        ff:be:a5:50:51:84:23:42:bf:d0:b9:0a:df:b4:64:d5:
        bd:3b:15:28:86:3c:f7:b1:53:6c:9f:b0:1e:94:58:49:
        9f:cd:4a:31:07:d1:f9:7a:56:86:2b:b9:58:6e:82:1e:
        e4:dc:27:a6:9f:1a:fe:73:e5:06:fe:84:c9:38:93:9b:
        98:13:b1:d6:65:eb:dc:88:05:70:da:8c:08:02:81:ef:
        80:88:27:10:6e:8a:e9:cc:48:5f:9f:00:4b:56:79:d6:
        67:f1:5b:ea:d0:bd:e3:6b:82:60:df:c8:59:c1:2c:da:
        66:ce:d3:e5:96:40:94:7c:9e:67:1e:7f:d1:61:4b:5f:
        cf:ab:c3:08:99:97:23:a5:d8:52:aa:45:2e:85:a1:62:
        42:17:1c:67:d6:b8:a5:33:0a:c5:59:ba:b0:80:55:01:
        09:8e:ee:4c:af:85:5e:30:4c:da:96:22:a2:b2:fd:4b
    Fingerprint (SHA-256):
        D8:5B:9F:C8:9C:20:AE:38:3D:F5:12:03:3C:9F:DF:FF:7C:F2:EA:C0:83:B5:74:9C:32:19:B8:08:AF:6A:E2:AE
    Fingerprint (SHA1):
        B6:69:1C:A1:E7:85:83:E4:92:4F:06:C6:DF:F2:B8:3F:01:3B:02:6B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13886: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001054 (0x3019dbde)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Mon Aug 07 00:12:06 2017
            Not After : Sun Aug 07 00:12:06 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    eb:02:00:e2:1e:c4:95:e9:db:5d:cc:f2:07:9a:03:08:
                    56:57:66:0c:ec:69:e0:91:67:33:8c:03:61:2e:0a:55:
                    d4:f3:bb:d4:ee:82:85:f9:b6:b2:d2:d7:89:18:af:d4:
                    79:46:14:a6:ac:e6:b9:97:be:79:3b:15:9e:65:50:0e:
                    18:fe:8d:6f:44:64:20:38:83:a3:8b:8a:d6:37:e9:f8:
                    59:c4:cf:c3:33:25:67:e3:39:7b:11:64:c8:69:9d:4c:
                    ca:7e:a0:92:80:1a:ea:13:cf:e3:49:d3:4f:ed:23:2c:
                    fc:cd:bb:37:c4:fb:70:67:bb:5b:47:71:1a:f5:e0:c6:
                    ad:6a:18:d1:1b:05:f2:51:84:62:3d:33:15:44:c8:ae:
                    e6:1e:77:d3:5a:98:be:12:aa:3a:48:e2:62:29:b3:90:
                    59:41:d6:e0:22:c9:8b:60:d0:3a:77:a5:b5:e6:ae:26:
                    68:1c:cc:32:6e:ac:63:2a:1f:d7:1f:d2:8d:7b:1a:cd:
                    a9:81:f2:c8:f0:bd:44:dd:80:43:46:a6:0d:44:23:d1:
                    75:d1:04:e5:5a:3e:c2:0c:67:7c:a2:51:d0:01:0b:3c:
                    b7:73:53:cd:88:f1:d2:4f:38:0f:42:05:51:1e:46:11:
                    f9:8d:fa:c1:3b:97:65:ed:9d:55:d7:78:81:7b:3a:21
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:53:60:3d:ed:f6:30:3d:a1:30:c7:d1:bb:54:a8:f4:
        d8:1a:0a:b7:9f:50:b9:c5:35:cd:49:de:23:9b:2f:c3:
        af:13:0b:96:11:cb:87:28:37:b7:64:20:c6:6f:96:d2:
        ac:18:ca:d6:58:5f:92:51:4d:9b:55:65:d3:77:37:b9:
        40:6f:7b:b7:b8:81:10:6b:36:cd:5d:6d:ce:ee:88:25:
        ff:be:a5:50:51:84:23:42:bf:d0:b9:0a:df:b4:64:d5:
        bd:3b:15:28:86:3c:f7:b1:53:6c:9f:b0:1e:94:58:49:
        9f:cd:4a:31:07:d1:f9:7a:56:86:2b:b9:58:6e:82:1e:
        e4:dc:27:a6:9f:1a:fe:73:e5:06:fe:84:c9:38:93:9b:
        98:13:b1:d6:65:eb:dc:88:05:70:da:8c:08:02:81:ef:
        80:88:27:10:6e:8a:e9:cc:48:5f:9f:00:4b:56:79:d6:
        67:f1:5b:ea:d0:bd:e3:6b:82:60:df:c8:59:c1:2c:da:
        66:ce:d3:e5:96:40:94:7c:9e:67:1e:7f:d1:61:4b:5f:
        cf:ab:c3:08:99:97:23:a5:d8:52:aa:45:2e:85:a1:62:
        42:17:1c:67:d6:b8:a5:33:0a:c5:59:ba:b0:80:55:01:
        09:8e:ee:4c:af:85:5e:30:4c:da:96:22:a2:b2:fd:4b
    Fingerprint (SHA-256):
        D8:5B:9F:C8:9C:20:AE:38:3D:F5:12:03:3C:9F:DF:FF:7C:F2:EA:C0:83:B5:74:9C:32:19:B8:08:AF:6A:E2:AE
    Fingerprint (SHA1):
        B6:69:1C:A1:E7:85:83:E4:92:4F:06:C6:DF:F2:B8:3F:01:3B:02:6B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13887: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #13888: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001061 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13889: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #13890: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #13891: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001062 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13892: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #13893: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #13894: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13895: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 807001063   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13896: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13897: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #13898: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13899: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 807001064   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13900: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13901: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #13902: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13903: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 807001065 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #13904: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13905: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 807001066 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #13906: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13907: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #13908: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13909: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13910: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 807001067   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13911: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13912: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #13913: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13914: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 807001068   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13915: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13916: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #13917: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13918: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 807001069   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13919: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13920: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #13921: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13922: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 807001070   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13923: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13924: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13925: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001061 (0x3019dbe5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Mon Aug 07 00:12:12 2017
            Not After : Sun Aug 07 00:12:12 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:d9:90:17:82:e5:14:cf:50:1b:45:be:a3:0b:29:72:
                    2c:53:2e:a4:78:25:9a:fe:56:f7:8d:d2:65:b5:b6:aa:
                    82:98:3a:3b:6a:c0:df:61:35:ab:c9:de:55:24:04:d4:
                    51:f7:6d:18:4d:2d:48:46:55:c8:22:e6:7b:c0:85:61:
                    3f:88:7f:df:b7:e5:13:96:f6:bd:bf:d5:fc:67:c6:22:
                    ce:0d:64:46:cb:54:d1:85:46:ad:f4:8c:db:77:95:19:
                    1a:81:ee:41:12:66:81:01:9a:60:17:9b:51:ad:b2:85:
                    f9:ac:a6:df:2a:5b:e5:f9:df:42:f6:69:d8:64:f6:de:
                    95:b2:b0:dc:2e:ac:4f:ac:2b:10:be:bf:bf:a2:87:b8:
                    cd:47:c1:f3:12:48:a8:1d:d1:32:b2:af:ca:d8:58:43:
                    83:3e:ce:d8:2e:5a:37:25:b2:29:07:03:c0:bc:17:af:
                    51:c8:53:78:71:b8:16:2e:01:58:46:f7:74:60:6e:66:
                    b6:64:47:6e:9e:a3:3e:dd:0e:4a:38:48:38:57:a9:d5:
                    ae:70:57:55:23:42:66:7d:6a:50:a8:7f:f8:6e:59:41:
                    f8:61:1d:d4:33:7d:55:9e:e9:8b:bf:f9:fb:6f:69:ff:
                    b0:17:af:ec:2b:5a:72:7a:03:c6:26:07:86:09:3b:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a0:ae:a1:c4:6c:01:d3:9e:85:9f:11:47:b6:77:17:ac:
        7c:1f:ef:5e:20:52:65:2b:69:05:84:a5:38:cd:7f:9c:
        65:93:51:fd:77:92:3a:75:f1:e2:59:cb:f7:11:2c:70:
        b0:20:40:35:9d:46:53:3a:99:d5:4e:f8:a1:82:b3:8f:
        cd:b9:f7:06:ec:c8:fe:2d:57:83:c4:0d:28:50:aa:62:
        5c:11:4a:27:c8:14:ed:41:e3:e1:a4:98:b2:61:18:9e:
        2e:7b:9f:40:f4:58:23:93:47:89:76:3f:0a:8a:b6:fe:
        42:e4:b9:7f:14:be:52:fa:97:ba:5d:73:28:13:1c:ee:
        db:e6:0a:2e:b4:df:d5:5c:15:ea:a9:78:2f:84:dc:3d:
        34:f3:57:97:87:2a:ff:bd:8d:f4:db:68:1c:b4:b5:26:
        17:cd:69:05:c1:6d:d6:50:bf:c0:74:4e:d6:14:d3:df:
        3b:4b:3a:96:50:9f:7b:bc:62:06:4e:47:41:d3:97:f3:
        0c:a3:24:d2:09:83:21:f9:28:9c:59:4e:94:8f:de:60:
        f2:31:54:fe:9c:93:f1:22:ae:4f:9b:dd:c8:99:91:9d:
        07:5d:02:bb:0b:6c:b2:2a:ad:4e:ae:74:14:91:71:d4:
        b4:6e:f5:59:8d:d9:6d:5c:49:2a:63:e1:ab:20:50:53
    Fingerprint (SHA-256):
        00:23:8A:9A:21:C8:30:6E:E3:8A:B1:B5:BC:E1:20:81:61:60:61:3F:10:B2:4F:69:98:97:2C:7B:61:55:44:91
    Fingerprint (SHA1):
        B0:AE:61:66:3A:05:07:93:F3:17:67:79:01:A6:C7:7E:93:93:CC:A0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #13926: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13927: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13928: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13929: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13930: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13931: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13932: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13933: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13934: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001062 (0x3019dbe6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Mon Aug 07 00:12:12 2017
            Not After : Sun Aug 07 00:12:12 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    df:3f:a3:58:fe:0c:13:a3:31:60:b6:cc:7f:7e:13:9e:
                    db:5a:e6:60:61:13:9e:50:a9:9e:2d:f1:b1:d0:79:b4:
                    06:72:a5:96:27:ab:6b:cf:de:87:09:ea:ae:56:e4:05:
                    02:c4:2a:fd:a1:42:50:82:08:b9:60:20:96:54:ee:3d:
                    83:cd:1b:f8:b8:81:13:20:ae:a0:3f:6d:d8:96:14:c2:
                    48:0c:4f:fa:ce:90:55:fe:f3:8a:52:2c:3b:66:d5:4c:
                    54:ed:a9:60:a9:6e:36:a8:c1:98:5f:3c:b3:39:18:59:
                    aa:a2:90:65:c9:49:c7:5d:16:56:d6:20:02:82:b5:e0:
                    9b:f2:b2:0a:ff:80:dd:c2:25:1a:42:2d:68:2c:52:83:
                    c1:86:ac:f2:39:a2:ce:32:aa:83:96:82:47:1f:bb:d3:
                    3c:f3:65:3d:f9:62:b3:9a:41:0c:87:33:41:f9:6e:d4:
                    2d:95:61:9e:2f:cd:ec:65:1b:80:fb:c2:2b:1d:f7:c3:
                    99:d2:c6:39:1f:9e:51:b7:e8:df:e0:99:00:12:ee:7e:
                    c9:b2:5c:f8:1e:1d:2b:a8:e7:de:a2:b9:25:38:d6:37:
                    14:64:71:76:16:f0:9b:41:56:e9:95:de:7d:fc:b1:be:
                    0c:1f:43:c3:e3:79:01:40:69:f1:04:99:ce:79:c5:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:f0:19:0a:33:a1:98:05:85:3e:fe:3e:5c:6f:08:35:
        03:e6:54:cf:d2:7d:40:9b:01:98:8f:0f:53:7f:12:88:
        5f:2d:0f:ca:79:79:bb:f3:6b:22:f9:79:1e:7e:af:29:
        52:73:18:31:c0:ff:81:a9:0d:98:02:82:df:fc:c9:5e:
        bb:98:5f:6d:ae:25:61:fc:b2:ba:20:49:68:87:76:84:
        19:19:31:9b:29:e2:01:f6:a0:de:10:53:68:b3:07:e8:
        81:28:e3:bd:88:07:0d:a6:64:e3:d0:ea:b7:0c:92:9d:
        61:05:d6:15:48:77:d8:74:02:fb:8e:6e:32:6c:57:61:
        b3:7f:2a:84:31:f6:5b:67:fb:81:97:d2:ab:42:29:7e:
        a8:d2:33:c6:da:43:4b:52:7d:d1:f9:93:8c:bb:4a:6b:
        08:d0:a5:80:2a:20:83:d0:13:ec:b0:42:eb:49:54:4e:
        16:c5:45:32:79:c5:60:47:f5:15:c6:22:1d:e2:ac:14:
        f2:5c:23:2c:ad:69:83:88:ff:81:82:55:c4:50:77:e7:
        54:ab:60:89:19:27:40:2f:5e:69:7f:8a:61:3b:38:57:
        74:6b:7c:82:af:6c:3c:5e:11:c3:c5:3a:41:e4:e3:d5:
        86:fb:03:b1:d9:0d:47:08:90:41:d2:19:78:94:54:3b
    Fingerprint (SHA-256):
        95:46:94:3D:C9:78:C8:DF:F0:C0:D5:2B:5C:FF:F7:20:03:7E:B0:E0:0A:F0:C5:BA:32:90:64:0F:A5:A3:60:5B
    Fingerprint (SHA1):
        93:C3:E6:17:B2:00:53:E7:92:0E:F0:DD:CF:E5:10:EB:0F:0E:19:01
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #13935: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13936: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13937: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13938: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13939: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13940: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #13941: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #13942: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #13943: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #13944: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #13945: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #13946: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #13947: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #13948: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #13949: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #13950: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #13951: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #13952: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #13953: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001071 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13954: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #13955: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13956: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13957: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 807001072   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13958: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13959: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #13960: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13961: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 807001073   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13962: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13963: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #13964: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13965: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 807001074   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13966: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13967: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #13968: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13969: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 807001075   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13970: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13971: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #13972: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13973: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 807001076   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13974: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13975: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #13976: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13977: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 807001077   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13978: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13979: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #13980: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13981: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 807001078   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13982: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13983: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #13984: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13985: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 807001079   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13986: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13987: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #13988: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001071 (0x3019dbef)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:12:22 2017
            Not After : Sun Aug 07 00:12:22 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    58:e0:1d:cc:92:3c:96:b3:a6:34:dc:07:bd:25:5a:fb:
                    5e:3f:7e:49:cd:73:00:91:47:47:9f:ac:99:24:c8:17:
                    2b:b6:51:56:9b:4a:7d:9c:37:9c:ab:ee:65:00:49:33:
                    20:d1:6d:6f:c2:08:38:c7:54:08:bb:73:f0:ec:49:45:
                    e7:53:14:f2:9c:95:28:a8:8d:71:25:73:cf:45:aa:b2:
                    49:2c:14:fc:49:d7:45:0f:a5:23:a1:79:58:35:48:8c:
                    d6:95:c6:d1:15:ac:82:83:4a:84:78:16:81:74:de:08:
                    08:a1:03:f4:22:8b:bc:94:30:7e:d2:b8:a3:e0:cf:15:
                    97:54:2f:be:d9:c8:f5:18:2b:06:e1:ca:11:58:2f:25:
                    8c:1b:ff:99:9d:32:2d:aa:8b:4b:22:72:10:9c:41:92:
                    74:0c:67:d5:2e:e7:c3:1a:64:ea:45:cd:0e:56:9c:52:
                    23:b0:4b:56:d9:d1:d8:ce:44:c9:0b:47:56:d0:df:9d:
                    a0:7d:89:47:a1:79:64:48:6b:e4:c9:22:04:5f:23:d1:
                    63:de:ea:ff:44:f0:a5:03:d0:d5:02:c3:14:c5:2e:97:
                    c7:8d:a4:d1:09:e7:c6:07:23:cf:19:97:25:41:86:a5:
                    f0:c6:39:d2:05:78:88:0a:55:65:5f:59:40:a3:06:f7
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1c:73:14:e9:a4:4f:de:45:c8:ac:68:47:40:
        03:ff:31:57:90:d0:85:b1:73:03:2b:22:b9:13:b8:19:
        02:1d:00:8a:82:b6:56:a9:2d:d5:1b:5f:04:13:ad:18:
        91:75:59:46:34:41:de:08:2e:10:83:d1:9a:e9:10
    Fingerprint (SHA-256):
        4B:9E:71:B3:7F:B6:D0:FC:1A:73:E9:DB:18:0A:68:EB:9D:A1:D7:50:78:CC:79:5F:A6:56:79:96:13:6F:F7:9E
    Fingerprint (SHA1):
        28:F0:F9:BF:FA:E9:86:A3:8A:4F:FE:DB:CC:14:A7:97:93:24:C7:8A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13989: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001071 (0x3019dbef)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:12:22 2017
            Not After : Sun Aug 07 00:12:22 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    58:e0:1d:cc:92:3c:96:b3:a6:34:dc:07:bd:25:5a:fb:
                    5e:3f:7e:49:cd:73:00:91:47:47:9f:ac:99:24:c8:17:
                    2b:b6:51:56:9b:4a:7d:9c:37:9c:ab:ee:65:00:49:33:
                    20:d1:6d:6f:c2:08:38:c7:54:08:bb:73:f0:ec:49:45:
                    e7:53:14:f2:9c:95:28:a8:8d:71:25:73:cf:45:aa:b2:
                    49:2c:14:fc:49:d7:45:0f:a5:23:a1:79:58:35:48:8c:
                    d6:95:c6:d1:15:ac:82:83:4a:84:78:16:81:74:de:08:
                    08:a1:03:f4:22:8b:bc:94:30:7e:d2:b8:a3:e0:cf:15:
                    97:54:2f:be:d9:c8:f5:18:2b:06:e1:ca:11:58:2f:25:
                    8c:1b:ff:99:9d:32:2d:aa:8b:4b:22:72:10:9c:41:92:
                    74:0c:67:d5:2e:e7:c3:1a:64:ea:45:cd:0e:56:9c:52:
                    23:b0:4b:56:d9:d1:d8:ce:44:c9:0b:47:56:d0:df:9d:
                    a0:7d:89:47:a1:79:64:48:6b:e4:c9:22:04:5f:23:d1:
                    63:de:ea:ff:44:f0:a5:03:d0:d5:02:c3:14:c5:2e:97:
                    c7:8d:a4:d1:09:e7:c6:07:23:cf:19:97:25:41:86:a5:
                    f0:c6:39:d2:05:78:88:0a:55:65:5f:59:40:a3:06:f7
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1c:73:14:e9:a4:4f:de:45:c8:ac:68:47:40:
        03:ff:31:57:90:d0:85:b1:73:03:2b:22:b9:13:b8:19:
        02:1d:00:8a:82:b6:56:a9:2d:d5:1b:5f:04:13:ad:18:
        91:75:59:46:34:41:de:08:2e:10:83:d1:9a:e9:10
    Fingerprint (SHA-256):
        4B:9E:71:B3:7F:B6:D0:FC:1A:73:E9:DB:18:0A:68:EB:9D:A1:D7:50:78:CC:79:5F:A6:56:79:96:13:6F:F7:9E
    Fingerprint (SHA1):
        28:F0:F9:BF:FA:E9:86:A3:8A:4F:FE:DB:CC:14:A7:97:93:24:C7:8A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #13990: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001071 (0x3019dbef)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:12:22 2017
            Not After : Sun Aug 07 00:12:22 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    58:e0:1d:cc:92:3c:96:b3:a6:34:dc:07:bd:25:5a:fb:
                    5e:3f:7e:49:cd:73:00:91:47:47:9f:ac:99:24:c8:17:
                    2b:b6:51:56:9b:4a:7d:9c:37:9c:ab:ee:65:00:49:33:
                    20:d1:6d:6f:c2:08:38:c7:54:08:bb:73:f0:ec:49:45:
                    e7:53:14:f2:9c:95:28:a8:8d:71:25:73:cf:45:aa:b2:
                    49:2c:14:fc:49:d7:45:0f:a5:23:a1:79:58:35:48:8c:
                    d6:95:c6:d1:15:ac:82:83:4a:84:78:16:81:74:de:08:
                    08:a1:03:f4:22:8b:bc:94:30:7e:d2:b8:a3:e0:cf:15:
                    97:54:2f:be:d9:c8:f5:18:2b:06:e1:ca:11:58:2f:25:
                    8c:1b:ff:99:9d:32:2d:aa:8b:4b:22:72:10:9c:41:92:
                    74:0c:67:d5:2e:e7:c3:1a:64:ea:45:cd:0e:56:9c:52:
                    23:b0:4b:56:d9:d1:d8:ce:44:c9:0b:47:56:d0:df:9d:
                    a0:7d:89:47:a1:79:64:48:6b:e4:c9:22:04:5f:23:d1:
                    63:de:ea:ff:44:f0:a5:03:d0:d5:02:c3:14:c5:2e:97:
                    c7:8d:a4:d1:09:e7:c6:07:23:cf:19:97:25:41:86:a5:
                    f0:c6:39:d2:05:78:88:0a:55:65:5f:59:40:a3:06:f7
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1c:73:14:e9:a4:4f:de:45:c8:ac:68:47:40:
        03:ff:31:57:90:d0:85:b1:73:03:2b:22:b9:13:b8:19:
        02:1d:00:8a:82:b6:56:a9:2d:d5:1b:5f:04:13:ad:18:
        91:75:59:46:34:41:de:08:2e:10:83:d1:9a:e9:10
    Fingerprint (SHA-256):
        4B:9E:71:B3:7F:B6:D0:FC:1A:73:E9:DB:18:0A:68:EB:9D:A1:D7:50:78:CC:79:5F:A6:56:79:96:13:6F:F7:9E
    Fingerprint (SHA1):
        28:F0:F9:BF:FA:E9:86:A3:8A:4F:FE:DB:CC:14:A7:97:93:24:C7:8A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #13991: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001071 (0x3019dbef)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:12:22 2017
            Not After : Sun Aug 07 00:12:22 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    58:e0:1d:cc:92:3c:96:b3:a6:34:dc:07:bd:25:5a:fb:
                    5e:3f:7e:49:cd:73:00:91:47:47:9f:ac:99:24:c8:17:
                    2b:b6:51:56:9b:4a:7d:9c:37:9c:ab:ee:65:00:49:33:
                    20:d1:6d:6f:c2:08:38:c7:54:08:bb:73:f0:ec:49:45:
                    e7:53:14:f2:9c:95:28:a8:8d:71:25:73:cf:45:aa:b2:
                    49:2c:14:fc:49:d7:45:0f:a5:23:a1:79:58:35:48:8c:
                    d6:95:c6:d1:15:ac:82:83:4a:84:78:16:81:74:de:08:
                    08:a1:03:f4:22:8b:bc:94:30:7e:d2:b8:a3:e0:cf:15:
                    97:54:2f:be:d9:c8:f5:18:2b:06:e1:ca:11:58:2f:25:
                    8c:1b:ff:99:9d:32:2d:aa:8b:4b:22:72:10:9c:41:92:
                    74:0c:67:d5:2e:e7:c3:1a:64:ea:45:cd:0e:56:9c:52:
                    23:b0:4b:56:d9:d1:d8:ce:44:c9:0b:47:56:d0:df:9d:
                    a0:7d:89:47:a1:79:64:48:6b:e4:c9:22:04:5f:23:d1:
                    63:de:ea:ff:44:f0:a5:03:d0:d5:02:c3:14:c5:2e:97:
                    c7:8d:a4:d1:09:e7:c6:07:23:cf:19:97:25:41:86:a5:
                    f0:c6:39:d2:05:78:88:0a:55:65:5f:59:40:a3:06:f7
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1c:73:14:e9:a4:4f:de:45:c8:ac:68:47:40:
        03:ff:31:57:90:d0:85:b1:73:03:2b:22:b9:13:b8:19:
        02:1d:00:8a:82:b6:56:a9:2d:d5:1b:5f:04:13:ad:18:
        91:75:59:46:34:41:de:08:2e:10:83:d1:9a:e9:10
    Fingerprint (SHA-256):
        4B:9E:71:B3:7F:B6:D0:FC:1A:73:E9:DB:18:0A:68:EB:9D:A1:D7:50:78:CC:79:5F:A6:56:79:96:13:6F:F7:9E
    Fingerprint (SHA1):
        28:F0:F9:BF:FA:E9:86:A3:8A:4F:FE:DB:CC:14:A7:97:93:24:C7:8A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #13992: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #13993: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 10 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13994: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #13995: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #13996: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13997: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13998: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13999: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14000: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14001: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14002: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14003: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #14004: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14005: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14006: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14007: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #14008: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14009: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14010: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14011: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14012: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14013: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14014: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14015: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #14016: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14017: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14018: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14019: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170807001237Z
nextupdate=20180807001237Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Mon Aug 07 00:12:37 2017
    Next Update: Tue Aug 07 00:12:37 2018
    CRL Extensions:
chains.sh: #14020: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170807001237Z
nextupdate=20180807001237Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Mon Aug 07 00:12:37 2017
    Next Update: Tue Aug 07 00:12:37 2018
    CRL Extensions:
chains.sh: #14021: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170807001237Z
nextupdate=20180807001237Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Mon Aug 07 00:12:37 2017
    Next Update: Tue Aug 07 00:12:37 2018
    CRL Extensions:
chains.sh: #14022: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170807001237Z
nextupdate=20180807001237Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Mon Aug 07 00:12:37 2017
    Next Update: Tue Aug 07 00:12:37 2018
    CRL Extensions:
chains.sh: #14023: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170807001238Z
addcert 14 20170807001238Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Mon Aug 07 00:12:38 2017
    Next Update: Tue Aug 07 00:12:37 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Mon Aug 07 00:12:38 2017
    CRL Extensions:
chains.sh: #14024: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170807001239Z
addcert 15 20170807001239Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Mon Aug 07 00:12:39 2017
    Next Update: Tue Aug 07 00:12:37 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Mon Aug 07 00:12:39 2017
    CRL Extensions:
chains.sh: #14025: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14026: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14027: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #14028: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #14029: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #14030: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #14031: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #14032: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #14033: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #14034: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:12:30 2017
            Not After : Sun Aug 07 00:12:30 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:a1:09:4a:25:09:e7:f4:dc:2a:cb:f7:c4:16:10:5f:
                    bc:37:e3:78:6f:cf:7e:15:5c:48:1c:5c:c3:28:53:08:
                    1c:eb:88:33:76:3f:81:72:af:09:7f:e8:9f:c6:6d:1f:
                    a3:a7:9f:15:87:b2:0e:f8:c0:ea:5b:6f:e7:01:47:93:
                    f3:f1:78:ff:46:df:ba:d1:29:9e:be:78:32:5f:3a:36:
                    92:c3:52:da:70:1f:ed:9b:2b:6e:a8:5b:a6:9a:38:05:
                    c7:88:43:c4:d9:c1:a6:b8:d3:9d:9d:6c:f5:e9:43:f9:
                    71:81:88:e2:bc:0d:1f:d2:e9:db:cb:bd:a4:fb:4d:60:
                    87:83:48:fe:32:58:29:f6:ad:ab:bf:f7:76:6b:61:59:
                    6c:ef:52:6d:95:52:92:78:d0:78:3f:c9:8c:cd:d5:df:
                    9b:33:70:c8:cd:74:ee:6f:dd:e7:0b:82:2f:c1:ed:5c:
                    a1:89:9c:34:fd:79:27:20:00:dd:eb:fb:b5:5a:4f:0f:
                    34:8a:25:de:e0:3c:9e:27:8b:49:8e:a6:25:f5:d8:57:
                    27:79:23:c6:26:09:64:43:ee:13:af:72:8f:08:ee:65:
                    ed:83:8d:7c:ae:80:11:6f:ce:fe:16:c1:6f:c6:e5:12:
                    80:f3:26:a7:b7:4e:98:86:bb:0d:ac:d7:3c:50:08:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        48:0b:3f:db:09:15:6f:34:74:10:05:ae:21:8a:e0:8a:
        51:36:40:28:34:52:6d:0e:58:c1:14:87:8e:b6:0e:2e:
        01:6f:5d:21:c8:ff:fa:79:66:9e:1c:b0:63:de:15:6a:
        7c:fa:72:99:0c:93:fe:75:59:53:94:a6:8f:5f:cf:76:
        0f:c9:25:a2:ec:fe:3d:9b:81:a0:0b:99:a3:08:64:f0:
        64:d9:bb:b6:8b:4c:b5:aa:e3:61:ab:b6:22:21:b2:fc:
        8f:15:48:a6:ac:9b:94:2b:a1:f5:09:df:b0:0e:9e:f9:
        15:49:d2:f9:99:42:6c:66:b9:ea:fe:ef:9a:2a:1e:f1:
        0a:5c:e2:f8:d3:b9:b7:f7:b0:24:69:9f:07:f2:26:2e:
        e2:a5:11:2c:be:49:93:ae:3a:b9:58:62:88:0c:70:c5:
        29:17:f5:33:31:8c:e2:2c:d7:f4:80:1b:51:c5:31:62:
        35:7b:9c:cd:b4:2e:7b:7b:60:66:98:27:f4:54:02:46:
        a3:4e:2d:2f:f5:92:d7:0f:67:fb:bd:ac:2c:ee:c6:e3:
        9b:8b:6a:f2:d3:5d:e8:99:b6:a7:f3:95:c4:dc:64:55:
        39:4d:ca:f2:a0:6e:fc:ba:84:c6:ed:1b:e1:18:3a:f3:
        6e:5b:da:5f:4d:a5:2b:4f:14:f7:69:34:01:c6:d5:c1
    Fingerprint (SHA-256):
        89:0B:62:17:F9:3B:D1:92:1B:FE:E5:28:5C:95:80:D0:BD:A1:E4:39:7B:0C:5C:6D:26:98:91:50:C1:22:B7:83
    Fingerprint (SHA1):
        B1:5F:91:4C:06:CD:74:0D:CC:FF:43:25:45:E7:D6:EE:9D:53:42:61
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #14035: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #14036: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:12:30 2017
            Not After : Sun Aug 07 00:12:30 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:a1:09:4a:25:09:e7:f4:dc:2a:cb:f7:c4:16:10:5f:
                    bc:37:e3:78:6f:cf:7e:15:5c:48:1c:5c:c3:28:53:08:
                    1c:eb:88:33:76:3f:81:72:af:09:7f:e8:9f:c6:6d:1f:
                    a3:a7:9f:15:87:b2:0e:f8:c0:ea:5b:6f:e7:01:47:93:
                    f3:f1:78:ff:46:df:ba:d1:29:9e:be:78:32:5f:3a:36:
                    92:c3:52:da:70:1f:ed:9b:2b:6e:a8:5b:a6:9a:38:05:
                    c7:88:43:c4:d9:c1:a6:b8:d3:9d:9d:6c:f5:e9:43:f9:
                    71:81:88:e2:bc:0d:1f:d2:e9:db:cb:bd:a4:fb:4d:60:
                    87:83:48:fe:32:58:29:f6:ad:ab:bf:f7:76:6b:61:59:
                    6c:ef:52:6d:95:52:92:78:d0:78:3f:c9:8c:cd:d5:df:
                    9b:33:70:c8:cd:74:ee:6f:dd:e7:0b:82:2f:c1:ed:5c:
                    a1:89:9c:34:fd:79:27:20:00:dd:eb:fb:b5:5a:4f:0f:
                    34:8a:25:de:e0:3c:9e:27:8b:49:8e:a6:25:f5:d8:57:
                    27:79:23:c6:26:09:64:43:ee:13:af:72:8f:08:ee:65:
                    ed:83:8d:7c:ae:80:11:6f:ce:fe:16:c1:6f:c6:e5:12:
                    80:f3:26:a7:b7:4e:98:86:bb:0d:ac:d7:3c:50:08:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        48:0b:3f:db:09:15:6f:34:74:10:05:ae:21:8a:e0:8a:
        51:36:40:28:34:52:6d:0e:58:c1:14:87:8e:b6:0e:2e:
        01:6f:5d:21:c8:ff:fa:79:66:9e:1c:b0:63:de:15:6a:
        7c:fa:72:99:0c:93:fe:75:59:53:94:a6:8f:5f:cf:76:
        0f:c9:25:a2:ec:fe:3d:9b:81:a0:0b:99:a3:08:64:f0:
        64:d9:bb:b6:8b:4c:b5:aa:e3:61:ab:b6:22:21:b2:fc:
        8f:15:48:a6:ac:9b:94:2b:a1:f5:09:df:b0:0e:9e:f9:
        15:49:d2:f9:99:42:6c:66:b9:ea:fe:ef:9a:2a:1e:f1:
        0a:5c:e2:f8:d3:b9:b7:f7:b0:24:69:9f:07:f2:26:2e:
        e2:a5:11:2c:be:49:93:ae:3a:b9:58:62:88:0c:70:c5:
        29:17:f5:33:31:8c:e2:2c:d7:f4:80:1b:51:c5:31:62:
        35:7b:9c:cd:b4:2e:7b:7b:60:66:98:27:f4:54:02:46:
        a3:4e:2d:2f:f5:92:d7:0f:67:fb:bd:ac:2c:ee:c6:e3:
        9b:8b:6a:f2:d3:5d:e8:99:b6:a7:f3:95:c4:dc:64:55:
        39:4d:ca:f2:a0:6e:fc:ba:84:c6:ed:1b:e1:18:3a:f3:
        6e:5b:da:5f:4d:a5:2b:4f:14:f7:69:34:01:c6:d5:c1
    Fingerprint (SHA-256):
        89:0B:62:17:F9:3B:D1:92:1B:FE:E5:28:5C:95:80:D0:BD:A1:E4:39:7B:0C:5C:6D:26:98:91:50:C1:22:B7:83
    Fingerprint (SHA1):
        B1:5F:91:4C:06:CD:74:0D:CC:FF:43:25:45:E7:D6:EE:9D:53:42:61
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #14037: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #14038: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #14039: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001080 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14040: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #14041: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #14042: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14043: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 807001081   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14044: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14045: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14046: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9019/localhost-8843-CA0-807000971.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14047: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0Root-807000956.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14048: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14049: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #14050: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0-807000971.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14051: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 807001082   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14052: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14053: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14054: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9019/localhost-8843-CA0-807000971.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14055: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0Root-807000957.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14056: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14057: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #14058: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14059: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 807001083   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14060: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14061: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #14062: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0-807000971.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14063: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0Root-807000958.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14064: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14065: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #14066: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0-807000971.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14067: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0Root-807000959.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14068: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14069: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170807001249Z
nextupdate=20180807001249Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Mon Aug 07 00:12:49 2017
    Next Update: Tue Aug 07 00:12:49 2018
    CRL Extensions:
chains.sh: #14070: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170807001249Z
nextupdate=20180807001249Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Mon Aug 07 00:12:49 2017
    Next Update: Tue Aug 07 00:12:49 2018
    CRL Extensions:
chains.sh: #14071: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170807001249Z
nextupdate=20180807001249Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Mon Aug 07 00:12:49 2017
    Next Update: Tue Aug 07 00:12:49 2018
    CRL Extensions:
chains.sh: #14072: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170807001249Z
nextupdate=20180807001249Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Mon Aug 07 00:12:49 2017
    Next Update: Tue Aug 07 00:12:49 2018
    CRL Extensions:
chains.sh: #14073: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170807001250Z
addcert 20 20170807001250Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Mon Aug 07 00:12:50 2017
    Next Update: Tue Aug 07 00:12:49 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Mon Aug 07 00:12:50 2017
    CRL Extensions:
chains.sh: #14074: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170807001251Z
addcert 40 20170807001251Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Mon Aug 07 00:12:51 2017
    Next Update: Tue Aug 07 00:12:49 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Mon Aug 07 00:12:50 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Mon Aug 07 00:12:51 2017
    CRL Extensions:
chains.sh: #14075: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14076: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14077: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #14078: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001080 (0x3019dbf8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:12:42 2017
            Not After : Sun Aug 07 00:12:42 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:17:7b:0f:99:46:61:fb:79:21:f6:85:4a:17:4f:8d:
                    ba:a2:39:b1:73:29:a6:49:73:d7:89:1e:ee:29:3e:37:
                    2e:da:4e:a0:65:1c:63:dc:80:be:75:37:e8:85:8a:44:
                    08:cc:93:5d:0f:22:7c:0c:dc:fa:c1:0f:68:1b:b5:63:
                    f7:b0:b4:d5:30:48:8a:ac:0d:0a:37:de:d7:3c:d2:76:
                    22:6a:07:ce:c2:2f:e4:54:6a:89:bb:a3:85:68:38:9e:
                    55:23:53:5b:db:26:ce:85:0b:18:dd:4f:c9:36:b3:4b:
                    c6:4d:ed:de:62:5f:d0:bd:a0:82:a0:02:0d:3b:f1:da:
                    da:26:89:3c:28:8b:13:0d:df:4d:f8:e4:1e:e6:d2:e8:
                    f1:91:ef:12:55:08:1e:e9:1c:b8:92:17:11:c0:a2:42:
                    e0:68:94:bb:f4:f4:03:2d:55:ef:25:dd:a4:c2:6e:61:
                    38:84:15:49:22:51:2d:03:c3:07:d5:52:fe:4f:52:e6:
                    80:21:54:ec:a7:3c:e1:76:0e:2c:5a:d9:ce:ca:ff:8a:
                    f9:3d:99:04:ac:62:18:a8:68:cc:c5:32:13:d1:e9:f3:
                    b7:31:4d:3a:10:0e:e0:84:94:c8:ba:52:b5:de:26:e7:
                    f4:49:18:5b:2f:77:49:25:f8:dd:ce:9a:9f:06:29:e7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        10:51:78:d8:10:99:bd:c1:f2:6a:0a:82:16:99:d3:aa:
        da:03:9d:b4:da:54:a4:2e:9f:85:3b:0b:28:e1:41:6f:
        f0:d0:eb:d1:ce:cd:aa:98:ba:2a:f0:a7:94:0b:95:a7:
        fe:48:b1:15:4d:4c:f6:23:56:0f:ca:ac:69:a6:0b:b0:
        80:5c:c9:b0:b7:0c:36:a4:85:ff:ef:b6:96:75:94:17:
        6e:b1:a5:bd:df:b8:47:a0:0e:aa:e2:89:39:51:55:1e:
        2c:c3:52:82:fc:8a:7c:d0:40:a9:76:8c:9c:59:b9:08:
        2e:d4:e1:e8:24:31:5d:78:76:74:e7:d7:0f:9e:b3:b0:
        22:5f:8f:f9:14:21:83:92:0f:c6:de:04:af:81:fa:32:
        72:aa:55:6c:6d:3e:b3:d4:e6:7e:5d:30:29:14:5e:f1:
        59:d4:1e:9d:9b:b1:ac:eb:de:79:4d:90:19:c9:0a:37:
        c2:39:be:71:39:86:bc:08:5d:c1:c0:00:2a:15:ad:e7:
        25:c7:9e:18:d0:68:8d:4b:56:cf:65:4f:d9:ca:fc:f1:
        fb:1d:e9:f8:78:60:f0:52:55:9a:ee:60:9f:63:4d:30:
        d8:8e:72:7f:0e:30:98:7a:48:8c:79:03:f2:aa:72:6e:
        5a:b6:fa:50:f4:73:ea:69:be:62:bf:29:c0:33:d6:4a
    Fingerprint (SHA-256):
        D9:75:22:A5:3E:DB:88:FD:26:74:57:EC:37:C5:58:6C:EA:4E:30:AC:62:00:9B:C6:3E:9B:9A:A0:7C:6D:37:5A
    Fingerprint (SHA1):
        C5:45:7F:BB:5B:F4:F5:30:B0:36:D3:FA:15:EC:BF:58:0C:EE:79:CE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #14079: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #14080: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001080 (0x3019dbf8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:12:42 2017
            Not After : Sun Aug 07 00:12:42 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:17:7b:0f:99:46:61:fb:79:21:f6:85:4a:17:4f:8d:
                    ba:a2:39:b1:73:29:a6:49:73:d7:89:1e:ee:29:3e:37:
                    2e:da:4e:a0:65:1c:63:dc:80:be:75:37:e8:85:8a:44:
                    08:cc:93:5d:0f:22:7c:0c:dc:fa:c1:0f:68:1b:b5:63:
                    f7:b0:b4:d5:30:48:8a:ac:0d:0a:37:de:d7:3c:d2:76:
                    22:6a:07:ce:c2:2f:e4:54:6a:89:bb:a3:85:68:38:9e:
                    55:23:53:5b:db:26:ce:85:0b:18:dd:4f:c9:36:b3:4b:
                    c6:4d:ed:de:62:5f:d0:bd:a0:82:a0:02:0d:3b:f1:da:
                    da:26:89:3c:28:8b:13:0d:df:4d:f8:e4:1e:e6:d2:e8:
                    f1:91:ef:12:55:08:1e:e9:1c:b8:92:17:11:c0:a2:42:
                    e0:68:94:bb:f4:f4:03:2d:55:ef:25:dd:a4:c2:6e:61:
                    38:84:15:49:22:51:2d:03:c3:07:d5:52:fe:4f:52:e6:
                    80:21:54:ec:a7:3c:e1:76:0e:2c:5a:d9:ce:ca:ff:8a:
                    f9:3d:99:04:ac:62:18:a8:68:cc:c5:32:13:d1:e9:f3:
                    b7:31:4d:3a:10:0e:e0:84:94:c8:ba:52:b5:de:26:e7:
                    f4:49:18:5b:2f:77:49:25:f8:dd:ce:9a:9f:06:29:e7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        10:51:78:d8:10:99:bd:c1:f2:6a:0a:82:16:99:d3:aa:
        da:03:9d:b4:da:54:a4:2e:9f:85:3b:0b:28:e1:41:6f:
        f0:d0:eb:d1:ce:cd:aa:98:ba:2a:f0:a7:94:0b:95:a7:
        fe:48:b1:15:4d:4c:f6:23:56:0f:ca:ac:69:a6:0b:b0:
        80:5c:c9:b0:b7:0c:36:a4:85:ff:ef:b6:96:75:94:17:
        6e:b1:a5:bd:df:b8:47:a0:0e:aa:e2:89:39:51:55:1e:
        2c:c3:52:82:fc:8a:7c:d0:40:a9:76:8c:9c:59:b9:08:
        2e:d4:e1:e8:24:31:5d:78:76:74:e7:d7:0f:9e:b3:b0:
        22:5f:8f:f9:14:21:83:92:0f:c6:de:04:af:81:fa:32:
        72:aa:55:6c:6d:3e:b3:d4:e6:7e:5d:30:29:14:5e:f1:
        59:d4:1e:9d:9b:b1:ac:eb:de:79:4d:90:19:c9:0a:37:
        c2:39:be:71:39:86:bc:08:5d:c1:c0:00:2a:15:ad:e7:
        25:c7:9e:18:d0:68:8d:4b:56:cf:65:4f:d9:ca:fc:f1:
        fb:1d:e9:f8:78:60:f0:52:55:9a:ee:60:9f:63:4d:30:
        d8:8e:72:7f:0e:30:98:7a:48:8c:79:03:f2:aa:72:6e:
        5a:b6:fa:50:f4:73:ea:69:be:62:bf:29:c0:33:d6:4a
    Fingerprint (SHA-256):
        D9:75:22:A5:3E:DB:88:FD:26:74:57:EC:37:C5:58:6C:EA:4E:30:AC:62:00:9B:C6:3E:9B:9A:A0:7C:6D:37:5A
    Fingerprint (SHA1):
        C5:45:7F:BB:5B:F4:F5:30:B0:36:D3:FA:15:EC:BF:58:0C:EE:79:CE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #14081: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #14082: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #14083: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001084 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14084: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #14085: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14086: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14087: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 807001085   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14088: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14089: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14090: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14091: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 807001086   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14092: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14093: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #14094: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14095: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 807001087   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14096: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14097: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #14098: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001088 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14099: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #14100: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #14101: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14102: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 807001089   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14103: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14104: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #14105: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14106: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 807001090   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14107: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14108: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #14109: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #14110: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #14111: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001084 (0x3019dbfc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:12:52 2017
            Not After : Sun Aug 07 00:12:52 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:4f:81:25:e7:79:8c:81:79:f4:0b:69:b7:84:e9:50:
                    a0:88:81:df:f2:77:16:03:ad:fb:5d:c2:9a:7a:89:44:
                    6a:0d:d6:e2:54:df:40:d9:9b:fb:5e:55:57:0f:1f:7f:
                    b1:a7:3a:38:5f:5b:0d:de:55:a8:84:cc:9d:5d:4c:63:
                    3a:b0:31:34:df:17:98:d0:7b:2e:e4:94:aa:3b:6b:ce:
                    ae:12:67:5f:2f:8f:c5:ae:fe:bc:6c:46:c9:1e:80:a7:
                    db:e3:95:a7:db:55:4b:af:0d:a2:40:b7:4f:ed:bf:30:
                    73:2e:fc:bd:4d:e1:30:e6:e8:ef:57:c4:71:93:70:eb:
                    09:28:63:37:0b:ca:b5:1f:30:e9:73:57:ce:bd:a3:e1:
                    b4:09:98:7c:f3:a1:33:b7:11:c2:46:1b:45:69:e6:dd:
                    1d:f3:5f:6c:f0:7d:fb:d7:4a:8c:7d:4c:83:64:e4:10:
                    c8:8b:9e:44:ff:2d:de:1b:82:93:67:54:ed:4b:08:2b:
                    c1:df:26:d5:9e:30:73:4f:1c:11:1b:84:88:cf:49:74:
                    1e:45:7f:8d:43:22:be:9e:3a:0e:cb:65:87:1c:ff:6f:
                    30:86:76:c1:8b:89:6a:4c:bd:c5:50:39:4a:6f:e8:60:
                    bb:aa:9c:7b:b8:40:cd:0d:0f:d5:cf:5d:85:52:8c:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5f:07:58:84:d9:f8:ab:e9:50:20:d9:03:f4:44:40:eb:
        a9:49:d1:c5:08:f9:73:32:ac:82:76:6c:74:27:b2:1a:
        95:c5:82:b3:f5:78:f9:a1:d2:7e:53:36:f3:86:ec:e3:
        b8:69:e9:38:44:0b:fd:2d:b7:9c:27:d1:3e:c1:d7:ef:
        6f:9c:2e:9c:c3:62:16:e6:a9:d1:f1:2e:7e:40:c2:dc:
        45:3a:f2:41:cc:d3:f4:81:9f:b3:ba:a7:43:8a:da:48:
        af:59:3c:29:b7:5b:db:e8:6d:11:97:8a:11:a0:60:39:
        45:a2:c0:5e:43:a1:8f:e3:9f:90:37:dc:25:37:f3:4b:
        1d:bf:eb:c9:33:ab:50:7a:1c:5f:a9:0e:22:25:bd:2f:
        a5:c8:d7:b0:23:e1:0f:23:ac:5e:84:86:69:9b:dc:7b:
        d9:2a:d4:57:8d:46:5f:54:70:b3:35:aa:28:c6:9d:9f:
        32:32:67:7b:a3:f2:50:34:df:e0:a0:d7:be:b4:0c:5f:
        43:38:f9:03:ee:92:26:d4:18:6f:ad:25:91:83:0c:36:
        8b:c4:39:0e:ae:a2:74:56:31:af:a2:b8:fb:77:73:6a:
        a3:d7:5a:e0:eb:96:ab:bf:83:3f:9b:14:6e:d0:10:24:
        63:f2:d7:0c:7c:07:9d:68:23:a7:8b:e2:cb:86:87:1c
    Fingerprint (SHA-256):
        D8:22:CB:AB:31:89:69:C3:F6:F3:7F:EC:92:6A:77:82:E6:D1:35:0E:33:51:3C:48:80:7F:0B:B6:75:7C:DE:EF
    Fingerprint (SHA1):
        01:DD:89:81:25:1D:15:0C:9F:82:6E:87:78:9D:47:21:7A:B8:C8:51
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14112: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001086 (0x3019dbfe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Mon Aug 07 00:12:55 2017
            Not After : Sun Aug 07 00:12:55 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:1d:71:14:c4:34:f2:17:fd:49:06:89:e0:a7:f6:69:
                    31:0a:cf:d3:44:89:e4:76:70:d8:57:dc:42:7d:1b:8d:
                    1e:ca:f8:0a:79:c8:5b:2c:27:86:03:64:f1:7d:d9:af:
                    60:9a:72:7f:23:34:2e:6c:f4:c4:b1:83:d8:1d:23:58:
                    76:c4:4e:99:6a:1e:32:b5:f7:4a:55:56:c4:43:d4:76:
                    5d:12:44:cc:4b:ae:c9:d7:ea:55:b8:b8:46:9e:c6:bd:
                    89:0e:be:2b:03:66:71:96:d1:48:35:3c:26:14:75:08:
                    0c:08:84:07:9f:a6:c9:1b:8d:1c:4f:46:d4:97:c0:be:
                    16:8c:6c:32:30:b7:aa:5b:93:ed:e3:0d:db:bc:db:9e:
                    bd:09:71:69:5c:18:bb:b1:92:11:6e:80:70:f5:4e:b9:
                    c7:11:6e:30:de:f9:51:66:ae:8f:3d:4f:7d:95:80:69:
                    bd:68:4f:f2:42:e2:2c:c1:fc:e4:9c:f9:0e:d2:23:2b:
                    5a:18:bd:80:e8:04:b1:2c:3d:41:2b:4a:c2:7f:96:5f:
                    d5:18:fb:12:3b:0f:91:22:2a:4b:0d:55:7e:15:ab:5a:
                    08:a5:29:71:cb:8d:56:a6:06:e8:cf:90:32:33:ab:ae:
                    f6:22:fd:14:da:ca:7a:09:d4:dc:b0:11:11:27:c6:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        24:20:b7:8b:b5:a0:cc:5a:61:a9:3e:a1:b6:cf:79:78:
        85:6f:1a:37:a8:83:b8:6b:5e:f3:68:0c:61:c8:0f:94:
        39:fd:a7:43:97:f3:71:33:fe:84:21:ad:8b:53:75:04:
        92:96:d3:2f:49:b8:f3:6a:c3:df:d4:50:04:41:4d:bc:
        86:ea:56:32:84:ca:9e:b3:b0:f4:ef:ce:b9:d5:f7:43:
        1a:b1:eb:09:5b:d4:66:e2:03:95:91:bb:dd:5a:d7:69:
        55:ec:40:1e:69:85:e8:07:09:b5:a6:ca:1c:f9:8f:f3:
        48:b9:9e:ee:9a:a7:9a:9f:79:d2:9f:c1:6e:9a:dc:39:
        0b:7f:a5:8f:37:b5:6d:6c:da:26:1e:5d:a4:25:56:15:
        4d:b5:63:14:25:a8:85:fd:26:cc:cc:40:12:a4:6f:f9:
        8a:54:b7:fc:dc:94:5c:74:8c:f8:e1:04:28:60:c5:00:
        df:28:10:c9:c0:c2:1c:23:d7:d0:f5:aa:27:9c:eb:5c:
        f5:ce:25:84:32:2a:13:59:f9:b7:4b:b4:72:aa:3f:c1:
        42:78:96:52:e6:0f:c0:ad:ce:30:6c:ff:7e:0b:f1:71:
        f1:10:cc:a8:41:00:c4:79:db:24:25:53:91:ae:6b:c0:
        fa:1d:58:d5:71:28:52:de:5b:40:8d:45:44:6a:22:5e
    Fingerprint (SHA-256):
        2D:8F:B5:7A:55:0F:24:F2:6A:0F:46:AF:8C:C1:7A:21:BC:2B:1B:B0:F6:AF:52:35:CC:14:4F:99:5C:1E:C4:B9
    Fingerprint (SHA1):
        6A:7C:45:3D:B6:13:A1:53:25:79:24:F0:06:EC:18:3D:7A:03:9F:20
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14113: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001084 (0x3019dbfc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:12:52 2017
            Not After : Sun Aug 07 00:12:52 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:4f:81:25:e7:79:8c:81:79:f4:0b:69:b7:84:e9:50:
                    a0:88:81:df:f2:77:16:03:ad:fb:5d:c2:9a:7a:89:44:
                    6a:0d:d6:e2:54:df:40:d9:9b:fb:5e:55:57:0f:1f:7f:
                    b1:a7:3a:38:5f:5b:0d:de:55:a8:84:cc:9d:5d:4c:63:
                    3a:b0:31:34:df:17:98:d0:7b:2e:e4:94:aa:3b:6b:ce:
                    ae:12:67:5f:2f:8f:c5:ae:fe:bc:6c:46:c9:1e:80:a7:
                    db:e3:95:a7:db:55:4b:af:0d:a2:40:b7:4f:ed:bf:30:
                    73:2e:fc:bd:4d:e1:30:e6:e8:ef:57:c4:71:93:70:eb:
                    09:28:63:37:0b:ca:b5:1f:30:e9:73:57:ce:bd:a3:e1:
                    b4:09:98:7c:f3:a1:33:b7:11:c2:46:1b:45:69:e6:dd:
                    1d:f3:5f:6c:f0:7d:fb:d7:4a:8c:7d:4c:83:64:e4:10:
                    c8:8b:9e:44:ff:2d:de:1b:82:93:67:54:ed:4b:08:2b:
                    c1:df:26:d5:9e:30:73:4f:1c:11:1b:84:88:cf:49:74:
                    1e:45:7f:8d:43:22:be:9e:3a:0e:cb:65:87:1c:ff:6f:
                    30:86:76:c1:8b:89:6a:4c:bd:c5:50:39:4a:6f:e8:60:
                    bb:aa:9c:7b:b8:40:cd:0d:0f:d5:cf:5d:85:52:8c:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5f:07:58:84:d9:f8:ab:e9:50:20:d9:03:f4:44:40:eb:
        a9:49:d1:c5:08:f9:73:32:ac:82:76:6c:74:27:b2:1a:
        95:c5:82:b3:f5:78:f9:a1:d2:7e:53:36:f3:86:ec:e3:
        b8:69:e9:38:44:0b:fd:2d:b7:9c:27:d1:3e:c1:d7:ef:
        6f:9c:2e:9c:c3:62:16:e6:a9:d1:f1:2e:7e:40:c2:dc:
        45:3a:f2:41:cc:d3:f4:81:9f:b3:ba:a7:43:8a:da:48:
        af:59:3c:29:b7:5b:db:e8:6d:11:97:8a:11:a0:60:39:
        45:a2:c0:5e:43:a1:8f:e3:9f:90:37:dc:25:37:f3:4b:
        1d:bf:eb:c9:33:ab:50:7a:1c:5f:a9:0e:22:25:bd:2f:
        a5:c8:d7:b0:23:e1:0f:23:ac:5e:84:86:69:9b:dc:7b:
        d9:2a:d4:57:8d:46:5f:54:70:b3:35:aa:28:c6:9d:9f:
        32:32:67:7b:a3:f2:50:34:df:e0:a0:d7:be:b4:0c:5f:
        43:38:f9:03:ee:92:26:d4:18:6f:ad:25:91:83:0c:36:
        8b:c4:39:0e:ae:a2:74:56:31:af:a2:b8:fb:77:73:6a:
        a3:d7:5a:e0:eb:96:ab:bf:83:3f:9b:14:6e:d0:10:24:
        63:f2:d7:0c:7c:07:9d:68:23:a7:8b:e2:cb:86:87:1c
    Fingerprint (SHA-256):
        D8:22:CB:AB:31:89:69:C3:F6:F3:7F:EC:92:6A:77:82:E6:D1:35:0E:33:51:3C:48:80:7F:0B:B6:75:7C:DE:EF
    Fingerprint (SHA1):
        01:DD:89:81:25:1D:15:0C:9F:82:6E:87:78:9D:47:21:7A:B8:C8:51
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14114: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #14115: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001084 (0x3019dbfc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:12:52 2017
            Not After : Sun Aug 07 00:12:52 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:4f:81:25:e7:79:8c:81:79:f4:0b:69:b7:84:e9:50:
                    a0:88:81:df:f2:77:16:03:ad:fb:5d:c2:9a:7a:89:44:
                    6a:0d:d6:e2:54:df:40:d9:9b:fb:5e:55:57:0f:1f:7f:
                    b1:a7:3a:38:5f:5b:0d:de:55:a8:84:cc:9d:5d:4c:63:
                    3a:b0:31:34:df:17:98:d0:7b:2e:e4:94:aa:3b:6b:ce:
                    ae:12:67:5f:2f:8f:c5:ae:fe:bc:6c:46:c9:1e:80:a7:
                    db:e3:95:a7:db:55:4b:af:0d:a2:40:b7:4f:ed:bf:30:
                    73:2e:fc:bd:4d:e1:30:e6:e8:ef:57:c4:71:93:70:eb:
                    09:28:63:37:0b:ca:b5:1f:30:e9:73:57:ce:bd:a3:e1:
                    b4:09:98:7c:f3:a1:33:b7:11:c2:46:1b:45:69:e6:dd:
                    1d:f3:5f:6c:f0:7d:fb:d7:4a:8c:7d:4c:83:64:e4:10:
                    c8:8b:9e:44:ff:2d:de:1b:82:93:67:54:ed:4b:08:2b:
                    c1:df:26:d5:9e:30:73:4f:1c:11:1b:84:88:cf:49:74:
                    1e:45:7f:8d:43:22:be:9e:3a:0e:cb:65:87:1c:ff:6f:
                    30:86:76:c1:8b:89:6a:4c:bd:c5:50:39:4a:6f:e8:60:
                    bb:aa:9c:7b:b8:40:cd:0d:0f:d5:cf:5d:85:52:8c:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5f:07:58:84:d9:f8:ab:e9:50:20:d9:03:f4:44:40:eb:
        a9:49:d1:c5:08:f9:73:32:ac:82:76:6c:74:27:b2:1a:
        95:c5:82:b3:f5:78:f9:a1:d2:7e:53:36:f3:86:ec:e3:
        b8:69:e9:38:44:0b:fd:2d:b7:9c:27:d1:3e:c1:d7:ef:
        6f:9c:2e:9c:c3:62:16:e6:a9:d1:f1:2e:7e:40:c2:dc:
        45:3a:f2:41:cc:d3:f4:81:9f:b3:ba:a7:43:8a:da:48:
        af:59:3c:29:b7:5b:db:e8:6d:11:97:8a:11:a0:60:39:
        45:a2:c0:5e:43:a1:8f:e3:9f:90:37:dc:25:37:f3:4b:
        1d:bf:eb:c9:33:ab:50:7a:1c:5f:a9:0e:22:25:bd:2f:
        a5:c8:d7:b0:23:e1:0f:23:ac:5e:84:86:69:9b:dc:7b:
        d9:2a:d4:57:8d:46:5f:54:70:b3:35:aa:28:c6:9d:9f:
        32:32:67:7b:a3:f2:50:34:df:e0:a0:d7:be:b4:0c:5f:
        43:38:f9:03:ee:92:26:d4:18:6f:ad:25:91:83:0c:36:
        8b:c4:39:0e:ae:a2:74:56:31:af:a2:b8:fb:77:73:6a:
        a3:d7:5a:e0:eb:96:ab:bf:83:3f:9b:14:6e:d0:10:24:
        63:f2:d7:0c:7c:07:9d:68:23:a7:8b:e2:cb:86:87:1c
    Fingerprint (SHA-256):
        D8:22:CB:AB:31:89:69:C3:F6:F3:7F:EC:92:6A:77:82:E6:D1:35:0E:33:51:3C:48:80:7F:0B:B6:75:7C:DE:EF
    Fingerprint (SHA1):
        01:DD:89:81:25:1D:15:0C:9F:82:6E:87:78:9D:47:21:7A:B8:C8:51
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14116: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001086 (0x3019dbfe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Mon Aug 07 00:12:55 2017
            Not After : Sun Aug 07 00:12:55 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:1d:71:14:c4:34:f2:17:fd:49:06:89:e0:a7:f6:69:
                    31:0a:cf:d3:44:89:e4:76:70:d8:57:dc:42:7d:1b:8d:
                    1e:ca:f8:0a:79:c8:5b:2c:27:86:03:64:f1:7d:d9:af:
                    60:9a:72:7f:23:34:2e:6c:f4:c4:b1:83:d8:1d:23:58:
                    76:c4:4e:99:6a:1e:32:b5:f7:4a:55:56:c4:43:d4:76:
                    5d:12:44:cc:4b:ae:c9:d7:ea:55:b8:b8:46:9e:c6:bd:
                    89:0e:be:2b:03:66:71:96:d1:48:35:3c:26:14:75:08:
                    0c:08:84:07:9f:a6:c9:1b:8d:1c:4f:46:d4:97:c0:be:
                    16:8c:6c:32:30:b7:aa:5b:93:ed:e3:0d:db:bc:db:9e:
                    bd:09:71:69:5c:18:bb:b1:92:11:6e:80:70:f5:4e:b9:
                    c7:11:6e:30:de:f9:51:66:ae:8f:3d:4f:7d:95:80:69:
                    bd:68:4f:f2:42:e2:2c:c1:fc:e4:9c:f9:0e:d2:23:2b:
                    5a:18:bd:80:e8:04:b1:2c:3d:41:2b:4a:c2:7f:96:5f:
                    d5:18:fb:12:3b:0f:91:22:2a:4b:0d:55:7e:15:ab:5a:
                    08:a5:29:71:cb:8d:56:a6:06:e8:cf:90:32:33:ab:ae:
                    f6:22:fd:14:da:ca:7a:09:d4:dc:b0:11:11:27:c6:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        24:20:b7:8b:b5:a0:cc:5a:61:a9:3e:a1:b6:cf:79:78:
        85:6f:1a:37:a8:83:b8:6b:5e:f3:68:0c:61:c8:0f:94:
        39:fd:a7:43:97:f3:71:33:fe:84:21:ad:8b:53:75:04:
        92:96:d3:2f:49:b8:f3:6a:c3:df:d4:50:04:41:4d:bc:
        86:ea:56:32:84:ca:9e:b3:b0:f4:ef:ce:b9:d5:f7:43:
        1a:b1:eb:09:5b:d4:66:e2:03:95:91:bb:dd:5a:d7:69:
        55:ec:40:1e:69:85:e8:07:09:b5:a6:ca:1c:f9:8f:f3:
        48:b9:9e:ee:9a:a7:9a:9f:79:d2:9f:c1:6e:9a:dc:39:
        0b:7f:a5:8f:37:b5:6d:6c:da:26:1e:5d:a4:25:56:15:
        4d:b5:63:14:25:a8:85:fd:26:cc:cc:40:12:a4:6f:f9:
        8a:54:b7:fc:dc:94:5c:74:8c:f8:e1:04:28:60:c5:00:
        df:28:10:c9:c0:c2:1c:23:d7:d0:f5:aa:27:9c:eb:5c:
        f5:ce:25:84:32:2a:13:59:f9:b7:4b:b4:72:aa:3f:c1:
        42:78:96:52:e6:0f:c0:ad:ce:30:6c:ff:7e:0b:f1:71:
        f1:10:cc:a8:41:00:c4:79:db:24:25:53:91:ae:6b:c0:
        fa:1d:58:d5:71:28:52:de:5b:40:8d:45:44:6a:22:5e
    Fingerprint (SHA-256):
        2D:8F:B5:7A:55:0F:24:F2:6A:0F:46:AF:8C:C1:7A:21:BC:2B:1B:B0:F6:AF:52:35:CC:14:4F:99:5C:1E:C4:B9
    Fingerprint (SHA1):
        6A:7C:45:3D:B6:13:A1:53:25:79:24:F0:06:EC:18:3D:7A:03:9F:20
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14117: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #14118: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #14119: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #14120: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001084 (0x3019dbfc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:12:52 2017
            Not After : Sun Aug 07 00:12:52 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:4f:81:25:e7:79:8c:81:79:f4:0b:69:b7:84:e9:50:
                    a0:88:81:df:f2:77:16:03:ad:fb:5d:c2:9a:7a:89:44:
                    6a:0d:d6:e2:54:df:40:d9:9b:fb:5e:55:57:0f:1f:7f:
                    b1:a7:3a:38:5f:5b:0d:de:55:a8:84:cc:9d:5d:4c:63:
                    3a:b0:31:34:df:17:98:d0:7b:2e:e4:94:aa:3b:6b:ce:
                    ae:12:67:5f:2f:8f:c5:ae:fe:bc:6c:46:c9:1e:80:a7:
                    db:e3:95:a7:db:55:4b:af:0d:a2:40:b7:4f:ed:bf:30:
                    73:2e:fc:bd:4d:e1:30:e6:e8:ef:57:c4:71:93:70:eb:
                    09:28:63:37:0b:ca:b5:1f:30:e9:73:57:ce:bd:a3:e1:
                    b4:09:98:7c:f3:a1:33:b7:11:c2:46:1b:45:69:e6:dd:
                    1d:f3:5f:6c:f0:7d:fb:d7:4a:8c:7d:4c:83:64:e4:10:
                    c8:8b:9e:44:ff:2d:de:1b:82:93:67:54:ed:4b:08:2b:
                    c1:df:26:d5:9e:30:73:4f:1c:11:1b:84:88:cf:49:74:
                    1e:45:7f:8d:43:22:be:9e:3a:0e:cb:65:87:1c:ff:6f:
                    30:86:76:c1:8b:89:6a:4c:bd:c5:50:39:4a:6f:e8:60:
                    bb:aa:9c:7b:b8:40:cd:0d:0f:d5:cf:5d:85:52:8c:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5f:07:58:84:d9:f8:ab:e9:50:20:d9:03:f4:44:40:eb:
        a9:49:d1:c5:08:f9:73:32:ac:82:76:6c:74:27:b2:1a:
        95:c5:82:b3:f5:78:f9:a1:d2:7e:53:36:f3:86:ec:e3:
        b8:69:e9:38:44:0b:fd:2d:b7:9c:27:d1:3e:c1:d7:ef:
        6f:9c:2e:9c:c3:62:16:e6:a9:d1:f1:2e:7e:40:c2:dc:
        45:3a:f2:41:cc:d3:f4:81:9f:b3:ba:a7:43:8a:da:48:
        af:59:3c:29:b7:5b:db:e8:6d:11:97:8a:11:a0:60:39:
        45:a2:c0:5e:43:a1:8f:e3:9f:90:37:dc:25:37:f3:4b:
        1d:bf:eb:c9:33:ab:50:7a:1c:5f:a9:0e:22:25:bd:2f:
        a5:c8:d7:b0:23:e1:0f:23:ac:5e:84:86:69:9b:dc:7b:
        d9:2a:d4:57:8d:46:5f:54:70:b3:35:aa:28:c6:9d:9f:
        32:32:67:7b:a3:f2:50:34:df:e0:a0:d7:be:b4:0c:5f:
        43:38:f9:03:ee:92:26:d4:18:6f:ad:25:91:83:0c:36:
        8b:c4:39:0e:ae:a2:74:56:31:af:a2:b8:fb:77:73:6a:
        a3:d7:5a:e0:eb:96:ab:bf:83:3f:9b:14:6e:d0:10:24:
        63:f2:d7:0c:7c:07:9d:68:23:a7:8b:e2:cb:86:87:1c
    Fingerprint (SHA-256):
        D8:22:CB:AB:31:89:69:C3:F6:F3:7F:EC:92:6A:77:82:E6:D1:35:0E:33:51:3C:48:80:7F:0B:B6:75:7C:DE:EF
    Fingerprint (SHA1):
        01:DD:89:81:25:1D:15:0C:9F:82:6E:87:78:9D:47:21:7A:B8:C8:51
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14121: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001088 (0x3019dc00)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Mon Aug 07 00:12:57 2017
            Not After : Sun Aug 07 00:12:57 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:14:35:b8:a0:34:03:2c:65:6a:57:91:68:35:53:42:
                    88:70:c7:ea:3d:31:d7:9d:18:9f:3b:cd:99:bb:c9:c2:
                    cf:1f:ca:3b:85:29:fd:8e:eb:fe:ff:6a:2a:04:ea:61:
                    3f:7b:b8:ff:9f:77:e6:a8:37:7e:ea:50:a0:bd:05:8c:
                    95:84:63:8f:c5:24:e8:18:e4:ee:c5:a7:e0:cf:80:ed:
                    9c:21:4b:42:81:b0:c4:21:f6:b3:79:1c:12:91:6c:e6:
                    e4:87:e5:f3:d3:b3:8f:10:41:0c:a2:18:66:46:0d:d5:
                    ae:62:98:98:44:f4:b3:59:62:60:a4:ec:f5:c7:2d:fe:
                    0b:ad:e0:77:79:49:38:c9:25:8f:42:bc:7b:9b:fe:53:
                    57:d4:33:b7:74:7c:e1:c0:01:1f:30:8f:8a:92:e4:7c:
                    b4:ae:cf:71:8c:b3:1d:38:9d:08:e2:60:28:2c:03:35:
                    75:c6:1e:80:b0:5b:bb:b6:fc:1a:73:c3:9f:4a:ef:42:
                    4f:d1:3c:76:45:94:04:73:0a:a1:73:30:e6:a0:43:fc:
                    de:fb:7d:aa:3e:59:b0:f1:06:6f:62:4a:39:8b:1b:83:
                    22:12:29:d9:af:85:7b:72:0b:80:c6:a7:df:c7:0e:00:
                    1b:89:a0:fb:6e:cd:e6:f9:1d:cb:5f:90:3b:fe:da:4b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0c:a3:b1:92:cd:e8:fa:4c:36:51:74:4a:ad:ab:6e:1d:
        fa:03:36:22:83:19:4a:7e:61:94:9b:d4:ed:2d:99:82:
        71:29:c9:d7:d7:de:e5:75:7b:58:84:12:c9:07:c4:fd:
        0c:62:e6:ae:d2:4c:0f:ae:aa:74:c8:1d:2d:2a:43:dc:
        17:67:30:78:82:ff:f5:3f:e2:4c:30:bd:7c:d0:a0:9a:
        6b:13:77:63:a9:28:66:af:f0:7c:a8:d5:26:a7:40:08:
        65:6e:f1:fe:19:cd:6c:7a:19:e2:48:45:da:11:d5:a6:
        f6:b8:ef:f1:25:e0:ba:75:69:96:2d:5b:6c:15:10:7f:
        16:05:11:b0:37:68:aa:7c:26:ec:99:54:e5:e3:4e:df:
        7d:95:f1:38:f0:f4:e6:77:d5:6e:df:30:b5:38:dd:1e:
        6e:1d:a4:8a:58:7e:fa:39:bf:ac:21:47:50:6b:9b:9c:
        85:04:ea:18:22:b7:e4:f6:4d:ba:e3:2f:1f:49:44:c8:
        0a:f3:dd:89:0b:84:c0:3d:2e:2e:cb:4e:f0:dd:2c:ae:
        cf:4b:6e:a0:49:91:02:df:10:55:39:01:62:21:79:c8:
        f5:74:e5:c8:a7:2c:dc:90:50:f9:00:0f:9d:dd:30:9a:
        ed:0e:67:7e:3d:bb:c6:d1:03:b4:98:16:58:2f:0a:e4
    Fingerprint (SHA-256):
        BA:CE:F2:61:D3:5E:EF:7F:FA:AB:E9:04:B5:04:1C:51:3E:CD:1D:2C:F8:99:4F:A6:F9:E2:56:D2:D0:DE:AA:5D
    Fingerprint (SHA1):
        4E:5A:0F:14:82:3C:02:79:B1:79:83:A5:80:37:FA:A1:2B:F7:D3:3F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #14122: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001084 (0x3019dbfc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:12:52 2017
            Not After : Sun Aug 07 00:12:52 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:4f:81:25:e7:79:8c:81:79:f4:0b:69:b7:84:e9:50:
                    a0:88:81:df:f2:77:16:03:ad:fb:5d:c2:9a:7a:89:44:
                    6a:0d:d6:e2:54:df:40:d9:9b:fb:5e:55:57:0f:1f:7f:
                    b1:a7:3a:38:5f:5b:0d:de:55:a8:84:cc:9d:5d:4c:63:
                    3a:b0:31:34:df:17:98:d0:7b:2e:e4:94:aa:3b:6b:ce:
                    ae:12:67:5f:2f:8f:c5:ae:fe:bc:6c:46:c9:1e:80:a7:
                    db:e3:95:a7:db:55:4b:af:0d:a2:40:b7:4f:ed:bf:30:
                    73:2e:fc:bd:4d:e1:30:e6:e8:ef:57:c4:71:93:70:eb:
                    09:28:63:37:0b:ca:b5:1f:30:e9:73:57:ce:bd:a3:e1:
                    b4:09:98:7c:f3:a1:33:b7:11:c2:46:1b:45:69:e6:dd:
                    1d:f3:5f:6c:f0:7d:fb:d7:4a:8c:7d:4c:83:64:e4:10:
                    c8:8b:9e:44:ff:2d:de:1b:82:93:67:54:ed:4b:08:2b:
                    c1:df:26:d5:9e:30:73:4f:1c:11:1b:84:88:cf:49:74:
                    1e:45:7f:8d:43:22:be:9e:3a:0e:cb:65:87:1c:ff:6f:
                    30:86:76:c1:8b:89:6a:4c:bd:c5:50:39:4a:6f:e8:60:
                    bb:aa:9c:7b:b8:40:cd:0d:0f:d5:cf:5d:85:52:8c:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5f:07:58:84:d9:f8:ab:e9:50:20:d9:03:f4:44:40:eb:
        a9:49:d1:c5:08:f9:73:32:ac:82:76:6c:74:27:b2:1a:
        95:c5:82:b3:f5:78:f9:a1:d2:7e:53:36:f3:86:ec:e3:
        b8:69:e9:38:44:0b:fd:2d:b7:9c:27:d1:3e:c1:d7:ef:
        6f:9c:2e:9c:c3:62:16:e6:a9:d1:f1:2e:7e:40:c2:dc:
        45:3a:f2:41:cc:d3:f4:81:9f:b3:ba:a7:43:8a:da:48:
        af:59:3c:29:b7:5b:db:e8:6d:11:97:8a:11:a0:60:39:
        45:a2:c0:5e:43:a1:8f:e3:9f:90:37:dc:25:37:f3:4b:
        1d:bf:eb:c9:33:ab:50:7a:1c:5f:a9:0e:22:25:bd:2f:
        a5:c8:d7:b0:23:e1:0f:23:ac:5e:84:86:69:9b:dc:7b:
        d9:2a:d4:57:8d:46:5f:54:70:b3:35:aa:28:c6:9d:9f:
        32:32:67:7b:a3:f2:50:34:df:e0:a0:d7:be:b4:0c:5f:
        43:38:f9:03:ee:92:26:d4:18:6f:ad:25:91:83:0c:36:
        8b:c4:39:0e:ae:a2:74:56:31:af:a2:b8:fb:77:73:6a:
        a3:d7:5a:e0:eb:96:ab:bf:83:3f:9b:14:6e:d0:10:24:
        63:f2:d7:0c:7c:07:9d:68:23:a7:8b:e2:cb:86:87:1c
    Fingerprint (SHA-256):
        D8:22:CB:AB:31:89:69:C3:F6:F3:7F:EC:92:6A:77:82:E6:D1:35:0E:33:51:3C:48:80:7F:0B:B6:75:7C:DE:EF
    Fingerprint (SHA1):
        01:DD:89:81:25:1D:15:0C:9F:82:6E:87:78:9D:47:21:7A:B8:C8:51
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14123: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #14124: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #14125: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #14126: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #14127: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #14128: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001089 (0x3019dc01)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Mon Aug 07 00:12:58 2017
            Not After : Sun Aug 07 00:12:58 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:af:1e:ba:65:57:84:03:dd:b3:21:94:3c:ba:b4:1c:
                    e6:d2:3c:c9:7e:77:49:5b:0d:be:b6:be:d3:23:05:c9:
                    00:d2:fe:a0:51:d7:b6:22:87:62:24:51:71:15:a1:2d:
                    e7:79:79:52:eb:52:23:f8:e9:3a:6e:50:1e:77:99:36:
                    10:4a:9b:2c:b5:cc:4f:3c:d6:f5:be:c2:a9:de:c1:ca:
                    6a:2c:87:9c:d7:54:fe:36:11:97:a4:14:ff:f8:e3:53:
                    a1:93:28:a8:fd:d0:0b:82:22:7f:2f:84:7d:3e:c4:23:
                    3b:3b:9c:c1:f7:cc:22:2d:f7:49:24:e8:c3:1b:d6:64:
                    23:f5:91:ab:1c:dc:89:a5:6c:ed:bd:96:75:0b:53:2a:
                    02:27:59:9c:75:cd:e3:de:e2:bb:11:ff:3a:e4:4a:65:
                    63:a0:83:b9:78:18:10:a8:4e:a7:58:7f:23:93:ab:64:
                    b6:a2:ff:32:fe:bf:26:93:db:86:ec:0a:da:e2:38:21:
                    e2:d6:9b:5c:23:69:f9:55:30:0e:09:17:74:e1:5b:1f:
                    8d:1a:05:95:aa:cd:53:e4:37:14:55:9e:03:75:fe:eb:
                    e5:a8:dd:4d:9b:fd:8b:d9:dd:64:a2:91:a7:8a:a6:78:
                    f2:fb:bc:f2:ba:77:4a:14:98:28:37:c9:bf:ba:be:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b0:13:34:98:0d:44:44:d1:53:e1:86:bf:5e:eb:9c:2a:
        5a:3c:cc:b9:92:6e:ed:e3:a3:23:bf:f5:84:2f:e4:70:
        1e:94:b4:f7:e6:32:67:6e:22:0c:ec:df:e8:08:f7:19:
        6c:1a:cd:59:f2:51:c2:e8:76:e5:4e:3f:e3:02:48:cf:
        fd:a2:64:c1:e9:98:fe:cd:c9:bb:97:ae:8c:cc:6c:01:
        c0:f5:6f:3f:ff:a1:34:c0:35:77:64:48:f8:a1:01:65:
        1a:7b:7a:84:c1:c7:ac:88:06:59:46:04:63:2e:68:c2:
        61:39:7a:7e:96:f0:c7:f8:69:1d:dc:c0:f3:75:49:70:
        a8:e4:f2:1b:e6:05:f4:7f:b6:da:df:c9:f1:bd:c6:7a:
        48:09:e6:a4:b6:3a:1e:d6:eb:10:ba:3e:d2:15:f5:84:
        74:7c:9c:85:f6:41:01:0a:2c:e4:4b:67:25:47:7a:a8:
        0d:1d:13:8a:6d:d4:d1:c4:53:47:ee:1a:76:bb:73:61:
        d4:88:80:e9:7d:69:13:e1:be:1d:bb:18:cb:a8:8f:ba:
        cc:8d:68:e0:67:b9:0d:d9:9c:d2:49:8b:b4:78:54:b4:
        4f:91:b0:32:74:f6:de:48:18:5d:fd:9d:a0:0e:7d:b7:
        67:65:6f:47:78:8d:87:79:7f:f8:49:d2:68:3c:a5:7d
    Fingerprint (SHA-256):
        0F:48:F6:20:5C:D9:59:EF:AC:C2:D8:5A:B0:AA:9A:19:D1:CC:FE:53:0A:C3:3A:CE:4C:7D:7E:7D:EC:60:8E:CE
    Fingerprint (SHA1):
        04:77:CF:7B:FD:14:BD:A7:E6:82:50:A7:4F:B0:00:60:7E:20:1A:DC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14129: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #14130: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #14131: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #14132: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #14133: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #14134: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14135: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14136: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #14137: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14138: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14139: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14140: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14141: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #14142: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14143: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14144: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14145: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #14146: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14147: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #14148: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14149: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #14150: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14151: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #14152: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 20841 at Mon Aug  7 00:13:05 UTC 2017
kill -USR1 20841
httpserv: normal termination
httpserv -b -p 9019 2>/dev/null;
httpserv with PID 20841 killed at Mon Aug  7 00:13:05 UTC 2017
httpserv starting at Mon Aug  7 00:13:05 UTC 2017
httpserv -D -p 9019  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA3.crl \
         -O get-unknown -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/aiahttp/http_pid.8843  &
trying to connect to httpserv at Mon Aug  7 00:13:05 UTC 2017
tstclnt -p 9019 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9019 (address=::1)
tstclnt: exiting with return code 0
kill -0 3973 >/dev/null 2>/dev/null
httpserv with PID 3973 found at Mon Aug  7 00:13:05 UTC 2017
httpserv with PID 3973 started at Mon Aug  7 00:13:05 UTC 2017
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #14153: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001091 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14154: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #14155: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #14156: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001092 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14157: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #14158: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #14159: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14160: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 807001093 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14161: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14162: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 807001094 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14163: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14164: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #14165: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #14166: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14167: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 807001095   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14168: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14169: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14170: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #14171: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #14172: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001092 (0x3019dc04)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:07 2017
            Not After : Sun Aug 07 00:13:07 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:0b:d7:45:c5:69:f6:3f:dd:20:db:f3:4e:74:fc:40:
                    aa:35:76:a5:7f:be:e1:35:25:53:8b:28:85:68:02:e8:
                    f8:ba:c2:28:ef:1b:70:a2:fa:de:46:c2:0a:46:6e:f9:
                    38:50:4a:be:51:44:dd:10:e3:70:b3:ee:6b:ac:26:65:
                    2a:a9:0c:75:3e:cf:aa:e4:34:86:05:6c:15:50:54:03:
                    94:db:17:05:95:3e:25:3b:e0:37:40:ee:49:e1:4c:33:
                    6c:d1:03:50:07:33:f5:ff:e8:fc:0c:f2:b5:d8:8b:be:
                    81:11:d0:09:80:9e:b4:56:6d:36:fa:17:c7:d1:ca:cf:
                    b5:86:0b:ad:0f:c1:05:3d:a9:36:d6:bf:a1:90:bf:51:
                    69:63:a3:7f:86:48:d4:7c:06:85:53:c9:e2:53:5e:34:
                    a8:1a:f1:85:d9:cf:94:38:31:9b:55:9c:48:c6:93:11:
                    00:41:d6:b8:ce:be:8b:de:e0:ee:9c:d5:de:9f:80:f2:
                    ad:e2:e6:5d:94:02:01:af:ef:5d:a8:49:8c:16:43:ef:
                    2c:b6:8e:d1:c6:e1:49:4f:5e:21:5c:70:ad:06:eb:9a:
                    7a:ee:09:23:8f:37:3d:87:b6:55:d0:74:7f:c1:d0:c9:
                    9f:e6:96:a3:31:5c:f6:8d:62:e3:6b:03:92:d8:23:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:db:7e:d1:14:a7:04:94:b8:7b:de:ad:54:5a:06:b5:
        8d:68:16:96:a8:9a:88:6f:8b:00:7e:62:b3:c7:0a:10:
        5c:bc:17:13:2e:c0:8b:42:a5:44:90:68:8f:fb:ad:bd:
        e8:32:7b:6e:26:30:9d:a4:86:3e:df:8d:10:dc:fc:a3:
        f4:ca:b9:aa:94:8e:3d:08:90:53:e0:74:19:37:bc:fd:
        eb:f2:ae:c2:90:16:50:89:df:bc:23:19:05:eb:17:8f:
        36:5b:6c:29:ab:82:ee:9d:19:5d:68:6d:e9:5e:2f:07:
        19:65:80:eb:07:d1:87:a4:57:bb:38:7e:f4:91:d2:ca:
        23:fa:b1:be:f7:40:68:3c:03:fb:de:1b:63:ba:f6:ed:
        40:84:3f:d7:d9:22:0e:44:2b:2d:41:be:fc:95:ae:39:
        68:de:64:a4:4d:9f:11:85:77:03:92:80:09:48:43:ff:
        83:5e:a3:ae:e9:7e:b5:cf:25:a2:80:61:10:df:b8:01:
        af:f9:8c:67:e9:08:95:64:b1:3f:34:70:a5:a0:4b:e9:
        b7:77:75:0d:b8:86:61:28:24:20:1d:ad:82:9b:54:2f:
        18:a7:0b:9a:a3:d4:b3:3d:96:ec:1a:64:40:2d:8a:37:
        29:a5:6c:22:28:bb:6e:ae:81:25:c0:4c:96:ec:4b:d4
    Fingerprint (SHA-256):
        D7:71:8B:9A:00:AD:C5:1D:BD:F2:D2:06:24:B8:1A:89:EE:6A:4E:04:A4:D3:D4:74:91:6A:08:3D:11:D4:DA:14
    Fingerprint (SHA1):
        FE:C7:01:CB:BC:22:9E:2E:26:79:DB:01:1F:73:FF:B9:DF:F3:96:14
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14173: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001091 (0x3019dc03)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:06 2017
            Not After : Sun Aug 07 00:13:06 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:df:11:68:05:8e:9a:47:e5:44:b3:f4:65:e9:23:e4:
                    e5:96:1c:4d:bd:d6:60:ec:36:45:a9:a9:c5:13:7d:80:
                    07:44:29:99:bb:cd:4c:b2:fa:d4:1f:e1:ff:a8:dc:c8:
                    a7:dd:0a:53:5a:f0:80:45:30:c9:e5:2a:62:6a:95:9a:
                    0a:71:02:75:64:42:2f:f4:18:3b:e7:74:bc:6a:93:b1:
                    ca:f2:df:81:19:ba:11:66:2a:1e:04:d3:a3:5a:f0:5a:
                    c8:8e:a3:a4:15:7c:84:e0:e1:d3:2b:4e:e3:c2:2e:88:
                    d0:8d:e8:d7:2e:90:18:26:2a:41:c8:ab:a4:c0:71:5e:
                    7e:04:3a:ce:0e:19:48:14:8e:78:25:d1:e7:ea:e5:3b:
                    58:81:45:b8:0e:00:12:38:d3:c0:87:77:ae:5a:43:14:
                    a5:cc:53:72:8c:5d:3a:e5:1a:db:15:45:b7:80:dd:c5:
                    74:43:07:aa:e7:97:03:4d:8b:84:c5:b5:ec:b5:35:44:
                    c7:a1:20:04:98:20:5e:cc:25:d6:95:62:1b:6f:e2:50:
                    de:dc:bc:96:03:71:61:9a:0d:04:2b:07:c5:e0:93:91:
                    50:1b:e3:13:42:e4:c5:cd:a0:08:6e:50:5d:e8:5a:3a:
                    99:dd:5b:e9:ec:8d:3c:33:bf:9f:89:d8:a5:4a:ac:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:ca:5a:b3:b9:e1:a4:57:de:b4:5a:84:a4:9e:a1:a1:
        80:16:89:a8:f2:70:39:90:b7:03:42:2f:a5:99:2a:b8:
        02:2d:6d:ba:85:0b:a6:1a:e2:26:74:d7:41:39:8c:11:
        1d:2c:8c:2e:e5:bd:04:b2:7e:82:93:c0:1d:00:18:d8:
        62:c6:57:70:91:50:83:fa:d0:63:e4:77:d9:5c:3b:99:
        9b:5f:ba:82:80:64:40:98:87:11:20:69:01:3e:f7:e0:
        10:2d:3e:e0:70:7b:88:91:26:56:3a:14:63:78:73:b5:
        52:e0:2b:a0:ea:a3:0c:ac:7c:bf:9e:0c:50:e6:70:78:
        0e:9f:cf:00:ed:86:a5:3c:ca:66:cd:96:a6:01:f6:dd:
        df:0c:7d:b1:d7:76:ac:c3:76:d7:f2:6f:05:c5:19:b6:
        25:11:82:20:1b:05:b8:5d:54:b1:ed:3b:a3:40:20:b6:
        97:6d:2c:00:78:bf:79:96:25:ad:29:fe:0c:cb:f2:8f:
        36:b4:c6:e1:61:9e:25:c9:6c:af:9b:56:d9:2f:ef:73:
        bd:f8:d9:d6:8d:c3:df:0b:05:d7:df:cc:a3:c0:6c:8a:
        5a:46:8b:b8:66:13:12:43:cb:4b:84:23:ca:a9:09:ed:
        3d:97:24:48:a4:e9:92:cc:c2:5f:b9:97:ef:95:a2:41
    Fingerprint (SHA-256):
        09:FE:90:F6:D9:5B:FC:9F:61:58:EC:23:6C:96:34:DF:C3:25:35:1D:F9:24:02:95:48:9F:15:03:D5:B6:61:F8
    Fingerprint (SHA1):
        11:A0:93:64:D1:67:02:55:96:52:E2:46:D2:D7:D6:F5:1E:B0:37:F2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14174: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #14175: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #14176: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #14177: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001091 (0x3019dc03)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:06 2017
            Not After : Sun Aug 07 00:13:06 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:df:11:68:05:8e:9a:47:e5:44:b3:f4:65:e9:23:e4:
                    e5:96:1c:4d:bd:d6:60:ec:36:45:a9:a9:c5:13:7d:80:
                    07:44:29:99:bb:cd:4c:b2:fa:d4:1f:e1:ff:a8:dc:c8:
                    a7:dd:0a:53:5a:f0:80:45:30:c9:e5:2a:62:6a:95:9a:
                    0a:71:02:75:64:42:2f:f4:18:3b:e7:74:bc:6a:93:b1:
                    ca:f2:df:81:19:ba:11:66:2a:1e:04:d3:a3:5a:f0:5a:
                    c8:8e:a3:a4:15:7c:84:e0:e1:d3:2b:4e:e3:c2:2e:88:
                    d0:8d:e8:d7:2e:90:18:26:2a:41:c8:ab:a4:c0:71:5e:
                    7e:04:3a:ce:0e:19:48:14:8e:78:25:d1:e7:ea:e5:3b:
                    58:81:45:b8:0e:00:12:38:d3:c0:87:77:ae:5a:43:14:
                    a5:cc:53:72:8c:5d:3a:e5:1a:db:15:45:b7:80:dd:c5:
                    74:43:07:aa:e7:97:03:4d:8b:84:c5:b5:ec:b5:35:44:
                    c7:a1:20:04:98:20:5e:cc:25:d6:95:62:1b:6f:e2:50:
                    de:dc:bc:96:03:71:61:9a:0d:04:2b:07:c5:e0:93:91:
                    50:1b:e3:13:42:e4:c5:cd:a0:08:6e:50:5d:e8:5a:3a:
                    99:dd:5b:e9:ec:8d:3c:33:bf:9f:89:d8:a5:4a:ac:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:ca:5a:b3:b9:e1:a4:57:de:b4:5a:84:a4:9e:a1:a1:
        80:16:89:a8:f2:70:39:90:b7:03:42:2f:a5:99:2a:b8:
        02:2d:6d:ba:85:0b:a6:1a:e2:26:74:d7:41:39:8c:11:
        1d:2c:8c:2e:e5:bd:04:b2:7e:82:93:c0:1d:00:18:d8:
        62:c6:57:70:91:50:83:fa:d0:63:e4:77:d9:5c:3b:99:
        9b:5f:ba:82:80:64:40:98:87:11:20:69:01:3e:f7:e0:
        10:2d:3e:e0:70:7b:88:91:26:56:3a:14:63:78:73:b5:
        52:e0:2b:a0:ea:a3:0c:ac:7c:bf:9e:0c:50:e6:70:78:
        0e:9f:cf:00:ed:86:a5:3c:ca:66:cd:96:a6:01:f6:dd:
        df:0c:7d:b1:d7:76:ac:c3:76:d7:f2:6f:05:c5:19:b6:
        25:11:82:20:1b:05:b8:5d:54:b1:ed:3b:a3:40:20:b6:
        97:6d:2c:00:78:bf:79:96:25:ad:29:fe:0c:cb:f2:8f:
        36:b4:c6:e1:61:9e:25:c9:6c:af:9b:56:d9:2f:ef:73:
        bd:f8:d9:d6:8d:c3:df:0b:05:d7:df:cc:a3:c0:6c:8a:
        5a:46:8b:b8:66:13:12:43:cb:4b:84:23:ca:a9:09:ed:
        3d:97:24:48:a4:e9:92:cc:c2:5f:b9:97:ef:95:a2:41
    Fingerprint (SHA-256):
        09:FE:90:F6:D9:5B:FC:9F:61:58:EC:23:6C:96:34:DF:C3:25:35:1D:F9:24:02:95:48:9F:15:03:D5:B6:61:F8
    Fingerprint (SHA1):
        11:A0:93:64:D1:67:02:55:96:52:E2:46:D2:D7:D6:F5:1E:B0:37:F2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14178: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001092 (0x3019dc04)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:07 2017
            Not After : Sun Aug 07 00:13:07 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:0b:d7:45:c5:69:f6:3f:dd:20:db:f3:4e:74:fc:40:
                    aa:35:76:a5:7f:be:e1:35:25:53:8b:28:85:68:02:e8:
                    f8:ba:c2:28:ef:1b:70:a2:fa:de:46:c2:0a:46:6e:f9:
                    38:50:4a:be:51:44:dd:10:e3:70:b3:ee:6b:ac:26:65:
                    2a:a9:0c:75:3e:cf:aa:e4:34:86:05:6c:15:50:54:03:
                    94:db:17:05:95:3e:25:3b:e0:37:40:ee:49:e1:4c:33:
                    6c:d1:03:50:07:33:f5:ff:e8:fc:0c:f2:b5:d8:8b:be:
                    81:11:d0:09:80:9e:b4:56:6d:36:fa:17:c7:d1:ca:cf:
                    b5:86:0b:ad:0f:c1:05:3d:a9:36:d6:bf:a1:90:bf:51:
                    69:63:a3:7f:86:48:d4:7c:06:85:53:c9:e2:53:5e:34:
                    a8:1a:f1:85:d9:cf:94:38:31:9b:55:9c:48:c6:93:11:
                    00:41:d6:b8:ce:be:8b:de:e0:ee:9c:d5:de:9f:80:f2:
                    ad:e2:e6:5d:94:02:01:af:ef:5d:a8:49:8c:16:43:ef:
                    2c:b6:8e:d1:c6:e1:49:4f:5e:21:5c:70:ad:06:eb:9a:
                    7a:ee:09:23:8f:37:3d:87:b6:55:d0:74:7f:c1:d0:c9:
                    9f:e6:96:a3:31:5c:f6:8d:62:e3:6b:03:92:d8:23:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:db:7e:d1:14:a7:04:94:b8:7b:de:ad:54:5a:06:b5:
        8d:68:16:96:a8:9a:88:6f:8b:00:7e:62:b3:c7:0a:10:
        5c:bc:17:13:2e:c0:8b:42:a5:44:90:68:8f:fb:ad:bd:
        e8:32:7b:6e:26:30:9d:a4:86:3e:df:8d:10:dc:fc:a3:
        f4:ca:b9:aa:94:8e:3d:08:90:53:e0:74:19:37:bc:fd:
        eb:f2:ae:c2:90:16:50:89:df:bc:23:19:05:eb:17:8f:
        36:5b:6c:29:ab:82:ee:9d:19:5d:68:6d:e9:5e:2f:07:
        19:65:80:eb:07:d1:87:a4:57:bb:38:7e:f4:91:d2:ca:
        23:fa:b1:be:f7:40:68:3c:03:fb:de:1b:63:ba:f6:ed:
        40:84:3f:d7:d9:22:0e:44:2b:2d:41:be:fc:95:ae:39:
        68:de:64:a4:4d:9f:11:85:77:03:92:80:09:48:43:ff:
        83:5e:a3:ae:e9:7e:b5:cf:25:a2:80:61:10:df:b8:01:
        af:f9:8c:67:e9:08:95:64:b1:3f:34:70:a5:a0:4b:e9:
        b7:77:75:0d:b8:86:61:28:24:20:1d:ad:82:9b:54:2f:
        18:a7:0b:9a:a3:d4:b3:3d:96:ec:1a:64:40:2d:8a:37:
        29:a5:6c:22:28:bb:6e:ae:81:25:c0:4c:96:ec:4b:d4
    Fingerprint (SHA-256):
        D7:71:8B:9A:00:AD:C5:1D:BD:F2:D2:06:24:B8:1A:89:EE:6A:4E:04:A4:D3:D4:74:91:6A:08:3D:11:D4:DA:14
    Fingerprint (SHA1):
        FE:C7:01:CB:BC:22:9E:2E:26:79:DB:01:1F:73:FF:B9:DF:F3:96:14
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14179: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #14180: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #14181: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #14182: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #14183: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #14184: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001092 (0x3019dc04)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:07 2017
            Not After : Sun Aug 07 00:13:07 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:0b:d7:45:c5:69:f6:3f:dd:20:db:f3:4e:74:fc:40:
                    aa:35:76:a5:7f:be:e1:35:25:53:8b:28:85:68:02:e8:
                    f8:ba:c2:28:ef:1b:70:a2:fa:de:46:c2:0a:46:6e:f9:
                    38:50:4a:be:51:44:dd:10:e3:70:b3:ee:6b:ac:26:65:
                    2a:a9:0c:75:3e:cf:aa:e4:34:86:05:6c:15:50:54:03:
                    94:db:17:05:95:3e:25:3b:e0:37:40:ee:49:e1:4c:33:
                    6c:d1:03:50:07:33:f5:ff:e8:fc:0c:f2:b5:d8:8b:be:
                    81:11:d0:09:80:9e:b4:56:6d:36:fa:17:c7:d1:ca:cf:
                    b5:86:0b:ad:0f:c1:05:3d:a9:36:d6:bf:a1:90:bf:51:
                    69:63:a3:7f:86:48:d4:7c:06:85:53:c9:e2:53:5e:34:
                    a8:1a:f1:85:d9:cf:94:38:31:9b:55:9c:48:c6:93:11:
                    00:41:d6:b8:ce:be:8b:de:e0:ee:9c:d5:de:9f:80:f2:
                    ad:e2:e6:5d:94:02:01:af:ef:5d:a8:49:8c:16:43:ef:
                    2c:b6:8e:d1:c6:e1:49:4f:5e:21:5c:70:ad:06:eb:9a:
                    7a:ee:09:23:8f:37:3d:87:b6:55:d0:74:7f:c1:d0:c9:
                    9f:e6:96:a3:31:5c:f6:8d:62:e3:6b:03:92:d8:23:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:db:7e:d1:14:a7:04:94:b8:7b:de:ad:54:5a:06:b5:
        8d:68:16:96:a8:9a:88:6f:8b:00:7e:62:b3:c7:0a:10:
        5c:bc:17:13:2e:c0:8b:42:a5:44:90:68:8f:fb:ad:bd:
        e8:32:7b:6e:26:30:9d:a4:86:3e:df:8d:10:dc:fc:a3:
        f4:ca:b9:aa:94:8e:3d:08:90:53:e0:74:19:37:bc:fd:
        eb:f2:ae:c2:90:16:50:89:df:bc:23:19:05:eb:17:8f:
        36:5b:6c:29:ab:82:ee:9d:19:5d:68:6d:e9:5e:2f:07:
        19:65:80:eb:07:d1:87:a4:57:bb:38:7e:f4:91:d2:ca:
        23:fa:b1:be:f7:40:68:3c:03:fb:de:1b:63:ba:f6:ed:
        40:84:3f:d7:d9:22:0e:44:2b:2d:41:be:fc:95:ae:39:
        68:de:64:a4:4d:9f:11:85:77:03:92:80:09:48:43:ff:
        83:5e:a3:ae:e9:7e:b5:cf:25:a2:80:61:10:df:b8:01:
        af:f9:8c:67:e9:08:95:64:b1:3f:34:70:a5:a0:4b:e9:
        b7:77:75:0d:b8:86:61:28:24:20:1d:ad:82:9b:54:2f:
        18:a7:0b:9a:a3:d4:b3:3d:96:ec:1a:64:40:2d:8a:37:
        29:a5:6c:22:28:bb:6e:ae:81:25:c0:4c:96:ec:4b:d4
    Fingerprint (SHA-256):
        D7:71:8B:9A:00:AD:C5:1D:BD:F2:D2:06:24:B8:1A:89:EE:6A:4E:04:A4:D3:D4:74:91:6A:08:3D:11:D4:DA:14
    Fingerprint (SHA1):
        FE:C7:01:CB:BC:22:9E:2E:26:79:DB:01:1F:73:FF:B9:DF:F3:96:14
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14185: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001092 (0x3019dc04)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:07 2017
            Not After : Sun Aug 07 00:13:07 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:0b:d7:45:c5:69:f6:3f:dd:20:db:f3:4e:74:fc:40:
                    aa:35:76:a5:7f:be:e1:35:25:53:8b:28:85:68:02:e8:
                    f8:ba:c2:28:ef:1b:70:a2:fa:de:46:c2:0a:46:6e:f9:
                    38:50:4a:be:51:44:dd:10:e3:70:b3:ee:6b:ac:26:65:
                    2a:a9:0c:75:3e:cf:aa:e4:34:86:05:6c:15:50:54:03:
                    94:db:17:05:95:3e:25:3b:e0:37:40:ee:49:e1:4c:33:
                    6c:d1:03:50:07:33:f5:ff:e8:fc:0c:f2:b5:d8:8b:be:
                    81:11:d0:09:80:9e:b4:56:6d:36:fa:17:c7:d1:ca:cf:
                    b5:86:0b:ad:0f:c1:05:3d:a9:36:d6:bf:a1:90:bf:51:
                    69:63:a3:7f:86:48:d4:7c:06:85:53:c9:e2:53:5e:34:
                    a8:1a:f1:85:d9:cf:94:38:31:9b:55:9c:48:c6:93:11:
                    00:41:d6:b8:ce:be:8b:de:e0:ee:9c:d5:de:9f:80:f2:
                    ad:e2:e6:5d:94:02:01:af:ef:5d:a8:49:8c:16:43:ef:
                    2c:b6:8e:d1:c6:e1:49:4f:5e:21:5c:70:ad:06:eb:9a:
                    7a:ee:09:23:8f:37:3d:87:b6:55:d0:74:7f:c1:d0:c9:
                    9f:e6:96:a3:31:5c:f6:8d:62:e3:6b:03:92:d8:23:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:db:7e:d1:14:a7:04:94:b8:7b:de:ad:54:5a:06:b5:
        8d:68:16:96:a8:9a:88:6f:8b:00:7e:62:b3:c7:0a:10:
        5c:bc:17:13:2e:c0:8b:42:a5:44:90:68:8f:fb:ad:bd:
        e8:32:7b:6e:26:30:9d:a4:86:3e:df:8d:10:dc:fc:a3:
        f4:ca:b9:aa:94:8e:3d:08:90:53:e0:74:19:37:bc:fd:
        eb:f2:ae:c2:90:16:50:89:df:bc:23:19:05:eb:17:8f:
        36:5b:6c:29:ab:82:ee:9d:19:5d:68:6d:e9:5e:2f:07:
        19:65:80:eb:07:d1:87:a4:57:bb:38:7e:f4:91:d2:ca:
        23:fa:b1:be:f7:40:68:3c:03:fb:de:1b:63:ba:f6:ed:
        40:84:3f:d7:d9:22:0e:44:2b:2d:41:be:fc:95:ae:39:
        68:de:64:a4:4d:9f:11:85:77:03:92:80:09:48:43:ff:
        83:5e:a3:ae:e9:7e:b5:cf:25:a2:80:61:10:df:b8:01:
        af:f9:8c:67:e9:08:95:64:b1:3f:34:70:a5:a0:4b:e9:
        b7:77:75:0d:b8:86:61:28:24:20:1d:ad:82:9b:54:2f:
        18:a7:0b:9a:a3:d4:b3:3d:96:ec:1a:64:40:2d:8a:37:
        29:a5:6c:22:28:bb:6e:ae:81:25:c0:4c:96:ec:4b:d4
    Fingerprint (SHA-256):
        D7:71:8B:9A:00:AD:C5:1D:BD:F2:D2:06:24:B8:1A:89:EE:6A:4E:04:A4:D3:D4:74:91:6A:08:3D:11:D4:DA:14
    Fingerprint (SHA1):
        FE:C7:01:CB:BC:22:9E:2E:26:79:DB:01:1F:73:FF:B9:DF:F3:96:14
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14186: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #14187: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #14188: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #14189: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #14190: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #14191: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001091 (0x3019dc03)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:06 2017
            Not After : Sun Aug 07 00:13:06 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:df:11:68:05:8e:9a:47:e5:44:b3:f4:65:e9:23:e4:
                    e5:96:1c:4d:bd:d6:60:ec:36:45:a9:a9:c5:13:7d:80:
                    07:44:29:99:bb:cd:4c:b2:fa:d4:1f:e1:ff:a8:dc:c8:
                    a7:dd:0a:53:5a:f0:80:45:30:c9:e5:2a:62:6a:95:9a:
                    0a:71:02:75:64:42:2f:f4:18:3b:e7:74:bc:6a:93:b1:
                    ca:f2:df:81:19:ba:11:66:2a:1e:04:d3:a3:5a:f0:5a:
                    c8:8e:a3:a4:15:7c:84:e0:e1:d3:2b:4e:e3:c2:2e:88:
                    d0:8d:e8:d7:2e:90:18:26:2a:41:c8:ab:a4:c0:71:5e:
                    7e:04:3a:ce:0e:19:48:14:8e:78:25:d1:e7:ea:e5:3b:
                    58:81:45:b8:0e:00:12:38:d3:c0:87:77:ae:5a:43:14:
                    a5:cc:53:72:8c:5d:3a:e5:1a:db:15:45:b7:80:dd:c5:
                    74:43:07:aa:e7:97:03:4d:8b:84:c5:b5:ec:b5:35:44:
                    c7:a1:20:04:98:20:5e:cc:25:d6:95:62:1b:6f:e2:50:
                    de:dc:bc:96:03:71:61:9a:0d:04:2b:07:c5:e0:93:91:
                    50:1b:e3:13:42:e4:c5:cd:a0:08:6e:50:5d:e8:5a:3a:
                    99:dd:5b:e9:ec:8d:3c:33:bf:9f:89:d8:a5:4a:ac:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:ca:5a:b3:b9:e1:a4:57:de:b4:5a:84:a4:9e:a1:a1:
        80:16:89:a8:f2:70:39:90:b7:03:42:2f:a5:99:2a:b8:
        02:2d:6d:ba:85:0b:a6:1a:e2:26:74:d7:41:39:8c:11:
        1d:2c:8c:2e:e5:bd:04:b2:7e:82:93:c0:1d:00:18:d8:
        62:c6:57:70:91:50:83:fa:d0:63:e4:77:d9:5c:3b:99:
        9b:5f:ba:82:80:64:40:98:87:11:20:69:01:3e:f7:e0:
        10:2d:3e:e0:70:7b:88:91:26:56:3a:14:63:78:73:b5:
        52:e0:2b:a0:ea:a3:0c:ac:7c:bf:9e:0c:50:e6:70:78:
        0e:9f:cf:00:ed:86:a5:3c:ca:66:cd:96:a6:01:f6:dd:
        df:0c:7d:b1:d7:76:ac:c3:76:d7:f2:6f:05:c5:19:b6:
        25:11:82:20:1b:05:b8:5d:54:b1:ed:3b:a3:40:20:b6:
        97:6d:2c:00:78:bf:79:96:25:ad:29:fe:0c:cb:f2:8f:
        36:b4:c6:e1:61:9e:25:c9:6c:af:9b:56:d9:2f:ef:73:
        bd:f8:d9:d6:8d:c3:df:0b:05:d7:df:cc:a3:c0:6c:8a:
        5a:46:8b:b8:66:13:12:43:cb:4b:84:23:ca:a9:09:ed:
        3d:97:24:48:a4:e9:92:cc:c2:5f:b9:97:ef:95:a2:41
    Fingerprint (SHA-256):
        09:FE:90:F6:D9:5B:FC:9F:61:58:EC:23:6C:96:34:DF:C3:25:35:1D:F9:24:02:95:48:9F:15:03:D5:B6:61:F8
    Fingerprint (SHA1):
        11:A0:93:64:D1:67:02:55:96:52:E2:46:D2:D7:D6:F5:1E:B0:37:F2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14192: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001091 (0x3019dc03)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:06 2017
            Not After : Sun Aug 07 00:13:06 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:df:11:68:05:8e:9a:47:e5:44:b3:f4:65:e9:23:e4:
                    e5:96:1c:4d:bd:d6:60:ec:36:45:a9:a9:c5:13:7d:80:
                    07:44:29:99:bb:cd:4c:b2:fa:d4:1f:e1:ff:a8:dc:c8:
                    a7:dd:0a:53:5a:f0:80:45:30:c9:e5:2a:62:6a:95:9a:
                    0a:71:02:75:64:42:2f:f4:18:3b:e7:74:bc:6a:93:b1:
                    ca:f2:df:81:19:ba:11:66:2a:1e:04:d3:a3:5a:f0:5a:
                    c8:8e:a3:a4:15:7c:84:e0:e1:d3:2b:4e:e3:c2:2e:88:
                    d0:8d:e8:d7:2e:90:18:26:2a:41:c8:ab:a4:c0:71:5e:
                    7e:04:3a:ce:0e:19:48:14:8e:78:25:d1:e7:ea:e5:3b:
                    58:81:45:b8:0e:00:12:38:d3:c0:87:77:ae:5a:43:14:
                    a5:cc:53:72:8c:5d:3a:e5:1a:db:15:45:b7:80:dd:c5:
                    74:43:07:aa:e7:97:03:4d:8b:84:c5:b5:ec:b5:35:44:
                    c7:a1:20:04:98:20:5e:cc:25:d6:95:62:1b:6f:e2:50:
                    de:dc:bc:96:03:71:61:9a:0d:04:2b:07:c5:e0:93:91:
                    50:1b:e3:13:42:e4:c5:cd:a0:08:6e:50:5d:e8:5a:3a:
                    99:dd:5b:e9:ec:8d:3c:33:bf:9f:89:d8:a5:4a:ac:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:ca:5a:b3:b9:e1:a4:57:de:b4:5a:84:a4:9e:a1:a1:
        80:16:89:a8:f2:70:39:90:b7:03:42:2f:a5:99:2a:b8:
        02:2d:6d:ba:85:0b:a6:1a:e2:26:74:d7:41:39:8c:11:
        1d:2c:8c:2e:e5:bd:04:b2:7e:82:93:c0:1d:00:18:d8:
        62:c6:57:70:91:50:83:fa:d0:63:e4:77:d9:5c:3b:99:
        9b:5f:ba:82:80:64:40:98:87:11:20:69:01:3e:f7:e0:
        10:2d:3e:e0:70:7b:88:91:26:56:3a:14:63:78:73:b5:
        52:e0:2b:a0:ea:a3:0c:ac:7c:bf:9e:0c:50:e6:70:78:
        0e:9f:cf:00:ed:86:a5:3c:ca:66:cd:96:a6:01:f6:dd:
        df:0c:7d:b1:d7:76:ac:c3:76:d7:f2:6f:05:c5:19:b6:
        25:11:82:20:1b:05:b8:5d:54:b1:ed:3b:a3:40:20:b6:
        97:6d:2c:00:78:bf:79:96:25:ad:29:fe:0c:cb:f2:8f:
        36:b4:c6:e1:61:9e:25:c9:6c:af:9b:56:d9:2f:ef:73:
        bd:f8:d9:d6:8d:c3:df:0b:05:d7:df:cc:a3:c0:6c:8a:
        5a:46:8b:b8:66:13:12:43:cb:4b:84:23:ca:a9:09:ed:
        3d:97:24:48:a4:e9:92:cc:c2:5f:b9:97:ef:95:a2:41
    Fingerprint (SHA-256):
        09:FE:90:F6:D9:5B:FC:9F:61:58:EC:23:6C:96:34:DF:C3:25:35:1D:F9:24:02:95:48:9F:15:03:D5:B6:61:F8
    Fingerprint (SHA1):
        11:A0:93:64:D1:67:02:55:96:52:E2:46:D2:D7:D6:F5:1E:B0:37:F2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14193: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #14194: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001096 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14195: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #14196: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #14197: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001097 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14198: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #14199: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #14200: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001098 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14201: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #14202: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #14203: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001099 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14204: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #14205: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #14206: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001100 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14207: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #14208: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #14209: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001101 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14210: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #14211: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #14212: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001102 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14213: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #14214: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #14215: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001103 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14216: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #14217: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #14218: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001104 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14219: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #14220: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #14221: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14222: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 807001105 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14223: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14224: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 807001106 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14225: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14226: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 807001107 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14227: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14228: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #14229: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #14230: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14231: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 807001108 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14232: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14233: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 807001109 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14234: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14235: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 807001110 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14236: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14237: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #14238: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #14239: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14240: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 807001111 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14241: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14242: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 807001112 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14243: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14244: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 807001113 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14245: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14246: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #14247: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #14248: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14249: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 807001114 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14250: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14251: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 807001115 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14252: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14253: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 807001116 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14254: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14255: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #14256: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14257: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14258: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 807001117   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14259: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14260: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #14261: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14262: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 807001118   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14263: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14264: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001096 (0x3019dc08)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:13 2017
            Not After : Sun Aug 07 00:13:13 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:b1:af:fc:44:a5:b2:6b:45:b3:51:ae:81:2d:fa:c1:
                    ef:38:17:7c:4f:54:6e:73:27:ec:b8:a8:21:4b:a8:97:
                    c2:d7:e3:4e:88:7b:e7:82:97:98:33:8b:f1:90:7f:c4:
                    2d:bd:44:8e:5e:df:b8:64:b4:d3:23:ab:4f:8f:56:c9:
                    92:87:35:d7:5f:d7:6b:98:dd:dc:48:c8:65:57:f7:1f:
                    84:5d:96:d3:f6:d6:d6:01:3e:12:02:d1:1e:bf:2b:13:
                    5d:27:82:63:f2:8d:90:2e:9e:1b:4f:24:b7:5c:d3:a9:
                    8b:8a:1b:d5:4a:a9:01:fa:13:3a:80:74:0a:2d:ff:bc:
                    3b:bd:dc:cc:4e:fd:84:a6:71:e4:46:c6:0e:b0:ce:4a:
                    20:fd:a6:e4:52:fd:42:78:e5:61:fc:ce:05:78:7c:60:
                    a1:c4:85:2b:c5:fe:f9:95:d8:d4:06:51:0e:26:b3:95:
                    95:96:a3:83:15:46:99:44:51:3b:11:99:2a:70:c8:4a:
                    4b:af:6f:86:ef:82:3e:8a:dc:0f:d9:48:11:92:ac:8a:
                    cc:19:ed:28:c2:6a:72:e7:13:f7:95:31:36:6a:1f:39:
                    47:26:91:07:8e:97:b5:1f:25:fa:f0:11:48:45:b6:2c:
                    d1:e2:fc:ac:35:e5:e0:71:ef:0c:2f:2c:89:aa:c6:bf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:61:eb:09:8b:00:ed:20:1f:d0:d6:ec:90:60:76:3b:
        12:79:a5:62:83:c4:96:de:c9:6a:16:ff:74:dc:17:6e:
        97:d6:cb:fa:90:cb:cf:09:32:ea:2c:b4:f8:89:2d:71:
        e6:f4:dd:b9:94:ec:95:b8:9e:a1:25:d1:4e:1d:51:37:
        1f:9d:50:42:be:28:ca:80:e6:56:9f:13:f3:b3:e3:c0:
        bb:e5:4b:3c:07:15:ea:a2:9d:b4:a9:3f:e3:8a:bf:36:
        47:5a:bc:53:68:47:ff:3c:3f:5e:b8:79:28:ed:1d:86:
        4a:ed:69:9a:55:05:b0:36:08:c3:63:80:88:32:e6:f1:
        17:cd:ef:c0:cf:19:11:e7:b4:3e:82:0a:70:f6:f4:ca:
        5e:ee:5a:1e:af:d1:c9:49:ab:4f:29:0d:d6:7e:d9:16:
        c9:8c:07:07:1e:d9:14:d0:f0:d7:a0:cf:a4:33:99:6b:
        e3:92:13:be:21:64:6c:7d:cc:9b:85:9f:c2:ad:b4:b3:
        ee:99:82:47:ac:e7:27:b0:06:fb:5c:ee:73:8b:4f:ac:
        8f:c3:44:cb:a4:04:3c:ea:56:f1:a4:4a:b2:c1:98:bb:
        fe:b8:46:78:c1:a6:95:b6:5b:aa:a6:fb:c0:86:cd:e7:
        6b:e9:34:ce:bc:27:51:87:4d:6d:68:17:0e:2c:6e:2e
    Fingerprint (SHA-256):
        97:0E:02:72:07:DC:BA:3E:58:95:F3:17:E2:59:F8:50:49:FB:89:5C:EE:AC:9E:E3:A8:67:2F:F3:79:5D:AA:58
    Fingerprint (SHA1):
        88:F2:72:C5:1C:7D:48:30:B0:B6:29:7A:4E:2D:04:BD:E0:04:8B:45
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #14265: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001097 (0x3019dc09)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:14 2017
            Not After : Sun Aug 07 00:13:14 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:77:dc:48:57:81:6a:77:0f:80:51:22:28:d1:c2:95:
                    43:d9:e2:6d:0a:d4:01:c2:63:27:e2:27:2a:bb:44:67:
                    77:8f:91:e4:4e:5d:3d:7f:38:d1:18:14:7d:18:ca:4e:
                    08:c1:6f:de:36:04:3f:79:b3:41:2e:12:2d:bb:f0:b3:
                    96:b0:56:2d:0c:d6:73:0a:a8:39:35:70:dc:2c:90:72:
                    a4:ea:85:51:1f:62:a5:a0:2b:ef:a3:b7:c6:ec:2c:e3:
                    f0:47:d4:48:50:40:ce:c8:75:71:34:9c:c1:79:7f:b1:
                    8a:52:4f:a1:22:74:ac:a5:36:81:63:e7:d3:17:2e:ae:
                    eb:26:03:e8:37:ea:09:8f:a6:b1:b4:80:19:92:2c:d6:
                    00:4b:a3:4d:4f:a6:2d:c8:39:d9:d1:1d:5c:b9:6d:55:
                    a1:69:6d:96:91:4d:c9:bb:57:e8:c0:e3:ce:74:ca:ac:
                    34:9f:9a:25:c1:6a:c5:c2:a1:c2:0f:d7:a4:37:d3:4e:
                    b7:d8:ed:e2:63:8e:35:14:df:80:a6:54:43:0a:ff:0c:
                    d6:d6:26:29:af:d4:a9:15:4f:91:03:05:d0:59:6e:b0:
                    b2:6e:0c:ab:63:15:e8:a7:18:38:8c:4d:db:4b:6b:fd:
                    72:36:ad:75:b5:92:93:23:5b:d0:1a:84:3b:5b:31:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d0:b5:12:37:88:37:01:f5:d5:12:ac:dc:93:15:e6:d8:
        12:4b:b0:0d:f9:bd:56:4b:c3:be:63:e4:f2:87:c6:1a:
        5a:47:e8:c4:df:e6:ca:62:c3:6b:f0:91:6e:ae:83:52:
        00:b6:13:3a:61:81:e7:02:d0:3e:14:e7:4a:b9:fb:1b:
        25:5f:01:03:87:4b:b6:38:38:4c:f5:d8:04:47:c1:7f:
        f4:e7:e8:81:5b:08:9f:69:d9:66:9b:ed:9b:0a:ab:81:
        d2:24:03:6d:09:ad:13:48:16:f3:df:ad:35:e7:cd:24:
        b5:24:32:77:3e:a6:66:bb:1d:35:b7:be:cf:fb:03:14:
        6d:dd:70:54:11:71:aa:a9:43:27:93:ff:e9:78:25:8b:
        0c:d7:7b:04:14:8b:0c:a2:5a:eb:bd:95:c6:10:12:ba:
        22:24:60:80:a2:4b:b3:e8:19:d1:1d:2f:a0:a2:e8:8e:
        f7:72:e3:e4:63:ac:c5:61:b6:a0:f7:25:c9:2d:8a:27:
        f6:be:81:c9:87:22:a8:c5:5f:c5:0f:8f:1f:a9:5d:fa:
        84:af:a2:4c:ce:54:a4:57:04:36:11:60:7f:b9:17:b6:
        f0:23:64:7c:44:83:15:97:aa:2a:7c:99:d8:3f:90:8f:
        56:b9:3b:f7:4a:6c:1d:0f:b8:0a:b4:58:aa:08:13:da
    Fingerprint (SHA-256):
        E0:C6:A8:9D:A0:77:9B:66:25:7F:2F:1A:E4:55:7F:A7:37:7D:82:EA:74:A6:50:05:EE:DB:34:10:D6:44:FA:15
    Fingerprint (SHA1):
        06:73:85:A7:34:01:65:0E:8D:85:0E:1D:90:37:04:A6:EB:CC:0E:6C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #14266: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001098 (0x3019dc0a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:15 2017
            Not After : Sun Aug 07 00:13:15 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:4c:88:1b:a3:1b:21:aa:7b:34:3a:21:83:20:37:59:
                    8f:d1:ea:ac:81:18:83:60:74:a7:de:92:64:0c:c9:e4:
                    e5:75:ce:8f:b3:bf:ec:14:78:37:67:96:cd:29:e2:82:
                    fa:13:e2:b1:f7:1c:a2:f3:34:86:dc:d7:61:21:ac:50:
                    61:f1:40:5d:d9:ad:ae:e8:62:45:33:a0:c3:81:05:20:
                    45:c6:61:2a:e6:32:c6:2c:88:9e:15:e9:1a:ed:f7:03:
                    dd:4c:b5:ca:45:87:b1:30:b3:bd:93:c1:cb:5f:00:c0:
                    e0:b9:25:f4:cb:59:ec:58:4f:e0:13:ff:23:28:30:04:
                    ae:f6:fc:ad:36:59:90:af:a6:c4:f1:b1:5e:3f:aa:e7:
                    6b:a5:46:ac:56:29:3f:3e:b6:e0:cc:43:a8:e0:c0:dd:
                    dd:30:77:d1:85:cc:b6:47:d6:63:72:4d:48:83:35:2a:
                    e8:89:94:4d:c6:9c:96:6b:e2:f5:91:c1:df:18:fd:dd:
                    93:49:48:ee:98:15:ed:6c:29:30:20:e9:ee:26:28:a8:
                    54:4e:c7:9e:6f:83:b3:37:53:99:f8:5b:df:f8:67:49:
                    6c:cd:80:b8:ce:ec:be:e5:7a:c0:bc:b7:fc:46:8e:d0:
                    f6:cc:ad:44:77:3e:4b:fa:7d:c4:a5:f5:83:28:75:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9a:01:88:97:73:4d:8b:ef:be:eb:31:76:2c:8e:6a:b4:
        21:3b:89:a0:4d:0f:65:fb:dc:0b:b4:e8:7a:85:ce:c3:
        a5:ca:bf:6e:d0:f3:89:f7:f1:6c:6e:85:52:56:b9:a4:
        d1:81:54:45:09:e1:67:89:66:6b:2e:83:db:34:15:af:
        49:74:71:c2:70:0e:2f:2d:c3:45:e9:f1:fd:26:ba:7b:
        3d:6f:fb:2f:9c:2a:27:e6:a3:3c:e8:43:30:f9:18:a3:
        e4:47:55:9a:cb:b0:90:06:c8:df:1a:b8:0a:d7:0c:22:
        68:78:5c:bb:a3:1c:57:61:45:2c:e9:d5:2a:7b:7d:ed:
        25:b9:d9:b3:1e:4a:9a:28:4c:8d:43:f1:be:2e:59:1e:
        1b:a4:f3:d1:aa:7e:89:b3:3f:97:71:31:ec:de:70:f0:
        6a:11:32:01:c6:1a:e6:7c:24:6d:f9:80:f3:be:33:4c:
        c9:65:b0:37:23:8d:28:40:67:0e:76:15:fc:20:c9:76:
        51:c7:9e:ef:d9:7d:7a:ec:a6:a7:5e:53:af:d1:fd:41:
        06:76:8a:15:69:25:45:13:21:68:51:12:6e:d5:56:ee:
        f9:3e:af:46:7d:f9:75:c0:6b:1c:39:b6:3f:cf:ee:c2:
        ec:56:f1:b4:aa:c2:e4:b1:fa:2c:26:a4:0b:10:06:ee
    Fingerprint (SHA-256):
        4A:FF:1D:3C:42:EE:94:45:BE:C0:54:12:19:09:4D:A1:F4:36:1D:51:C0:D9:AD:67:0D:E6:F3:6D:D4:9B:02:60
    Fingerprint (SHA1):
        23:F5:6D:ED:FE:E1:01:23:25:96:6A:2A:11:3B:02:50:5F:9D:C5:0E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #14267: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001099 (0x3019dc0b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:16 2017
            Not After : Sun Aug 07 00:13:16 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:d4:b4:0f:58:44:d2:82:78:1f:69:4e:d3:86:b4:b7:
                    9f:41:b6:d5:31:9e:f5:cd:f3:0a:60:95:fd:b3:8d:44:
                    da:eb:26:f8:42:f1:c3:d5:0b:8f:b2:37:da:9c:59:71:
                    3a:e3:a0:ea:0c:30:09:9a:2e:43:97:63:4c:25:59:57:
                    21:04:be:d0:eb:f5:8d:c4:e3:43:68:b1:47:2a:6c:30:
                    f9:74:5c:55:7b:a8:6a:37:24:a1:42:38:8d:b5:94:92:
                    fb:96:65:37:af:c4:16:f2:7a:ef:42:d7:50:fd:21:ed:
                    b8:6c:0e:2c:3d:f4:d3:3d:a3:d6:2b:b2:54:b0:06:67:
                    f9:f4:eb:5b:55:68:bf:b5:ef:d6:e3:c5:20:7d:b9:31:
                    f0:a8:f1:18:8e:92:53:67:ea:f7:a2:e0:87:cb:06:c3:
                    cf:98:4e:68:ac:b8:e9:45:1b:a1:0c:68:5f:a6:95:d3:
                    be:c5:31:12:22:49:01:38:b4:ee:d0:8e:eb:43:20:b0:
                    04:62:c0:3a:d5:a0:cc:1f:bd:cc:78:56:d8:94:f4:e9:
                    12:e3:c4:ab:37:fe:6f:75:5f:53:1f:61:8b:6d:e9:6f:
                    5b:ed:c3:bc:ec:26:0e:d2:0e:a7:de:86:c1:61:73:47:
                    e4:8a:2d:50:d1:f4:96:b7:5c:9a:27:1c:9b:e5:c3:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6b:c2:17:b9:94:f1:cc:a3:a1:94:f6:b7:df:10:d8:4a:
        33:d0:aa:1f:b6:f9:46:d6:91:19:ad:8b:57:e9:3f:40:
        20:68:44:5d:0d:3b:9c:47:e9:fb:23:fb:2c:02:7d:2e:
        cf:57:75:5e:46:bb:40:6a:e5:f8:06:30:0d:b5:53:c1:
        ea:df:7a:cd:54:ce:e9:63:bd:7e:9b:ad:d6:a9:09:75:
        50:66:14:7b:e6:63:35:58:41:28:bf:07:05:0e:6f:af:
        c9:9f:4f:a5:9d:20:05:ce:18:4f:c4:8c:fb:5a:82:6a:
        09:ce:11:2b:01:bf:e1:6c:c7:c2:07:dc:a5:c2:93:9a:
        dc:1e:7d:78:ef:4b:aa:eb:76:6d:ef:41:e0:9e:84:55:
        52:e8:16:87:3a:95:c3:09:8f:de:ce:5b:60:38:91:ac:
        7b:61:87:2c:b2:95:f5:1f:68:45:c0:fb:ef:7b:63:36:
        a2:54:54:c6:bd:aa:73:4d:35:a1:53:d6:de:1b:01:be:
        a3:68:39:4e:f5:86:28:37:b6:d2:ae:2b:d6:11:b9:fc:
        74:f8:ff:70:8c:8e:60:fd:e6:f8:48:55:1e:76:71:6f:
        c2:6e:73:3f:30:c6:b5:93:48:09:50:5a:22:0e:ae:a6:
        92:ee:75:82:45:b2:9b:68:f5:fc:99:8d:b2:87:b9:f6
    Fingerprint (SHA-256):
        0D:DF:99:C4:B8:FF:C8:FB:DB:EA:AD:03:71:87:7B:3E:8E:CC:85:08:B6:FD:48:ED:F9:E7:4A:FB:6D:69:43:01
    Fingerprint (SHA1):
        97:63:EF:2D:2D:67:B5:E0:55:78:BC:93:3A:A8:AF:88:5F:FB:08:EA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #14268: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001100 (0x3019dc0c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:17 2017
            Not After : Sun Aug 07 00:13:17 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:bf:d7:39:2e:c3:9e:39:d3:83:70:4e:9c:fc:1c:77:
                    b0:9c:19:02:36:d3:0c:31:68:29:f1:36:0a:24:09:8e:
                    ca:86:9c:cb:ce:3c:1f:94:99:09:88:3c:b1:98:e7:0c:
                    a6:67:72:31:0e:4d:e0:b7:70:93:d4:e1:d6:43:ab:fe:
                    fa:29:4e:74:f2:cf:9e:ca:cf:56:d0:28:48:47:df:2c:
                    85:92:46:16:3a:45:d6:23:19:de:28:0c:68:97:1f:ee:
                    b1:91:0c:50:41:fb:92:3e:e1:92:a5:8f:1f:90:ef:97:
                    f6:c0:18:69:a1:ca:22:68:1e:9e:5e:7c:7e:3e:e6:bd:
                    9d:a3:d0:fe:94:5b:d7:51:9b:af:dc:7b:55:b6:91:ca:
                    a3:7c:eb:a8:1c:05:01:a4:38:89:0a:cb:10:b4:4a:00:
                    be:39:08:08:cf:2a:2d:61:43:2d:00:84:54:9a:cb:55:
                    ec:03:fc:7c:9c:35:82:8c:12:84:b7:01:27:e9:43:eb:
                    54:4e:87:dd:c0:d0:56:d8:e4:be:12:42:c3:90:03:f5:
                    15:b9:87:f1:16:bd:22:66:b5:32:06:9b:91:56:f3:16:
                    10:ae:73:54:74:12:fe:96:db:e8:c3:ca:4b:a2:b4:b2:
                    8c:e4:ab:16:1d:a0:50:40:8a:4b:63:4f:4f:f4:53:a1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        86:d8:0c:ee:7c:8e:2f:12:31:9a:47:ad:02:68:3f:a3:
        4b:04:4c:ab:83:8f:1d:bd:d7:2b:93:12:12:0a:60:df:
        3a:c5:19:95:be:7a:7d:ec:11:83:c9:99:e5:89:a0:80:
        35:41:6e:04:69:fe:24:4e:a3:a4:9a:c9:e5:30:db:5b:
        73:1c:33:e6:2f:e0:15:c1:86:92:ae:6d:ba:86:cf:97:
        97:96:db:78:43:81:bf:39:6a:b5:a3:87:88:d2:55:5c:
        66:70:f7:87:8a:d5:d0:6a:08:eb:4f:91:af:9c:85:2e:
        37:4a:a8:dd:bb:75:20:64:f1:a3:21:02:ab:1e:4d:4d:
        77:a1:75:d1:15:3e:3b:f2:8c:e4:c7:fa:47:cb:0e:b9:
        3f:e6:49:43:92:a3:ba:f4:a6:e3:4e:fc:42:62:c2:12:
        25:df:96:5c:82:cb:a7:59:d3:4c:58:95:c6:a3:2b:20:
        8c:2c:36:a2:ee:f7:c7:fa:41:e4:88:74:46:a0:fc:68:
        02:b4:fa:86:b4:5a:3b:ce:19:a7:75:54:a0:9a:ca:79:
        fe:24:eb:aa:bc:ca:84:21:38:ba:e3:24:4b:62:7e:4a:
        8e:fb:de:f8:65:15:9b:39:f2:a9:05:95:09:63:38:5d:
        14:c8:60:cd:97:5c:b5:c1:f4:5f:21:bb:f9:17:ac:4b
    Fingerprint (SHA-256):
        6E:13:14:48:30:63:89:D7:92:E3:73:C0:CE:E7:27:F6:86:65:E6:64:62:CE:08:23:E2:B7:04:0C:9C:47:A5:46
    Fingerprint (SHA1):
        0E:58:62:70:48:60:B2:EB:DA:B9:3F:72:14:DA:CF:DD:E8:94:AE:56
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #14269: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001101 (0x3019dc0d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:18 2017
            Not After : Sun Aug 07 00:13:18 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:f5:b9:1d:a9:39:17:7b:6b:a6:04:ba:d5:5b:a7:70:
                    02:77:9d:38:2c:8a:ed:76:d8:dd:72:5a:7a:68:5a:d3:
                    4a:74:f0:dc:81:13:ec:af:44:9e:e0:55:07:53:a2:21:
                    f7:de:a5:7c:12:d2:3a:a9:eb:97:da:14:6b:53:5f:7f:
                    fc:25:90:17:80:fd:da:fc:74:29:41:2a:c7:30:5e:21:
                    29:b4:46:99:58:d5:24:b6:b4:be:ed:26:c8:e0:5a:bb:
                    cd:9a:35:79:9e:b1:59:a9:7f:e2:c1:78:77:30:da:bb:
                    c8:a8:b3:8c:55:64:26:98:47:98:3e:36:e6:83:97:ee:
                    07:0c:66:f6:b8:92:76:37:de:ca:94:2f:14:8d:42:b6:
                    bb:d8:32:ee:d5:3f:d0:37:aa:ac:e4:02:27:8e:0a:33:
                    44:05:6d:93:46:f7:bf:c5:91:2c:1f:ae:25:95:12:a2:
                    50:d6:76:00:32:f2:2f:20:83:11:bc:aa:96:18:7c:58:
                    2d:18:1d:2c:20:d7:bc:92:05:d3:37:b0:4a:1b:70:61:
                    4f:96:d2:33:65:12:07:27:8e:e2:73:5b:75:7e:ad:01:
                    f2:41:aa:75:4e:9a:d2:49:78:1e:36:29:41:b9:3d:3c:
                    91:3e:5d:53:20:14:2c:43:29:6e:42:29:99:6c:53:27
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:ae:8f:3f:c6:d4:cd:63:4b:8f:14:21:9b:28:a8:60:
        55:c2:52:87:ac:52:5c:59:bc:88:25:c5:71:ce:ed:5d:
        1e:13:03:a5:b1:22:99:be:d9:7e:41:ed:69:51:b2:3b:
        6c:c5:80:c4:87:0f:f9:1a:18:ee:a5:e2:c8:e9:44:90:
        c6:38:b2:4b:5a:40:75:af:62:7a:b4:52:5f:2d:d9:a2:
        93:bc:02:9f:73:67:74:60:ec:0e:90:aa:c1:8b:af:be:
        76:f6:67:eb:00:18:b9:40:0d:e3:2d:0f:13:bc:c9:fa:
        ec:b2:35:c8:1b:07:bc:54:8d:d2:36:85:d2:06:78:0d:
        af:1e:98:57:71:39:da:e8:fd:3a:7d:84:20:10:7b:37:
        c9:4f:2f:d3:3b:cb:26:17:ca:3f:17:e7:07:34:10:7b:
        70:33:cb:f8:78:db:35:5b:79:42:b0:85:e2:1d:0b:d4:
        7c:89:0b:c2:31:3e:27:22:54:5f:f5:63:0d:8f:5e:94:
        20:8e:15:25:46:9e:90:eb:bd:09:1c:c6:f3:99:44:0f:
        03:7a:e2:9e:ec:a5:da:35:ec:11:ff:c5:68:9a:dc:e8:
        f2:51:62:84:04:1d:82:cb:ec:35:a7:dc:96:96:b2:3e:
        04:fa:47:d7:57:2d:27:b3:02:30:d2:8d:9b:27:10:28
    Fingerprint (SHA-256):
        E1:25:C4:91:96:FC:10:3D:64:B8:17:CD:B6:D8:82:78:F3:4E:3F:C3:5C:2C:3D:A7:9C:ED:8D:28:CA:81:F0:E4
    Fingerprint (SHA1):
        A0:EC:8B:73:20:A6:A2:BD:62:D4:52:19:B1:63:51:53:95:47:87:07
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #14270: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001102 (0x3019dc0e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:19 2017
            Not After : Sun Aug 07 00:13:19 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:36:8b:89:2e:db:01:5d:14:1d:8b:c1:6f:ce:3e:20:
                    9c:68:cc:67:a7:52:e7:bc:61:f7:51:4c:49:0b:16:74:
                    fd:34:4c:01:3f:41:84:3f:4d:bc:56:26:3e:be:d2:0b:
                    78:ca:44:07:b5:4b:1a:95:5c:b7:5b:66:22:f2:7f:99:
                    8b:b2:e1:e5:3f:76:5d:a4:86:16:37:bd:59:34:6a:84:
                    8d:29:2b:ef:04:e6:8e:ea:26:3f:74:82:d5:7a:51:33:
                    7c:90:6e:39:a3:1e:5c:c3:9e:67:79:21:7b:77:00:0b:
                    40:63:7d:0f:35:78:fc:ff:1d:13:f0:52:8d:31:a9:e3:
                    80:4c:e1:92:e9:e1:01:99:97:ef:69:65:ad:32:bf:d6:
                    6d:ce:9e:37:31:c2:9d:81:ca:ce:04:e9:13:cd:1c:cd:
                    91:ae:fd:d1:83:b3:c9:15:4d:dc:73:f9:2d:1b:de:d7:
                    c2:07:8b:d7:21:bc:24:ed:a1:e7:3e:0b:fb:b9:7f:49:
                    2c:5b:25:d8:0d:1b:c1:ed:50:9c:09:17:40:dc:38:05:
                    35:af:6e:1b:55:1b:29:88:c1:0c:0a:20:3d:42:89:1a:
                    4b:c5:2c:64:c2:ae:32:19:e4:f7:ed:3a:be:c9:05:c3:
                    62:24:2c:e8:d2:52:d5:9f:8a:8c:da:41:10:ac:2f:f3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:33:4d:ee:d8:09:3c:92:f3:26:80:1e:74:bb:0e:0f:
        c4:fe:2c:08:06:4a:cc:90:76:84:76:34:54:ed:69:a6:
        08:55:1a:d4:d4:f5:e1:c2:96:51:9c:b5:18:e5:7e:5d:
        4b:3d:5a:aa:58:ad:11:9d:aa:8f:51:03:d7:72:87:be:
        2b:7b:19:4f:d6:9b:fa:c5:13:03:ef:23:00:84:1a:15:
        86:2c:25:e4:52:f1:b9:cc:5a:7e:17:71:1e:01:96:11:
        70:14:80:3f:73:80:42:29:46:9e:38:9c:1b:0e:0a:69:
        50:9e:27:dd:75:82:49:f7:a2:86:c3:a2:a9:55:30:d1:
        22:4a:9a:d6:ba:a8:99:6e:21:72:b4:23:34:1b:2e:63:
        76:96:3e:77:fb:6f:8e:21:4f:0f:6d:a1:28:89:bd:48:
        3a:1a:5d:23:9b:36:15:66:7d:a3:b8:43:92:b0:cc:4b:
        fa:53:db:df:48:e1:10:6a:52:8b:40:f6:6a:74:e4:fb:
        14:f5:65:7d:0f:69:45:69:ca:8f:db:63:c0:22:6b:59:
        04:a8:a6:29:b4:49:bf:f8:55:f1:d5:fb:26:81:92:8e:
        9e:41:77:4a:94:85:14:7b:e7:d8:87:75:2e:12:ea:c2:
        74:f9:73:01:ab:a6:84:78:36:8f:3f:7c:a9:4a:96:b7
    Fingerprint (SHA-256):
        5C:A0:1D:74:E8:74:C7:EE:80:8C:0F:ED:1F:77:10:BD:F8:90:EF:5B:CA:13:A4:31:C2:C3:9C:12:5B:48:15:C1
    Fingerprint (SHA1):
        10:13:8A:0B:0A:0A:0D:47:01:F4:83:59:46:1C:98:6E:F6:9F:B1:5D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #14271: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001103 (0x3019dc0f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:21 2017
            Not After : Sun Aug 07 00:13:21 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:c0:87:67:b7:a1:19:99:6a:0b:54:e0:4f:58:78:c5:
                    99:8b:ca:ba:9a:ff:68:53:db:0d:55:ae:eb:31:cd:e6:
                    08:22:c9:c6:8d:fd:ff:a2:50:d6:a1:3d:1a:6d:60:b5:
                    e6:fb:3c:d6:0c:9a:9e:c5:9e:bc:46:53:78:4c:02:3e:
                    f5:a0:05:33:33:bc:2f:ed:ce:ac:e0:4f:33:4c:99:3a:
                    8b:12:ec:ef:f6:4a:18:d7:58:15:1a:c8:cf:9b:9e:6b:
                    a4:59:fc:11:7f:71:f4:42:38:14:8b:9e:05:36:82:8a:
                    eb:7c:a5:cb:d7:e9:fa:ea:7e:5a:c2:68:74:bf:ec:5f:
                    ef:61:b6:52:c5:1a:29:f3:cd:0c:38:39:c9:45:94:ae:
                    8e:8b:a9:bc:8c:55:fd:34:bd:b4:8e:89:bb:69:66:58:
                    45:f7:3f:94:3c:33:2e:be:22:0d:b3:f0:0c:a7:79:0a:
                    86:47:92:9e:8d:cd:24:57:e8:ac:75:64:73:dc:ec:0c:
                    ab:1d:7f:18:9c:93:f6:f0:5f:cc:57:e7:29:85:86:fa:
                    86:61:7f:5c:cd:e0:fb:82:25:3a:8c:42:98:f9:c6:99:
                    84:9b:c4:70:36:e8:72:d4:56:fd:b2:ac:c1:3e:51:a4:
                    63:6d:3e:77:9d:d7:67:18:3d:cb:93:46:e8:af:c0:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:1d:80:16:6b:39:bf:3e:94:68:56:57:0c:c2:73:53:
        46:90:94:1a:34:f1:21:4b:b5:26:62:42:74:01:03:5a:
        80:00:2f:6e:e4:95:40:c9:f1:2f:1a:49:b5:b6:77:b5:
        62:f9:82:69:04:84:06:67:14:44:fd:91:d3:3c:de:af:
        d5:bf:9e:2d:07:a2:6e:f5:40:c3:d7:72:2c:94:58:f7:
        94:02:c6:a9:c8:88:98:a3:57:59:de:69:51:7e:a6:1a:
        b0:ff:e1:1c:8d:75:47:3f:a6:13:ce:64:e7:78:d4:f2:
        bc:d9:c6:1b:7c:26:be:62:da:84:73:45:da:93:6d:b6:
        eb:9e:58:9c:cb:03:a8:6f:e2:2d:66:07:c8:95:d8:d8:
        62:b3:42:ad:a3:d0:f8:a9:28:9c:03:5f:74:af:58:83:
        7b:61:d4:27:46:0e:ba:9b:96:50:38:32:14:ca:ec:71:
        90:74:38:7d:47:31:45:9c:08:94:92:e3:c1:df:0a:63:
        33:c1:ca:68:c7:1a:a7:43:41:b4:b6:ce:1d:8c:da:48:
        ab:a6:9e:87:23:fd:3b:1e:34:c9:cc:d3:1c:05:34:e7:
        24:4e:f6:aa:c0:ef:ce:0f:ce:92:c7:14:6b:e2:c2:86:
        f8:68:af:f0:ce:4b:37:3d:2f:9d:f2:f1:fb:54:cf:12
    Fingerprint (SHA-256):
        DC:DD:65:7A:F4:E0:DC:44:9B:51:1B:A0:14:F4:5A:FB:4E:53:AE:93:64:EA:02:55:13:29:43:86:5E:48:47:88
    Fingerprint (SHA1):
        41:DA:0C:36:7D:D0:E9:0C:E1:FA:58:BD:B8:41:BC:D9:78:60:26:B4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #14272: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001104 (0x3019dc10)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:22 2017
            Not After : Sun Aug 07 00:13:22 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:c0:d3:9f:2b:29:5c:67:42:56:a2:d5:eb:fa:2b:2f:
                    02:7a:b1:6f:f6:8b:e6:1a:f3:cd:e1:77:f0:a9:15:4a:
                    9e:69:61:1c:57:01:47:98:a0:1d:ea:35:dd:c3:c4:e6:
                    58:de:a8:ee:cb:06:65:0a:f3:c3:e5:2e:fc:fe:30:ce:
                    81:e5:e6:4e:7d:05:40:89:dd:49:6b:48:38:ae:c7:73:
                    a6:65:66:ea:be:88:c6:fc:7b:47:ff:47:a5:cf:2e:80:
                    dd:3a:9e:ac:ff:f0:9c:ad:1e:31:76:66:bc:b7:33:69:
                    6f:c9:91:a2:61:2d:dc:b0:bb:7e:6f:92:bc:2b:fa:7a:
                    db:ae:fa:1c:95:a0:d1:76:a1:38:4f:1c:84:c9:91:0f:
                    05:51:3c:cb:38:40:d3:bd:dd:64:ca:fe:f8:12:7b:b1:
                    f0:73:ab:a0:29:80:9b:b7:22:4b:ec:19:6b:09:29:18:
                    f6:a2:2c:d1:9a:71:10:04:d7:37:ca:84:9f:c4:df:87:
                    8b:19:02:4e:c0:ee:71:87:93:52:5c:6e:4e:40:2a:03:
                    90:05:6a:96:0b:6e:81:ad:ac:a4:6f:41:b7:60:20:ff:
                    11:4f:42:9f:c4:99:40:5a:ab:1a:36:42:24:69:50:09:
                    dc:06:40:96:2d:06:1c:1f:9e:e0:96:a1:10:02:93:a1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:26:02:51:c0:c7:88:b3:f7:8c:16:41:58:7e:df:14:
        7d:10:68:cc:d4:05:ee:1c:dd:04:6c:39:cb:b6:bb:30:
        f5:ad:df:a9:98:b6:32:83:0a:2b:a5:a3:e3:7a:d5:62:
        7a:4f:11:04:d9:49:16:25:7f:47:52:30:74:23:26:49:
        89:84:78:ba:f9:0a:45:75:36:b6:d8:de:33:b1:3b:89:
        77:5e:40:38:d4:21:9b:0f:75:57:d0:7f:8e:c7:2f:44:
        2e:67:f8:ea:1e:64:28:11:6e:b6:4c:f2:cf:a9:03:97:
        2a:44:6a:93:d9:ab:a0:6b:ea:01:56:55:fa:2f:8d:99:
        3f:2f:cd:60:02:ba:16:eb:e1:4e:ea:af:97:9c:c4:0d:
        f9:dc:f4:42:11:d8:d0:cf:22:3e:ca:9b:20:9f:e8:fa:
        04:5d:15:d5:8b:61:a2:7e:a8:4d:22:24:02:46:c3:94:
        46:2f:a0:bb:3a:50:13:9a:cd:d5:73:5a:32:67:eb:a1:
        d6:76:90:16:d4:2e:f3:5e:0a:2c:c2:c2:4f:78:0d:49:
        51:93:03:68:c8:5b:e8:3f:6c:64:f6:7f:99:58:81:a3:
        f5:d1:60:7b:0e:8d:a3:8a:e2:91:0e:eb:53:9a:d6:e3:
        90:7a:8a:b9:20:5d:57:5d:6f:e4:19:d7:12:cd:d6:3f
    Fingerprint (SHA-256):
        CC:89:0B:22:FC:E2:CD:E1:F4:2F:DF:37:D3:12:96:B7:27:F5:33:50:56:40:A4:97:77:EB:CB:5A:F6:E7:74:C0
    Fingerprint (SHA1):
        67:EE:BE:F4:C0:89:1B:78:03:0A:36:FA:59:95:B7:6D:36:0A:DB:25
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #14273: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #14274: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001119 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14275: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #14276: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14277: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14278: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 807001120   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14279: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14280: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14281: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14282: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 807001121   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14283: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14284: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #14285: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14286: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 807001122   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14287: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14288: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14289: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001119 (0x3019dc1f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:32 2017
            Not After : Sun Aug 07 00:13:32 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:d5:ab:c5:5a:2f:9f:94:49:2f:7c:8d:21:0e:52:2b:
                    e8:be:5e:6f:0e:8d:76:bd:14:fd:8b:b0:26:78:be:70:
                    8d:c9:8e:8a:58:94:29:d2:d5:71:77:4d:9e:5e:7c:f5:
                    d9:78:40:97:9d:90:29:36:4a:cb:03:84:cf:be:10:f3:
                    53:f9:96:4a:02:af:63:83:40:c8:03:c6:fa:3e:92:f1:
                    4d:05:e9:8d:06:be:3e:d8:ec:a0:84:6b:f2:40:dd:9a:
                    65:2e:fa:da:70:8a:8f:a4:a0:80:92:b6:58:0c:37:da:
                    4a:78:e2:ff:09:43:4a:0b:2f:46:be:63:8d:a4:79:65:
                    84:99:f7:49:b0:49:2a:0a:bf:bf:68:5f:21:05:2b:f1:
                    d8:a5:d3:98:5e:5c:a9:6a:02:6e:be:12:af:2f:50:20:
                    46:49:34:46:2c:a0:04:db:b1:16:f1:f0:bc:0d:43:62:
                    5a:c3:e5:12:ee:ec:95:20:d3:c1:d4:2a:5e:d5:c2:3c:
                    b6:47:ef:a9:8f:62:62:09:0b:7c:8c:2e:a0:23:6c:ff:
                    a2:e3:7c:3f:6a:30:de:75:3f:6a:5a:51:18:21:3d:c4:
                    a6:ca:36:3a:49:6d:20:f0:a4:f0:da:25:fa:5b:9a:81:
                    93:94:ad:4e:04:bd:58:cd:43:9c:fa:5c:63:98:a5:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        49:7f:02:b0:24:f2:c8:9a:4c:83:2f:5c:9e:f7:55:ab:
        de:25:d4:3a:57:3b:91:1f:d6:5b:ff:5e:03:a2:92:42:
        50:99:e2:a0:16:b5:a7:1d:68:2c:3b:0c:9e:a0:39:10:
        2d:c1:65:57:c6:a6:71:73:1d:1c:81:8d:8b:9e:3b:5a:
        3f:a7:54:46:33:70:a3:70:ef:dc:9a:d2:16:00:75:ee:
        19:66:db:17:c5:80:e1:d5:6f:2f:4b:40:fe:a6:96:cc:
        7f:32:40:e5:59:72:5a:45:9e:6c:58:aa:ca:75:92:71:
        8a:27:1c:e8:df:c2:1f:95:ec:d9:3f:7f:c8:64:71:5f:
        f0:a4:6d:f4:89:0b:0a:b7:af:95:7a:c2:f1:a5:84:7f:
        15:0e:17:b4:7d:58:9f:cb:2e:48:6e:20:97:33:ea:33:
        6c:5e:f3:58:65:bb:a7:e5:3e:82:bd:e7:71:ed:4f:22:
        08:4d:39:0d:8b:94:c0:67:2e:cc:b7:83:b3:44:b6:c4:
        7f:d3:3d:ca:68:51:42:97:1f:b1:f4:8d:ec:c0:1f:c4:
        14:cd:44:45:3f:b3:28:7b:71:95:35:72:e7:99:2a:b8:
        79:a7:c6:71:0e:72:29:06:78:06:17:99:11:b4:29:88:
        fd:89:c7:c7:3f:ee:d8:dc:45:6c:ad:96:83:d1:69:0c
    Fingerprint (SHA-256):
        4B:DB:1A:4E:4E:BD:43:75:C2:24:48:03:F8:60:38:8D:2D:12:80:78:77:F4:EE:C9:F3:29:36:43:DF:7E:2D:AB
    Fingerprint (SHA1):
        9B:10:BE:16:E4:64:81:71:8F:55:E2:51:79:8C:16:2B:E7:94:E6:FD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14290: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14291: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001120 (0x3019dc20)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:34 2017
            Not After : Sun Aug 07 00:13:34 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:a3:8a:dd:84:6d:aa:65:8d:ac:ef:aa:e6:5c:24:44:
                    04:de:99:45:65:89:de:78:3d:40:97:6f:e4:ad:ec:6d:
                    dc:68:03:e9:8e:a6:fd:d1:43:3a:1f:29:83:c8:79:48:
                    fa:83:9c:30:59:23:52:5b:be:b9:5f:5b:6e:23:a7:46:
                    7f:4a:dd:4b:60:bc:93:0e:93:51:0a:04:d6:3d:0c:11:
                    3b:72:a7:1c:06:62:ae:68:63:66:e5:8f:21:0d:50:d0:
                    65:66:0a:c2:46:d6:6f:e0:3b:46:26:2d:f6:f3:63:06:
                    b9:fb:1a:19:f4:37:c0:e2:80:25:d9:1f:c7:94:28:f3:
                    95:dd:7a:34:1b:65:f0:f0:4a:d0:33:f4:6d:b6:a3:4e:
                    4c:2d:45:91:17:50:4c:13:04:01:3d:91:6c:dc:76:8d:
                    bb:49:33:37:62:9c:19:93:43:bf:ab:02:10:c9:dc:45:
                    03:d4:4c:40:6a:f8:b5:92:6b:a0:41:c3:66:3e:10:f3:
                    49:22:96:c5:3a:90:a5:e0:78:7e:0a:b2:52:5f:64:0c:
                    d8:96:48:85:09:b8:4c:30:c3:18:e9:63:19:93:2f:1f:
                    fb:0a:bb:6e:7f:74:30:0a:69:92:3d:70:4f:36:a6:80:
                    eb:c8:2d:05:7d:a7:ad:f7:45:5e:e1:33:87:62:bd:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0a:8c:9c:51:a7:3a:24:f7:a5:84:14:6f:6c:75:b8:e7:
        6e:09:9f:96:a3:09:80:9c:14:6c:f0:ae:e4:9e:96:4e:
        1c:cf:eb:22:78:c8:f2:9d:c4:4b:03:31:69:23:0f:98:
        06:56:74:8b:7a:fd:0c:2d:a2:67:b5:cf:35:6a:a9:b3:
        44:6d:f9:c5:71:ef:4f:27:d6:7c:73:c5:64:69:fc:1e:
        ec:9c:01:8a:e8:99:73:73:ba:06:d2:8b:73:f5:df:68:
        63:95:a5:2d:e8:da:2e:37:39:4f:f6:41:07:87:09:4d:
        27:e6:36:6a:6e:5b:23:4c:dd:d7:f5:ac:63:83:67:01:
        cb:1a:f3:cb:98:95:90:aa:3a:cd:00:2d:b8:c6:10:36:
        02:f3:12:12:82:e8:13:90:1b:90:1e:78:f5:50:22:47:
        53:80:29:aa:b9:6d:d5:6e:ec:80:52:13:f9:d4:f2:0f:
        cf:63:2f:d2:18:8f:7f:c7:7d:91:2e:5b:0a:5a:4f:5f:
        0e:bc:fc:82:02:8f:93:64:34:ad:e5:d8:76:8a:1b:06:
        f3:09:57:30:4d:50:59:2b:ba:c0:be:1d:c0:78:47:fb:
        a0:ec:0f:38:82:0b:9c:49:af:8a:fc:f1:5c:bf:0d:45:
        2e:d7:96:cf:a8:f8:c9:40:0c:6f:81:d3:2d:00:99:e8
    Fingerprint (SHA-256):
        98:51:81:39:85:7E:C1:59:EA:B0:6F:D5:95:5A:D5:AE:87:10:79:3A:D5:E4:C5:B9:83:9E:A9:BB:7A:F2:72:5D
    Fingerprint (SHA1):
        8C:FE:89:DB:E3:C7:DF:09:0A:CC:9C:B6:97:78:1D:46:03:59:58:B0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14292: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14293: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001121 (0x3019dc21)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:35 2017
            Not After : Sun Aug 07 00:13:35 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:a5:96:db:7f:0e:d6:fc:80:00:52:1b:52:3c:bf:06:
                    c9:7a:1c:4c:ef:c3:48:18:bb:f8:f7:44:78:dc:c9:66:
                    14:59:12:d4:45:0e:07:9f:a2:4c:f6:98:31:f3:34:60:
                    5b:00:25:b7:90:38:62:ba:a4:5f:65:34:64:43:15:b0:
                    dc:b1:02:82:f3:7a:03:0d:70:dc:08:9c:8c:16:11:6f:
                    21:21:aa:45:be:3b:c0:f4:16:78:97:29:e3:92:dc:e8:
                    58:0f:f5:d9:40:83:e7:1f:50:82:c6:8a:40:4d:ff:c9:
                    b2:60:34:43:8d:75:9f:dc:58:e6:f9:5e:29:52:dc:ce:
                    f1:96:23:9f:8a:07:1d:a6:23:6c:62:26:0e:f8:de:5c:
                    13:89:8f:87:01:1f:66:34:76:e8:0e:87:ef:c3:09:8c:
                    75:0c:1e:dd:5b:f9:45:db:06:11:c8:cf:f9:9a:7b:44:
                    d2:c8:81:17:60:40:ca:2f:21:70:2a:66:c1:b9:f0:f3:
                    ba:86:39:d0:1f:44:0a:50:99:d4:05:82:50:be:0e:33:
                    eb:b3:f1:7d:e6:85:dc:5f:fb:6a:fa:85:b6:fd:f8:a4:
                    e1:83:94:32:95:9f:7f:0a:62:60:96:79:b1:2c:20:cb:
                    ed:1b:43:6d:88:13:23:be:b7:33:79:d2:74:4e:89:4d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        85:ee:8f:fb:ef:af:f2:f1:13:d9:dd:4c:89:f5:24:4a:
        6e:21:3a:9e:5e:36:bd:62:b3:85:d7:91:f7:77:fb:de:
        df:39:42:bf:a4:07:75:50:62:bf:21:6e:49:28:13:1c:
        6f:5e:bb:9e:9b:e8:55:62:5d:e3:2d:48:8f:cf:91:5f:
        aa:b6:8e:44:ce:32:a5:82:44:a7:57:a0:4c:a2:e1:e7:
        3e:7b:76:5a:f2:9b:8b:cd:16:d0:f0:1b:25:59:9d:b0:
        2b:c7:7e:73:80:a1:0e:11:1a:f7:37:93:f2:5d:ca:c3:
        52:4e:63:ae:b4:09:25:bb:61:c3:23:95:c1:a2:78:b7:
        6d:df:6b:06:b9:c7:f4:86:2a:38:8a:53:9e:55:21:15:
        5c:a6:4b:74:9d:f2:9c:4e:6e:a6:65:5c:34:97:e2:4e:
        a0:9e:15:39:8b:73:d2:ef:a9:6b:eb:f4:5e:dd:17:5f:
        b9:a5:1b:be:46:02:ab:09:8f:56:82:1e:b5:2a:93:c5:
        3e:57:89:9b:6d:71:e1:11:1f:be:ee:85:95:59:c7:76:
        44:6f:a0:20:96:38:e1:3e:3d:31:78:70:1f:59:7f:88:
        24:6c:a5:ed:d5:40:03:f0:e3:57:75:78:97:34:86:fd:
        bc:9e:60:f3:ae:0e:ce:03:4b:e0:c3:19:38:c9:e2:87
    Fingerprint (SHA-256):
        D5:78:38:EE:8D:92:C5:BF:39:BD:C4:56:E5:51:9A:79:4F:C4:C5:BC:98:53:2C:66:89:A0:D9:28:23:D8:06:60
    Fingerprint (SHA1):
        A0:E8:7C:69:5D:9B:EE:85:D7:08:71:52:98:E6:E4:13:2D:6F:0C:DB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #14294: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14295: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #14296: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #14297: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #14298: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001119 (0x3019dc1f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:32 2017
            Not After : Sun Aug 07 00:13:32 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:d5:ab:c5:5a:2f:9f:94:49:2f:7c:8d:21:0e:52:2b:
                    e8:be:5e:6f:0e:8d:76:bd:14:fd:8b:b0:26:78:be:70:
                    8d:c9:8e:8a:58:94:29:d2:d5:71:77:4d:9e:5e:7c:f5:
                    d9:78:40:97:9d:90:29:36:4a:cb:03:84:cf:be:10:f3:
                    53:f9:96:4a:02:af:63:83:40:c8:03:c6:fa:3e:92:f1:
                    4d:05:e9:8d:06:be:3e:d8:ec:a0:84:6b:f2:40:dd:9a:
                    65:2e:fa:da:70:8a:8f:a4:a0:80:92:b6:58:0c:37:da:
                    4a:78:e2:ff:09:43:4a:0b:2f:46:be:63:8d:a4:79:65:
                    84:99:f7:49:b0:49:2a:0a:bf:bf:68:5f:21:05:2b:f1:
                    d8:a5:d3:98:5e:5c:a9:6a:02:6e:be:12:af:2f:50:20:
                    46:49:34:46:2c:a0:04:db:b1:16:f1:f0:bc:0d:43:62:
                    5a:c3:e5:12:ee:ec:95:20:d3:c1:d4:2a:5e:d5:c2:3c:
                    b6:47:ef:a9:8f:62:62:09:0b:7c:8c:2e:a0:23:6c:ff:
                    a2:e3:7c:3f:6a:30:de:75:3f:6a:5a:51:18:21:3d:c4:
                    a6:ca:36:3a:49:6d:20:f0:a4:f0:da:25:fa:5b:9a:81:
                    93:94:ad:4e:04:bd:58:cd:43:9c:fa:5c:63:98:a5:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        49:7f:02:b0:24:f2:c8:9a:4c:83:2f:5c:9e:f7:55:ab:
        de:25:d4:3a:57:3b:91:1f:d6:5b:ff:5e:03:a2:92:42:
        50:99:e2:a0:16:b5:a7:1d:68:2c:3b:0c:9e:a0:39:10:
        2d:c1:65:57:c6:a6:71:73:1d:1c:81:8d:8b:9e:3b:5a:
        3f:a7:54:46:33:70:a3:70:ef:dc:9a:d2:16:00:75:ee:
        19:66:db:17:c5:80:e1:d5:6f:2f:4b:40:fe:a6:96:cc:
        7f:32:40:e5:59:72:5a:45:9e:6c:58:aa:ca:75:92:71:
        8a:27:1c:e8:df:c2:1f:95:ec:d9:3f:7f:c8:64:71:5f:
        f0:a4:6d:f4:89:0b:0a:b7:af:95:7a:c2:f1:a5:84:7f:
        15:0e:17:b4:7d:58:9f:cb:2e:48:6e:20:97:33:ea:33:
        6c:5e:f3:58:65:bb:a7:e5:3e:82:bd:e7:71:ed:4f:22:
        08:4d:39:0d:8b:94:c0:67:2e:cc:b7:83:b3:44:b6:c4:
        7f:d3:3d:ca:68:51:42:97:1f:b1:f4:8d:ec:c0:1f:c4:
        14:cd:44:45:3f:b3:28:7b:71:95:35:72:e7:99:2a:b8:
        79:a7:c6:71:0e:72:29:06:78:06:17:99:11:b4:29:88:
        fd:89:c7:c7:3f:ee:d8:dc:45:6c:ad:96:83:d1:69:0c
    Fingerprint (SHA-256):
        4B:DB:1A:4E:4E:BD:43:75:C2:24:48:03:F8:60:38:8D:2D:12:80:78:77:F4:EE:C9:F3:29:36:43:DF:7E:2D:AB
    Fingerprint (SHA1):
        9B:10:BE:16:E4:64:81:71:8F:55:E2:51:79:8C:16:2B:E7:94:E6:FD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14299: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14300: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001120 (0x3019dc20)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:34 2017
            Not After : Sun Aug 07 00:13:34 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:a3:8a:dd:84:6d:aa:65:8d:ac:ef:aa:e6:5c:24:44:
                    04:de:99:45:65:89:de:78:3d:40:97:6f:e4:ad:ec:6d:
                    dc:68:03:e9:8e:a6:fd:d1:43:3a:1f:29:83:c8:79:48:
                    fa:83:9c:30:59:23:52:5b:be:b9:5f:5b:6e:23:a7:46:
                    7f:4a:dd:4b:60:bc:93:0e:93:51:0a:04:d6:3d:0c:11:
                    3b:72:a7:1c:06:62:ae:68:63:66:e5:8f:21:0d:50:d0:
                    65:66:0a:c2:46:d6:6f:e0:3b:46:26:2d:f6:f3:63:06:
                    b9:fb:1a:19:f4:37:c0:e2:80:25:d9:1f:c7:94:28:f3:
                    95:dd:7a:34:1b:65:f0:f0:4a:d0:33:f4:6d:b6:a3:4e:
                    4c:2d:45:91:17:50:4c:13:04:01:3d:91:6c:dc:76:8d:
                    bb:49:33:37:62:9c:19:93:43:bf:ab:02:10:c9:dc:45:
                    03:d4:4c:40:6a:f8:b5:92:6b:a0:41:c3:66:3e:10:f3:
                    49:22:96:c5:3a:90:a5:e0:78:7e:0a:b2:52:5f:64:0c:
                    d8:96:48:85:09:b8:4c:30:c3:18:e9:63:19:93:2f:1f:
                    fb:0a:bb:6e:7f:74:30:0a:69:92:3d:70:4f:36:a6:80:
                    eb:c8:2d:05:7d:a7:ad:f7:45:5e:e1:33:87:62:bd:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0a:8c:9c:51:a7:3a:24:f7:a5:84:14:6f:6c:75:b8:e7:
        6e:09:9f:96:a3:09:80:9c:14:6c:f0:ae:e4:9e:96:4e:
        1c:cf:eb:22:78:c8:f2:9d:c4:4b:03:31:69:23:0f:98:
        06:56:74:8b:7a:fd:0c:2d:a2:67:b5:cf:35:6a:a9:b3:
        44:6d:f9:c5:71:ef:4f:27:d6:7c:73:c5:64:69:fc:1e:
        ec:9c:01:8a:e8:99:73:73:ba:06:d2:8b:73:f5:df:68:
        63:95:a5:2d:e8:da:2e:37:39:4f:f6:41:07:87:09:4d:
        27:e6:36:6a:6e:5b:23:4c:dd:d7:f5:ac:63:83:67:01:
        cb:1a:f3:cb:98:95:90:aa:3a:cd:00:2d:b8:c6:10:36:
        02:f3:12:12:82:e8:13:90:1b:90:1e:78:f5:50:22:47:
        53:80:29:aa:b9:6d:d5:6e:ec:80:52:13:f9:d4:f2:0f:
        cf:63:2f:d2:18:8f:7f:c7:7d:91:2e:5b:0a:5a:4f:5f:
        0e:bc:fc:82:02:8f:93:64:34:ad:e5:d8:76:8a:1b:06:
        f3:09:57:30:4d:50:59:2b:ba:c0:be:1d:c0:78:47:fb:
        a0:ec:0f:38:82:0b:9c:49:af:8a:fc:f1:5c:bf:0d:45:
        2e:d7:96:cf:a8:f8:c9:40:0c:6f:81:d3:2d:00:99:e8
    Fingerprint (SHA-256):
        98:51:81:39:85:7E:C1:59:EA:B0:6F:D5:95:5A:D5:AE:87:10:79:3A:D5:E4:C5:B9:83:9E:A9:BB:7A:F2:72:5D
    Fingerprint (SHA1):
        8C:FE:89:DB:E3:C7:DF:09:0A:CC:9C:B6:97:78:1D:46:03:59:58:B0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14301: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14302: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001121 (0x3019dc21)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:35 2017
            Not After : Sun Aug 07 00:13:35 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:a5:96:db:7f:0e:d6:fc:80:00:52:1b:52:3c:bf:06:
                    c9:7a:1c:4c:ef:c3:48:18:bb:f8:f7:44:78:dc:c9:66:
                    14:59:12:d4:45:0e:07:9f:a2:4c:f6:98:31:f3:34:60:
                    5b:00:25:b7:90:38:62:ba:a4:5f:65:34:64:43:15:b0:
                    dc:b1:02:82:f3:7a:03:0d:70:dc:08:9c:8c:16:11:6f:
                    21:21:aa:45:be:3b:c0:f4:16:78:97:29:e3:92:dc:e8:
                    58:0f:f5:d9:40:83:e7:1f:50:82:c6:8a:40:4d:ff:c9:
                    b2:60:34:43:8d:75:9f:dc:58:e6:f9:5e:29:52:dc:ce:
                    f1:96:23:9f:8a:07:1d:a6:23:6c:62:26:0e:f8:de:5c:
                    13:89:8f:87:01:1f:66:34:76:e8:0e:87:ef:c3:09:8c:
                    75:0c:1e:dd:5b:f9:45:db:06:11:c8:cf:f9:9a:7b:44:
                    d2:c8:81:17:60:40:ca:2f:21:70:2a:66:c1:b9:f0:f3:
                    ba:86:39:d0:1f:44:0a:50:99:d4:05:82:50:be:0e:33:
                    eb:b3:f1:7d:e6:85:dc:5f:fb:6a:fa:85:b6:fd:f8:a4:
                    e1:83:94:32:95:9f:7f:0a:62:60:96:79:b1:2c:20:cb:
                    ed:1b:43:6d:88:13:23:be:b7:33:79:d2:74:4e:89:4d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        85:ee:8f:fb:ef:af:f2:f1:13:d9:dd:4c:89:f5:24:4a:
        6e:21:3a:9e:5e:36:bd:62:b3:85:d7:91:f7:77:fb:de:
        df:39:42:bf:a4:07:75:50:62:bf:21:6e:49:28:13:1c:
        6f:5e:bb:9e:9b:e8:55:62:5d:e3:2d:48:8f:cf:91:5f:
        aa:b6:8e:44:ce:32:a5:82:44:a7:57:a0:4c:a2:e1:e7:
        3e:7b:76:5a:f2:9b:8b:cd:16:d0:f0:1b:25:59:9d:b0:
        2b:c7:7e:73:80:a1:0e:11:1a:f7:37:93:f2:5d:ca:c3:
        52:4e:63:ae:b4:09:25:bb:61:c3:23:95:c1:a2:78:b7:
        6d:df:6b:06:b9:c7:f4:86:2a:38:8a:53:9e:55:21:15:
        5c:a6:4b:74:9d:f2:9c:4e:6e:a6:65:5c:34:97:e2:4e:
        a0:9e:15:39:8b:73:d2:ef:a9:6b:eb:f4:5e:dd:17:5f:
        b9:a5:1b:be:46:02:ab:09:8f:56:82:1e:b5:2a:93:c5:
        3e:57:89:9b:6d:71:e1:11:1f:be:ee:85:95:59:c7:76:
        44:6f:a0:20:96:38:e1:3e:3d:31:78:70:1f:59:7f:88:
        24:6c:a5:ed:d5:40:03:f0:e3:57:75:78:97:34:86:fd:
        bc:9e:60:f3:ae:0e:ce:03:4b:e0:c3:19:38:c9:e2:87
    Fingerprint (SHA-256):
        D5:78:38:EE:8D:92:C5:BF:39:BD:C4:56:E5:51:9A:79:4F:C4:C5:BC:98:53:2C:66:89:A0:D9:28:23:D8:06:60
    Fingerprint (SHA1):
        A0:E8:7C:69:5D:9B:EE:85:D7:08:71:52:98:E6:E4:13:2D:6F:0C:DB
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #14303: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14304: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #14305: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001123 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14306: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #14307: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14308: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14309: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 807001124   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14310: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14311: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14312: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14313: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 807001125   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14314: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14315: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #14316: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14317: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 807001126   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14318: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14319: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #14320: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14321: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 807001127   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14322: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14323: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14324: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001123 (0x3019dc23)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:38 2017
            Not After : Sun Aug 07 00:13:38 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:b8:78:0d:ac:7f:d4:b0:73:d1:2f:0b:46:63:f5:75:
                    4b:32:cd:fa:46:ec:6d:36:dc:fd:9a:85:a3:c0:94:41:
                    60:52:b2:73:fa:0b:76:4b:f9:b0:98:c6:04:be:fe:63:
                    16:b8:ad:18:dd:a9:31:36:e1:32:12:dd:02:3b:e8:65:
                    a4:f6:31:ad:b7:88:87:70:71:ad:cf:45:88:be:9a:c1:
                    39:a6:98:48:8a:3f:b9:c5:49:a1:76:52:49:5c:28:bf:
                    a8:f6:d9:9a:b5:c8:07:35:d3:9a:3c:43:7e:ee:f8:11:
                    78:39:12:22:1a:c1:5a:32:8a:de:c5:61:a2:31:7d:03:
                    8b:00:d9:ba:cf:c6:8f:4f:2a:7a:49:b8:9e:5d:ac:d1:
                    c8:de:7f:02:f0:53:00:2e:a3:34:b2:0a:42:bf:78:8c:
                    93:fa:e0:ff:7e:f3:a8:d5:54:70:26:c5:53:ec:fa:c6:
                    ee:eb:42:64:e6:05:c0:2b:1b:ab:ae:b7:86:d6:64:4b:
                    3a:de:29:75:84:8b:f2:2f:46:0b:04:37:7a:b2:e1:0d:
                    85:68:4f:84:2c:87:16:6a:5e:83:41:9d:f6:cc:35:55:
                    11:69:bd:ee:12:c4:de:c3:1c:46:3b:d9:fc:e4:82:0e:
                    6c:31:17:9b:2b:f4:ab:88:4d:b4:de:61:6c:f4:49:5d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9a:25:b4:d1:0c:e0:b5:76:5c:09:1f:69:cb:31:e5:8d:
        71:1d:da:ac:b7:cc:47:6d:4c:33:7d:0c:d1:dd:fa:7a:
        5a:c4:b4:d8:d8:7c:b2:99:16:a7:ca:30:a6:4f:0d:23:
        05:c1:d3:8d:d5:8c:9c:0b:dc:eb:8f:b6:3c:4f:57:f8:
        ff:0b:6c:41:bd:0d:75:02:b7:c1:29:f5:55:b3:47:bd:
        14:f3:20:49:cc:25:e8:e2:14:79:28:13:d2:a6:fc:71:
        78:e4:eb:b1:8e:4c:39:a6:30:1a:82:ed:89:0e:f5:43:
        5d:5b:fa:03:94:de:b8:51:a2:90:3b:91:ff:55:4c:db:
        33:1e:b3:38:52:4d:5a:c1:8e:75:d0:32:ee:24:6c:59:
        7e:cf:88:eb:78:78:23:47:fe:6a:d7:d9:47:93:fa:58:
        48:b9:12:bc:19:e8:b0:cd:f6:76:45:e3:a8:86:b1:11:
        44:81:90:32:3b:29:b5:03:20:12:6d:97:63:c5:9c:93:
        c5:c9:15:4a:16:fd:9b:c9:38:c1:82:c9:83:0a:e5:9f:
        7d:f3:6b:7f:83:cb:21:19:65:91:36:ee:91:ab:3a:c6:
        14:6f:4c:3a:66:d7:dd:6c:2c:7e:b8:14:25:df:bd:92:
        a6:09:73:6e:b5:a0:f9:5c:ea:14:0d:67:d6:c3:cf:71
    Fingerprint (SHA-256):
        2A:3C:A2:86:1F:CA:5E:7A:6A:F4:A3:4E:6D:A2:2A:0A:DA:FE:70:0C:9D:37:2A:BE:BD:02:D0:0D:78:58:9D:5E
    Fingerprint (SHA1):
        84:46:07:3C:E1:50:F5:60:F6:F9:21:4B:74:68:D8:2C:3E:39:CB:40
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14325: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14326: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001124 (0x3019dc24)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:39 2017
            Not After : Sun Aug 07 00:13:39 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:b2:9d:e7:7d:9c:85:a6:78:6b:01:c6:82:0e:ea:4f:
                    49:5f:34:e2:ca:98:8a:0d:e0:53:1d:38:dc:53:37:c6:
                    9c:45:94:73:d9:51:78:b3:56:e6:ae:57:08:b2:cf:12:
                    5e:60:7e:15:19:02:fc:8b:04:a0:24:14:a7:97:f5:c8:
                    8b:4e:a5:ad:12:bc:ba:2d:90:8a:2d:32:cf:ca:96:d1:
                    7e:83:00:ed:e7:99:56:ff:fa:ec:40:b1:a8:9e:cd:3f:
                    79:a5:c2:d3:c3:df:09:d0:ab:e0:42:9d:8e:9e:00:bf:
                    5f:b6:af:8e:8f:5f:87:8b:62:af:af:9f:4d:bc:a5:7e:
                    ca:bf:55:45:3f:95:a0:cd:ac:c7:a1:cf:3e:b2:16:68:
                    c0:2d:7b:2d:e6:73:23:9a:2a:97:6c:8c:9e:13:9b:88:
                    15:0f:c8:52:9f:8e:ee:22:2f:1b:7c:67:71:e4:01:6f:
                    1a:ef:13:4a:7a:d6:81:4b:73:94:1e:b1:9f:02:c8:4a:
                    54:62:46:f7:26:cb:ee:ee:9d:01:b7:fb:9e:90:d5:19:
                    74:c4:c7:a0:c8:4c:bd:ff:be:32:90:93:ef:2f:1e:a1:
                    f0:0b:a0:21:34:c6:98:16:ee:a9:82:a0:7a:ba:e4:0c:
                    47:e8:5d:45:e8:04:d5:87:90:8d:23:e5:b4:0d:76:03
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b6:12:1e:63:3e:6b:fb:18:b9:dc:fe:af:0c:76:37:75:
        00:34:7b:4a:e4:22:d2:9f:8e:bf:ac:92:05:e1:55:44:
        e4:a8:6d:0d:93:8e:3a:99:15:81:6b:cf:8d:47:26:70:
        51:3f:43:53:5d:2c:68:cc:36:26:91:76:2d:6e:4a:22:
        c0:43:52:81:95:56:65:99:07:5b:74:6e:27:0c:9e:a4:
        4b:10:c2:93:11:67:46:58:59:7a:84:f6:ad:33:bf:75:
        c5:5e:cc:eb:f0:de:ef:0f:23:8d:bd:7e:cd:2e:aa:36:
        16:c2:f6:23:dd:15:48:ce:be:9b:62:a1:71:de:46:8b:
        38:bb:f0:56:cc:ca:19:31:3b:e2:25:56:f8:16:c6:2e:
        91:ef:79:cd:ef:e0:08:15:d5:5e:6b:7f:2f:1e:ab:1f:
        f7:3e:8d:5a:a7:0a:d0:93:e1:96:4f:d5:36:d4:e5:ba:
        04:74:c7:64:2d:23:2c:5f:4b:a8:9d:0d:c5:78:08:ab:
        3e:fb:28:bc:64:5a:84:d5:d6:b5:14:f9:2a:9d:d2:16:
        ba:c8:17:ea:8f:6e:0c:64:f3:85:de:5d:79:f9:26:1a:
        42:41:ae:8a:d4:94:d4:8f:4e:c3:ba:e3:1b:db:fa:60:
        21:d5:d9:39:68:2d:ef:e3:49:7d:ba:27:7d:56:57:9e
    Fingerprint (SHA-256):
        47:05:98:D3:FD:DF:B7:9B:73:4C:3D:0E:84:78:6D:AC:8B:17:39:14:2C:26:64:56:13:D0:4B:24:78:1D:A8:43
    Fingerprint (SHA1):
        7D:C0:62:84:EF:BD:70:04:49:63:77:2D:65:22:16:DA:99:1F:5B:ED
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14327: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14328: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001125 (0x3019dc25)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:41 2017
            Not After : Sun Aug 07 00:13:41 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:22:11:52:22:8a:13:61:7c:ed:00:bf:cb:cf:15:69:
                    c5:15:4c:15:1d:bf:17:3e:8c:58:e0:80:5c:c7:1b:5d:
                    15:46:15:71:6f:44:0a:48:c7:0f:c7:a8:fc:9b:65:e8:
                    e6:1c:87:3e:b0:bd:d8:a5:80:c7:a1:4a:9b:59:fa:4a:
                    90:5d:f8:8b:f2:0f:19:0a:83:12:bf:27:9b:dd:23:ec:
                    6d:f1:86:88:da:bb:74:9f:ac:4c:07:b5:93:8b:8e:e4:
                    0e:7f:e8:ce:b3:02:6b:6a:83:b6:39:6c:c7:52:15:14:
                    0b:df:07:a3:6d:a8:b4:cc:a8:72:a4:b2:89:98:41:75:
                    c5:9f:54:31:7d:f5:ab:eb:78:90:b5:e8:3a:a0:a1:b1:
                    fe:cf:82:05:68:65:88:32:2d:56:28:fe:eb:45:b7:ff:
                    37:6c:0b:d7:2e:cd:c3:7c:07:cf:5b:0d:e5:f9:d9:b1:
                    f8:9e:37:75:aa:f1:30:68:48:3e:54:3f:68:31:1a:65:
                    2a:0d:13:de:5f:3b:9e:71:32:02:bb:a8:b8:48:08:01:
                    c6:53:af:f4:8c:41:9b:09:2e:55:d8:39:53:25:20:2e:
                    15:b1:37:fa:99:8e:e1:b9:6e:1b:c5:36:d4:4f:8c:41:
                    44:f7:1d:41:d7:8c:83:cd:67:ad:81:7a:cd:ef:4c:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        70:d1:44:06:b4:50:c1:28:7a:16:aa:0d:a7:d7:f7:d5:
        cb:49:98:45:89:e4:32:d6:0d:8b:b7:d7:94:a7:b2:43:
        30:82:9b:25:4b:9a:7c:eb:7d:2e:38:eb:42:d0:03:94:
        04:63:d3:b7:06:c0:7d:a9:74:6a:1d:56:10:42:56:74:
        47:f0:35:9e:6c:07:5a:c1:82:09:85:d3:49:04:2d:a4:
        55:ab:54:2c:29:6d:57:a8:cf:41:81:55:0f:b1:aa:36:
        58:9f:b5:89:bc:5f:75:d5:b8:46:9c:b2:27:36:29:67:
        60:83:06:b3:10:54:7e:d5:9c:2c:0f:37:a6:c6:97:58:
        90:41:7a:9b:26:5c:90:75:1a:f2:ca:01:f0:0d:17:55:
        1d:16:fe:ef:af:dc:cf:5e:6d:18:70:06:6a:fb:fe:ba:
        b4:5f:c6:8e:bc:2a:83:d3:1c:0e:43:b5:4c:09:52:e5:
        39:57:f3:07:03:92:0b:05:1d:78:8e:1b:2e:1c:92:cf:
        e4:3a:b2:c2:c9:55:84:3e:e3:c2:f5:14:35:ce:b0:2f:
        9e:fc:fd:33:94:6c:8a:00:fa:ec:b1:31:60:20:2e:36:
        41:3a:37:27:06:22:6b:74:7f:f4:da:f2:69:a7:38:41:
        75:ec:05:96:39:99:14:4c:04:03:21:fa:0e:ac:91:40
    Fingerprint (SHA-256):
        EF:AA:8C:8D:C7:63:86:4A:53:4B:59:68:09:F2:DF:99:C0:10:88:CA:0F:22:AD:A4:59:75:21:D9:EC:C0:C8:8E
    Fingerprint (SHA1):
        8C:48:EE:90:3B:48:74:5D:C6:5E:BC:AB:7C:1D:43:5B:02:36:9C:B8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14329: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14330: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #14331: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #14332: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #14333: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001123 (0x3019dc23)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:38 2017
            Not After : Sun Aug 07 00:13:38 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:b8:78:0d:ac:7f:d4:b0:73:d1:2f:0b:46:63:f5:75:
                    4b:32:cd:fa:46:ec:6d:36:dc:fd:9a:85:a3:c0:94:41:
                    60:52:b2:73:fa:0b:76:4b:f9:b0:98:c6:04:be:fe:63:
                    16:b8:ad:18:dd:a9:31:36:e1:32:12:dd:02:3b:e8:65:
                    a4:f6:31:ad:b7:88:87:70:71:ad:cf:45:88:be:9a:c1:
                    39:a6:98:48:8a:3f:b9:c5:49:a1:76:52:49:5c:28:bf:
                    a8:f6:d9:9a:b5:c8:07:35:d3:9a:3c:43:7e:ee:f8:11:
                    78:39:12:22:1a:c1:5a:32:8a:de:c5:61:a2:31:7d:03:
                    8b:00:d9:ba:cf:c6:8f:4f:2a:7a:49:b8:9e:5d:ac:d1:
                    c8:de:7f:02:f0:53:00:2e:a3:34:b2:0a:42:bf:78:8c:
                    93:fa:e0:ff:7e:f3:a8:d5:54:70:26:c5:53:ec:fa:c6:
                    ee:eb:42:64:e6:05:c0:2b:1b:ab:ae:b7:86:d6:64:4b:
                    3a:de:29:75:84:8b:f2:2f:46:0b:04:37:7a:b2:e1:0d:
                    85:68:4f:84:2c:87:16:6a:5e:83:41:9d:f6:cc:35:55:
                    11:69:bd:ee:12:c4:de:c3:1c:46:3b:d9:fc:e4:82:0e:
                    6c:31:17:9b:2b:f4:ab:88:4d:b4:de:61:6c:f4:49:5d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9a:25:b4:d1:0c:e0:b5:76:5c:09:1f:69:cb:31:e5:8d:
        71:1d:da:ac:b7:cc:47:6d:4c:33:7d:0c:d1:dd:fa:7a:
        5a:c4:b4:d8:d8:7c:b2:99:16:a7:ca:30:a6:4f:0d:23:
        05:c1:d3:8d:d5:8c:9c:0b:dc:eb:8f:b6:3c:4f:57:f8:
        ff:0b:6c:41:bd:0d:75:02:b7:c1:29:f5:55:b3:47:bd:
        14:f3:20:49:cc:25:e8:e2:14:79:28:13:d2:a6:fc:71:
        78:e4:eb:b1:8e:4c:39:a6:30:1a:82:ed:89:0e:f5:43:
        5d:5b:fa:03:94:de:b8:51:a2:90:3b:91:ff:55:4c:db:
        33:1e:b3:38:52:4d:5a:c1:8e:75:d0:32:ee:24:6c:59:
        7e:cf:88:eb:78:78:23:47:fe:6a:d7:d9:47:93:fa:58:
        48:b9:12:bc:19:e8:b0:cd:f6:76:45:e3:a8:86:b1:11:
        44:81:90:32:3b:29:b5:03:20:12:6d:97:63:c5:9c:93:
        c5:c9:15:4a:16:fd:9b:c9:38:c1:82:c9:83:0a:e5:9f:
        7d:f3:6b:7f:83:cb:21:19:65:91:36:ee:91:ab:3a:c6:
        14:6f:4c:3a:66:d7:dd:6c:2c:7e:b8:14:25:df:bd:92:
        a6:09:73:6e:b5:a0:f9:5c:ea:14:0d:67:d6:c3:cf:71
    Fingerprint (SHA-256):
        2A:3C:A2:86:1F:CA:5E:7A:6A:F4:A3:4E:6D:A2:2A:0A:DA:FE:70:0C:9D:37:2A:BE:BD:02:D0:0D:78:58:9D:5E
    Fingerprint (SHA1):
        84:46:07:3C:E1:50:F5:60:F6:F9:21:4B:74:68:D8:2C:3E:39:CB:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14334: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14335: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001124 (0x3019dc24)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:39 2017
            Not After : Sun Aug 07 00:13:39 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:b2:9d:e7:7d:9c:85:a6:78:6b:01:c6:82:0e:ea:4f:
                    49:5f:34:e2:ca:98:8a:0d:e0:53:1d:38:dc:53:37:c6:
                    9c:45:94:73:d9:51:78:b3:56:e6:ae:57:08:b2:cf:12:
                    5e:60:7e:15:19:02:fc:8b:04:a0:24:14:a7:97:f5:c8:
                    8b:4e:a5:ad:12:bc:ba:2d:90:8a:2d:32:cf:ca:96:d1:
                    7e:83:00:ed:e7:99:56:ff:fa:ec:40:b1:a8:9e:cd:3f:
                    79:a5:c2:d3:c3:df:09:d0:ab:e0:42:9d:8e:9e:00:bf:
                    5f:b6:af:8e:8f:5f:87:8b:62:af:af:9f:4d:bc:a5:7e:
                    ca:bf:55:45:3f:95:a0:cd:ac:c7:a1:cf:3e:b2:16:68:
                    c0:2d:7b:2d:e6:73:23:9a:2a:97:6c:8c:9e:13:9b:88:
                    15:0f:c8:52:9f:8e:ee:22:2f:1b:7c:67:71:e4:01:6f:
                    1a:ef:13:4a:7a:d6:81:4b:73:94:1e:b1:9f:02:c8:4a:
                    54:62:46:f7:26:cb:ee:ee:9d:01:b7:fb:9e:90:d5:19:
                    74:c4:c7:a0:c8:4c:bd:ff:be:32:90:93:ef:2f:1e:a1:
                    f0:0b:a0:21:34:c6:98:16:ee:a9:82:a0:7a:ba:e4:0c:
                    47:e8:5d:45:e8:04:d5:87:90:8d:23:e5:b4:0d:76:03
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b6:12:1e:63:3e:6b:fb:18:b9:dc:fe:af:0c:76:37:75:
        00:34:7b:4a:e4:22:d2:9f:8e:bf:ac:92:05:e1:55:44:
        e4:a8:6d:0d:93:8e:3a:99:15:81:6b:cf:8d:47:26:70:
        51:3f:43:53:5d:2c:68:cc:36:26:91:76:2d:6e:4a:22:
        c0:43:52:81:95:56:65:99:07:5b:74:6e:27:0c:9e:a4:
        4b:10:c2:93:11:67:46:58:59:7a:84:f6:ad:33:bf:75:
        c5:5e:cc:eb:f0:de:ef:0f:23:8d:bd:7e:cd:2e:aa:36:
        16:c2:f6:23:dd:15:48:ce:be:9b:62:a1:71:de:46:8b:
        38:bb:f0:56:cc:ca:19:31:3b:e2:25:56:f8:16:c6:2e:
        91:ef:79:cd:ef:e0:08:15:d5:5e:6b:7f:2f:1e:ab:1f:
        f7:3e:8d:5a:a7:0a:d0:93:e1:96:4f:d5:36:d4:e5:ba:
        04:74:c7:64:2d:23:2c:5f:4b:a8:9d:0d:c5:78:08:ab:
        3e:fb:28:bc:64:5a:84:d5:d6:b5:14:f9:2a:9d:d2:16:
        ba:c8:17:ea:8f:6e:0c:64:f3:85:de:5d:79:f9:26:1a:
        42:41:ae:8a:d4:94:d4:8f:4e:c3:ba:e3:1b:db:fa:60:
        21:d5:d9:39:68:2d:ef:e3:49:7d:ba:27:7d:56:57:9e
    Fingerprint (SHA-256):
        47:05:98:D3:FD:DF:B7:9B:73:4C:3D:0E:84:78:6D:AC:8B:17:39:14:2C:26:64:56:13:D0:4B:24:78:1D:A8:43
    Fingerprint (SHA1):
        7D:C0:62:84:EF:BD:70:04:49:63:77:2D:65:22:16:DA:99:1F:5B:ED
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14336: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14337: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001125 (0x3019dc25)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:41 2017
            Not After : Sun Aug 07 00:13:41 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:22:11:52:22:8a:13:61:7c:ed:00:bf:cb:cf:15:69:
                    c5:15:4c:15:1d:bf:17:3e:8c:58:e0:80:5c:c7:1b:5d:
                    15:46:15:71:6f:44:0a:48:c7:0f:c7:a8:fc:9b:65:e8:
                    e6:1c:87:3e:b0:bd:d8:a5:80:c7:a1:4a:9b:59:fa:4a:
                    90:5d:f8:8b:f2:0f:19:0a:83:12:bf:27:9b:dd:23:ec:
                    6d:f1:86:88:da:bb:74:9f:ac:4c:07:b5:93:8b:8e:e4:
                    0e:7f:e8:ce:b3:02:6b:6a:83:b6:39:6c:c7:52:15:14:
                    0b:df:07:a3:6d:a8:b4:cc:a8:72:a4:b2:89:98:41:75:
                    c5:9f:54:31:7d:f5:ab:eb:78:90:b5:e8:3a:a0:a1:b1:
                    fe:cf:82:05:68:65:88:32:2d:56:28:fe:eb:45:b7:ff:
                    37:6c:0b:d7:2e:cd:c3:7c:07:cf:5b:0d:e5:f9:d9:b1:
                    f8:9e:37:75:aa:f1:30:68:48:3e:54:3f:68:31:1a:65:
                    2a:0d:13:de:5f:3b:9e:71:32:02:bb:a8:b8:48:08:01:
                    c6:53:af:f4:8c:41:9b:09:2e:55:d8:39:53:25:20:2e:
                    15:b1:37:fa:99:8e:e1:b9:6e:1b:c5:36:d4:4f:8c:41:
                    44:f7:1d:41:d7:8c:83:cd:67:ad:81:7a:cd:ef:4c:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        70:d1:44:06:b4:50:c1:28:7a:16:aa:0d:a7:d7:f7:d5:
        cb:49:98:45:89:e4:32:d6:0d:8b:b7:d7:94:a7:b2:43:
        30:82:9b:25:4b:9a:7c:eb:7d:2e:38:eb:42:d0:03:94:
        04:63:d3:b7:06:c0:7d:a9:74:6a:1d:56:10:42:56:74:
        47:f0:35:9e:6c:07:5a:c1:82:09:85:d3:49:04:2d:a4:
        55:ab:54:2c:29:6d:57:a8:cf:41:81:55:0f:b1:aa:36:
        58:9f:b5:89:bc:5f:75:d5:b8:46:9c:b2:27:36:29:67:
        60:83:06:b3:10:54:7e:d5:9c:2c:0f:37:a6:c6:97:58:
        90:41:7a:9b:26:5c:90:75:1a:f2:ca:01:f0:0d:17:55:
        1d:16:fe:ef:af:dc:cf:5e:6d:18:70:06:6a:fb:fe:ba:
        b4:5f:c6:8e:bc:2a:83:d3:1c:0e:43:b5:4c:09:52:e5:
        39:57:f3:07:03:92:0b:05:1d:78:8e:1b:2e:1c:92:cf:
        e4:3a:b2:c2:c9:55:84:3e:e3:c2:f5:14:35:ce:b0:2f:
        9e:fc:fd:33:94:6c:8a:00:fa:ec:b1:31:60:20:2e:36:
        41:3a:37:27:06:22:6b:74:7f:f4:da:f2:69:a7:38:41:
        75:ec:05:96:39:99:14:4c:04:03:21:fa:0e:ac:91:40
    Fingerprint (SHA-256):
        EF:AA:8C:8D:C7:63:86:4A:53:4B:59:68:09:F2:DF:99:C0:10:88:CA:0F:22:AD:A4:59:75:21:D9:EC:C0:C8:8E
    Fingerprint (SHA1):
        8C:48:EE:90:3B:48:74:5D:C6:5E:BC:AB:7C:1D:43:5B:02:36:9C:B8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14338: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14339: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001123 (0x3019dc23)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:38 2017
            Not After : Sun Aug 07 00:13:38 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:b8:78:0d:ac:7f:d4:b0:73:d1:2f:0b:46:63:f5:75:
                    4b:32:cd:fa:46:ec:6d:36:dc:fd:9a:85:a3:c0:94:41:
                    60:52:b2:73:fa:0b:76:4b:f9:b0:98:c6:04:be:fe:63:
                    16:b8:ad:18:dd:a9:31:36:e1:32:12:dd:02:3b:e8:65:
                    a4:f6:31:ad:b7:88:87:70:71:ad:cf:45:88:be:9a:c1:
                    39:a6:98:48:8a:3f:b9:c5:49:a1:76:52:49:5c:28:bf:
                    a8:f6:d9:9a:b5:c8:07:35:d3:9a:3c:43:7e:ee:f8:11:
                    78:39:12:22:1a:c1:5a:32:8a:de:c5:61:a2:31:7d:03:
                    8b:00:d9:ba:cf:c6:8f:4f:2a:7a:49:b8:9e:5d:ac:d1:
                    c8:de:7f:02:f0:53:00:2e:a3:34:b2:0a:42:bf:78:8c:
                    93:fa:e0:ff:7e:f3:a8:d5:54:70:26:c5:53:ec:fa:c6:
                    ee:eb:42:64:e6:05:c0:2b:1b:ab:ae:b7:86:d6:64:4b:
                    3a:de:29:75:84:8b:f2:2f:46:0b:04:37:7a:b2:e1:0d:
                    85:68:4f:84:2c:87:16:6a:5e:83:41:9d:f6:cc:35:55:
                    11:69:bd:ee:12:c4:de:c3:1c:46:3b:d9:fc:e4:82:0e:
                    6c:31:17:9b:2b:f4:ab:88:4d:b4:de:61:6c:f4:49:5d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9a:25:b4:d1:0c:e0:b5:76:5c:09:1f:69:cb:31:e5:8d:
        71:1d:da:ac:b7:cc:47:6d:4c:33:7d:0c:d1:dd:fa:7a:
        5a:c4:b4:d8:d8:7c:b2:99:16:a7:ca:30:a6:4f:0d:23:
        05:c1:d3:8d:d5:8c:9c:0b:dc:eb:8f:b6:3c:4f:57:f8:
        ff:0b:6c:41:bd:0d:75:02:b7:c1:29:f5:55:b3:47:bd:
        14:f3:20:49:cc:25:e8:e2:14:79:28:13:d2:a6:fc:71:
        78:e4:eb:b1:8e:4c:39:a6:30:1a:82:ed:89:0e:f5:43:
        5d:5b:fa:03:94:de:b8:51:a2:90:3b:91:ff:55:4c:db:
        33:1e:b3:38:52:4d:5a:c1:8e:75:d0:32:ee:24:6c:59:
        7e:cf:88:eb:78:78:23:47:fe:6a:d7:d9:47:93:fa:58:
        48:b9:12:bc:19:e8:b0:cd:f6:76:45:e3:a8:86:b1:11:
        44:81:90:32:3b:29:b5:03:20:12:6d:97:63:c5:9c:93:
        c5:c9:15:4a:16:fd:9b:c9:38:c1:82:c9:83:0a:e5:9f:
        7d:f3:6b:7f:83:cb:21:19:65:91:36:ee:91:ab:3a:c6:
        14:6f:4c:3a:66:d7:dd:6c:2c:7e:b8:14:25:df:bd:92:
        a6:09:73:6e:b5:a0:f9:5c:ea:14:0d:67:d6:c3:cf:71
    Fingerprint (SHA-256):
        2A:3C:A2:86:1F:CA:5E:7A:6A:F4:A3:4E:6D:A2:2A:0A:DA:FE:70:0C:9D:37:2A:BE:BD:02:D0:0D:78:58:9D:5E
    Fingerprint (SHA1):
        84:46:07:3C:E1:50:F5:60:F6:F9:21:4B:74:68:D8:2C:3E:39:CB:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14340: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001123 (0x3019dc23)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:38 2017
            Not After : Sun Aug 07 00:13:38 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:b8:78:0d:ac:7f:d4:b0:73:d1:2f:0b:46:63:f5:75:
                    4b:32:cd:fa:46:ec:6d:36:dc:fd:9a:85:a3:c0:94:41:
                    60:52:b2:73:fa:0b:76:4b:f9:b0:98:c6:04:be:fe:63:
                    16:b8:ad:18:dd:a9:31:36:e1:32:12:dd:02:3b:e8:65:
                    a4:f6:31:ad:b7:88:87:70:71:ad:cf:45:88:be:9a:c1:
                    39:a6:98:48:8a:3f:b9:c5:49:a1:76:52:49:5c:28:bf:
                    a8:f6:d9:9a:b5:c8:07:35:d3:9a:3c:43:7e:ee:f8:11:
                    78:39:12:22:1a:c1:5a:32:8a:de:c5:61:a2:31:7d:03:
                    8b:00:d9:ba:cf:c6:8f:4f:2a:7a:49:b8:9e:5d:ac:d1:
                    c8:de:7f:02:f0:53:00:2e:a3:34:b2:0a:42:bf:78:8c:
                    93:fa:e0:ff:7e:f3:a8:d5:54:70:26:c5:53:ec:fa:c6:
                    ee:eb:42:64:e6:05:c0:2b:1b:ab:ae:b7:86:d6:64:4b:
                    3a:de:29:75:84:8b:f2:2f:46:0b:04:37:7a:b2:e1:0d:
                    85:68:4f:84:2c:87:16:6a:5e:83:41:9d:f6:cc:35:55:
                    11:69:bd:ee:12:c4:de:c3:1c:46:3b:d9:fc:e4:82:0e:
                    6c:31:17:9b:2b:f4:ab:88:4d:b4:de:61:6c:f4:49:5d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9a:25:b4:d1:0c:e0:b5:76:5c:09:1f:69:cb:31:e5:8d:
        71:1d:da:ac:b7:cc:47:6d:4c:33:7d:0c:d1:dd:fa:7a:
        5a:c4:b4:d8:d8:7c:b2:99:16:a7:ca:30:a6:4f:0d:23:
        05:c1:d3:8d:d5:8c:9c:0b:dc:eb:8f:b6:3c:4f:57:f8:
        ff:0b:6c:41:bd:0d:75:02:b7:c1:29:f5:55:b3:47:bd:
        14:f3:20:49:cc:25:e8:e2:14:79:28:13:d2:a6:fc:71:
        78:e4:eb:b1:8e:4c:39:a6:30:1a:82:ed:89:0e:f5:43:
        5d:5b:fa:03:94:de:b8:51:a2:90:3b:91:ff:55:4c:db:
        33:1e:b3:38:52:4d:5a:c1:8e:75:d0:32:ee:24:6c:59:
        7e:cf:88:eb:78:78:23:47:fe:6a:d7:d9:47:93:fa:58:
        48:b9:12:bc:19:e8:b0:cd:f6:76:45:e3:a8:86:b1:11:
        44:81:90:32:3b:29:b5:03:20:12:6d:97:63:c5:9c:93:
        c5:c9:15:4a:16:fd:9b:c9:38:c1:82:c9:83:0a:e5:9f:
        7d:f3:6b:7f:83:cb:21:19:65:91:36:ee:91:ab:3a:c6:
        14:6f:4c:3a:66:d7:dd:6c:2c:7e:b8:14:25:df:bd:92:
        a6:09:73:6e:b5:a0:f9:5c:ea:14:0d:67:d6:c3:cf:71
    Fingerprint (SHA-256):
        2A:3C:A2:86:1F:CA:5E:7A:6A:F4:A3:4E:6D:A2:2A:0A:DA:FE:70:0C:9D:37:2A:BE:BD:02:D0:0D:78:58:9D:5E
    Fingerprint (SHA1):
        84:46:07:3C:E1:50:F5:60:F6:F9:21:4B:74:68:D8:2C:3E:39:CB:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14341: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001124 (0x3019dc24)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:39 2017
            Not After : Sun Aug 07 00:13:39 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:b2:9d:e7:7d:9c:85:a6:78:6b:01:c6:82:0e:ea:4f:
                    49:5f:34:e2:ca:98:8a:0d:e0:53:1d:38:dc:53:37:c6:
                    9c:45:94:73:d9:51:78:b3:56:e6:ae:57:08:b2:cf:12:
                    5e:60:7e:15:19:02:fc:8b:04:a0:24:14:a7:97:f5:c8:
                    8b:4e:a5:ad:12:bc:ba:2d:90:8a:2d:32:cf:ca:96:d1:
                    7e:83:00:ed:e7:99:56:ff:fa:ec:40:b1:a8:9e:cd:3f:
                    79:a5:c2:d3:c3:df:09:d0:ab:e0:42:9d:8e:9e:00:bf:
                    5f:b6:af:8e:8f:5f:87:8b:62:af:af:9f:4d:bc:a5:7e:
                    ca:bf:55:45:3f:95:a0:cd:ac:c7:a1:cf:3e:b2:16:68:
                    c0:2d:7b:2d:e6:73:23:9a:2a:97:6c:8c:9e:13:9b:88:
                    15:0f:c8:52:9f:8e:ee:22:2f:1b:7c:67:71:e4:01:6f:
                    1a:ef:13:4a:7a:d6:81:4b:73:94:1e:b1:9f:02:c8:4a:
                    54:62:46:f7:26:cb:ee:ee:9d:01:b7:fb:9e:90:d5:19:
                    74:c4:c7:a0:c8:4c:bd:ff:be:32:90:93:ef:2f:1e:a1:
                    f0:0b:a0:21:34:c6:98:16:ee:a9:82:a0:7a:ba:e4:0c:
                    47:e8:5d:45:e8:04:d5:87:90:8d:23:e5:b4:0d:76:03
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b6:12:1e:63:3e:6b:fb:18:b9:dc:fe:af:0c:76:37:75:
        00:34:7b:4a:e4:22:d2:9f:8e:bf:ac:92:05:e1:55:44:
        e4:a8:6d:0d:93:8e:3a:99:15:81:6b:cf:8d:47:26:70:
        51:3f:43:53:5d:2c:68:cc:36:26:91:76:2d:6e:4a:22:
        c0:43:52:81:95:56:65:99:07:5b:74:6e:27:0c:9e:a4:
        4b:10:c2:93:11:67:46:58:59:7a:84:f6:ad:33:bf:75:
        c5:5e:cc:eb:f0:de:ef:0f:23:8d:bd:7e:cd:2e:aa:36:
        16:c2:f6:23:dd:15:48:ce:be:9b:62:a1:71:de:46:8b:
        38:bb:f0:56:cc:ca:19:31:3b:e2:25:56:f8:16:c6:2e:
        91:ef:79:cd:ef:e0:08:15:d5:5e:6b:7f:2f:1e:ab:1f:
        f7:3e:8d:5a:a7:0a:d0:93:e1:96:4f:d5:36:d4:e5:ba:
        04:74:c7:64:2d:23:2c:5f:4b:a8:9d:0d:c5:78:08:ab:
        3e:fb:28:bc:64:5a:84:d5:d6:b5:14:f9:2a:9d:d2:16:
        ba:c8:17:ea:8f:6e:0c:64:f3:85:de:5d:79:f9:26:1a:
        42:41:ae:8a:d4:94:d4:8f:4e:c3:ba:e3:1b:db:fa:60:
        21:d5:d9:39:68:2d:ef:e3:49:7d:ba:27:7d:56:57:9e
    Fingerprint (SHA-256):
        47:05:98:D3:FD:DF:B7:9B:73:4C:3D:0E:84:78:6D:AC:8B:17:39:14:2C:26:64:56:13:D0:4B:24:78:1D:A8:43
    Fingerprint (SHA1):
        7D:C0:62:84:EF:BD:70:04:49:63:77:2D:65:22:16:DA:99:1F:5B:ED
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14342: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001124 (0x3019dc24)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:39 2017
            Not After : Sun Aug 07 00:13:39 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:b2:9d:e7:7d:9c:85:a6:78:6b:01:c6:82:0e:ea:4f:
                    49:5f:34:e2:ca:98:8a:0d:e0:53:1d:38:dc:53:37:c6:
                    9c:45:94:73:d9:51:78:b3:56:e6:ae:57:08:b2:cf:12:
                    5e:60:7e:15:19:02:fc:8b:04:a0:24:14:a7:97:f5:c8:
                    8b:4e:a5:ad:12:bc:ba:2d:90:8a:2d:32:cf:ca:96:d1:
                    7e:83:00:ed:e7:99:56:ff:fa:ec:40:b1:a8:9e:cd:3f:
                    79:a5:c2:d3:c3:df:09:d0:ab:e0:42:9d:8e:9e:00:bf:
                    5f:b6:af:8e:8f:5f:87:8b:62:af:af:9f:4d:bc:a5:7e:
                    ca:bf:55:45:3f:95:a0:cd:ac:c7:a1:cf:3e:b2:16:68:
                    c0:2d:7b:2d:e6:73:23:9a:2a:97:6c:8c:9e:13:9b:88:
                    15:0f:c8:52:9f:8e:ee:22:2f:1b:7c:67:71:e4:01:6f:
                    1a:ef:13:4a:7a:d6:81:4b:73:94:1e:b1:9f:02:c8:4a:
                    54:62:46:f7:26:cb:ee:ee:9d:01:b7:fb:9e:90:d5:19:
                    74:c4:c7:a0:c8:4c:bd:ff:be:32:90:93:ef:2f:1e:a1:
                    f0:0b:a0:21:34:c6:98:16:ee:a9:82:a0:7a:ba:e4:0c:
                    47:e8:5d:45:e8:04:d5:87:90:8d:23:e5:b4:0d:76:03
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b6:12:1e:63:3e:6b:fb:18:b9:dc:fe:af:0c:76:37:75:
        00:34:7b:4a:e4:22:d2:9f:8e:bf:ac:92:05:e1:55:44:
        e4:a8:6d:0d:93:8e:3a:99:15:81:6b:cf:8d:47:26:70:
        51:3f:43:53:5d:2c:68:cc:36:26:91:76:2d:6e:4a:22:
        c0:43:52:81:95:56:65:99:07:5b:74:6e:27:0c:9e:a4:
        4b:10:c2:93:11:67:46:58:59:7a:84:f6:ad:33:bf:75:
        c5:5e:cc:eb:f0:de:ef:0f:23:8d:bd:7e:cd:2e:aa:36:
        16:c2:f6:23:dd:15:48:ce:be:9b:62:a1:71:de:46:8b:
        38:bb:f0:56:cc:ca:19:31:3b:e2:25:56:f8:16:c6:2e:
        91:ef:79:cd:ef:e0:08:15:d5:5e:6b:7f:2f:1e:ab:1f:
        f7:3e:8d:5a:a7:0a:d0:93:e1:96:4f:d5:36:d4:e5:ba:
        04:74:c7:64:2d:23:2c:5f:4b:a8:9d:0d:c5:78:08:ab:
        3e:fb:28:bc:64:5a:84:d5:d6:b5:14:f9:2a:9d:d2:16:
        ba:c8:17:ea:8f:6e:0c:64:f3:85:de:5d:79:f9:26:1a:
        42:41:ae:8a:d4:94:d4:8f:4e:c3:ba:e3:1b:db:fa:60:
        21:d5:d9:39:68:2d:ef:e3:49:7d:ba:27:7d:56:57:9e
    Fingerprint (SHA-256):
        47:05:98:D3:FD:DF:B7:9B:73:4C:3D:0E:84:78:6D:AC:8B:17:39:14:2C:26:64:56:13:D0:4B:24:78:1D:A8:43
    Fingerprint (SHA1):
        7D:C0:62:84:EF:BD:70:04:49:63:77:2D:65:22:16:DA:99:1F:5B:ED
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14343: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001125 (0x3019dc25)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:41 2017
            Not After : Sun Aug 07 00:13:41 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:22:11:52:22:8a:13:61:7c:ed:00:bf:cb:cf:15:69:
                    c5:15:4c:15:1d:bf:17:3e:8c:58:e0:80:5c:c7:1b:5d:
                    15:46:15:71:6f:44:0a:48:c7:0f:c7:a8:fc:9b:65:e8:
                    e6:1c:87:3e:b0:bd:d8:a5:80:c7:a1:4a:9b:59:fa:4a:
                    90:5d:f8:8b:f2:0f:19:0a:83:12:bf:27:9b:dd:23:ec:
                    6d:f1:86:88:da:bb:74:9f:ac:4c:07:b5:93:8b:8e:e4:
                    0e:7f:e8:ce:b3:02:6b:6a:83:b6:39:6c:c7:52:15:14:
                    0b:df:07:a3:6d:a8:b4:cc:a8:72:a4:b2:89:98:41:75:
                    c5:9f:54:31:7d:f5:ab:eb:78:90:b5:e8:3a:a0:a1:b1:
                    fe:cf:82:05:68:65:88:32:2d:56:28:fe:eb:45:b7:ff:
                    37:6c:0b:d7:2e:cd:c3:7c:07:cf:5b:0d:e5:f9:d9:b1:
                    f8:9e:37:75:aa:f1:30:68:48:3e:54:3f:68:31:1a:65:
                    2a:0d:13:de:5f:3b:9e:71:32:02:bb:a8:b8:48:08:01:
                    c6:53:af:f4:8c:41:9b:09:2e:55:d8:39:53:25:20:2e:
                    15:b1:37:fa:99:8e:e1:b9:6e:1b:c5:36:d4:4f:8c:41:
                    44:f7:1d:41:d7:8c:83:cd:67:ad:81:7a:cd:ef:4c:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        70:d1:44:06:b4:50:c1:28:7a:16:aa:0d:a7:d7:f7:d5:
        cb:49:98:45:89:e4:32:d6:0d:8b:b7:d7:94:a7:b2:43:
        30:82:9b:25:4b:9a:7c:eb:7d:2e:38:eb:42:d0:03:94:
        04:63:d3:b7:06:c0:7d:a9:74:6a:1d:56:10:42:56:74:
        47:f0:35:9e:6c:07:5a:c1:82:09:85:d3:49:04:2d:a4:
        55:ab:54:2c:29:6d:57:a8:cf:41:81:55:0f:b1:aa:36:
        58:9f:b5:89:bc:5f:75:d5:b8:46:9c:b2:27:36:29:67:
        60:83:06:b3:10:54:7e:d5:9c:2c:0f:37:a6:c6:97:58:
        90:41:7a:9b:26:5c:90:75:1a:f2:ca:01:f0:0d:17:55:
        1d:16:fe:ef:af:dc:cf:5e:6d:18:70:06:6a:fb:fe:ba:
        b4:5f:c6:8e:bc:2a:83:d3:1c:0e:43:b5:4c:09:52:e5:
        39:57:f3:07:03:92:0b:05:1d:78:8e:1b:2e:1c:92:cf:
        e4:3a:b2:c2:c9:55:84:3e:e3:c2:f5:14:35:ce:b0:2f:
        9e:fc:fd:33:94:6c:8a:00:fa:ec:b1:31:60:20:2e:36:
        41:3a:37:27:06:22:6b:74:7f:f4:da:f2:69:a7:38:41:
        75:ec:05:96:39:99:14:4c:04:03:21:fa:0e:ac:91:40
    Fingerprint (SHA-256):
        EF:AA:8C:8D:C7:63:86:4A:53:4B:59:68:09:F2:DF:99:C0:10:88:CA:0F:22:AD:A4:59:75:21:D9:EC:C0:C8:8E
    Fingerprint (SHA1):
        8C:48:EE:90:3B:48:74:5D:C6:5E:BC:AB:7C:1D:43:5B:02:36:9C:B8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14344: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001125 (0x3019dc25)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:41 2017
            Not After : Sun Aug 07 00:13:41 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:22:11:52:22:8a:13:61:7c:ed:00:bf:cb:cf:15:69:
                    c5:15:4c:15:1d:bf:17:3e:8c:58:e0:80:5c:c7:1b:5d:
                    15:46:15:71:6f:44:0a:48:c7:0f:c7:a8:fc:9b:65:e8:
                    e6:1c:87:3e:b0:bd:d8:a5:80:c7:a1:4a:9b:59:fa:4a:
                    90:5d:f8:8b:f2:0f:19:0a:83:12:bf:27:9b:dd:23:ec:
                    6d:f1:86:88:da:bb:74:9f:ac:4c:07:b5:93:8b:8e:e4:
                    0e:7f:e8:ce:b3:02:6b:6a:83:b6:39:6c:c7:52:15:14:
                    0b:df:07:a3:6d:a8:b4:cc:a8:72:a4:b2:89:98:41:75:
                    c5:9f:54:31:7d:f5:ab:eb:78:90:b5:e8:3a:a0:a1:b1:
                    fe:cf:82:05:68:65:88:32:2d:56:28:fe:eb:45:b7:ff:
                    37:6c:0b:d7:2e:cd:c3:7c:07:cf:5b:0d:e5:f9:d9:b1:
                    f8:9e:37:75:aa:f1:30:68:48:3e:54:3f:68:31:1a:65:
                    2a:0d:13:de:5f:3b:9e:71:32:02:bb:a8:b8:48:08:01:
                    c6:53:af:f4:8c:41:9b:09:2e:55:d8:39:53:25:20:2e:
                    15:b1:37:fa:99:8e:e1:b9:6e:1b:c5:36:d4:4f:8c:41:
                    44:f7:1d:41:d7:8c:83:cd:67:ad:81:7a:cd:ef:4c:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        70:d1:44:06:b4:50:c1:28:7a:16:aa:0d:a7:d7:f7:d5:
        cb:49:98:45:89:e4:32:d6:0d:8b:b7:d7:94:a7:b2:43:
        30:82:9b:25:4b:9a:7c:eb:7d:2e:38:eb:42:d0:03:94:
        04:63:d3:b7:06:c0:7d:a9:74:6a:1d:56:10:42:56:74:
        47:f0:35:9e:6c:07:5a:c1:82:09:85:d3:49:04:2d:a4:
        55:ab:54:2c:29:6d:57:a8:cf:41:81:55:0f:b1:aa:36:
        58:9f:b5:89:bc:5f:75:d5:b8:46:9c:b2:27:36:29:67:
        60:83:06:b3:10:54:7e:d5:9c:2c:0f:37:a6:c6:97:58:
        90:41:7a:9b:26:5c:90:75:1a:f2:ca:01:f0:0d:17:55:
        1d:16:fe:ef:af:dc:cf:5e:6d:18:70:06:6a:fb:fe:ba:
        b4:5f:c6:8e:bc:2a:83:d3:1c:0e:43:b5:4c:09:52:e5:
        39:57:f3:07:03:92:0b:05:1d:78:8e:1b:2e:1c:92:cf:
        e4:3a:b2:c2:c9:55:84:3e:e3:c2:f5:14:35:ce:b0:2f:
        9e:fc:fd:33:94:6c:8a:00:fa:ec:b1:31:60:20:2e:36:
        41:3a:37:27:06:22:6b:74:7f:f4:da:f2:69:a7:38:41:
        75:ec:05:96:39:99:14:4c:04:03:21:fa:0e:ac:91:40
    Fingerprint (SHA-256):
        EF:AA:8C:8D:C7:63:86:4A:53:4B:59:68:09:F2:DF:99:C0:10:88:CA:0F:22:AD:A4:59:75:21:D9:EC:C0:C8:8E
    Fingerprint (SHA1):
        8C:48:EE:90:3B:48:74:5D:C6:5E:BC:AB:7C:1D:43:5B:02:36:9C:B8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14345: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #14346: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001128 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14347: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #14348: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14349: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14350: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 807001129   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14351: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14352: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14353: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14354: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 807001130   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #14355: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14356: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #14357: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14358: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 807001131   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14359: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14360: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #14361: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14362: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 807001132   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14363: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14364: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #14365: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14366: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 807001133   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14367: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14368: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #14369: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14370: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 807001134   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14371: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14372: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14373: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #14374: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #14375: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #14376: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #14377: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001128 (0x3019dc28)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:46 2017
            Not After : Sun Aug 07 00:13:46 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:32:e3:72:d4:72:d7:68:47:d1:14:aa:f8:73:2a:36:
                    3b:17:c3:7f:8b:08:1d:87:75:f3:e4:f9:e2:55:e1:a1:
                    73:6b:29:72:f7:86:93:17:74:31:4f:7a:03:01:be:22:
                    14:60:c9:65:dd:12:0d:ef:c4:5a:8d:37:b0:85:21:90:
                    ef:a6:37:83:19:47:c7:41:3f:30:70:de:03:8d:1f:69:
                    d1:c1:ba:36:42:96:57:5f:72:bf:95:15:aa:1e:87:65:
                    03:4a:17:e4:d6:b6:90:1a:34:e5:3a:8d:b3:86:78:ef:
                    23:9e:fd:43:fb:9c:3e:94:f7:a6:16:73:92:9e:2a:31:
                    14:71:fc:2f:40:2e:fb:37:4e:65:d2:29:f2:e7:8e:8c:
                    7a:26:78:7c:ee:94:be:d8:37:cb:da:62:65:c4:50:ab:
                    99:ab:7c:07:30:2e:e3:2c:f1:ff:6a:78:3c:b9:b8:a1:
                    6a:f5:fc:94:4d:b6:94:6e:ce:cf:ce:dd:15:8e:33:40:
                    f1:80:c7:7a:59:e3:c1:16:1b:da:24:5b:45:8d:10:59:
                    1a:ed:cf:09:af:82:b3:7a:1a:b7:ee:3b:67:e4:5f:06:
                    65:41:04:59:f7:e5:fd:11:b9:e5:65:b0:ea:f4:4f:22:
                    26:e6:57:09:c9:1a:38:30:2d:86:a2:3b:66:85:b9:f3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        86:14:b2:70:09:78:7f:8a:64:52:da:85:63:27:84:59:
        39:be:88:04:48:23:e1:b0:07:4d:52:bb:59:09:8c:75:
        59:c9:2c:19:f1:2f:1d:08:ff:7b:f2:d5:5c:42:da:5f:
        70:ce:0a:cb:a4:dd:cb:40:92:14:73:6b:c4:7b:21:bd:
        c4:08:b0:78:c9:19:45:5e:2f:2c:0e:db:f2:d5:aa:9f:
        99:6e:82:89:14:b0:3f:42:84:42:6d:fd:d6:12:da:24:
        4c:31:f8:8b:ae:52:af:d3:8d:ef:7e:df:d7:9e:fe:26:
        51:5e:24:fb:8b:33:35:ff:76:c6:6e:99:df:6b:61:33:
        89:5e:f3:a6:8e:4a:27:4f:df:87:51:fb:ca:61:29:2c:
        d1:90:ca:4b:c6:6f:f3:ea:43:0d:b8:0a:33:92:b3:10:
        8a:ae:9e:26:68:4d:29:b4:4b:39:5e:11:93:81:24:e3:
        68:a8:8a:e0:7e:72:a4:8a:58:3e:ce:7f:fe:63:df:a7:
        6c:bc:ec:b9:89:75:7c:0b:c2:13:ae:c4:10:52:8a:0d:
        78:f8:59:91:59:82:2d:40:53:54:54:be:01:b3:d6:ac:
        ba:25:de:ca:49:00:8b:5a:77:da:ae:a4:bc:3a:6e:33:
        7d:92:44:54:7b:c0:27:c3:10:8d:9b:45:bc:c6:4a:b8
    Fingerprint (SHA-256):
        85:0C:1F:F4:49:00:D6:F2:F3:80:E6:C0:6C:65:1C:5C:99:A8:37:A5:45:B9:AC:B5:58:3D:4E:C0:1C:99:F6:95
    Fingerprint (SHA1):
        0E:9B:E8:85:67:63:59:C9:2E:40:C4:1C:8D:4D:71:81:4D:E7:11:6D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14378: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14379: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14380: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14381: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001128 (0x3019dc28)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:46 2017
            Not After : Sun Aug 07 00:13:46 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:32:e3:72:d4:72:d7:68:47:d1:14:aa:f8:73:2a:36:
                    3b:17:c3:7f:8b:08:1d:87:75:f3:e4:f9:e2:55:e1:a1:
                    73:6b:29:72:f7:86:93:17:74:31:4f:7a:03:01:be:22:
                    14:60:c9:65:dd:12:0d:ef:c4:5a:8d:37:b0:85:21:90:
                    ef:a6:37:83:19:47:c7:41:3f:30:70:de:03:8d:1f:69:
                    d1:c1:ba:36:42:96:57:5f:72:bf:95:15:aa:1e:87:65:
                    03:4a:17:e4:d6:b6:90:1a:34:e5:3a:8d:b3:86:78:ef:
                    23:9e:fd:43:fb:9c:3e:94:f7:a6:16:73:92:9e:2a:31:
                    14:71:fc:2f:40:2e:fb:37:4e:65:d2:29:f2:e7:8e:8c:
                    7a:26:78:7c:ee:94:be:d8:37:cb:da:62:65:c4:50:ab:
                    99:ab:7c:07:30:2e:e3:2c:f1:ff:6a:78:3c:b9:b8:a1:
                    6a:f5:fc:94:4d:b6:94:6e:ce:cf:ce:dd:15:8e:33:40:
                    f1:80:c7:7a:59:e3:c1:16:1b:da:24:5b:45:8d:10:59:
                    1a:ed:cf:09:af:82:b3:7a:1a:b7:ee:3b:67:e4:5f:06:
                    65:41:04:59:f7:e5:fd:11:b9:e5:65:b0:ea:f4:4f:22:
                    26:e6:57:09:c9:1a:38:30:2d:86:a2:3b:66:85:b9:f3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        86:14:b2:70:09:78:7f:8a:64:52:da:85:63:27:84:59:
        39:be:88:04:48:23:e1:b0:07:4d:52:bb:59:09:8c:75:
        59:c9:2c:19:f1:2f:1d:08:ff:7b:f2:d5:5c:42:da:5f:
        70:ce:0a:cb:a4:dd:cb:40:92:14:73:6b:c4:7b:21:bd:
        c4:08:b0:78:c9:19:45:5e:2f:2c:0e:db:f2:d5:aa:9f:
        99:6e:82:89:14:b0:3f:42:84:42:6d:fd:d6:12:da:24:
        4c:31:f8:8b:ae:52:af:d3:8d:ef:7e:df:d7:9e:fe:26:
        51:5e:24:fb:8b:33:35:ff:76:c6:6e:99:df:6b:61:33:
        89:5e:f3:a6:8e:4a:27:4f:df:87:51:fb:ca:61:29:2c:
        d1:90:ca:4b:c6:6f:f3:ea:43:0d:b8:0a:33:92:b3:10:
        8a:ae:9e:26:68:4d:29:b4:4b:39:5e:11:93:81:24:e3:
        68:a8:8a:e0:7e:72:a4:8a:58:3e:ce:7f:fe:63:df:a7:
        6c:bc:ec:b9:89:75:7c:0b:c2:13:ae:c4:10:52:8a:0d:
        78:f8:59:91:59:82:2d:40:53:54:54:be:01:b3:d6:ac:
        ba:25:de:ca:49:00:8b:5a:77:da:ae:a4:bc:3a:6e:33:
        7d:92:44:54:7b:c0:27:c3:10:8d:9b:45:bc:c6:4a:b8
    Fingerprint (SHA-256):
        85:0C:1F:F4:49:00:D6:F2:F3:80:E6:C0:6C:65:1C:5C:99:A8:37:A5:45:B9:AC:B5:58:3D:4E:C0:1C:99:F6:95
    Fingerprint (SHA1):
        0E:9B:E8:85:67:63:59:C9:2E:40:C4:1C:8D:4D:71:81:4D:E7:11:6D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14382: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14383: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #14384: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001135 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14385: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #14386: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14387: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14388: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 807001136   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #14389: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14390: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #14391: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14392: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 807001137   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14393: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14394: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #14395: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14396: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 807001138   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14397: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14398: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #14399: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14400: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 807001139   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14401: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14402: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #14403: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14404: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 807001140   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14405: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14406: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #14407: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14408: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 807001141   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14409: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14410: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #14411: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14412: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 807001142   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14413: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14414: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #14415: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14416: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 807001143   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #14417: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14418: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #14419: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14420: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 807001144   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14421: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14422: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #14423: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14424: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 807001145   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14425: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14426: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #14427: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14428: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 807001146   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14429: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14430: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #14431: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14432: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 807001147   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14433: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14434: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #14435: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14436: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 807001148   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14437: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14438: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #14439: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14440: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 807001149   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14441: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14442: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #14443: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14444: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 807001150   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14445: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14446: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #14447: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14448: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 807001151   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14449: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14450: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #14451: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14452: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 807001152   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #14453: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14454: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #14455: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14456: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 807001153   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14457: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14458: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #14459: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14460: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 807001154   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14461: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14462: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #14463: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14464: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 807001155   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14465: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14466: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #14467: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14468: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 807001156   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14469: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14470: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #14471: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14472: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 807001157   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14473: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14474: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #14475: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14476: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 807001158   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14477: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14478: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #14479: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14480: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 807001159   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14481: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14482: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #14483: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14484: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 807001160   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14485: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14486: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #14487: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14488: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 807001161   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14489: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14490: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #14491: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14492: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 807001162   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14493: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14494: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #14495: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14496: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 807001163   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14497: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14498: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #14499: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14500: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 807001164   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14501: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14502: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14503: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001135 (0x3019dc2f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:53 2017
            Not After : Sun Aug 07 00:13:53 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:43:00:9f:06:5e:49:0a:42:d7:c2:9b:e6:35:40:ab:
                    bb:aa:14:1d:6f:79:ba:f3:26:81:4d:d9:a6:86:fe:dc:
                    e9:75:58:7b:e9:bf:31:0c:b1:c7:3a:91:53:b8:73:9b:
                    88:e4:0b:10:41:55:90:04:e7:52:eb:91:f1:1f:0a:b5:
                    86:33:0c:0b:91:f0:0b:17:5d:4e:cc:1c:77:a0:7c:65:
                    f0:60:a0:c9:dd:5e:a1:67:1e:e3:80:f8:0e:c2:d1:7f:
                    9a:14:36:1b:1d:37:1c:a3:ac:ef:58:2e:3a:c7:7e:e7:
                    6f:29:f9:c9:c2:6f:89:49:5f:b2:b1:8b:76:7a:df:fb:
                    72:7a:c9:ae:5c:f8:5c:69:95:46:f9:0f:66:d6:c8:38:
                    ed:f4:6a:84:26:cd:cf:46:e7:1d:a8:d2:f0:f9:af:a7:
                    4f:86:f1:09:ad:78:91:36:a2:a8:db:88:83:93:2c:b8:
                    8f:4e:3a:fa:39:bc:5e:ea:d7:7a:b0:d9:49:4f:6b:da:
                    56:52:8d:af:37:d9:84:35:f8:ff:23:16:68:36:1e:41:
                    9c:ce:0e:bf:9b:57:fc:c3:14:47:26:f0:e3:59:ee:47:
                    65:6d:0e:b4:8b:b0:43:de:04:ba:fd:7d:f5:1c:9e:07:
                    77:fd:50:fc:ad:ed:bc:78:96:d1:13:fa:7c:99:8a:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d5:1d:e6:86:e6:8f:f4:49:68:c4:59:73:34:d7:79:27:
        27:7a:d5:3c:2c:54:a2:7e:30:fe:fa:83:e2:68:b9:47:
        13:7e:38:6e:84:87:67:9b:e0:93:42:99:97:56:34:e9:
        61:69:53:d6:d0:f2:37:4e:8f:b0:24:a0:bc:26:3e:85:
        f9:66:6c:19:de:aa:46:e2:d9:a8:df:3a:f1:6e:71:41:
        03:d6:54:2e:dd:fa:73:e8:41:12:02:e2:71:f9:b6:c7:
        c4:57:00:cd:2a:51:27:f7:e5:d7:02:8c:31:ce:2d:f1:
        30:54:c6:9e:35:c9:0e:02:e0:b1:fd:83:47:d2:d8:f0:
        e5:d0:5f:5a:ce:6f:72:42:b2:10:98:28:b6:02:fa:85:
        b3:17:2e:19:1e:62:52:51:07:c1:3b:e3:6b:dc:a5:33:
        d6:98:d3:9b:e0:11:69:fd:9f:42:f2:7c:1a:76:31:fc:
        82:d1:c7:e9:d6:15:e5:76:70:b0:17:85:fa:4f:37:5d:
        4c:5e:3f:04:39:88:15:12:75:a7:cb:72:37:e2:c8:e5:
        ee:94:61:76:b2:15:a1:7a:dc:ba:d3:a4:a3:9f:be:23:
        92:ba:53:ed:56:38:7a:00:83:6f:9b:ae:eb:7c:cc:31:
        df:4b:ce:44:52:0a:b8:41:f3:6e:99:c5:5c:00:fc:5f
    Fingerprint (SHA-256):
        E1:EA:C0:86:9E:0C:21:BD:E4:62:8F:69:BB:07:A0:0A:1E:B2:30:6F:0E:30:BA:D6:65:3B:08:9C:14:17:3A:8E
    Fingerprint (SHA1):
        3E:5B:A1:93:4E:B7:40:73:2C:DE:A7:0E:D8:61:2E:1B:5B:53:B7:E7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14504: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14505: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001135 (0x3019dc2f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:53 2017
            Not After : Sun Aug 07 00:13:53 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:43:00:9f:06:5e:49:0a:42:d7:c2:9b:e6:35:40:ab:
                    bb:aa:14:1d:6f:79:ba:f3:26:81:4d:d9:a6:86:fe:dc:
                    e9:75:58:7b:e9:bf:31:0c:b1:c7:3a:91:53:b8:73:9b:
                    88:e4:0b:10:41:55:90:04:e7:52:eb:91:f1:1f:0a:b5:
                    86:33:0c:0b:91:f0:0b:17:5d:4e:cc:1c:77:a0:7c:65:
                    f0:60:a0:c9:dd:5e:a1:67:1e:e3:80:f8:0e:c2:d1:7f:
                    9a:14:36:1b:1d:37:1c:a3:ac:ef:58:2e:3a:c7:7e:e7:
                    6f:29:f9:c9:c2:6f:89:49:5f:b2:b1:8b:76:7a:df:fb:
                    72:7a:c9:ae:5c:f8:5c:69:95:46:f9:0f:66:d6:c8:38:
                    ed:f4:6a:84:26:cd:cf:46:e7:1d:a8:d2:f0:f9:af:a7:
                    4f:86:f1:09:ad:78:91:36:a2:a8:db:88:83:93:2c:b8:
                    8f:4e:3a:fa:39:bc:5e:ea:d7:7a:b0:d9:49:4f:6b:da:
                    56:52:8d:af:37:d9:84:35:f8:ff:23:16:68:36:1e:41:
                    9c:ce:0e:bf:9b:57:fc:c3:14:47:26:f0:e3:59:ee:47:
                    65:6d:0e:b4:8b:b0:43:de:04:ba:fd:7d:f5:1c:9e:07:
                    77:fd:50:fc:ad:ed:bc:78:96:d1:13:fa:7c:99:8a:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d5:1d:e6:86:e6:8f:f4:49:68:c4:59:73:34:d7:79:27:
        27:7a:d5:3c:2c:54:a2:7e:30:fe:fa:83:e2:68:b9:47:
        13:7e:38:6e:84:87:67:9b:e0:93:42:99:97:56:34:e9:
        61:69:53:d6:d0:f2:37:4e:8f:b0:24:a0:bc:26:3e:85:
        f9:66:6c:19:de:aa:46:e2:d9:a8:df:3a:f1:6e:71:41:
        03:d6:54:2e:dd:fa:73:e8:41:12:02:e2:71:f9:b6:c7:
        c4:57:00:cd:2a:51:27:f7:e5:d7:02:8c:31:ce:2d:f1:
        30:54:c6:9e:35:c9:0e:02:e0:b1:fd:83:47:d2:d8:f0:
        e5:d0:5f:5a:ce:6f:72:42:b2:10:98:28:b6:02:fa:85:
        b3:17:2e:19:1e:62:52:51:07:c1:3b:e3:6b:dc:a5:33:
        d6:98:d3:9b:e0:11:69:fd:9f:42:f2:7c:1a:76:31:fc:
        82:d1:c7:e9:d6:15:e5:76:70:b0:17:85:fa:4f:37:5d:
        4c:5e:3f:04:39:88:15:12:75:a7:cb:72:37:e2:c8:e5:
        ee:94:61:76:b2:15:a1:7a:dc:ba:d3:a4:a3:9f:be:23:
        92:ba:53:ed:56:38:7a:00:83:6f:9b:ae:eb:7c:cc:31:
        df:4b:ce:44:52:0a:b8:41:f3:6e:99:c5:5c:00:fc:5f
    Fingerprint (SHA-256):
        E1:EA:C0:86:9E:0C:21:BD:E4:62:8F:69:BB:07:A0:0A:1E:B2:30:6F:0E:30:BA:D6:65:3B:08:9C:14:17:3A:8E
    Fingerprint (SHA1):
        3E:5B:A1:93:4E:B7:40:73:2C:DE:A7:0E:D8:61:2E:1B:5B:53:B7:E7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14506: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14507: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14508: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14509: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001135 (0x3019dc2f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:53 2017
            Not After : Sun Aug 07 00:13:53 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:43:00:9f:06:5e:49:0a:42:d7:c2:9b:e6:35:40:ab:
                    bb:aa:14:1d:6f:79:ba:f3:26:81:4d:d9:a6:86:fe:dc:
                    e9:75:58:7b:e9:bf:31:0c:b1:c7:3a:91:53:b8:73:9b:
                    88:e4:0b:10:41:55:90:04:e7:52:eb:91:f1:1f:0a:b5:
                    86:33:0c:0b:91:f0:0b:17:5d:4e:cc:1c:77:a0:7c:65:
                    f0:60:a0:c9:dd:5e:a1:67:1e:e3:80:f8:0e:c2:d1:7f:
                    9a:14:36:1b:1d:37:1c:a3:ac:ef:58:2e:3a:c7:7e:e7:
                    6f:29:f9:c9:c2:6f:89:49:5f:b2:b1:8b:76:7a:df:fb:
                    72:7a:c9:ae:5c:f8:5c:69:95:46:f9:0f:66:d6:c8:38:
                    ed:f4:6a:84:26:cd:cf:46:e7:1d:a8:d2:f0:f9:af:a7:
                    4f:86:f1:09:ad:78:91:36:a2:a8:db:88:83:93:2c:b8:
                    8f:4e:3a:fa:39:bc:5e:ea:d7:7a:b0:d9:49:4f:6b:da:
                    56:52:8d:af:37:d9:84:35:f8:ff:23:16:68:36:1e:41:
                    9c:ce:0e:bf:9b:57:fc:c3:14:47:26:f0:e3:59:ee:47:
                    65:6d:0e:b4:8b:b0:43:de:04:ba:fd:7d:f5:1c:9e:07:
                    77:fd:50:fc:ad:ed:bc:78:96:d1:13:fa:7c:99:8a:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d5:1d:e6:86:e6:8f:f4:49:68:c4:59:73:34:d7:79:27:
        27:7a:d5:3c:2c:54:a2:7e:30:fe:fa:83:e2:68:b9:47:
        13:7e:38:6e:84:87:67:9b:e0:93:42:99:97:56:34:e9:
        61:69:53:d6:d0:f2:37:4e:8f:b0:24:a0:bc:26:3e:85:
        f9:66:6c:19:de:aa:46:e2:d9:a8:df:3a:f1:6e:71:41:
        03:d6:54:2e:dd:fa:73:e8:41:12:02:e2:71:f9:b6:c7:
        c4:57:00:cd:2a:51:27:f7:e5:d7:02:8c:31:ce:2d:f1:
        30:54:c6:9e:35:c9:0e:02:e0:b1:fd:83:47:d2:d8:f0:
        e5:d0:5f:5a:ce:6f:72:42:b2:10:98:28:b6:02:fa:85:
        b3:17:2e:19:1e:62:52:51:07:c1:3b:e3:6b:dc:a5:33:
        d6:98:d3:9b:e0:11:69:fd:9f:42:f2:7c:1a:76:31:fc:
        82:d1:c7:e9:d6:15:e5:76:70:b0:17:85:fa:4f:37:5d:
        4c:5e:3f:04:39:88:15:12:75:a7:cb:72:37:e2:c8:e5:
        ee:94:61:76:b2:15:a1:7a:dc:ba:d3:a4:a3:9f:be:23:
        92:ba:53:ed:56:38:7a:00:83:6f:9b:ae:eb:7c:cc:31:
        df:4b:ce:44:52:0a:b8:41:f3:6e:99:c5:5c:00:fc:5f
    Fingerprint (SHA-256):
        E1:EA:C0:86:9E:0C:21:BD:E4:62:8F:69:BB:07:A0:0A:1E:B2:30:6F:0E:30:BA:D6:65:3B:08:9C:14:17:3A:8E
    Fingerprint (SHA1):
        3E:5B:A1:93:4E:B7:40:73:2C:DE:A7:0E:D8:61:2E:1B:5B:53:B7:E7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14510: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14511: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14512: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14513: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001135 (0x3019dc2f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:53 2017
            Not After : Sun Aug 07 00:13:53 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:43:00:9f:06:5e:49:0a:42:d7:c2:9b:e6:35:40:ab:
                    bb:aa:14:1d:6f:79:ba:f3:26:81:4d:d9:a6:86:fe:dc:
                    e9:75:58:7b:e9:bf:31:0c:b1:c7:3a:91:53:b8:73:9b:
                    88:e4:0b:10:41:55:90:04:e7:52:eb:91:f1:1f:0a:b5:
                    86:33:0c:0b:91:f0:0b:17:5d:4e:cc:1c:77:a0:7c:65:
                    f0:60:a0:c9:dd:5e:a1:67:1e:e3:80:f8:0e:c2:d1:7f:
                    9a:14:36:1b:1d:37:1c:a3:ac:ef:58:2e:3a:c7:7e:e7:
                    6f:29:f9:c9:c2:6f:89:49:5f:b2:b1:8b:76:7a:df:fb:
                    72:7a:c9:ae:5c:f8:5c:69:95:46:f9:0f:66:d6:c8:38:
                    ed:f4:6a:84:26:cd:cf:46:e7:1d:a8:d2:f0:f9:af:a7:
                    4f:86:f1:09:ad:78:91:36:a2:a8:db:88:83:93:2c:b8:
                    8f:4e:3a:fa:39:bc:5e:ea:d7:7a:b0:d9:49:4f:6b:da:
                    56:52:8d:af:37:d9:84:35:f8:ff:23:16:68:36:1e:41:
                    9c:ce:0e:bf:9b:57:fc:c3:14:47:26:f0:e3:59:ee:47:
                    65:6d:0e:b4:8b:b0:43:de:04:ba:fd:7d:f5:1c:9e:07:
                    77:fd:50:fc:ad:ed:bc:78:96:d1:13:fa:7c:99:8a:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d5:1d:e6:86:e6:8f:f4:49:68:c4:59:73:34:d7:79:27:
        27:7a:d5:3c:2c:54:a2:7e:30:fe:fa:83:e2:68:b9:47:
        13:7e:38:6e:84:87:67:9b:e0:93:42:99:97:56:34:e9:
        61:69:53:d6:d0:f2:37:4e:8f:b0:24:a0:bc:26:3e:85:
        f9:66:6c:19:de:aa:46:e2:d9:a8:df:3a:f1:6e:71:41:
        03:d6:54:2e:dd:fa:73:e8:41:12:02:e2:71:f9:b6:c7:
        c4:57:00:cd:2a:51:27:f7:e5:d7:02:8c:31:ce:2d:f1:
        30:54:c6:9e:35:c9:0e:02:e0:b1:fd:83:47:d2:d8:f0:
        e5:d0:5f:5a:ce:6f:72:42:b2:10:98:28:b6:02:fa:85:
        b3:17:2e:19:1e:62:52:51:07:c1:3b:e3:6b:dc:a5:33:
        d6:98:d3:9b:e0:11:69:fd:9f:42:f2:7c:1a:76:31:fc:
        82:d1:c7:e9:d6:15:e5:76:70:b0:17:85:fa:4f:37:5d:
        4c:5e:3f:04:39:88:15:12:75:a7:cb:72:37:e2:c8:e5:
        ee:94:61:76:b2:15:a1:7a:dc:ba:d3:a4:a3:9f:be:23:
        92:ba:53:ed:56:38:7a:00:83:6f:9b:ae:eb:7c:cc:31:
        df:4b:ce:44:52:0a:b8:41:f3:6e:99:c5:5c:00:fc:5f
    Fingerprint (SHA-256):
        E1:EA:C0:86:9E:0C:21:BD:E4:62:8F:69:BB:07:A0:0A:1E:B2:30:6F:0E:30:BA:D6:65:3B:08:9C:14:17:3A:8E
    Fingerprint (SHA1):
        3E:5B:A1:93:4E:B7:40:73:2C:DE:A7:0E:D8:61:2E:1B:5B:53:B7:E7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14514: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001135 (0x3019dc2f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:53 2017
            Not After : Sun Aug 07 00:13:53 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:43:00:9f:06:5e:49:0a:42:d7:c2:9b:e6:35:40:ab:
                    bb:aa:14:1d:6f:79:ba:f3:26:81:4d:d9:a6:86:fe:dc:
                    e9:75:58:7b:e9:bf:31:0c:b1:c7:3a:91:53:b8:73:9b:
                    88:e4:0b:10:41:55:90:04:e7:52:eb:91:f1:1f:0a:b5:
                    86:33:0c:0b:91:f0:0b:17:5d:4e:cc:1c:77:a0:7c:65:
                    f0:60:a0:c9:dd:5e:a1:67:1e:e3:80:f8:0e:c2:d1:7f:
                    9a:14:36:1b:1d:37:1c:a3:ac:ef:58:2e:3a:c7:7e:e7:
                    6f:29:f9:c9:c2:6f:89:49:5f:b2:b1:8b:76:7a:df:fb:
                    72:7a:c9:ae:5c:f8:5c:69:95:46:f9:0f:66:d6:c8:38:
                    ed:f4:6a:84:26:cd:cf:46:e7:1d:a8:d2:f0:f9:af:a7:
                    4f:86:f1:09:ad:78:91:36:a2:a8:db:88:83:93:2c:b8:
                    8f:4e:3a:fa:39:bc:5e:ea:d7:7a:b0:d9:49:4f:6b:da:
                    56:52:8d:af:37:d9:84:35:f8:ff:23:16:68:36:1e:41:
                    9c:ce:0e:bf:9b:57:fc:c3:14:47:26:f0:e3:59:ee:47:
                    65:6d:0e:b4:8b:b0:43:de:04:ba:fd:7d:f5:1c:9e:07:
                    77:fd:50:fc:ad:ed:bc:78:96:d1:13:fa:7c:99:8a:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d5:1d:e6:86:e6:8f:f4:49:68:c4:59:73:34:d7:79:27:
        27:7a:d5:3c:2c:54:a2:7e:30:fe:fa:83:e2:68:b9:47:
        13:7e:38:6e:84:87:67:9b:e0:93:42:99:97:56:34:e9:
        61:69:53:d6:d0:f2:37:4e:8f:b0:24:a0:bc:26:3e:85:
        f9:66:6c:19:de:aa:46:e2:d9:a8:df:3a:f1:6e:71:41:
        03:d6:54:2e:dd:fa:73:e8:41:12:02:e2:71:f9:b6:c7:
        c4:57:00:cd:2a:51:27:f7:e5:d7:02:8c:31:ce:2d:f1:
        30:54:c6:9e:35:c9:0e:02:e0:b1:fd:83:47:d2:d8:f0:
        e5:d0:5f:5a:ce:6f:72:42:b2:10:98:28:b6:02:fa:85:
        b3:17:2e:19:1e:62:52:51:07:c1:3b:e3:6b:dc:a5:33:
        d6:98:d3:9b:e0:11:69:fd:9f:42:f2:7c:1a:76:31:fc:
        82:d1:c7:e9:d6:15:e5:76:70:b0:17:85:fa:4f:37:5d:
        4c:5e:3f:04:39:88:15:12:75:a7:cb:72:37:e2:c8:e5:
        ee:94:61:76:b2:15:a1:7a:dc:ba:d3:a4:a3:9f:be:23:
        92:ba:53:ed:56:38:7a:00:83:6f:9b:ae:eb:7c:cc:31:
        df:4b:ce:44:52:0a:b8:41:f3:6e:99:c5:5c:00:fc:5f
    Fingerprint (SHA-256):
        E1:EA:C0:86:9E:0C:21:BD:E4:62:8F:69:BB:07:A0:0A:1E:B2:30:6F:0E:30:BA:D6:65:3B:08:9C:14:17:3A:8E
    Fingerprint (SHA1):
        3E:5B:A1:93:4E:B7:40:73:2C:DE:A7:0E:D8:61:2E:1B:5B:53:B7:E7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14515: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14516: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001135 (0x3019dc2f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:53 2017
            Not After : Sun Aug 07 00:13:53 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:43:00:9f:06:5e:49:0a:42:d7:c2:9b:e6:35:40:ab:
                    bb:aa:14:1d:6f:79:ba:f3:26:81:4d:d9:a6:86:fe:dc:
                    e9:75:58:7b:e9:bf:31:0c:b1:c7:3a:91:53:b8:73:9b:
                    88:e4:0b:10:41:55:90:04:e7:52:eb:91:f1:1f:0a:b5:
                    86:33:0c:0b:91:f0:0b:17:5d:4e:cc:1c:77:a0:7c:65:
                    f0:60:a0:c9:dd:5e:a1:67:1e:e3:80:f8:0e:c2:d1:7f:
                    9a:14:36:1b:1d:37:1c:a3:ac:ef:58:2e:3a:c7:7e:e7:
                    6f:29:f9:c9:c2:6f:89:49:5f:b2:b1:8b:76:7a:df:fb:
                    72:7a:c9:ae:5c:f8:5c:69:95:46:f9:0f:66:d6:c8:38:
                    ed:f4:6a:84:26:cd:cf:46:e7:1d:a8:d2:f0:f9:af:a7:
                    4f:86:f1:09:ad:78:91:36:a2:a8:db:88:83:93:2c:b8:
                    8f:4e:3a:fa:39:bc:5e:ea:d7:7a:b0:d9:49:4f:6b:da:
                    56:52:8d:af:37:d9:84:35:f8:ff:23:16:68:36:1e:41:
                    9c:ce:0e:bf:9b:57:fc:c3:14:47:26:f0:e3:59:ee:47:
                    65:6d:0e:b4:8b:b0:43:de:04:ba:fd:7d:f5:1c:9e:07:
                    77:fd:50:fc:ad:ed:bc:78:96:d1:13:fa:7c:99:8a:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d5:1d:e6:86:e6:8f:f4:49:68:c4:59:73:34:d7:79:27:
        27:7a:d5:3c:2c:54:a2:7e:30:fe:fa:83:e2:68:b9:47:
        13:7e:38:6e:84:87:67:9b:e0:93:42:99:97:56:34:e9:
        61:69:53:d6:d0:f2:37:4e:8f:b0:24:a0:bc:26:3e:85:
        f9:66:6c:19:de:aa:46:e2:d9:a8:df:3a:f1:6e:71:41:
        03:d6:54:2e:dd:fa:73:e8:41:12:02:e2:71:f9:b6:c7:
        c4:57:00:cd:2a:51:27:f7:e5:d7:02:8c:31:ce:2d:f1:
        30:54:c6:9e:35:c9:0e:02:e0:b1:fd:83:47:d2:d8:f0:
        e5:d0:5f:5a:ce:6f:72:42:b2:10:98:28:b6:02:fa:85:
        b3:17:2e:19:1e:62:52:51:07:c1:3b:e3:6b:dc:a5:33:
        d6:98:d3:9b:e0:11:69:fd:9f:42:f2:7c:1a:76:31:fc:
        82:d1:c7:e9:d6:15:e5:76:70:b0:17:85:fa:4f:37:5d:
        4c:5e:3f:04:39:88:15:12:75:a7:cb:72:37:e2:c8:e5:
        ee:94:61:76:b2:15:a1:7a:dc:ba:d3:a4:a3:9f:be:23:
        92:ba:53:ed:56:38:7a:00:83:6f:9b:ae:eb:7c:cc:31:
        df:4b:ce:44:52:0a:b8:41:f3:6e:99:c5:5c:00:fc:5f
    Fingerprint (SHA-256):
        E1:EA:C0:86:9E:0C:21:BD:E4:62:8F:69:BB:07:A0:0A:1E:B2:30:6F:0E:30:BA:D6:65:3B:08:9C:14:17:3A:8E
    Fingerprint (SHA1):
        3E:5B:A1:93:4E:B7:40:73:2C:DE:A7:0E:D8:61:2E:1B:5B:53:B7:E7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14517: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14518: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14519: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14520: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001135 (0x3019dc2f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:53 2017
            Not After : Sun Aug 07 00:13:53 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:43:00:9f:06:5e:49:0a:42:d7:c2:9b:e6:35:40:ab:
                    bb:aa:14:1d:6f:79:ba:f3:26:81:4d:d9:a6:86:fe:dc:
                    e9:75:58:7b:e9:bf:31:0c:b1:c7:3a:91:53:b8:73:9b:
                    88:e4:0b:10:41:55:90:04:e7:52:eb:91:f1:1f:0a:b5:
                    86:33:0c:0b:91:f0:0b:17:5d:4e:cc:1c:77:a0:7c:65:
                    f0:60:a0:c9:dd:5e:a1:67:1e:e3:80:f8:0e:c2:d1:7f:
                    9a:14:36:1b:1d:37:1c:a3:ac:ef:58:2e:3a:c7:7e:e7:
                    6f:29:f9:c9:c2:6f:89:49:5f:b2:b1:8b:76:7a:df:fb:
                    72:7a:c9:ae:5c:f8:5c:69:95:46:f9:0f:66:d6:c8:38:
                    ed:f4:6a:84:26:cd:cf:46:e7:1d:a8:d2:f0:f9:af:a7:
                    4f:86:f1:09:ad:78:91:36:a2:a8:db:88:83:93:2c:b8:
                    8f:4e:3a:fa:39:bc:5e:ea:d7:7a:b0:d9:49:4f:6b:da:
                    56:52:8d:af:37:d9:84:35:f8:ff:23:16:68:36:1e:41:
                    9c:ce:0e:bf:9b:57:fc:c3:14:47:26:f0:e3:59:ee:47:
                    65:6d:0e:b4:8b:b0:43:de:04:ba:fd:7d:f5:1c:9e:07:
                    77:fd:50:fc:ad:ed:bc:78:96:d1:13:fa:7c:99:8a:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d5:1d:e6:86:e6:8f:f4:49:68:c4:59:73:34:d7:79:27:
        27:7a:d5:3c:2c:54:a2:7e:30:fe:fa:83:e2:68:b9:47:
        13:7e:38:6e:84:87:67:9b:e0:93:42:99:97:56:34:e9:
        61:69:53:d6:d0:f2:37:4e:8f:b0:24:a0:bc:26:3e:85:
        f9:66:6c:19:de:aa:46:e2:d9:a8:df:3a:f1:6e:71:41:
        03:d6:54:2e:dd:fa:73:e8:41:12:02:e2:71:f9:b6:c7:
        c4:57:00:cd:2a:51:27:f7:e5:d7:02:8c:31:ce:2d:f1:
        30:54:c6:9e:35:c9:0e:02:e0:b1:fd:83:47:d2:d8:f0:
        e5:d0:5f:5a:ce:6f:72:42:b2:10:98:28:b6:02:fa:85:
        b3:17:2e:19:1e:62:52:51:07:c1:3b:e3:6b:dc:a5:33:
        d6:98:d3:9b:e0:11:69:fd:9f:42:f2:7c:1a:76:31:fc:
        82:d1:c7:e9:d6:15:e5:76:70:b0:17:85:fa:4f:37:5d:
        4c:5e:3f:04:39:88:15:12:75:a7:cb:72:37:e2:c8:e5:
        ee:94:61:76:b2:15:a1:7a:dc:ba:d3:a4:a3:9f:be:23:
        92:ba:53:ed:56:38:7a:00:83:6f:9b:ae:eb:7c:cc:31:
        df:4b:ce:44:52:0a:b8:41:f3:6e:99:c5:5c:00:fc:5f
    Fingerprint (SHA-256):
        E1:EA:C0:86:9E:0C:21:BD:E4:62:8F:69:BB:07:A0:0A:1E:B2:30:6F:0E:30:BA:D6:65:3B:08:9C:14:17:3A:8E
    Fingerprint (SHA1):
        3E:5B:A1:93:4E:B7:40:73:2C:DE:A7:0E:D8:61:2E:1B:5B:53:B7:E7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14521: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001135 (0x3019dc2f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:53 2017
            Not After : Sun Aug 07 00:13:53 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:43:00:9f:06:5e:49:0a:42:d7:c2:9b:e6:35:40:ab:
                    bb:aa:14:1d:6f:79:ba:f3:26:81:4d:d9:a6:86:fe:dc:
                    e9:75:58:7b:e9:bf:31:0c:b1:c7:3a:91:53:b8:73:9b:
                    88:e4:0b:10:41:55:90:04:e7:52:eb:91:f1:1f:0a:b5:
                    86:33:0c:0b:91:f0:0b:17:5d:4e:cc:1c:77:a0:7c:65:
                    f0:60:a0:c9:dd:5e:a1:67:1e:e3:80:f8:0e:c2:d1:7f:
                    9a:14:36:1b:1d:37:1c:a3:ac:ef:58:2e:3a:c7:7e:e7:
                    6f:29:f9:c9:c2:6f:89:49:5f:b2:b1:8b:76:7a:df:fb:
                    72:7a:c9:ae:5c:f8:5c:69:95:46:f9:0f:66:d6:c8:38:
                    ed:f4:6a:84:26:cd:cf:46:e7:1d:a8:d2:f0:f9:af:a7:
                    4f:86:f1:09:ad:78:91:36:a2:a8:db:88:83:93:2c:b8:
                    8f:4e:3a:fa:39:bc:5e:ea:d7:7a:b0:d9:49:4f:6b:da:
                    56:52:8d:af:37:d9:84:35:f8:ff:23:16:68:36:1e:41:
                    9c:ce:0e:bf:9b:57:fc:c3:14:47:26:f0:e3:59:ee:47:
                    65:6d:0e:b4:8b:b0:43:de:04:ba:fd:7d:f5:1c:9e:07:
                    77:fd:50:fc:ad:ed:bc:78:96:d1:13:fa:7c:99:8a:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d5:1d:e6:86:e6:8f:f4:49:68:c4:59:73:34:d7:79:27:
        27:7a:d5:3c:2c:54:a2:7e:30:fe:fa:83:e2:68:b9:47:
        13:7e:38:6e:84:87:67:9b:e0:93:42:99:97:56:34:e9:
        61:69:53:d6:d0:f2:37:4e:8f:b0:24:a0:bc:26:3e:85:
        f9:66:6c:19:de:aa:46:e2:d9:a8:df:3a:f1:6e:71:41:
        03:d6:54:2e:dd:fa:73:e8:41:12:02:e2:71:f9:b6:c7:
        c4:57:00:cd:2a:51:27:f7:e5:d7:02:8c:31:ce:2d:f1:
        30:54:c6:9e:35:c9:0e:02:e0:b1:fd:83:47:d2:d8:f0:
        e5:d0:5f:5a:ce:6f:72:42:b2:10:98:28:b6:02:fa:85:
        b3:17:2e:19:1e:62:52:51:07:c1:3b:e3:6b:dc:a5:33:
        d6:98:d3:9b:e0:11:69:fd:9f:42:f2:7c:1a:76:31:fc:
        82:d1:c7:e9:d6:15:e5:76:70:b0:17:85:fa:4f:37:5d:
        4c:5e:3f:04:39:88:15:12:75:a7:cb:72:37:e2:c8:e5:
        ee:94:61:76:b2:15:a1:7a:dc:ba:d3:a4:a3:9f:be:23:
        92:ba:53:ed:56:38:7a:00:83:6f:9b:ae:eb:7c:cc:31:
        df:4b:ce:44:52:0a:b8:41:f3:6e:99:c5:5c:00:fc:5f
    Fingerprint (SHA-256):
        E1:EA:C0:86:9E:0C:21:BD:E4:62:8F:69:BB:07:A0:0A:1E:B2:30:6F:0E:30:BA:D6:65:3B:08:9C:14:17:3A:8E
    Fingerprint (SHA1):
        3E:5B:A1:93:4E:B7:40:73:2C:DE:A7:0E:D8:61:2E:1B:5B:53:B7:E7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #14522: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001135 (0x3019dc2f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:53 2017
            Not After : Sun Aug 07 00:13:53 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:43:00:9f:06:5e:49:0a:42:d7:c2:9b:e6:35:40:ab:
                    bb:aa:14:1d:6f:79:ba:f3:26:81:4d:d9:a6:86:fe:dc:
                    e9:75:58:7b:e9:bf:31:0c:b1:c7:3a:91:53:b8:73:9b:
                    88:e4:0b:10:41:55:90:04:e7:52:eb:91:f1:1f:0a:b5:
                    86:33:0c:0b:91:f0:0b:17:5d:4e:cc:1c:77:a0:7c:65:
                    f0:60:a0:c9:dd:5e:a1:67:1e:e3:80:f8:0e:c2:d1:7f:
                    9a:14:36:1b:1d:37:1c:a3:ac:ef:58:2e:3a:c7:7e:e7:
                    6f:29:f9:c9:c2:6f:89:49:5f:b2:b1:8b:76:7a:df:fb:
                    72:7a:c9:ae:5c:f8:5c:69:95:46:f9:0f:66:d6:c8:38:
                    ed:f4:6a:84:26:cd:cf:46:e7:1d:a8:d2:f0:f9:af:a7:
                    4f:86:f1:09:ad:78:91:36:a2:a8:db:88:83:93:2c:b8:
                    8f:4e:3a:fa:39:bc:5e:ea:d7:7a:b0:d9:49:4f:6b:da:
                    56:52:8d:af:37:d9:84:35:f8:ff:23:16:68:36:1e:41:
                    9c:ce:0e:bf:9b:57:fc:c3:14:47:26:f0:e3:59:ee:47:
                    65:6d:0e:b4:8b:b0:43:de:04:ba:fd:7d:f5:1c:9e:07:
                    77:fd:50:fc:ad:ed:bc:78:96:d1:13:fa:7c:99:8a:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d5:1d:e6:86:e6:8f:f4:49:68:c4:59:73:34:d7:79:27:
        27:7a:d5:3c:2c:54:a2:7e:30:fe:fa:83:e2:68:b9:47:
        13:7e:38:6e:84:87:67:9b:e0:93:42:99:97:56:34:e9:
        61:69:53:d6:d0:f2:37:4e:8f:b0:24:a0:bc:26:3e:85:
        f9:66:6c:19:de:aa:46:e2:d9:a8:df:3a:f1:6e:71:41:
        03:d6:54:2e:dd:fa:73:e8:41:12:02:e2:71:f9:b6:c7:
        c4:57:00:cd:2a:51:27:f7:e5:d7:02:8c:31:ce:2d:f1:
        30:54:c6:9e:35:c9:0e:02:e0:b1:fd:83:47:d2:d8:f0:
        e5:d0:5f:5a:ce:6f:72:42:b2:10:98:28:b6:02:fa:85:
        b3:17:2e:19:1e:62:52:51:07:c1:3b:e3:6b:dc:a5:33:
        d6:98:d3:9b:e0:11:69:fd:9f:42:f2:7c:1a:76:31:fc:
        82:d1:c7:e9:d6:15:e5:76:70:b0:17:85:fa:4f:37:5d:
        4c:5e:3f:04:39:88:15:12:75:a7:cb:72:37:e2:c8:e5:
        ee:94:61:76:b2:15:a1:7a:dc:ba:d3:a4:a3:9f:be:23:
        92:ba:53:ed:56:38:7a:00:83:6f:9b:ae:eb:7c:cc:31:
        df:4b:ce:44:52:0a:b8:41:f3:6e:99:c5:5c:00:fc:5f
    Fingerprint (SHA-256):
        E1:EA:C0:86:9E:0C:21:BD:E4:62:8F:69:BB:07:A0:0A:1E:B2:30:6F:0E:30:BA:D6:65:3B:08:9C:14:17:3A:8E
    Fingerprint (SHA1):
        3E:5B:A1:93:4E:B7:40:73:2C:DE:A7:0E:D8:61:2E:1B:5B:53:B7:E7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #14523: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001135 (0x3019dc2f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:53 2017
            Not After : Sun Aug 07 00:13:53 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:43:00:9f:06:5e:49:0a:42:d7:c2:9b:e6:35:40:ab:
                    bb:aa:14:1d:6f:79:ba:f3:26:81:4d:d9:a6:86:fe:dc:
                    e9:75:58:7b:e9:bf:31:0c:b1:c7:3a:91:53:b8:73:9b:
                    88:e4:0b:10:41:55:90:04:e7:52:eb:91:f1:1f:0a:b5:
                    86:33:0c:0b:91:f0:0b:17:5d:4e:cc:1c:77:a0:7c:65:
                    f0:60:a0:c9:dd:5e:a1:67:1e:e3:80:f8:0e:c2:d1:7f:
                    9a:14:36:1b:1d:37:1c:a3:ac:ef:58:2e:3a:c7:7e:e7:
                    6f:29:f9:c9:c2:6f:89:49:5f:b2:b1:8b:76:7a:df:fb:
                    72:7a:c9:ae:5c:f8:5c:69:95:46:f9:0f:66:d6:c8:38:
                    ed:f4:6a:84:26:cd:cf:46:e7:1d:a8:d2:f0:f9:af:a7:
                    4f:86:f1:09:ad:78:91:36:a2:a8:db:88:83:93:2c:b8:
                    8f:4e:3a:fa:39:bc:5e:ea:d7:7a:b0:d9:49:4f:6b:da:
                    56:52:8d:af:37:d9:84:35:f8:ff:23:16:68:36:1e:41:
                    9c:ce:0e:bf:9b:57:fc:c3:14:47:26:f0:e3:59:ee:47:
                    65:6d:0e:b4:8b:b0:43:de:04:ba:fd:7d:f5:1c:9e:07:
                    77:fd:50:fc:ad:ed:bc:78:96:d1:13:fa:7c:99:8a:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d5:1d:e6:86:e6:8f:f4:49:68:c4:59:73:34:d7:79:27:
        27:7a:d5:3c:2c:54:a2:7e:30:fe:fa:83:e2:68:b9:47:
        13:7e:38:6e:84:87:67:9b:e0:93:42:99:97:56:34:e9:
        61:69:53:d6:d0:f2:37:4e:8f:b0:24:a0:bc:26:3e:85:
        f9:66:6c:19:de:aa:46:e2:d9:a8:df:3a:f1:6e:71:41:
        03:d6:54:2e:dd:fa:73:e8:41:12:02:e2:71:f9:b6:c7:
        c4:57:00:cd:2a:51:27:f7:e5:d7:02:8c:31:ce:2d:f1:
        30:54:c6:9e:35:c9:0e:02:e0:b1:fd:83:47:d2:d8:f0:
        e5:d0:5f:5a:ce:6f:72:42:b2:10:98:28:b6:02:fa:85:
        b3:17:2e:19:1e:62:52:51:07:c1:3b:e3:6b:dc:a5:33:
        d6:98:d3:9b:e0:11:69:fd:9f:42:f2:7c:1a:76:31:fc:
        82:d1:c7:e9:d6:15:e5:76:70:b0:17:85:fa:4f:37:5d:
        4c:5e:3f:04:39:88:15:12:75:a7:cb:72:37:e2:c8:e5:
        ee:94:61:76:b2:15:a1:7a:dc:ba:d3:a4:a3:9f:be:23:
        92:ba:53:ed:56:38:7a:00:83:6f:9b:ae:eb:7c:cc:31:
        df:4b:ce:44:52:0a:b8:41:f3:6e:99:c5:5c:00:fc:5f
    Fingerprint (SHA-256):
        E1:EA:C0:86:9E:0C:21:BD:E4:62:8F:69:BB:07:A0:0A:1E:B2:30:6F:0E:30:BA:D6:65:3B:08:9C:14:17:3A:8E
    Fingerprint (SHA1):
        3E:5B:A1:93:4E:B7:40:73:2C:DE:A7:0E:D8:61:2E:1B:5B:53:B7:E7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #14524: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001135 (0x3019dc2f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:53 2017
            Not After : Sun Aug 07 00:13:53 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:43:00:9f:06:5e:49:0a:42:d7:c2:9b:e6:35:40:ab:
                    bb:aa:14:1d:6f:79:ba:f3:26:81:4d:d9:a6:86:fe:dc:
                    e9:75:58:7b:e9:bf:31:0c:b1:c7:3a:91:53:b8:73:9b:
                    88:e4:0b:10:41:55:90:04:e7:52:eb:91:f1:1f:0a:b5:
                    86:33:0c:0b:91:f0:0b:17:5d:4e:cc:1c:77:a0:7c:65:
                    f0:60:a0:c9:dd:5e:a1:67:1e:e3:80:f8:0e:c2:d1:7f:
                    9a:14:36:1b:1d:37:1c:a3:ac:ef:58:2e:3a:c7:7e:e7:
                    6f:29:f9:c9:c2:6f:89:49:5f:b2:b1:8b:76:7a:df:fb:
                    72:7a:c9:ae:5c:f8:5c:69:95:46:f9:0f:66:d6:c8:38:
                    ed:f4:6a:84:26:cd:cf:46:e7:1d:a8:d2:f0:f9:af:a7:
                    4f:86:f1:09:ad:78:91:36:a2:a8:db:88:83:93:2c:b8:
                    8f:4e:3a:fa:39:bc:5e:ea:d7:7a:b0:d9:49:4f:6b:da:
                    56:52:8d:af:37:d9:84:35:f8:ff:23:16:68:36:1e:41:
                    9c:ce:0e:bf:9b:57:fc:c3:14:47:26:f0:e3:59:ee:47:
                    65:6d:0e:b4:8b:b0:43:de:04:ba:fd:7d:f5:1c:9e:07:
                    77:fd:50:fc:ad:ed:bc:78:96:d1:13:fa:7c:99:8a:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d5:1d:e6:86:e6:8f:f4:49:68:c4:59:73:34:d7:79:27:
        27:7a:d5:3c:2c:54:a2:7e:30:fe:fa:83:e2:68:b9:47:
        13:7e:38:6e:84:87:67:9b:e0:93:42:99:97:56:34:e9:
        61:69:53:d6:d0:f2:37:4e:8f:b0:24:a0:bc:26:3e:85:
        f9:66:6c:19:de:aa:46:e2:d9:a8:df:3a:f1:6e:71:41:
        03:d6:54:2e:dd:fa:73:e8:41:12:02:e2:71:f9:b6:c7:
        c4:57:00:cd:2a:51:27:f7:e5:d7:02:8c:31:ce:2d:f1:
        30:54:c6:9e:35:c9:0e:02:e0:b1:fd:83:47:d2:d8:f0:
        e5:d0:5f:5a:ce:6f:72:42:b2:10:98:28:b6:02:fa:85:
        b3:17:2e:19:1e:62:52:51:07:c1:3b:e3:6b:dc:a5:33:
        d6:98:d3:9b:e0:11:69:fd:9f:42:f2:7c:1a:76:31:fc:
        82:d1:c7:e9:d6:15:e5:76:70:b0:17:85:fa:4f:37:5d:
        4c:5e:3f:04:39:88:15:12:75:a7:cb:72:37:e2:c8:e5:
        ee:94:61:76:b2:15:a1:7a:dc:ba:d3:a4:a3:9f:be:23:
        92:ba:53:ed:56:38:7a:00:83:6f:9b:ae:eb:7c:cc:31:
        df:4b:ce:44:52:0a:b8:41:f3:6e:99:c5:5c:00:fc:5f
    Fingerprint (SHA-256):
        E1:EA:C0:86:9E:0C:21:BD:E4:62:8F:69:BB:07:A0:0A:1E:B2:30:6F:0E:30:BA:D6:65:3B:08:9C:14:17:3A:8E
    Fingerprint (SHA1):
        3E:5B:A1:93:4E:B7:40:73:2C:DE:A7:0E:D8:61:2E:1B:5B:53:B7:E7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #14525: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001135 (0x3019dc2f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:13:53 2017
            Not After : Sun Aug 07 00:13:53 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:43:00:9f:06:5e:49:0a:42:d7:c2:9b:e6:35:40:ab:
                    bb:aa:14:1d:6f:79:ba:f3:26:81:4d:d9:a6:86:fe:dc:
                    e9:75:58:7b:e9:bf:31:0c:b1:c7:3a:91:53:b8:73:9b:
                    88:e4:0b:10:41:55:90:04:e7:52:eb:91:f1:1f:0a:b5:
                    86:33:0c:0b:91:f0:0b:17:5d:4e:cc:1c:77:a0:7c:65:
                    f0:60:a0:c9:dd:5e:a1:67:1e:e3:80:f8:0e:c2:d1:7f:
                    9a:14:36:1b:1d:37:1c:a3:ac:ef:58:2e:3a:c7:7e:e7:
                    6f:29:f9:c9:c2:6f:89:49:5f:b2:b1:8b:76:7a:df:fb:
                    72:7a:c9:ae:5c:f8:5c:69:95:46:f9:0f:66:d6:c8:38:
                    ed:f4:6a:84:26:cd:cf:46:e7:1d:a8:d2:f0:f9:af:a7:
                    4f:86:f1:09:ad:78:91:36:a2:a8:db:88:83:93:2c:b8:
                    8f:4e:3a:fa:39:bc:5e:ea:d7:7a:b0:d9:49:4f:6b:da:
                    56:52:8d:af:37:d9:84:35:f8:ff:23:16:68:36:1e:41:
                    9c:ce:0e:bf:9b:57:fc:c3:14:47:26:f0:e3:59:ee:47:
                    65:6d:0e:b4:8b:b0:43:de:04:ba:fd:7d:f5:1c:9e:07:
                    77:fd:50:fc:ad:ed:bc:78:96:d1:13:fa:7c:99:8a:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d5:1d:e6:86:e6:8f:f4:49:68:c4:59:73:34:d7:79:27:
        27:7a:d5:3c:2c:54:a2:7e:30:fe:fa:83:e2:68:b9:47:
        13:7e:38:6e:84:87:67:9b:e0:93:42:99:97:56:34:e9:
        61:69:53:d6:d0:f2:37:4e:8f:b0:24:a0:bc:26:3e:85:
        f9:66:6c:19:de:aa:46:e2:d9:a8:df:3a:f1:6e:71:41:
        03:d6:54:2e:dd:fa:73:e8:41:12:02:e2:71:f9:b6:c7:
        c4:57:00:cd:2a:51:27:f7:e5:d7:02:8c:31:ce:2d:f1:
        30:54:c6:9e:35:c9:0e:02:e0:b1:fd:83:47:d2:d8:f0:
        e5:d0:5f:5a:ce:6f:72:42:b2:10:98:28:b6:02:fa:85:
        b3:17:2e:19:1e:62:52:51:07:c1:3b:e3:6b:dc:a5:33:
        d6:98:d3:9b:e0:11:69:fd:9f:42:f2:7c:1a:76:31:fc:
        82:d1:c7:e9:d6:15:e5:76:70:b0:17:85:fa:4f:37:5d:
        4c:5e:3f:04:39:88:15:12:75:a7:cb:72:37:e2:c8:e5:
        ee:94:61:76:b2:15:a1:7a:dc:ba:d3:a4:a3:9f:be:23:
        92:ba:53:ed:56:38:7a:00:83:6f:9b:ae:eb:7c:cc:31:
        df:4b:ce:44:52:0a:b8:41:f3:6e:99:c5:5c:00:fc:5f
    Fingerprint (SHA-256):
        E1:EA:C0:86:9E:0C:21:BD:E4:62:8F:69:BB:07:A0:0A:1E:B2:30:6F:0E:30:BA:D6:65:3B:08:9C:14:17:3A:8E
    Fingerprint (SHA1):
        3E:5B:A1:93:4E:B7:40:73:2C:DE:A7:0E:D8:61:2E:1B:5B:53:B7:E7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #14526: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14527: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #14528: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001165 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14529: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #14530: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #14531: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14532: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 807001166   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14533: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14534: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #14535: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14536: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 807001167   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14537: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14538: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #14539: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14540: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 807001168   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14541: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14542: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #14543: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14544: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 807001169   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14545: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14546: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #14547: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14548: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 807001170   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14549: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14550: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #14551: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14552: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 807001171   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14553: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14554: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14555: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001165 (0x3019dc4d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:14:24 2017
            Not After : Sun Aug 07 00:14:24 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:c7:a9:e5:78:31:38:a8:32:4f:3c:ba:f9:2f:8b:f9:
                    f6:2f:a8:98:f6:98:35:10:8b:f0:5c:aa:3f:a5:8a:33:
                    b0:85:a4:b5:3d:62:98:3e:ec:e7:43:e3:ba:45:aa:42:
                    34:45:d9:d1:08:de:56:70:17:21:07:ab:a2:08:0f:17:
                    3a:04:59:9d:a4:1c:ba:a3:61:af:dc:04:d4:af:68:03:
                    ad:21:a0:bb:51:b3:85:bf:c4:d3:11:0c:78:13:51:2f:
                    11:26:bb:40:81:18:71:f0:8b:9d:48:de:08:32:28:44:
                    12:1b:b3:b2:92:d9:8b:58:0f:1a:50:12:1a:32:e9:5d:
                    79:e2:c1:67:46:d0:0f:e1:8b:31:7b:ac:81:e0:41:9b:
                    bb:03:04:a6:8a:c6:a6:0f:f8:bf:bc:4e:19:ce:a6:91:
                    3f:08:6e:1e:96:7b:ab:ea:61:53:01:65:86:18:23:9d:
                    e6:9d:07:32:3d:ed:39:b4:07:88:72:87:67:31:b3:31:
                    1a:45:74:06:50:fb:9b:f6:e1:fb:31:1e:af:ce:c1:67:
                    d5:a8:19:43:7e:88:26:53:e1:2f:d5:85:17:7a:02:b7:
                    b4:b2:a5:4b:91:bd:5c:c6:97:86:46:cd:f0:3a:86:09:
                    94:ad:b4:8a:70:9d:f2:59:5f:22:dd:5e:90:09:bc:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:b7:b6:47:9a:d9:80:39:61:d0:6c:c8:f0:51:12:7a:
        e6:63:c5:78:83:86:48:3c:8e:d8:16:9b:93:e6:fc:80:
        5a:cf:11:36:3d:b6:93:84:12:07:0c:56:77:cc:a1:4e:
        c8:ca:df:88:33:9e:9b:c5:5e:b0:d8:65:e5:1d:32:a4:
        92:27:bb:ad:e7:68:c9:c4:97:98:9f:cc:48:a0:1e:fd:
        1c:2d:9a:b7:04:e5:a2:fa:71:7e:75:22:97:61:eb:7b:
        d4:4c:86:d9:0e:c0:21:17:5b:09:bb:39:db:41:73:a4:
        f1:39:19:2a:cd:07:15:6b:ea:6d:9c:ca:41:c1:24:77:
        3a:01:26:6f:48:d3:35:b5:d9:66:be:88:9f:00:ae:1c:
        58:35:37:5b:64:77:9f:a1:45:22:1b:61:87:3e:50:2b:
        ac:f9:6d:a3:fb:dd:f9:c7:b2:5b:bd:9e:71:6f:7a:70:
        c0:a2:52:21:a2:9f:0e:63:fb:59:08:07:86:c2:d7:65:
        53:51:e4:a0:43:b0:3c:e6:a5:66:11:4c:1a:08:bc:d8:
        d6:05:24:fa:12:f8:52:0f:42:5f:be:bc:ff:b2:f8:f6:
        0d:88:47:5a:85:b4:79:af:66:97:4e:97:b6:4d:f1:f7:
        f7:3b:1e:22:cf:8a:3e:ee:ca:ad:f3:8f:18:74:f8:5d
    Fingerprint (SHA-256):
        EE:0B:16:66:D6:D8:D2:90:FD:B6:0C:98:87:B1:44:C6:11:A7:B8:C6:AF:92:33:9B:98:28:FE:C6:6C:63:A3:8B
    Fingerprint (SHA1):
        40:91:B8:D0:97:C8:FA:21:C8:DE:2C:30:7A:24:A8:64:F8:E5:05:C0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #14556: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14557: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14558: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #14559: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001165 (0x3019dc4d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:14:24 2017
            Not After : Sun Aug 07 00:14:24 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:c7:a9:e5:78:31:38:a8:32:4f:3c:ba:f9:2f:8b:f9:
                    f6:2f:a8:98:f6:98:35:10:8b:f0:5c:aa:3f:a5:8a:33:
                    b0:85:a4:b5:3d:62:98:3e:ec:e7:43:e3:ba:45:aa:42:
                    34:45:d9:d1:08:de:56:70:17:21:07:ab:a2:08:0f:17:
                    3a:04:59:9d:a4:1c:ba:a3:61:af:dc:04:d4:af:68:03:
                    ad:21:a0:bb:51:b3:85:bf:c4:d3:11:0c:78:13:51:2f:
                    11:26:bb:40:81:18:71:f0:8b:9d:48:de:08:32:28:44:
                    12:1b:b3:b2:92:d9:8b:58:0f:1a:50:12:1a:32:e9:5d:
                    79:e2:c1:67:46:d0:0f:e1:8b:31:7b:ac:81:e0:41:9b:
                    bb:03:04:a6:8a:c6:a6:0f:f8:bf:bc:4e:19:ce:a6:91:
                    3f:08:6e:1e:96:7b:ab:ea:61:53:01:65:86:18:23:9d:
                    e6:9d:07:32:3d:ed:39:b4:07:88:72:87:67:31:b3:31:
                    1a:45:74:06:50:fb:9b:f6:e1:fb:31:1e:af:ce:c1:67:
                    d5:a8:19:43:7e:88:26:53:e1:2f:d5:85:17:7a:02:b7:
                    b4:b2:a5:4b:91:bd:5c:c6:97:86:46:cd:f0:3a:86:09:
                    94:ad:b4:8a:70:9d:f2:59:5f:22:dd:5e:90:09:bc:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:b7:b6:47:9a:d9:80:39:61:d0:6c:c8:f0:51:12:7a:
        e6:63:c5:78:83:86:48:3c:8e:d8:16:9b:93:e6:fc:80:
        5a:cf:11:36:3d:b6:93:84:12:07:0c:56:77:cc:a1:4e:
        c8:ca:df:88:33:9e:9b:c5:5e:b0:d8:65:e5:1d:32:a4:
        92:27:bb:ad:e7:68:c9:c4:97:98:9f:cc:48:a0:1e:fd:
        1c:2d:9a:b7:04:e5:a2:fa:71:7e:75:22:97:61:eb:7b:
        d4:4c:86:d9:0e:c0:21:17:5b:09:bb:39:db:41:73:a4:
        f1:39:19:2a:cd:07:15:6b:ea:6d:9c:ca:41:c1:24:77:
        3a:01:26:6f:48:d3:35:b5:d9:66:be:88:9f:00:ae:1c:
        58:35:37:5b:64:77:9f:a1:45:22:1b:61:87:3e:50:2b:
        ac:f9:6d:a3:fb:dd:f9:c7:b2:5b:bd:9e:71:6f:7a:70:
        c0:a2:52:21:a2:9f:0e:63:fb:59:08:07:86:c2:d7:65:
        53:51:e4:a0:43:b0:3c:e6:a5:66:11:4c:1a:08:bc:d8:
        d6:05:24:fa:12:f8:52:0f:42:5f:be:bc:ff:b2:f8:f6:
        0d:88:47:5a:85:b4:79:af:66:97:4e:97:b6:4d:f1:f7:
        f7:3b:1e:22:cf:8a:3e:ee:ca:ad:f3:8f:18:74:f8:5d
    Fingerprint (SHA-256):
        EE:0B:16:66:D6:D8:D2:90:FD:B6:0C:98:87:B1:44:C6:11:A7:B8:C6:AF:92:33:9B:98:28:FE:C6:6C:63:A3:8B
    Fingerprint (SHA1):
        40:91:B8:D0:97:C8:FA:21:C8:DE:2C:30:7A:24:A8:64:F8:E5:05:C0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #14560: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14561: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14562: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #14563: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001172 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14564: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #14565: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14566: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14567: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 807001173   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #14568: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14569: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14570: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14571: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 807001174   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14572: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14573: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #14574: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14575: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 807001175   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14576: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14577: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14578: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #14579: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #14580: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #14581: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001172 (0x3019dc54)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:14:32 2017
            Not After : Sun Aug 07 00:14:32 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:3b:01:30:3b:7f:af:cd:56:ab:1d:83:33:c3:7a:b9:
                    10:30:e9:97:c9:4b:90:90:02:8d:45:c6:60:3c:0e:23:
                    d6:2b:70:31:5b:29:b2:81:40:c6:ae:24:1e:6a:b0:58:
                    cc:a3:0c:eb:04:c3:03:7a:27:3b:29:c0:6d:f1:aa:a1:
                    99:4a:7c:81:d6:c2:b0:a4:82:98:9a:05:55:e2:5c:5a:
                    c4:2e:65:db:f5:0d:7d:18:fe:76:2e:eb:3f:53:15:d3:
                    2e:36:41:25:6a:e3:85:15:ac:b3:bc:ba:7c:34:c2:44:
                    50:f4:bd:3c:4e:27:ff:ae:2b:ad:0a:43:7a:35:e8:c9:
                    53:6d:e9:94:27:31:cc:9f:5d:86:24:9c:2a:9f:de:7e:
                    c2:b4:fc:39:d8:75:8a:10:11:f8:43:d3:e3:87:f5:87:
                    0d:16:bd:7a:f9:70:f0:3d:0e:ae:25:27:2f:0e:44:ca:
                    71:c5:32:38:5d:5d:61:3a:df:25:55:9d:e1:51:50:02:
                    1e:cb:d3:98:3c:40:a1:60:07:68:dd:86:27:91:9f:9d:
                    5f:60:ac:66:75:1a:39:1a:63:82:1b:98:5a:c1:2c:95:
                    2a:83:61:c1:98:d5:58:a6:84:fb:95:70:8c:1d:08:8b:
                    36:5b:cc:d5:c2:1d:54:7c:4d:d4:c8:1c:41:67:7c:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:7f:44:eb:a8:60:89:07:af:13:72:38:f3:7f:d0:df:
        15:5d:da:cf:4a:31:35:20:f7:e7:9d:8d:59:34:a9:27:
        93:81:b6:28:d9:02:1a:4d:ee:35:26:f0:20:7e:d6:b7:
        82:a7:37:95:cb:fb:00:97:3f:12:8a:47:7d:a0:2f:8e:
        21:54:7d:4f:c7:20:af:10:41:43:a4:02:94:b5:d3:96:
        20:31:2e:12:2a:c0:12:39:d8:0c:6b:c0:81:45:f6:36:
        11:8f:9c:ad:ae:f2:9a:60:7a:0b:dd:4c:4c:a7:bf:99:
        47:47:26:d6:d7:bf:27:98:2c:d3:a2:1d:5f:30:b3:43:
        b0:fe:92:fe:c3:0b:33:25:7a:ff:72:21:4f:fa:7b:6b:
        2f:a3:64:2e:46:82:06:bf:6c:ee:80:d4:9a:6e:e9:19:
        af:73:46:c3:9c:13:0c:f0:58:83:e1:3f:87:6e:70:6a:
        69:62:36:17:42:93:ac:33:c3:48:c0:6d:42:80:ad:7e:
        2a:5a:a8:4f:e4:9c:38:7e:59:12:8e:a0:16:63:ec:5e:
        b9:9d:d7:e7:f5:25:6e:c1:0f:a6:f9:02:29:a4:3b:d8:
        fd:12:1e:06:f1:9f:16:c4:5a:97:26:ea:e5:e1:2a:a6:
        62:22:e3:30:d0:ba:1f:35:1c:09:f0:e4:f9:87:61:f2
    Fingerprint (SHA-256):
        2A:C4:01:66:5A:63:33:C6:D9:7D:87:BD:DE:54:C4:31:9B:29:92:79:9E:47:C4:96:2D:7A:40:A2:0D:F5:FD:51
    Fingerprint (SHA1):
        31:01:8C:1A:BE:A4:0F:F6:98:10:04:BF:3D:0C:24:77:54:D4:F4:1B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14582: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14583: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14584: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001173 (0x3019dc55)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:14:34 2017
            Not After : Sun Aug 07 00:14:34 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:43:6e:2d:be:5e:55:df:10:37:30:19:eb:60:19:56:
                    0b:32:37:3f:cc:27:db:b9:fb:47:67:82:14:d9:f4:7f:
                    7d:b9:85:9f:b4:78:92:15:b1:a6:24:ef:f7:46:08:3a:
                    b3:64:34:46:f8:ad:42:10:8c:12:3a:41:6a:64:1c:34:
                    d6:fe:ce:4d:b3:11:b4:1f:09:cd:40:57:1a:07:56:11:
                    f5:6b:3a:68:a8:03:57:38:55:b4:d4:83:26:a9:f2:08:
                    97:d4:24:95:b4:a4:fd:95:ac:34:af:7c:95:04:80:c9:
                    40:33:1f:62:62:f8:77:27:69:4a:81:67:3f:95:63:88:
                    76:de:c5:75:2f:65:b5:00:9e:78:5a:d6:48:57:f8:b7:
                    d0:59:25:bd:1a:6d:ea:3c:06:56:2c:7f:13:86:50:30:
                    c0:ed:20:a1:e8:ec:22:2b:e2:2f:12:9f:f4:db:4d:7b:
                    8a:42:f4:bb:0d:d5:8f:07:6a:b4:8d:d2:3e:fb:9d:c3:
                    e2:49:da:a4:e6:72:9e:9d:af:88:bf:65:64:6b:44:05:
                    7c:16:eb:3c:3b:5f:fa:a8:6a:11:be:fb:fd:45:9f:eb:
                    d3:eb:f4:12:8a:85:22:65:f6:55:8a:28:18:5e:89:ba:
                    79:57:d0:71:b4:57:de:cb:dc:e3:6d:06:5a:79:08:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        90:2c:9f:65:64:5f:a8:0e:be:84:a1:55:8d:be:38:04:
        f8:f5:f3:9a:87:2b:fb:e8:ff:d0:84:70:d1:b6:4a:30:
        aa:5c:02:65:25:17:59:65:5c:3c:31:fb:71:09:6d:0b:
        eb:55:e6:55:db:bd:3f:06:6f:88:90:cf:03:e5:17:92:
        a4:85:55:f6:30:5a:3d:10:bd:a7:9e:09:2f:c3:3a:dc:
        ed:79:de:6c:1b:d4:ef:a8:ec:fc:d8:49:c2:4d:71:2c:
        1a:21:b5:79:97:65:d5:cc:36:a2:1a:c9:02:ea:f9:21:
        f4:f3:fd:58:23:6e:0a:bd:7d:75:8c:9e:88:b9:e5:cb:
        00:60:8c:36:16:bc:bd:42:d1:9e:7b:55:b7:85:89:21:
        3b:14:77:32:d7:01:0f:8f:0d:a5:2b:d4:30:7d:cf:00:
        d4:01:ae:9e:65:d0:01:40:c6:b2:b8:e9:80:56:35:fc:
        52:7a:5b:2e:4e:1c:66:a2:05:4d:58:05:36:41:38:33:
        93:37:7d:82:9c:eb:ee:fd:54:95:6e:92:61:e1:b7:94:
        d8:6a:8a:d7:f4:a0:6b:3f:d1:c2:83:c0:b9:28:e8:85:
        f2:d0:fa:4d:e6:6a:c9:78:53:18:c6:19:36:4e:45:5c:
        5f:b3:e7:ed:de:14:98:74:81:41:bf:3a:bb:3a:3e:24
    Fingerprint (SHA-256):
        D7:DB:B8:0B:6E:11:C3:84:9E:72:5D:CB:26:CE:23:C2:4F:CF:66:67:58:A7:D8:A0:7F:D0:F4:A8:3E:EB:7F:D0
    Fingerprint (SHA1):
        7A:8A:E5:39:A1:01:1D:9D:87:84:8B:C7:4D:1C:82:25:95:54:2D:A4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14585: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14586: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001174 (0x3019dc56)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Mon Aug 07 00:14:35 2017
            Not After : Sun Aug 07 00:14:35 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:8a:d6:25:a8:3d:bf:ee:53:66:e7:5b:0c:41:b9:61:
                    b2:14:31:53:0f:7f:9a:02:1c:e7:20:7f:c9:27:2d:fd:
                    4b:45:03:4a:e1:3c:c6:99:75:03:aa:07:7c:ab:ed:78:
                    25:08:68:14:c9:29:87:9d:f8:59:3e:90:5b:1c:36:9a:
                    56:b5:c4:ac:62:99:70:31:4d:de:66:54:8c:aa:31:3a:
                    c5:a1:0e:dd:91:40:b5:c6:88:32:db:f8:31:b0:9b:fe:
                    39:ef:5e:20:41:13:13:68:ea:c9:dd:5e:00:c4:0d:86:
                    7e:57:99:5e:09:91:07:05:57:8a:17:10:88:5d:d4:00:
                    b1:b6:22:cd:47:e0:da:c4:ce:70:0a:62:dc:9d:ff:71:
                    57:e7:ef:e4:f0:b2:de:e6:53:27:dc:a0:1c:48:c2:e5:
                    1f:e9:24:e9:2f:43:38:c6:21:3c:26:a7:16:7c:02:3e:
                    0f:c9:fd:c2:af:08:e4:6e:02:7d:c8:f0:a7:dd:95:4a:
                    26:73:e9:70:f7:11:c2:4f:17:e2:ae:87:63:f4:ad:7a:
                    c6:18:92:84:1f:e3:39:36:15:c8:9c:20:78:96:5a:c2:
                    13:5f:0b:f1:1f:df:e6:ce:18:46:e9:d7:87:bd:ed:fb:
                    0b:46:bc:1d:cb:50:b1:72:9f:cd:6a:70:87:d9:cd:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        16:65:28:ca:a5:cc:d5:e5:df:c0:e5:91:e1:3f:f6:bf:
        2c:fd:36:e3:83:bb:95:03:50:10:6d:43:0e:aa:a9:4f:
        c7:f6:4f:65:8f:a1:4f:bf:b1:f6:aa:22:90:5e:5f:5f:
        ec:0f:63:1a:49:83:52:8a:d9:11:55:18:5c:e6:df:11:
        c0:c7:d2:d8:81:12:60:e0:ef:f2:00:27:aa:52:42:17:
        dd:3c:58:4b:11:6d:21:a7:25:81:20:83:f7:e4:f0:67:
        eb:ab:00:17:1c:e5:4f:b1:09:27:14:1f:20:68:0e:76:
        3c:2f:c9:8e:69:32:2e:41:70:7d:fc:91:eb:fc:4e:a3:
        b9:b7:a3:81:6e:b9:52:26:70:6c:69:a7:73:68:29:b0:
        f6:91:00:d9:10:61:77:0d:35:53:39:e6:c5:d8:90:59:
        28:46:d9:4b:21:92:c3:8b:4f:6b:f0:d9:62:56:19:0e:
        b9:b6:21:5b:0c:8e:cd:71:b5:03:bf:7e:9d:f7:11:6c:
        78:d1:de:64:b7:3b:9a:7c:17:55:75:64:f9:07:59:ee:
        43:aa:04:01:7c:08:c5:85:ac:a6:1d:c9:64:77:17:78:
        6e:60:c5:68:22:e7:55:cd:20:86:12:fe:13:5c:5f:b3:
        e5:f1:76:10:a8:be:1c:48:3c:88:5f:a0:ce:b6:a5:46
    Fingerprint (SHA-256):
        14:14:A4:C5:0F:BB:AF:25:BF:CC:F5:67:42:81:60:1C:2B:E7:45:A3:3A:D8:8E:EA:AB:C0:4D:2B:62:D5:F5:95
    Fingerprint (SHA1):
        4F:B5:47:E9:D8:43:27:36:2A:35:A6:99:A5:6C:EE:79:52:0B:3C:54
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #14587: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #14588: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001176 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14589: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #14590: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14591: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14592: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 807001177   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14593: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14594: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14595: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14596: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 807001178   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #14597: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14598: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #14599: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14600: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 807001179   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14601: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14602: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #14603: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14604: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 807001180   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14605: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14606: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14607: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #14608: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #14609: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #14610: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #14611: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001176 (0x3019dc58)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:14:38 2017
            Not After : Sun Aug 07 00:14:38 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:4f:6a:7d:bc:44:f3:bb:99:4c:d0:d9:cd:19:99:8f:
                    ea:49:0b:20:ce:08:4a:ec:e7:3d:18:70:be:26:77:05:
                    32:f2:2b:a8:b6:ae:a5:ee:24:f2:ac:af:5d:2e:f1:60:
                    82:44:b3:93:6f:0a:bf:21:9e:12:11:d0:bd:63:31:bb:
                    0f:b9:ea:39:42:73:ff:18:d6:15:1e:69:1a:6f:bf:17:
                    47:ec:3b:41:be:00:e8:38:6e:12:12:80:fc:16:60:0d:
                    69:7b:0c:08:1b:00:55:3b:40:f3:c7:99:df:4e:20:84:
                    c1:af:db:ca:16:55:3c:b0:75:d6:d4:f4:31:7a:e5:ad:
                    21:29:e2:13:bc:7b:6b:d7:c1:8a:8f:71:da:9e:ee:33:
                    f4:cc:35:d0:4d:d8:15:13:da:e3:28:fc:99:d1:b5:29:
                    92:09:3e:0e:eb:ad:12:68:11:5e:b6:91:9d:a0:27:5f:
                    c0:2f:c2:0a:3d:8b:93:94:74:26:7a:01:84:3d:28:67:
                    dc:fd:e5:97:9f:4f:04:f7:8e:6d:b0:e2:9a:a6:f2:4d:
                    d0:22:6c:a8:93:78:95:d6:e3:58:d9:64:ba:7c:3c:f1:
                    05:66:f4:89:53:0d:03:27:98:c3:ab:38:4e:5c:ea:ef:
                    79:0c:75:78:aa:65:3d:32:8b:7d:77:c0:93:86:a6:c9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        41:82:4e:c7:0a:df:b9:38:04:4c:29:4c:38:ef:4c:76:
        cd:98:2c:73:fc:74:08:f2:5e:25:01:47:77:b8:a8:c4:
        b5:54:29:06:38:8c:70:71:e7:17:e6:d4:33:e3:f4:90:
        a2:9f:fa:23:9b:cc:4d:84:1f:17:f4:5d:3d:81:7c:64:
        53:69:df:d8:7f:fc:73:cb:c0:2a:c6:ba:b8:74:ae:a6:
        9b:d2:04:eb:11:eb:29:28:6b:17:fc:48:e3:3f:a4:2e:
        ac:ac:22:35:0d:69:d5:49:e3:d6:7f:84:12:43:65:ba:
        04:15:87:da:41:a5:04:f7:c3:cd:2b:7f:76:44:bf:01:
        a3:56:34:b2:87:75:6f:40:4a:00:88:ae:17:6c:ff:7a:
        5c:cc:32:15:fa:73:da:91:6e:79:a3:39:4b:9b:52:df:
        f4:d1:3a:a2:c0:b6:d8:02:69:a6:d5:76:71:4f:dd:bc:
        bb:ba:fc:f1:9c:77:16:d4:6d:05:90:4d:84:b3:f1:b2:
        92:2d:6d:52:cd:dc:75:79:9c:ce:80:15:f1:41:7f:1b:
        41:6a:c4:25:28:ad:09:94:5d:58:be:b2:35:51:84:e9:
        e5:7d:26:98:f7:12:b6:47:61:80:bd:49:95:ce:41:6b:
        65:08:53:1d:72:d7:4a:f6:ab:cd:13:80:65:92:4a:6c
    Fingerprint (SHA-256):
        C4:15:D5:BE:D6:6C:17:6D:43:C8:EB:5F:68:6D:88:DD:30:5A:0E:CB:A0:6D:4C:D8:B7:E3:5A:46:D2:38:4B:32
    Fingerprint (SHA1):
        21:B4:C4:02:0E:59:C6:3D:39:32:48:59:95:64:C8:9F:F8:66:F5:45
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14612: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14613: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001177 (0x3019dc59)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:14:39 2017
            Not After : Sun Aug 07 00:14:39 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:9d:3b:7c:c6:e4:70:ef:84:ce:d6:7a:f5:86:c3:9b:
                    5f:e3:ad:1b:3f:bc:4e:95:42:87:b9:a6:de:aa:58:6e:
                    65:92:3a:bd:bd:ec:79:a5:1c:50:99:02:58:16:44:34:
                    c2:09:47:2b:4e:0d:ad:53:6a:de:6c:c2:16:69:43:76:
                    35:54:10:e0:e0:47:65:0f:d9:59:55:e5:97:6b:5d:ef:
                    de:8e:15:a0:f3:68:8c:9f:2e:80:7a:c2:36:f6:41:8c:
                    22:25:f3:56:7c:59:74:19:54:5c:40:47:f4:1e:64:ad:
                    cc:7c:73:81:d8:b5:85:d0:1f:10:44:34:20:18:0a:98:
                    ad:0e:f5:d0:e8:ff:9f:4a:03:28:7a:b1:8f:97:5d:95:
                    ff:3c:37:41:e8:6a:36:92:c5:be:ed:7d:b1:e9:e2:3f:
                    9c:58:69:af:d7:d6:bc:b5:db:4b:25:86:30:14:62:09:
                    ca:d4:d2:e2:13:78:72:33:00:d7:66:cf:f9:49:bb:0c:
                    68:8c:a7:51:6c:8a:2f:d3:63:dc:9f:8b:36:3b:b8:ae:
                    03:4a:9d:4b:1e:e6:05:7b:52:9a:a2:04:9f:f4:22:6b:
                    34:7e:8b:ce:8f:7f:af:51:4a:21:55:1e:03:76:7e:93:
                    80:41:65:10:e0:4a:ac:dd:05:c4:d2:ff:7a:49:8a:43
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6c:0c:5f:70:ec:72:65:2a:51:8a:3a:f5:9d:4f:51:53:
        b3:e0:30:ab:a4:78:12:b0:0d:06:3e:ee:5f:80:6b:6f:
        cb:fd:ea:dc:07:c3:59:50:ac:1a:b5:ca:96:66:b7:9d:
        d8:c9:bd:32:6c:84:91:69:40:17:4d:55:b0:cb:fb:04:
        83:12:d4:32:34:f0:9e:14:d8:eb:84:11:26:e4:61:b0:
        6a:49:98:ad:3b:20:f2:fe:eb:9a:3a:07:05:1a:91:88:
        81:c7:46:73:ad:45:61:dc:a7:bf:5b:80:36:26:0e:c3:
        b2:70:d8:2a:62:d3:a3:7f:fd:0a:3e:fd:db:c0:11:48:
        7c:6c:b1:9e:4d:b3:0a:f2:3c:d9:b6:db:67:4a:d2:c6:
        1a:1d:ed:c5:65:99:93:a0:76:dc:e8:b5:5f:d8:ea:36:
        de:76:d9:24:97:73:19:7c:db:25:32:65:70:2d:43:46:
        7c:12:d7:e6:82:1a:16:fc:f9:c4:97:86:1a:c1:0f:89:
        8d:10:b5:fa:08:a7:a7:0c:91:4c:cc:23:9b:d5:e6:20:
        b4:78:23:98:61:84:8c:4d:69:ab:71:f0:42:33:bb:d6:
        9b:62:15:1b:26:f9:a8:f2:bd:be:f9:ef:ad:42:41:f5:
        7f:65:e8:5d:7d:4b:bd:0f:24:e0:f2:9b:09:93:94:91
    Fingerprint (SHA-256):
        4D:4C:A1:9F:95:B8:D5:62:22:17:77:7C:AB:9B:7E:6C:A8:E2:E7:D8:B2:2F:B3:FA:B2:9A:F4:A1:5C:7F:3D:2D
    Fingerprint (SHA1):
        B2:1E:7C:65:C2:CD:53:54:0F:19:F7:B7:F1:7B:63:83:20:BE:F1:88
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14614: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14615: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14616: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001178 (0x3019dc5a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Mon Aug 07 00:14:40 2017
            Not After : Sun Aug 07 00:14:40 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:a9:f1:ea:da:23:cf:e7:cd:bc:65:b0:b8:e8:7f:c7:
                    6c:33:9c:23:7a:4c:e7:ed:4c:df:26:be:75:b3:e6:1d:
                    67:a0:ec:78:6e:96:c4:ce:f0:da:92:3f:19:ed:0d:41:
                    fb:96:11:89:56:a1:3e:cc:b7:4e:22:0f:49:01:68:d3:
                    36:c9:86:34:0e:a7:ec:07:ba:2c:1a:fa:56:a2:a6:49:
                    c3:b6:b9:d3:48:42:ec:00:3d:f9:d6:e4:b7:af:ae:50:
                    a0:bf:b7:1c:f4:57:88:1d:68:ce:43:f6:97:cb:23:6b:
                    c2:80:03:02:f8:8b:26:74:1a:29:d7:8e:94:c8:2d:8f:
                    e1:d7:dd:82:52:9b:0b:0f:f5:fe:fe:56:77:f9:02:45:
                    c9:b0:8b:55:00:ce:9f:fb:8a:92:6a:55:d6:c8:08:71:
                    30:04:c1:54:5a:1c:fe:cc:00:24:c8:6c:0e:8f:f4:03:
                    22:4e:71:1e:50:ca:dd:9a:11:c0:0e:40:a5:ac:5c:6d:
                    e3:15:1c:11:d6:fe:bd:17:9c:4e:91:7c:b3:70:f7:41:
                    21:70:40:a2:c4:9d:05:be:77:b7:57:e2:e2:2a:c5:5d:
                    9e:a1:8f:d1:cc:36:6b:25:21:fb:14:11:95:e6:c1:d9:
                    5c:50:74:e5:c1:ff:5f:c7:d3:0e:78:ff:f1:07:42:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        76:ad:e7:cd:d5:3e:14:7b:db:20:0f:13:58:5d:24:cb:
        55:6f:10:17:cc:64:68:93:9f:56:79:08:0a:87:e6:5b:
        75:d9:b8:37:a9:4c:76:b1:65:04:bf:5f:67:6f:93:79:
        3f:46:bc:b2:97:e6:f9:ed:69:41:f1:e0:ee:f5:7d:8b:
        b3:e1:3d:d1:7f:10:f4:a4:f1:3e:5e:fd:f7:6d:6b:8e:
        97:08:02:9c:c2:38:e5:88:89:4b:10:c0:3a:c7:e0:6a:
        6e:21:3e:14:4c:fd:40:35:d7:dd:93:04:1c:be:c4:91:
        4a:0b:74:4e:d2:5c:4d:a2:9f:05:83:c6:33:d9:73:6a:
        13:b9:dc:ac:f6:c1:82:f4:6e:2a:dc:91:ae:da:a4:0e:
        2a:fa:98:35:60:fa:65:f0:bf:27:10:6b:da:b8:03:27:
        fc:3f:26:b4:c5:35:bf:2e:41:ec:23:1e:97:02:6b:c8:
        9e:69:27:a4:44:30:0d:5b:1a:f8:af:da:d5:4f:77:11:
        ed:30:7a:98:28:b2:0c:1b:91:9a:e5:9c:61:bd:00:cb:
        e0:8c:c5:23:44:fb:d9:76:7e:f9:f6:e3:d3:30:06:f1:
        8b:17:e7:15:ea:22:0c:32:18:ee:a9:c4:62:2c:84:fb:
        25:f1:1d:d5:51:e5:12:52:fa:06:39:db:ac:14:89:61
    Fingerprint (SHA-256):
        12:1B:65:E8:1D:33:5B:9F:6D:A1:49:4B:25:B6:A9:41:5B:41:A4:BA:20:07:8E:B1:F8:7E:00:2D:CC:8E:9D:99
    Fingerprint (SHA1):
        6C:3F:4B:E0:75:44:68:F1:1B:02:0A:B5:B8:68:B4:2B:44:40:70:98
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #14617: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #14618: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001181 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14619: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #14620: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14621: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14622: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 807001182   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14623: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14624: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14625: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14626: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 807001183   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA1Root-807000960.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14627: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14628: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #14629: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14630: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 807001184   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14631: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14632: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #14633: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001181 (0x3019dc5d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:14:44 2017
            Not After : Sun Aug 07 00:14:44 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:98:88:27:b1:86:a4:9a:65:5f:a4:1e:da:10:38:78:
                    d8:d3:aa:d3:df:50:e6:83:49:6b:ae:66:f1:60:8d:49:
                    db:e1:05:70:b8:4b:12:73:b3:a5:e1:57:de:3c:51:e2:
                    bc:6b:a1:b7:08:57:b9:3f:89:91:e2:af:fc:84:bb:79:
                    fb:6f:7b:b6:82:52:d9:c3:c6:eb:fd:39:21:5f:5a:4d:
                    b8:99:77:a3:88:21:a3:61:cc:4a:f3:0f:8e:2e:1f:ef:
                    45:4d:66:8a:30:a1:66:1d:3c:7c:b1:3f:d0:47:02:fa:
                    f0:d5:93:2e:72:78:7e:b5:ad:e3:92:6d:e8:82:f4:ed:
                    4d:80:18:8b:0d:ae:d8:f5:1c:f0:47:af:f9:d3:90:48:
                    22:d5:d0:53:a4:38:4e:b1:4e:6c:93:01:85:e1:93:83:
                    38:5e:fd:eb:90:ac:8b:f2:86:d4:f3:46:8c:f7:cb:e5:
                    56:bd:e6:eb:96:3d:d3:07:3f:fb:b8:00:59:3b:65:4d:
                    8c:8e:79:5a:e6:47:fc:02:a4:8f:59:47:ae:9c:7b:09:
                    04:2f:4c:64:0b:60:3e:5e:81:db:33:aa:cf:0d:22:80:
                    04:8e:47:69:9e:26:5e:df:f6:5d:d3:0e:54:0f:56:03:
                    b4:c1:1c:32:c8:64:09:57:90:c8:3c:fa:f6:94:66:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:b0:45:b2:43:0d:a8:09:c0:6b:9e:01:36:1e:f1:6b:
        7e:19:be:9c:ee:76:0f:98:f7:69:64:30:73:16:3d:ef:
        35:97:43:27:9e:71:e5:06:02:60:3f:a6:43:2b:b7:f8:
        1c:61:eb:0e:10:56:c5:f1:32:4f:27:2e:0b:10:68:fa:
        9d:0d:16:1a:5a:fc:c2:99:cf:19:b2:67:5c:a7:79:0c:
        b5:5c:55:b1:94:2a:39:9a:2d:8a:67:ce:ca:a2:58:05:
        bb:d8:85:a3:e4:b9:9c:16:a6:3f:94:fd:f4:9c:a8:bb:
        10:6c:15:38:d9:66:97:1e:e1:3f:13:f7:e6:b4:7c:24:
        9b:3f:7e:11:5b:18:8d:f8:3e:65:0b:2e:7b:96:3f:18:
        a6:75:9a:c7:0f:95:67:c4:8e:d9:01:7f:4c:a9:ad:7e:
        fd:38:2b:10:e3:ce:14:42:db:cb:8a:d3:33:9b:90:e1:
        53:06:88:14:76:bb:b6:a0:e5:9a:88:d9:62:5b:4a:64:
        f4:f5:fc:94:a0:bc:40:12:5e:a4:3f:ba:e1:52:c4:c9:
        cf:55:df:8f:05:c6:71:79:0e:5d:ae:5b:24:3c:ef:38:
        47:09:53:37:65:e3:5c:d2:5f:4c:2f:f7:b1:2f:6f:a3:
        30:d6:e1:e3:d2:62:bf:05:eb:8e:dc:38:3c:f7:87:0c
    Fingerprint (SHA-256):
        F8:C9:4E:30:D6:6F:D3:AE:B8:E7:72:2A:8F:AE:B0:25:F6:03:6A:1A:9F:00:8E:B4:F7:FD:95:67:A9:6E:ED:87
    Fingerprint (SHA1):
        17:D5:39:73:32:99:B1:2A:26:C0:8B:4C:7A:4D:E2:60:4A:C5:BA:BC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14634: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #14635: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001185 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14636: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #14637: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #14638: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001186 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14639: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #14640: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #14641: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14642: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 807001187 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14643: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14644: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 807001188 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14645: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14646: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #14647: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14648: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14649: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 807001189   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-Bridge-807000961.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14650: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14651: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #14652: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14653: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 807001190   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14654: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14655: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #14656: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001185 (0x3019dc61)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Mon Aug 07 00:14:48 2017
            Not After : Sun Aug 07 00:14:48 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:a7:90:92:3a:29:f3:98:9e:9e:fb:15:e5:a6:98:80:
                    e5:18:72:ff:72:95:91:dd:a7:af:c4:1d:fc:f1:9f:c9:
                    b7:3e:ed:93:41:ac:c2:76:95:f7:1e:90:00:e1:7a:fd:
                    2c:9f:fa:a7:3b:b9:92:87:c3:ba:e6:23:0c:07:6f:97:
                    9f:68:85:e6:45:a4:ac:77:9a:4c:a5:c2:f4:34:3f:ba:
                    85:19:86:a5:4c:5d:2d:7f:03:e9:77:62:cd:df:5c:88:
                    e9:84:dd:6b:0d:47:62:ca:0c:8d:60:aa:e4:fb:93:18:
                    67:7a:68:d5:5c:9c:26:65:bd:0f:d3:fa:65:9a:47:6f:
                    9e:1b:c0:6a:49:1f:87:5b:45:41:ae:a5:05:9c:d9:84:
                    c5:4a:be:7d:be:6c:54:11:e9:58:ee:32:5d:ed:03:cf:
                    ef:be:84:2a:44:46:b3:03:65:31:48:dd:d4:f1:bb:d9:
                    ef:a4:2f:20:60:0d:49:32:b2:cb:04:12:37:4b:be:9e:
                    30:69:69:c8:95:22:06:97:95:bc:bd:95:c4:4b:73:4d:
                    4a:e9:49:b8:09:75:92:6d:4c:f8:7b:23:25:a8:99:62:
                    56:30:5b:49:00:c0:8f:ba:2c:24:2d:4f:e4:be:ca:07:
                    ee:51:91:6b:a2:6f:1a:82:92:0c:a8:c8:d3:20:12:3d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:55:d3:f5:aa:d6:4c:70:4a:19:43:43:92:74:8f:89:
        64:a2:68:e4:e0:58:12:11:01:e1:50:70:1e:8a:69:82:
        35:60:95:eb:4b:e3:a7:c8:5a:a7:43:d5:bb:8f:93:18:
        e6:c1:a1:a2:c3:96:bf:02:8e:42:eb:5b:ba:0f:ca:97:
        45:a8:6a:c9:d2:24:e7:47:11:24:6f:b9:73:60:1e:dd:
        cd:3b:61:bb:59:72:8a:f3:d9:c7:fb:e4:5b:a8:bf:87:
        97:c4:9e:a3:af:e1:e1:9b:3e:6f:41:90:a1:a1:54:be:
        72:46:f4:83:e3:8c:2b:12:eb:e7:03:7b:35:ae:17:61:
        98:f5:59:4a:57:d3:1d:4d:a6:b3:16:ec:ae:69:09:c8:
        da:ce:54:3d:10:c8:6b:f9:ae:d2:0e:e6:98:e3:bc:25:
        62:34:0e:41:ba:4f:e8:d4:48:d6:71:79:70:d3:b5:38:
        e5:ca:3d:93:f1:dd:b5:57:6e:1a:f6:ae:c2:47:26:c4:
        7f:b4:5b:a4:f0:2b:89:04:d5:43:64:c5:cb:16:78:2a:
        ae:c2:b6:3f:aa:21:a6:a8:62:08:fb:d7:9c:fc:cb:a6:
        8e:e2:c6:06:fc:30:c2:37:4b:65:65:33:5e:48:d4:7a:
        03:3e:9b:04:ca:de:63:1c:3c:b3:b2:3b:da:eb:bb:33
    Fingerprint (SHA-256):
        CE:1D:E7:F4:18:1A:28:DF:59:E3:B8:2F:BA:1B:CA:8E:C5:59:1D:BB:1D:84:5D:C2:0D:09:43:EB:BA:57:98:03
    Fingerprint (SHA1):
        27:18:BC:C9:3E:2C:4C:88:30:AE:C2:D7:65:B1:54:86:3A:63:A0:50
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14657: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001186 (0x3019dc62)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Mon Aug 07 00:14:50 2017
            Not After : Sun Aug 07 00:14:50 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:c2:86:2f:cb:ac:f0:15:0b:ee:07:88:b7:9b:ad:27:
                    e7:90:b4:52:1f:0b:f3:4e:39:af:4f:e9:9f:06:f6:99:
                    43:e3:70:78:0d:d1:1a:bd:ec:e8:d2:a1:5d:4f:89:27:
                    e4:6c:c2:8f:34:24:7c:e2:91:a5:00:f2:07:fe:fa:0d:
                    f4:68:e5:f4:db:d5:5e:fa:df:8b:2c:68:e7:a8:64:9a:
                    50:5b:91:40:00:21:f5:ab:48:c5:79:10:f0:03:63:e8:
                    19:ca:93:f0:b0:e4:06:0e:09:23:3f:ab:d6:71:09:cf:
                    a5:9b:12:9e:ac:75:a6:87:14:18:d5:ee:19:9a:fc:10:
                    31:d8:7a:63:34:60:31:a7:18:f1:63:11:31:0b:48:0d:
                    3a:f3:de:65:c6:11:76:71:46:d9:9b:06:a9:04:6e:3a:
                    a9:23:1f:fa:fe:1f:83:1f:7e:64:8d:32:83:06:5b:0a:
                    3c:6a:e4:45:94:18:0d:7d:37:ac:89:00:12:7a:d1:52:
                    a6:f5:60:e0:2e:a5:5c:11:09:a5:5b:12:f8:22:68:21:
                    ca:36:c0:e4:8a:f4:7c:82:ea:56:3d:e7:91:cb:be:9b:
                    a9:23:2f:a1:a2:4e:36:3a:43:35:c8:fb:32:a5:76:4f:
                    52:27:78:ba:a7:c7:e0:40:34:d2:ea:fa:37:c2:43:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:2b:5b:9e:44:73:0c:0a:db:29:75:4c:df:45:f0:a6:
        ad:21:ec:fa:1b:e4:d2:ea:c0:e5:bb:ee:06:b4:6e:a6:
        2b:bb:55:b1:dc:3d:6b:f9:81:c6:20:e1:16:8e:52:18:
        1a:ce:88:0b:6c:55:33:13:14:64:d4:db:e0:55:63:f0:
        d0:d9:68:5a:43:6d:f6:60:e6:43:69:e6:ff:7a:79:fb:
        11:10:e9:12:74:f6:1d:f4:42:bb:5d:d3:74:a3:b8:34:
        25:f4:68:e1:23:57:4b:8e:7e:0b:06:35:8f:10:dc:01:
        ac:98:7f:d9:a7:bd:ac:e6:e0:89:6a:3b:b7:09:0b:f8:
        b7:79:f6:03:9a:fb:05:cb:5c:73:e0:8e:3b:88:ea:ea:
        66:b3:c8:a4:03:59:db:8c:06:e6:a6:33:e7:30:15:03:
        1d:67:44:e5:b3:6b:76:77:a6:46:d3:77:c5:33:ac:18:
        ca:dd:85:51:c0:39:13:0c:9b:4d:76:f3:8e:f7:2b:c9:
        bd:7b:5f:2f:68:fc:ce:35:cf:b6:a1:a6:80:83:30:0b:
        00:9e:dd:fe:97:f4:05:02:c7:a2:66:30:6c:2b:65:57:
        96:4b:87:61:85:3f:8c:e0:63:e7:f7:7f:8c:b4:7e:93:
        ad:da:4c:47:11:8e:72:86:b1:75:e3:2c:61:b8:af:23
    Fingerprint (SHA-256):
        88:F4:CA:88:06:A1:0E:58:0C:E2:99:BC:63:5B:3F:95:3C:48:E4:91:D5:08:DE:88:FE:83:8D:EF:BE:8A:BB:AE
    Fingerprint (SHA1):
        15:DE:08:4C:7A:A5:71:E8:9C:C3:ED:D4:84:74:5B:71:13:CD:9D:1E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14658: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001186 (0x3019dc62)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Mon Aug 07 00:14:50 2017
            Not After : Sun Aug 07 00:14:50 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:c2:86:2f:cb:ac:f0:15:0b:ee:07:88:b7:9b:ad:27:
                    e7:90:b4:52:1f:0b:f3:4e:39:af:4f:e9:9f:06:f6:99:
                    43:e3:70:78:0d:d1:1a:bd:ec:e8:d2:a1:5d:4f:89:27:
                    e4:6c:c2:8f:34:24:7c:e2:91:a5:00:f2:07:fe:fa:0d:
                    f4:68:e5:f4:db:d5:5e:fa:df:8b:2c:68:e7:a8:64:9a:
                    50:5b:91:40:00:21:f5:ab:48:c5:79:10:f0:03:63:e8:
                    19:ca:93:f0:b0:e4:06:0e:09:23:3f:ab:d6:71:09:cf:
                    a5:9b:12:9e:ac:75:a6:87:14:18:d5:ee:19:9a:fc:10:
                    31:d8:7a:63:34:60:31:a7:18:f1:63:11:31:0b:48:0d:
                    3a:f3:de:65:c6:11:76:71:46:d9:9b:06:a9:04:6e:3a:
                    a9:23:1f:fa:fe:1f:83:1f:7e:64:8d:32:83:06:5b:0a:
                    3c:6a:e4:45:94:18:0d:7d:37:ac:89:00:12:7a:d1:52:
                    a6:f5:60:e0:2e:a5:5c:11:09:a5:5b:12:f8:22:68:21:
                    ca:36:c0:e4:8a:f4:7c:82:ea:56:3d:e7:91:cb:be:9b:
                    a9:23:2f:a1:a2:4e:36:3a:43:35:c8:fb:32:a5:76:4f:
                    52:27:78:ba:a7:c7:e0:40:34:d2:ea:fa:37:c2:43:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:2b:5b:9e:44:73:0c:0a:db:29:75:4c:df:45:f0:a6:
        ad:21:ec:fa:1b:e4:d2:ea:c0:e5:bb:ee:06:b4:6e:a6:
        2b:bb:55:b1:dc:3d:6b:f9:81:c6:20:e1:16:8e:52:18:
        1a:ce:88:0b:6c:55:33:13:14:64:d4:db:e0:55:63:f0:
        d0:d9:68:5a:43:6d:f6:60:e6:43:69:e6:ff:7a:79:fb:
        11:10:e9:12:74:f6:1d:f4:42:bb:5d:d3:74:a3:b8:34:
        25:f4:68:e1:23:57:4b:8e:7e:0b:06:35:8f:10:dc:01:
        ac:98:7f:d9:a7:bd:ac:e6:e0:89:6a:3b:b7:09:0b:f8:
        b7:79:f6:03:9a:fb:05:cb:5c:73:e0:8e:3b:88:ea:ea:
        66:b3:c8:a4:03:59:db:8c:06:e6:a6:33:e7:30:15:03:
        1d:67:44:e5:b3:6b:76:77:a6:46:d3:77:c5:33:ac:18:
        ca:dd:85:51:c0:39:13:0c:9b:4d:76:f3:8e:f7:2b:c9:
        bd:7b:5f:2f:68:fc:ce:35:cf:b6:a1:a6:80:83:30:0b:
        00:9e:dd:fe:97:f4:05:02:c7:a2:66:30:6c:2b:65:57:
        96:4b:87:61:85:3f:8c:e0:63:e7:f7:7f:8c:b4:7e:93:
        ad:da:4c:47:11:8e:72:86:b1:75:e3:2c:61:b8:af:23
    Fingerprint (SHA-256):
        88:F4:CA:88:06:A1:0E:58:0C:E2:99:BC:63:5B:3F:95:3C:48:E4:91:D5:08:DE:88:FE:83:8D:EF:BE:8A:BB:AE
    Fingerprint (SHA1):
        15:DE:08:4C:7A:A5:71:E8:9C:C3:ED:D4:84:74:5B:71:13:CD:9D:1E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14659: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #14660: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001191 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14661: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #14662: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #14663: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001192 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14664: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #14665: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #14666: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14667: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 807001193 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14668: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14669: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 807001194 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14670: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14671: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #14672: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14673: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14674: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 807001195   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-Bridge-807000962.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14675: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14676: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #14677: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14678: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 807001196   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14679: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14680: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14681: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14682: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 807001197   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-BridgeNavy-807000963.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14683: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14684: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #14685: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14686: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 807001198   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14687: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14688: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #14689: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001191 (0x3019dc67)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Mon Aug 07 00:14:54 2017
            Not After : Sun Aug 07 00:14:54 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:ee:61:52:01:0c:f3:d6:3e:05:5e:75:a2:e6:9c:13:
                    50:94:90:b6:5f:c9:68:75:24:9f:6d:3f:cc:13:56:28:
                    48:76:0f:aa:6a:f9:ab:6d:1b:17:d6:03:ee:d3:6b:20:
                    3e:5d:cb:4f:21:a8:a4:ba:0a:fb:84:19:b0:3c:9f:1b:
                    2c:63:36:1a:a0:5c:9b:c5:fa:39:74:eb:48:85:c9:16:
                    ae:39:a4:9d:f0:6d:75:e9:8a:1c:95:09:ec:8a:5b:39:
                    ab:fe:99:f0:b4:33:bc:67:92:dc:b5:03:a6:e0:bd:3b:
                    df:66:0b:74:01:0a:91:84:3b:a1:02:12:1b:e0:27:fa:
                    78:ab:c1:f9:06:b7:da:b2:6c:64:36:a7:6b:42:83:1f:
                    da:f1:49:51:ba:42:b0:ef:3a:8b:81:69:37:e0:b4:7c:
                    38:62:d7:af:ff:79:d1:36:ca:78:61:82:e1:7f:08:51:
                    61:38:20:a3:77:8b:ca:ec:c0:2a:98:dd:7c:0d:bf:ba:
                    1e:0e:b4:4f:08:30:76:f9:21:5c:71:7b:18:06:7d:05:
                    be:00:b4:f2:bf:8c:35:84:1a:f4:f8:27:f2:ee:a2:0f:
                    44:d0:38:c6:a8:ee:eb:a0:73:f0:84:bc:d8:84:5e:46:
                    a7:5e:c1:76:6f:08:47:63:c9:05:64:9f:71:66:c3:a5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        39:c2:48:b0:8b:4f:1e:57:a7:d8:78:ef:a2:26:08:2b:
        ec:c3:7b:7d:50:25:57:4f:19:98:b7:56:45:16:9c:ab:
        70:31:1d:b7:2b:96:fa:60:68:3b:ec:8c:90:fd:e6:b5:
        46:a7:03:11:08:e7:c7:7b:be:0c:4d:4f:89:11:4b:a5:
        2f:ae:d8:00:c7:1c:fa:3b:80:78:a4:e5:49:0c:8a:68:
        a6:82:ad:33:c7:60:2e:8a:e3:27:12:72:52:1c:70:15:
        24:ce:d9:7f:7f:eb:e9:a3:25:cf:cd:f2:ac:1a:ee:3f:
        5f:d7:3b:6b:b6:20:f5:5a:eb:70:17:2e:97:4b:2b:41:
        30:15:71:f1:c8:4b:53:05:cb:dc:d3:1f:71:6c:22:e5:
        65:93:e6:57:3c:b7:f6:23:0c:f4:8a:46:ee:11:90:63:
        29:80:06:aa:61:94:bf:7e:ad:48:35:f8:2e:a6:f5:60:
        84:2b:c2:13:f5:e4:4f:07:75:af:b6:53:4b:8f:33:22:
        54:54:ab:cf:1d:06:fb:77:0c:f7:df:3c:c2:c2:05:cc:
        0e:f8:9e:ad:97:2b:42:3b:7c:b9:cf:14:8b:3a:db:93:
        ac:59:95:c5:a4:ae:fb:bc:7b:09:0e:59:f2:90:aa:2a:
        94:7f:aa:f5:4c:e6:c7:89:bd:a4:88:1e:2d:db:5e:87
    Fingerprint (SHA-256):
        3E:32:EC:38:92:58:C6:A9:FA:E4:15:DF:69:8B:51:AC:56:78:8B:15:93:CB:52:AF:99:C6:0F:AD:49:AF:B5:08
    Fingerprint (SHA1):
        99:1E:AD:13:AC:F3:D9:91:81:BA:12:14:46:D6:4E:B1:7A:00:20:AC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14690: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001192 (0x3019dc68)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Mon Aug 07 00:14:55 2017
            Not After : Sun Aug 07 00:14:55 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:d8:f8:0f:b5:7b:cf:99:3b:5a:43:29:c6:2c:de:06:
                    cb:19:29:71:84:10:76:61:bd:39:b7:3a:ef:c2:28:f8:
                    f2:d9:19:19:00:2f:66:f2:6b:9e:6c:36:f3:4a:40:4f:
                    b8:8f:34:5b:52:0a:62:98:8e:cc:9c:38:e8:20:56:dd:
                    23:6e:91:7e:a6:13:72:03:9b:75:ba:1c:0c:5d:65:38:
                    39:4d:0a:04:d8:b1:26:90:1e:51:bc:37:97:23:cb:92:
                    f6:2d:e0:b5:65:46:4e:4c:72:f8:1e:9c:86:1d:52:8e:
                    77:0a:b7:90:2d:db:ca:b7:60:95:e6:f4:51:5e:24:8d:
                    f1:a0:36:01:c5:d5:aa:35:18:80:a6:0a:ad:a0:b6:92:
                    50:91:e9:b0:5b:62:2f:8a:e5:e5:94:70:8b:8b:91:44:
                    1a:c3:7b:6a:e3:ac:2a:e1:c4:40:79:e4:34:40:49:55:
                    c9:ef:c9:e7:e4:32:60:90:ee:2d:6a:74:71:cd:f9:bc:
                    97:5f:63:06:40:f6:90:a8:ea:46:fb:10:bb:a2:cf:da:
                    91:52:bf:59:e8:82:af:d1:d8:38:3d:af:77:5e:9d:9c:
                    c4:4a:13:10:cc:f3:6d:a4:cc:a1:d6:06:b2:79:50:7b:
                    e7:ed:ea:73:c9:73:b6:fd:b3:87:ec:e0:bb:f9:5d:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:4b:22:ca:6d:f9:f3:5f:89:da:58:f2:64:c5:77:d5:
        a7:a4:b1:de:46:83:24:6b:bf:12:d5:1a:5e:70:a5:8e:
        2b:be:12:4a:a1:e9:bc:85:e7:2f:de:05:f7:68:e2:48:
        6e:54:e0:54:87:bc:1b:17:63:e4:b2:05:f3:1e:75:c7:
        e5:45:e1:bd:1d:09:de:b3:a1:c1:e6:af:73:1d:e6:cc:
        7c:89:bb:66:10:88:67:2d:1d:32:f6:bf:48:68:65:13:
        68:42:ef:14:34:f1:0d:48:b6:a8:9c:4b:f3:6e:85:fa:
        b6:ab:84:24:40:6b:ca:e6:ca:8b:a3:92:f8:f9:1d:61:
        e0:ee:5f:c6:5f:46:a2:2a:93:23:6e:ee:e7:76:72:96:
        05:09:af:bb:76:1a:13:a7:80:35:44:aa:4e:7a:be:6a:
        8e:76:bd:16:b7:38:a3:8f:dd:5f:d5:aa:f5:7d:d5:12:
        bf:34:f8:2b:4f:d5:4a:db:83:2c:17:e6:ce:1d:d1:68:
        68:db:3a:c8:9a:3e:0e:7c:2b:74:b3:b5:38:dd:52:a8:
        ee:ea:2e:17:ab:82:b6:8c:63:ca:f0:3c:31:c3:0a:dc:
        56:a3:4b:42:cf:ca:ee:68:33:59:19:31:1c:79:ac:74:
        a7:51:03:28:ff:82:36:6e:15:03:4a:5a:68:aa:13:18
    Fingerprint (SHA-256):
        96:5C:77:48:9E:AD:70:BF:EB:FB:D7:3C:2F:0F:CF:D5:0D:F6:DD:4F:76:16:8C:B2:26:B3:E9:DF:6E:78:69:CD
    Fingerprint (SHA1):
        EE:CF:DA:30:F1:88:9D:DC:A3:F4:4A:25:96:FA:9E:01:A7:C1:E5:0D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14691: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001192 (0x3019dc68)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Mon Aug 07 00:14:55 2017
            Not After : Sun Aug 07 00:14:55 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:d8:f8:0f:b5:7b:cf:99:3b:5a:43:29:c6:2c:de:06:
                    cb:19:29:71:84:10:76:61:bd:39:b7:3a:ef:c2:28:f8:
                    f2:d9:19:19:00:2f:66:f2:6b:9e:6c:36:f3:4a:40:4f:
                    b8:8f:34:5b:52:0a:62:98:8e:cc:9c:38:e8:20:56:dd:
                    23:6e:91:7e:a6:13:72:03:9b:75:ba:1c:0c:5d:65:38:
                    39:4d:0a:04:d8:b1:26:90:1e:51:bc:37:97:23:cb:92:
                    f6:2d:e0:b5:65:46:4e:4c:72:f8:1e:9c:86:1d:52:8e:
                    77:0a:b7:90:2d:db:ca:b7:60:95:e6:f4:51:5e:24:8d:
                    f1:a0:36:01:c5:d5:aa:35:18:80:a6:0a:ad:a0:b6:92:
                    50:91:e9:b0:5b:62:2f:8a:e5:e5:94:70:8b:8b:91:44:
                    1a:c3:7b:6a:e3:ac:2a:e1:c4:40:79:e4:34:40:49:55:
                    c9:ef:c9:e7:e4:32:60:90:ee:2d:6a:74:71:cd:f9:bc:
                    97:5f:63:06:40:f6:90:a8:ea:46:fb:10:bb:a2:cf:da:
                    91:52:bf:59:e8:82:af:d1:d8:38:3d:af:77:5e:9d:9c:
                    c4:4a:13:10:cc:f3:6d:a4:cc:a1:d6:06:b2:79:50:7b:
                    e7:ed:ea:73:c9:73:b6:fd:b3:87:ec:e0:bb:f9:5d:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:4b:22:ca:6d:f9:f3:5f:89:da:58:f2:64:c5:77:d5:
        a7:a4:b1:de:46:83:24:6b:bf:12:d5:1a:5e:70:a5:8e:
        2b:be:12:4a:a1:e9:bc:85:e7:2f:de:05:f7:68:e2:48:
        6e:54:e0:54:87:bc:1b:17:63:e4:b2:05:f3:1e:75:c7:
        e5:45:e1:bd:1d:09:de:b3:a1:c1:e6:af:73:1d:e6:cc:
        7c:89:bb:66:10:88:67:2d:1d:32:f6:bf:48:68:65:13:
        68:42:ef:14:34:f1:0d:48:b6:a8:9c:4b:f3:6e:85:fa:
        b6:ab:84:24:40:6b:ca:e6:ca:8b:a3:92:f8:f9:1d:61:
        e0:ee:5f:c6:5f:46:a2:2a:93:23:6e:ee:e7:76:72:96:
        05:09:af:bb:76:1a:13:a7:80:35:44:aa:4e:7a:be:6a:
        8e:76:bd:16:b7:38:a3:8f:dd:5f:d5:aa:f5:7d:d5:12:
        bf:34:f8:2b:4f:d5:4a:db:83:2c:17:e6:ce:1d:d1:68:
        68:db:3a:c8:9a:3e:0e:7c:2b:74:b3:b5:38:dd:52:a8:
        ee:ea:2e:17:ab:82:b6:8c:63:ca:f0:3c:31:c3:0a:dc:
        56:a3:4b:42:cf:ca:ee:68:33:59:19:31:1c:79:ac:74:
        a7:51:03:28:ff:82:36:6e:15:03:4a:5a:68:aa:13:18
    Fingerprint (SHA-256):
        96:5C:77:48:9E:AD:70:BF:EB:FB:D7:3C:2F:0F:CF:D5:0D:F6:DD:4F:76:16:8C:B2:26:B3:E9:DF:6E:78:69:CD
    Fingerprint (SHA1):
        EE:CF:DA:30:F1:88:9D:DC:A3:F4:4A:25:96:FA:9E:01:A7:C1:E5:0D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14692: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #14693: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001191 (0x3019dc67)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Mon Aug 07 00:14:54 2017
            Not After : Sun Aug 07 00:14:54 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:ee:61:52:01:0c:f3:d6:3e:05:5e:75:a2:e6:9c:13:
                    50:94:90:b6:5f:c9:68:75:24:9f:6d:3f:cc:13:56:28:
                    48:76:0f:aa:6a:f9:ab:6d:1b:17:d6:03:ee:d3:6b:20:
                    3e:5d:cb:4f:21:a8:a4:ba:0a:fb:84:19:b0:3c:9f:1b:
                    2c:63:36:1a:a0:5c:9b:c5:fa:39:74:eb:48:85:c9:16:
                    ae:39:a4:9d:f0:6d:75:e9:8a:1c:95:09:ec:8a:5b:39:
                    ab:fe:99:f0:b4:33:bc:67:92:dc:b5:03:a6:e0:bd:3b:
                    df:66:0b:74:01:0a:91:84:3b:a1:02:12:1b:e0:27:fa:
                    78:ab:c1:f9:06:b7:da:b2:6c:64:36:a7:6b:42:83:1f:
                    da:f1:49:51:ba:42:b0:ef:3a:8b:81:69:37:e0:b4:7c:
                    38:62:d7:af:ff:79:d1:36:ca:78:61:82:e1:7f:08:51:
                    61:38:20:a3:77:8b:ca:ec:c0:2a:98:dd:7c:0d:bf:ba:
                    1e:0e:b4:4f:08:30:76:f9:21:5c:71:7b:18:06:7d:05:
                    be:00:b4:f2:bf:8c:35:84:1a:f4:f8:27:f2:ee:a2:0f:
                    44:d0:38:c6:a8:ee:eb:a0:73:f0:84:bc:d8:84:5e:46:
                    a7:5e:c1:76:6f:08:47:63:c9:05:64:9f:71:66:c3:a5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        39:c2:48:b0:8b:4f:1e:57:a7:d8:78:ef:a2:26:08:2b:
        ec:c3:7b:7d:50:25:57:4f:19:98:b7:56:45:16:9c:ab:
        70:31:1d:b7:2b:96:fa:60:68:3b:ec:8c:90:fd:e6:b5:
        46:a7:03:11:08:e7:c7:7b:be:0c:4d:4f:89:11:4b:a5:
        2f:ae:d8:00:c7:1c:fa:3b:80:78:a4:e5:49:0c:8a:68:
        a6:82:ad:33:c7:60:2e:8a:e3:27:12:72:52:1c:70:15:
        24:ce:d9:7f:7f:eb:e9:a3:25:cf:cd:f2:ac:1a:ee:3f:
        5f:d7:3b:6b:b6:20:f5:5a:eb:70:17:2e:97:4b:2b:41:
        30:15:71:f1:c8:4b:53:05:cb:dc:d3:1f:71:6c:22:e5:
        65:93:e6:57:3c:b7:f6:23:0c:f4:8a:46:ee:11:90:63:
        29:80:06:aa:61:94:bf:7e:ad:48:35:f8:2e:a6:f5:60:
        84:2b:c2:13:f5:e4:4f:07:75:af:b6:53:4b:8f:33:22:
        54:54:ab:cf:1d:06:fb:77:0c:f7:df:3c:c2:c2:05:cc:
        0e:f8:9e:ad:97:2b:42:3b:7c:b9:cf:14:8b:3a:db:93:
        ac:59:95:c5:a4:ae:fb:bc:7b:09:0e:59:f2:90:aa:2a:
        94:7f:aa:f5:4c:e6:c7:89:bd:a4:88:1e:2d:db:5e:87
    Fingerprint (SHA-256):
        3E:32:EC:38:92:58:C6:A9:FA:E4:15:DF:69:8B:51:AC:56:78:8B:15:93:CB:52:AF:99:C6:0F:AD:49:AF:B5:08
    Fingerprint (SHA1):
        99:1E:AD:13:AC:F3:D9:91:81:BA:12:14:46:D6:4E:B1:7A:00:20:AC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14694: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001192 (0x3019dc68)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Mon Aug 07 00:14:55 2017
            Not After : Sun Aug 07 00:14:55 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:d8:f8:0f:b5:7b:cf:99:3b:5a:43:29:c6:2c:de:06:
                    cb:19:29:71:84:10:76:61:bd:39:b7:3a:ef:c2:28:f8:
                    f2:d9:19:19:00:2f:66:f2:6b:9e:6c:36:f3:4a:40:4f:
                    b8:8f:34:5b:52:0a:62:98:8e:cc:9c:38:e8:20:56:dd:
                    23:6e:91:7e:a6:13:72:03:9b:75:ba:1c:0c:5d:65:38:
                    39:4d:0a:04:d8:b1:26:90:1e:51:bc:37:97:23:cb:92:
                    f6:2d:e0:b5:65:46:4e:4c:72:f8:1e:9c:86:1d:52:8e:
                    77:0a:b7:90:2d:db:ca:b7:60:95:e6:f4:51:5e:24:8d:
                    f1:a0:36:01:c5:d5:aa:35:18:80:a6:0a:ad:a0:b6:92:
                    50:91:e9:b0:5b:62:2f:8a:e5:e5:94:70:8b:8b:91:44:
                    1a:c3:7b:6a:e3:ac:2a:e1:c4:40:79:e4:34:40:49:55:
                    c9:ef:c9:e7:e4:32:60:90:ee:2d:6a:74:71:cd:f9:bc:
                    97:5f:63:06:40:f6:90:a8:ea:46:fb:10:bb:a2:cf:da:
                    91:52:bf:59:e8:82:af:d1:d8:38:3d:af:77:5e:9d:9c:
                    c4:4a:13:10:cc:f3:6d:a4:cc:a1:d6:06:b2:79:50:7b:
                    e7:ed:ea:73:c9:73:b6:fd:b3:87:ec:e0:bb:f9:5d:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:4b:22:ca:6d:f9:f3:5f:89:da:58:f2:64:c5:77:d5:
        a7:a4:b1:de:46:83:24:6b:bf:12:d5:1a:5e:70:a5:8e:
        2b:be:12:4a:a1:e9:bc:85:e7:2f:de:05:f7:68:e2:48:
        6e:54:e0:54:87:bc:1b:17:63:e4:b2:05:f3:1e:75:c7:
        e5:45:e1:bd:1d:09:de:b3:a1:c1:e6:af:73:1d:e6:cc:
        7c:89:bb:66:10:88:67:2d:1d:32:f6:bf:48:68:65:13:
        68:42:ef:14:34:f1:0d:48:b6:a8:9c:4b:f3:6e:85:fa:
        b6:ab:84:24:40:6b:ca:e6:ca:8b:a3:92:f8:f9:1d:61:
        e0:ee:5f:c6:5f:46:a2:2a:93:23:6e:ee:e7:76:72:96:
        05:09:af:bb:76:1a:13:a7:80:35:44:aa:4e:7a:be:6a:
        8e:76:bd:16:b7:38:a3:8f:dd:5f:d5:aa:f5:7d:d5:12:
        bf:34:f8:2b:4f:d5:4a:db:83:2c:17:e6:ce:1d:d1:68:
        68:db:3a:c8:9a:3e:0e:7c:2b:74:b3:b5:38:dd:52:a8:
        ee:ea:2e:17:ab:82:b6:8c:63:ca:f0:3c:31:c3:0a:dc:
        56:a3:4b:42:cf:ca:ee:68:33:59:19:31:1c:79:ac:74:
        a7:51:03:28:ff:82:36:6e:15:03:4a:5a:68:aa:13:18
    Fingerprint (SHA-256):
        96:5C:77:48:9E:AD:70:BF:EB:FB:D7:3C:2F:0F:CF:D5:0D:F6:DD:4F:76:16:8C:B2:26:B3:E9:DF:6E:78:69:CD
    Fingerprint (SHA1):
        EE:CF:DA:30:F1:88:9D:DC:A3:F4:4A:25:96:FA:9E:01:A7:C1:E5:0D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14695: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001192 (0x3019dc68)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Mon Aug 07 00:14:55 2017
            Not After : Sun Aug 07 00:14:55 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:d8:f8:0f:b5:7b:cf:99:3b:5a:43:29:c6:2c:de:06:
                    cb:19:29:71:84:10:76:61:bd:39:b7:3a:ef:c2:28:f8:
                    f2:d9:19:19:00:2f:66:f2:6b:9e:6c:36:f3:4a:40:4f:
                    b8:8f:34:5b:52:0a:62:98:8e:cc:9c:38:e8:20:56:dd:
                    23:6e:91:7e:a6:13:72:03:9b:75:ba:1c:0c:5d:65:38:
                    39:4d:0a:04:d8:b1:26:90:1e:51:bc:37:97:23:cb:92:
                    f6:2d:e0:b5:65:46:4e:4c:72:f8:1e:9c:86:1d:52:8e:
                    77:0a:b7:90:2d:db:ca:b7:60:95:e6:f4:51:5e:24:8d:
                    f1:a0:36:01:c5:d5:aa:35:18:80:a6:0a:ad:a0:b6:92:
                    50:91:e9:b0:5b:62:2f:8a:e5:e5:94:70:8b:8b:91:44:
                    1a:c3:7b:6a:e3:ac:2a:e1:c4:40:79:e4:34:40:49:55:
                    c9:ef:c9:e7:e4:32:60:90:ee:2d:6a:74:71:cd:f9:bc:
                    97:5f:63:06:40:f6:90:a8:ea:46:fb:10:bb:a2:cf:da:
                    91:52:bf:59:e8:82:af:d1:d8:38:3d:af:77:5e:9d:9c:
                    c4:4a:13:10:cc:f3:6d:a4:cc:a1:d6:06:b2:79:50:7b:
                    e7:ed:ea:73:c9:73:b6:fd:b3:87:ec:e0:bb:f9:5d:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:4b:22:ca:6d:f9:f3:5f:89:da:58:f2:64:c5:77:d5:
        a7:a4:b1:de:46:83:24:6b:bf:12:d5:1a:5e:70:a5:8e:
        2b:be:12:4a:a1:e9:bc:85:e7:2f:de:05:f7:68:e2:48:
        6e:54:e0:54:87:bc:1b:17:63:e4:b2:05:f3:1e:75:c7:
        e5:45:e1:bd:1d:09:de:b3:a1:c1:e6:af:73:1d:e6:cc:
        7c:89:bb:66:10:88:67:2d:1d:32:f6:bf:48:68:65:13:
        68:42:ef:14:34:f1:0d:48:b6:a8:9c:4b:f3:6e:85:fa:
        b6:ab:84:24:40:6b:ca:e6:ca:8b:a3:92:f8:f9:1d:61:
        e0:ee:5f:c6:5f:46:a2:2a:93:23:6e:ee:e7:76:72:96:
        05:09:af:bb:76:1a:13:a7:80:35:44:aa:4e:7a:be:6a:
        8e:76:bd:16:b7:38:a3:8f:dd:5f:d5:aa:f5:7d:d5:12:
        bf:34:f8:2b:4f:d5:4a:db:83:2c:17:e6:ce:1d:d1:68:
        68:db:3a:c8:9a:3e:0e:7c:2b:74:b3:b5:38:dd:52:a8:
        ee:ea:2e:17:ab:82:b6:8c:63:ca:f0:3c:31:c3:0a:dc:
        56:a3:4b:42:cf:ca:ee:68:33:59:19:31:1c:79:ac:74:
        a7:51:03:28:ff:82:36:6e:15:03:4a:5a:68:aa:13:18
    Fingerprint (SHA-256):
        96:5C:77:48:9E:AD:70:BF:EB:FB:D7:3C:2F:0F:CF:D5:0D:F6:DD:4F:76:16:8C:B2:26:B3:E9:DF:6E:78:69:CD
    Fingerprint (SHA1):
        EE:CF:DA:30:F1:88:9D:DC:A3:F4:4A:25:96:FA:9E:01:A7:C1:E5:0D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14696: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #14697: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001199 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14698: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #14699: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #14700: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001200 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14701: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #14702: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #14703: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14704: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 807001201   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14705: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14706: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #14707: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14708: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 807001202   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14709: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14710: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #14711: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14712: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 807001203 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #14713: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14714: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 807001204 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #14715: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14716: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #14717: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14718: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14719: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 807001205   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14720: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14721: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14722: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14723: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 807001206   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14724: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14725: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #14726: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14727: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 807001207   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14728: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14729: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #14730: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14731: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 807001208   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14732: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14733: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14734: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001199 (0x3019dc6f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Mon Aug 07 00:15:03 2017
            Not After : Sun Aug 07 00:15:03 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:0e:c8:aa:be:4a:b0:e1:ee:3e:3d:d8:c8:1e:70:c8:
                    12:64:69:79:aa:da:78:ae:21:ad:f1:f3:d2:a9:ab:a0:
                    5a:61:37:f2:f8:23:d3:60:8a:d5:ec:bd:a5:06:34:eb:
                    ab:ac:35:a5:97:8e:7f:a5:d0:8d:ff:87:d1:54:71:43:
                    04:55:8f:82:98:82:dc:17:6f:81:58:0d:8e:60:98:65:
                    4d:ba:27:66:9c:0e:bf:ba:a8:48:9e:eb:64:3c:ab:b9:
                    2e:2d:5d:68:71:af:1a:8b:f2:b3:be:41:92:67:67:14:
                    96:23:1d:2b:80:04:a7:07:85:b0:a9:6d:34:a9:10:23:
                    de:98:82:33:1a:62:4b:e5:de:51:31:f7:f1:13:d2:1d:
                    c4:a9:c0:82:f9:48:b7:24:09:93:96:38:4e:08:0e:05:
                    d1:06:f7:0c:b4:92:27:57:73:3e:c5:30:4d:b8:c5:17:
                    a4:08:49:58:23:3a:32:b1:b5:52:67:77:96:b9:c0:ef:
                    76:04:47:a0:ce:25:19:78:41:12:68:da:45:8b:f7:13:
                    e2:06:c5:e5:35:77:7b:24:87:c2:0c:84:61:ff:53:3d:
                    62:9f:88:d7:1d:69:41:22:7e:83:bd:ec:88:da:ff:02:
                    43:e9:11:ec:c9:ed:12:84:7e:50:6a:7e:03:ad:fb:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a5:45:51:19:f3:71:2f:1e:47:58:a3:7f:36:c4:67:d2:
        c9:e4:0d:c9:bc:6a:6e:29:c3:da:f0:98:dd:a7:ea:ad:
        a3:4c:57:4f:73:6b:8f:64:22:f9:ce:4c:91:9d:05:89:
        c1:29:8f:f9:df:fe:67:e7:88:e9:34:14:a5:11:da:90:
        fe:47:81:8f:2f:47:79:de:15:d3:c2:e7:0d:69:54:f3:
        3e:90:16:96:b4:a6:b8:7a:45:51:30:e9:d2:5a:d9:8e:
        19:18:4e:f4:e8:1f:85:25:8c:33:4c:7a:73:07:55:04:
        47:24:3d:06:b5:45:6c:41:0d:bb:e7:e2:48:f3:98:39:
        b2:95:b7:e1:42:4c:db:95:40:a7:f5:de:03:c8:97:f8:
        dd:5d:d1:60:d1:2c:1c:7e:ba:16:2c:e9:47:e5:c3:11:
        06:7e:2e:e3:b6:c7:3d:e4:64:cc:8f:24:f3:9e:93:89:
        a0:60:7e:21:67:ec:02:81:f6:3b:f5:71:59:0e:fa:c4:
        3c:4d:5e:03:02:1c:97:e4:46:62:82:3c:ad:08:dc:84:
        ae:9d:a2:6a:85:b1:30:07:4a:47:07:1a:b6:ec:6c:31:
        88:d3:06:37:69:fc:64:6f:ba:de:80:44:8d:d8:cb:16:
        0f:8c:bf:04:c2:d8:bf:bf:17:f7:69:2d:2a:b3:0c:7e
    Fingerprint (SHA-256):
        8B:EC:53:2C:BE:59:5A:73:34:3F:2D:52:78:52:E3:26:97:BE:D9:CD:0C:D8:0F:F1:CA:36:7E:91:D4:97:4A:1F
    Fingerprint (SHA1):
        7E:4E:9F:5D:AF:B0:24:3C:DF:B2:5D:B7:94:38:01:F6:2C:ED:50:A7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #14735: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14736: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14737: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14738: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14739: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14740: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14741: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14742: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14743: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001200 (0x3019dc70)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Mon Aug 07 00:15:04 2017
            Not After : Sun Aug 07 00:15:04 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:d7:c7:c3:0d:ac:6d:fe:47:3a:1f:7a:d0:38:75:05:
                    a1:ed:5a:f8:b2:ba:f0:c0:f9:53:13:42:18:9a:13:b5:
                    27:66:bb:63:0a:0c:16:11:7c:89:2f:04:c1:ba:dc:2f:
                    d9:d6:52:cd:97:83:d1:96:b9:3c:44:7d:ff:64:2c:76:
                    1a:c9:90:78:a8:3a:b2:d6:33:02:3e:3c:b6:05:de:0d:
                    f7:b2:42:fb:ea:72:1a:0e:ce:15:f4:fc:76:e9:14:b7:
                    e2:73:49:b0:09:eb:7f:d7:e5:b7:ad:79:f9:0e:9a:23:
                    d1:f1:0f:74:da:90:a2:1f:f5:95:f9:3d:21:7d:6f:ef:
                    23:d3:c3:30:9f:e5:c2:e8:46:4c:46:6a:35:50:90:74:
                    a9:3d:95:38:96:1e:8f:e4:8c:d4:ac:3a:4c:86:a3:0b:
                    e9:16:ca:35:b1:a6:07:c7:01:17:14:a8:07:bb:63:94:
                    11:77:aa:19:5b:5e:5a:28:70:95:0a:cf:38:3f:3f:02:
                    fa:0d:31:9b:27:47:f3:00:4b:54:0f:72:4c:3d:a2:f4:
                    1e:41:60:87:49:25:4d:c3:4d:aa:cc:a5:31:49:65:82:
                    90:2d:b7:63:ee:a6:7a:d5:fd:e1:c4:5e:8f:e5:86:ec:
                    f7:83:df:05:44:4b:b8:43:71:77:a9:e9:25:2f:5d:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        24:1b:da:b3:86:33:36:00:f0:b5:a1:31:c0:2e:77:c0:
        3e:c3:79:d3:ae:8e:14:d2:b3:22:58:51:f9:2d:03:1a:
        e9:0e:c0:3a:c6:4e:0c:c6:bf:c1:54:26:e1:0d:94:26:
        4b:d5:69:a4:ff:a5:d8:a8:96:9a:1d:5c:bb:00:d8:48:
        55:95:ab:60:61:c4:a9:27:ea:54:84:43:b9:bd:77:fe:
        6e:9c:b9:12:da:74:40:3b:38:cf:70:8c:5d:0d:18:ef:
        f7:51:ad:09:c1:1b:d9:f3:79:ab:34:22:1a:a0:97:ce:
        f2:cc:8a:c9:12:75:9f:49:3e:8d:ec:61:87:6c:3c:cc:
        90:7d:23:78:97:38:d7:3c:d4:05:b0:70:1a:fe:f8:61:
        30:63:4b:74:7b:4a:34:40:f9:dc:bb:39:69:bd:49:13:
        80:74:d2:8b:7b:ab:06:54:0a:bb:74:4c:c8:96:df:d5:
        48:88:35:28:6c:d2:09:e5:aa:8f:0c:be:27:0d:c7:96:
        e5:6a:88:d9:64:87:97:af:99:4b:ce:cf:39:4c:7f:4e:
        d6:af:2e:89:28:12:44:22:f5:5e:2d:90:8b:41:6c:ee:
        43:bc:46:b3:e6:d4:b8:91:5f:bd:c0:2e:72:f0:d3:53:
        d6:51:16:e7:87:aa:54:72:62:86:8b:4a:4c:e8:9b:50
    Fingerprint (SHA-256):
        FA:66:85:DC:D7:7D:42:FE:7E:7B:DC:AD:DD:AB:CF:AE:06:CA:12:E2:4A:D4:20:14:57:09:61:4F:DE:8F:A0:43
    Fingerprint (SHA1):
        B6:F8:8C:BF:7F:B3:6B:6E:5D:D9:CA:BD:0E:EA:0C:38:7B:F1:A2:0F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #14744: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14745: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14746: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14747: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14748: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14749: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14750: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #14751: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #14752: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #14753: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #14754: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #14755: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #14756: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #14757: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14758: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14759: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #14760: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #14761: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #14762: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001209 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14763: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #14764: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14765: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14766: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 807001210   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14767: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14768: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #14769: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14770: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 807001211   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14771: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14772: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14773: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14774: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 807001212   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14775: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14776: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #14777: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14778: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 807001213   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14779: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14780: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #14781: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14782: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 807001214   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14783: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14784: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #14785: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14786: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 807001215   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14787: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14788: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #14789: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14790: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 807001216   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14791: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14792: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #14793: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14794: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 807001217   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14795: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14796: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14797: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001209 (0x3019dc79)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:15:15 2017
            Not After : Sun Aug 07 00:15:15 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    8b:b1:9e:24:27:b1:14:01:bd:60:b2:6e:97:2b:eb:8f:
                    93:d4:c0:28:cd:bd:8f:47:9e:09:4e:7a:fe:18:50:ee:
                    2e:41:92:e0:9d:79:fb:5e:d1:3a:8d:10:f9:3f:1a:de:
                    82:2a:41:22:04:32:46:2b:9c:c3:5d:78:f8:ed:77:c3:
                    f8:a7:2b:69:e4:36:e9:b3:37:df:fb:30:7d:12:59:b9:
                    7d:cd:d7:9e:34:f8:10:ee:73:f5:c0:75:3c:98:f1:0b:
                    df:01:08:f5:95:3c:b8:d4:4c:b8:c4:ea:01:b9:9c:ad:
                    21:81:7e:be:df:ae:cd:e9:6f:be:83:f8:e9:6d:ed:30:
                    80:ba:28:d0:f5:50:59:a3:9a:1c:cf:3d:04:95:0c:64:
                    f9:0e:2e:49:a7:b3:86:5d:b0:b8:d7:9b:55:cb:df:49:
                    af:7c:3d:d6:7e:c2:c4:c2:b6:f6:f6:b8:a1:4f:83:ab:
                    fd:d9:80:a6:29:01:ae:61:24:9d:82:9f:e4:cc:1a:01:
                    0e:4a:6a:60:fa:23:af:f2:59:ef:d3:2f:bc:1c:99:16:
                    d1:f3:d2:3f:50:01:f7:1c:ef:05:c4:ed:9e:4a:5c:ac:
                    a2:14:be:dd:a5:17:4f:ab:67:e9:da:ea:b7:c2:08:50:
                    46:d4:a2:50:5f:6e:1f:c3:44:92:d1:15:e6:42:f9:93
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1c:32:d0:64:28:86:74:55:be:fe:dd:9b:54:
        4f:7f:6d:7c:18:c2:7e:f0:76:bd:ab:9c:fa:d2:20:3b:
        02:1d:00:84:d3:79:22:cb:5d:b1:15:25:3b:87:2a:95:
        84:d8:90:65:8a:c9:04:fd:00:0f:94:dd:ff:b3:aa
    Fingerprint (SHA-256):
        39:01:84:25:03:86:D4:E6:9D:B4:2A:26:88:03:5C:3A:0C:5C:4F:FF:BD:5E:37:A9:A3:07:85:F8:FC:DC:3E:54
    Fingerprint (SHA1):
        AA:55:64:E4:22:94:D3:A0:64:27:F4:D1:D6:C7:11:06:77:D9:38:17
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14798: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001209 (0x3019dc79)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:15:15 2017
            Not After : Sun Aug 07 00:15:15 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    8b:b1:9e:24:27:b1:14:01:bd:60:b2:6e:97:2b:eb:8f:
                    93:d4:c0:28:cd:bd:8f:47:9e:09:4e:7a:fe:18:50:ee:
                    2e:41:92:e0:9d:79:fb:5e:d1:3a:8d:10:f9:3f:1a:de:
                    82:2a:41:22:04:32:46:2b:9c:c3:5d:78:f8:ed:77:c3:
                    f8:a7:2b:69:e4:36:e9:b3:37:df:fb:30:7d:12:59:b9:
                    7d:cd:d7:9e:34:f8:10:ee:73:f5:c0:75:3c:98:f1:0b:
                    df:01:08:f5:95:3c:b8:d4:4c:b8:c4:ea:01:b9:9c:ad:
                    21:81:7e:be:df:ae:cd:e9:6f:be:83:f8:e9:6d:ed:30:
                    80:ba:28:d0:f5:50:59:a3:9a:1c:cf:3d:04:95:0c:64:
                    f9:0e:2e:49:a7:b3:86:5d:b0:b8:d7:9b:55:cb:df:49:
                    af:7c:3d:d6:7e:c2:c4:c2:b6:f6:f6:b8:a1:4f:83:ab:
                    fd:d9:80:a6:29:01:ae:61:24:9d:82:9f:e4:cc:1a:01:
                    0e:4a:6a:60:fa:23:af:f2:59:ef:d3:2f:bc:1c:99:16:
                    d1:f3:d2:3f:50:01:f7:1c:ef:05:c4:ed:9e:4a:5c:ac:
                    a2:14:be:dd:a5:17:4f:ab:67:e9:da:ea:b7:c2:08:50:
                    46:d4:a2:50:5f:6e:1f:c3:44:92:d1:15:e6:42:f9:93
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1c:32:d0:64:28:86:74:55:be:fe:dd:9b:54:
        4f:7f:6d:7c:18:c2:7e:f0:76:bd:ab:9c:fa:d2:20:3b:
        02:1d:00:84:d3:79:22:cb:5d:b1:15:25:3b:87:2a:95:
        84:d8:90:65:8a:c9:04:fd:00:0f:94:dd:ff:b3:aa
    Fingerprint (SHA-256):
        39:01:84:25:03:86:D4:E6:9D:B4:2A:26:88:03:5C:3A:0C:5C:4F:FF:BD:5E:37:A9:A3:07:85:F8:FC:DC:3E:54
    Fingerprint (SHA1):
        AA:55:64:E4:22:94:D3:A0:64:27:F4:D1:D6:C7:11:06:77:D9:38:17
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14799: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001209 (0x3019dc79)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:15:15 2017
            Not After : Sun Aug 07 00:15:15 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    8b:b1:9e:24:27:b1:14:01:bd:60:b2:6e:97:2b:eb:8f:
                    93:d4:c0:28:cd:bd:8f:47:9e:09:4e:7a:fe:18:50:ee:
                    2e:41:92:e0:9d:79:fb:5e:d1:3a:8d:10:f9:3f:1a:de:
                    82:2a:41:22:04:32:46:2b:9c:c3:5d:78:f8:ed:77:c3:
                    f8:a7:2b:69:e4:36:e9:b3:37:df:fb:30:7d:12:59:b9:
                    7d:cd:d7:9e:34:f8:10:ee:73:f5:c0:75:3c:98:f1:0b:
                    df:01:08:f5:95:3c:b8:d4:4c:b8:c4:ea:01:b9:9c:ad:
                    21:81:7e:be:df:ae:cd:e9:6f:be:83:f8:e9:6d:ed:30:
                    80:ba:28:d0:f5:50:59:a3:9a:1c:cf:3d:04:95:0c:64:
                    f9:0e:2e:49:a7:b3:86:5d:b0:b8:d7:9b:55:cb:df:49:
                    af:7c:3d:d6:7e:c2:c4:c2:b6:f6:f6:b8:a1:4f:83:ab:
                    fd:d9:80:a6:29:01:ae:61:24:9d:82:9f:e4:cc:1a:01:
                    0e:4a:6a:60:fa:23:af:f2:59:ef:d3:2f:bc:1c:99:16:
                    d1:f3:d2:3f:50:01:f7:1c:ef:05:c4:ed:9e:4a:5c:ac:
                    a2:14:be:dd:a5:17:4f:ab:67:e9:da:ea:b7:c2:08:50:
                    46:d4:a2:50:5f:6e:1f:c3:44:92:d1:15:e6:42:f9:93
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1c:32:d0:64:28:86:74:55:be:fe:dd:9b:54:
        4f:7f:6d:7c:18:c2:7e:f0:76:bd:ab:9c:fa:d2:20:3b:
        02:1d:00:84:d3:79:22:cb:5d:b1:15:25:3b:87:2a:95:
        84:d8:90:65:8a:c9:04:fd:00:0f:94:dd:ff:b3:aa
    Fingerprint (SHA-256):
        39:01:84:25:03:86:D4:E6:9D:B4:2A:26:88:03:5C:3A:0C:5C:4F:FF:BD:5E:37:A9:A3:07:85:F8:FC:DC:3E:54
    Fingerprint (SHA1):
        AA:55:64:E4:22:94:D3:A0:64:27:F4:D1:D6:C7:11:06:77:D9:38:17
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #14800: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001209 (0x3019dc79)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:15:15 2017
            Not After : Sun Aug 07 00:15:15 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    8b:b1:9e:24:27:b1:14:01:bd:60:b2:6e:97:2b:eb:8f:
                    93:d4:c0:28:cd:bd:8f:47:9e:09:4e:7a:fe:18:50:ee:
                    2e:41:92:e0:9d:79:fb:5e:d1:3a:8d:10:f9:3f:1a:de:
                    82:2a:41:22:04:32:46:2b:9c:c3:5d:78:f8:ed:77:c3:
                    f8:a7:2b:69:e4:36:e9:b3:37:df:fb:30:7d:12:59:b9:
                    7d:cd:d7:9e:34:f8:10:ee:73:f5:c0:75:3c:98:f1:0b:
                    df:01:08:f5:95:3c:b8:d4:4c:b8:c4:ea:01:b9:9c:ad:
                    21:81:7e:be:df:ae:cd:e9:6f:be:83:f8:e9:6d:ed:30:
                    80:ba:28:d0:f5:50:59:a3:9a:1c:cf:3d:04:95:0c:64:
                    f9:0e:2e:49:a7:b3:86:5d:b0:b8:d7:9b:55:cb:df:49:
                    af:7c:3d:d6:7e:c2:c4:c2:b6:f6:f6:b8:a1:4f:83:ab:
                    fd:d9:80:a6:29:01:ae:61:24:9d:82:9f:e4:cc:1a:01:
                    0e:4a:6a:60:fa:23:af:f2:59:ef:d3:2f:bc:1c:99:16:
                    d1:f3:d2:3f:50:01:f7:1c:ef:05:c4:ed:9e:4a:5c:ac:
                    a2:14:be:dd:a5:17:4f:ab:67:e9:da:ea:b7:c2:08:50:
                    46:d4:a2:50:5f:6e:1f:c3:44:92:d1:15:e6:42:f9:93
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1c:32:d0:64:28:86:74:55:be:fe:dd:9b:54:
        4f:7f:6d:7c:18:c2:7e:f0:76:bd:ab:9c:fa:d2:20:3b:
        02:1d:00:84:d3:79:22:cb:5d:b1:15:25:3b:87:2a:95:
        84:d8:90:65:8a:c9:04:fd:00:0f:94:dd:ff:b3:aa
    Fingerprint (SHA-256):
        39:01:84:25:03:86:D4:E6:9D:B4:2A:26:88:03:5C:3A:0C:5C:4F:FF:BD:5E:37:A9:A3:07:85:F8:FC:DC:3E:54
    Fingerprint (SHA1):
        AA:55:64:E4:22:94:D3:A0:64:27:F4:D1:D6:C7:11:06:77:D9:38:17
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #14801: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #14802: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 10 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14803: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #14804: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #14805: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14806: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14807: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14808: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14809: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14810: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14811: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14812: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #14813: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14814: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14815: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14816: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #14817: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14818: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14819: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14820: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14821: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14822: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14823: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14824: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #14825: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14826: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14827: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14828: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170807001531Z
nextupdate=20180807001531Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Mon Aug 07 00:15:31 2017
    Next Update: Tue Aug 07 00:15:31 2018
    CRL Extensions:
chains.sh: #14829: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170807001531Z
nextupdate=20180807001531Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Mon Aug 07 00:15:31 2017
    Next Update: Tue Aug 07 00:15:31 2018
    CRL Extensions:
chains.sh: #14830: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170807001531Z
nextupdate=20180807001531Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Mon Aug 07 00:15:31 2017
    Next Update: Tue Aug 07 00:15:31 2018
    CRL Extensions:
chains.sh: #14831: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170807001531Z
nextupdate=20180807001531Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Mon Aug 07 00:15:31 2017
    Next Update: Tue Aug 07 00:15:31 2018
    CRL Extensions:
chains.sh: #14832: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170807001532Z
addcert 14 20170807001532Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Mon Aug 07 00:15:32 2017
    Next Update: Tue Aug 07 00:15:31 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Mon Aug 07 00:15:32 2017
    CRL Extensions:
chains.sh: #14833: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170807001533Z
addcert 15 20170807001533Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Mon Aug 07 00:15:33 2017
    Next Update: Tue Aug 07 00:15:31 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Mon Aug 07 00:15:33 2017
    CRL Extensions:
chains.sh: #14834: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14835: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14836: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #14837: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #14838: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #14839: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #14840: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #14841: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #14842: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #14843: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:15:24 2017
            Not After : Sun Aug 07 00:15:24 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:9e:f9:c8:39:8a:b4:55:83:a7:d0:6e:5a:04:9e:a8:
                    f7:c5:0a:b3:60:5a:37:a5:a1:a8:24:37:1b:8b:e8:8d:
                    f9:a0:40:d6:cb:51:d9:29:21:52:5c:bd:f4:c1:f3:15:
                    e8:12:00:33:f8:10:6f:55:b0:cc:b1:35:d5:53:ff:98:
                    b0:dd:11:bb:46:47:71:02:ba:6e:9a:c9:c9:86:58:68:
                    f3:d1:61:35:66:46:fc:cd:65:d3:2c:11:3f:70:a0:a8:
                    24:f2:e6:08:ad:44:d4:32:03:31:4b:f8:6f:32:63:bd:
                    89:14:8e:22:c8:a7:32:3b:c3:05:e9:05:70:e4:45:55:
                    43:5f:f0:70:fb:05:9a:53:f3:ec:a4:33:da:e9:be:ee:
                    35:1e:50:46:45:28:4f:7a:27:55:f5:c4:9b:a3:35:1a:
                    c0:8c:d9:8e:cd:34:24:cb:2d:31:15:12:78:6e:fd:5a:
                    a0:4b:cc:0d:fe:b0:43:11:55:2b:bb:6e:08:34:47:a2:
                    b8:27:57:7c:1b:01:b8:92:41:41:fd:66:ca:06:b3:80:
                    12:07:1b:6c:db:12:f6:41:91:d9:2c:ea:87:76:2d:6c:
                    95:45:26:4b:b5:22:36:ad:6f:38:83:d2:00:68:de:cc:
                    f8:dd:ac:14:a1:4a:1c:4d:ad:1a:94:79:b3:4b:0d:bb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c7:ff:79:54:ca:83:9d:63:98:5d:78:af:00:fe:d1:3e:
        f7:8d:e3:a7:73:2e:f2:b2:c7:80:a5:ef:6e:cb:31:ec:
        19:89:9d:5c:7a:09:73:1c:c6:d0:8c:f7:87:1c:5f:9c:
        25:8a:8a:d6:fe:e3:55:00:1f:1e:ab:e6:aa:ff:3d:b9:
        b0:3f:e2:04:b6:07:16:ad:7f:b0:82:fe:15:c7:a8:f1:
        77:c4:b4:37:35:f2:f1:53:3d:85:40:d0:1d:f0:96:dc:
        ca:7e:ae:9d:78:93:9f:e8:52:11:ee:75:d7:53:38:f1:
        79:fe:92:9d:5f:cb:27:cb:fe:5f:1d:34:36:ee:67:3b:
        c0:53:6a:d0:d5:d4:51:3f:eb:48:0e:9c:ed:5b:82:6b:
        fb:f3:9a:28:22:af:51:7d:42:bb:28:d6:d5:9a:5a:06:
        b0:90:fc:8c:c9:04:72:3d:75:2e:00:0a:76:8a:86:90:
        87:7f:e6:a0:ee:3b:5e:c3:7e:f2:4d:79:92:1d:c7:93:
        66:2b:68:53:74:bf:e4:9c:1d:59:41:29:69:ec:43:4b:
        6a:51:32:93:37:d9:b7:b0:27:fe:45:a9:03:49:c2:ae:
        93:4f:a5:f1:4b:7c:80:18:1a:f8:16:ff:61:42:d3:11:
        88:29:eb:61:6f:c4:b2:0c:f7:e4:09:22:75:5d:d3:5b
    Fingerprint (SHA-256):
        7E:CB:5A:06:2D:4D:12:40:AB:55:95:2D:70:97:9E:F6:6D:47:CC:26:24:03:D8:A0:E9:07:6C:4A:B0:FA:C3:E9
    Fingerprint (SHA1):
        B8:F8:64:51:73:12:B4:E4:70:B8:64:2B:CD:C8:2F:A1:4B:7B:59:4F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #14844: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #14845: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:15:24 2017
            Not After : Sun Aug 07 00:15:24 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:9e:f9:c8:39:8a:b4:55:83:a7:d0:6e:5a:04:9e:a8:
                    f7:c5:0a:b3:60:5a:37:a5:a1:a8:24:37:1b:8b:e8:8d:
                    f9:a0:40:d6:cb:51:d9:29:21:52:5c:bd:f4:c1:f3:15:
                    e8:12:00:33:f8:10:6f:55:b0:cc:b1:35:d5:53:ff:98:
                    b0:dd:11:bb:46:47:71:02:ba:6e:9a:c9:c9:86:58:68:
                    f3:d1:61:35:66:46:fc:cd:65:d3:2c:11:3f:70:a0:a8:
                    24:f2:e6:08:ad:44:d4:32:03:31:4b:f8:6f:32:63:bd:
                    89:14:8e:22:c8:a7:32:3b:c3:05:e9:05:70:e4:45:55:
                    43:5f:f0:70:fb:05:9a:53:f3:ec:a4:33:da:e9:be:ee:
                    35:1e:50:46:45:28:4f:7a:27:55:f5:c4:9b:a3:35:1a:
                    c0:8c:d9:8e:cd:34:24:cb:2d:31:15:12:78:6e:fd:5a:
                    a0:4b:cc:0d:fe:b0:43:11:55:2b:bb:6e:08:34:47:a2:
                    b8:27:57:7c:1b:01:b8:92:41:41:fd:66:ca:06:b3:80:
                    12:07:1b:6c:db:12:f6:41:91:d9:2c:ea:87:76:2d:6c:
                    95:45:26:4b:b5:22:36:ad:6f:38:83:d2:00:68:de:cc:
                    f8:dd:ac:14:a1:4a:1c:4d:ad:1a:94:79:b3:4b:0d:bb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c7:ff:79:54:ca:83:9d:63:98:5d:78:af:00:fe:d1:3e:
        f7:8d:e3:a7:73:2e:f2:b2:c7:80:a5:ef:6e:cb:31:ec:
        19:89:9d:5c:7a:09:73:1c:c6:d0:8c:f7:87:1c:5f:9c:
        25:8a:8a:d6:fe:e3:55:00:1f:1e:ab:e6:aa:ff:3d:b9:
        b0:3f:e2:04:b6:07:16:ad:7f:b0:82:fe:15:c7:a8:f1:
        77:c4:b4:37:35:f2:f1:53:3d:85:40:d0:1d:f0:96:dc:
        ca:7e:ae:9d:78:93:9f:e8:52:11:ee:75:d7:53:38:f1:
        79:fe:92:9d:5f:cb:27:cb:fe:5f:1d:34:36:ee:67:3b:
        c0:53:6a:d0:d5:d4:51:3f:eb:48:0e:9c:ed:5b:82:6b:
        fb:f3:9a:28:22:af:51:7d:42:bb:28:d6:d5:9a:5a:06:
        b0:90:fc:8c:c9:04:72:3d:75:2e:00:0a:76:8a:86:90:
        87:7f:e6:a0:ee:3b:5e:c3:7e:f2:4d:79:92:1d:c7:93:
        66:2b:68:53:74:bf:e4:9c:1d:59:41:29:69:ec:43:4b:
        6a:51:32:93:37:d9:b7:b0:27:fe:45:a9:03:49:c2:ae:
        93:4f:a5:f1:4b:7c:80:18:1a:f8:16:ff:61:42:d3:11:
        88:29:eb:61:6f:c4:b2:0c:f7:e4:09:22:75:5d:d3:5b
    Fingerprint (SHA-256):
        7E:CB:5A:06:2D:4D:12:40:AB:55:95:2D:70:97:9E:F6:6D:47:CC:26:24:03:D8:A0:E9:07:6C:4A:B0:FA:C3:E9
    Fingerprint (SHA1):
        B8:F8:64:51:73:12:B4:E4:70:B8:64:2B:CD:C8:2F:A1:4B:7B:59:4F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #14846: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #14847: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #14848: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001218 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14849: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #14850: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #14851: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14852: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 807001219   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14853: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14854: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14855: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9019/localhost-8843-CA0-807000990.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14856: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0Root-807000964.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14857: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14858: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #14859: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0-807000990.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14860: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 807001220   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14861: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14862: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14863: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9019/localhost-8843-CA0-807000990.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14864: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0Root-807000965.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14865: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14866: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #14867: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14868: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 807001221   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14869: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14870: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #14871: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0-807000990.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14872: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0Root-807000966.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14873: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14874: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #14875: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0-807000990.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14876: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9019/localhost-8843-CA0Root-807000967.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14877: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14878: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170807001544Z
nextupdate=20180807001544Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Mon Aug 07 00:15:44 2017
    Next Update: Tue Aug 07 00:15:44 2018
    CRL Extensions:
chains.sh: #14879: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170807001544Z
nextupdate=20180807001544Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Mon Aug 07 00:15:44 2017
    Next Update: Tue Aug 07 00:15:44 2018
    CRL Extensions:
chains.sh: #14880: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170807001544Z
nextupdate=20180807001544Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Mon Aug 07 00:15:44 2017
    Next Update: Tue Aug 07 00:15:44 2018
    CRL Extensions:
chains.sh: #14881: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170807001544Z
nextupdate=20180807001544Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Mon Aug 07 00:15:44 2017
    Next Update: Tue Aug 07 00:15:44 2018
    CRL Extensions:
chains.sh: #14882: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170807001545Z
addcert 20 20170807001545Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Mon Aug 07 00:15:45 2017
    Next Update: Tue Aug 07 00:15:44 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Mon Aug 07 00:15:45 2017
    CRL Extensions:
chains.sh: #14883: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170807001546Z
addcert 40 20170807001546Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Mon Aug 07 00:15:46 2017
    Next Update: Tue Aug 07 00:15:44 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Mon Aug 07 00:15:45 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Mon Aug 07 00:15:46 2017
    CRL Extensions:
chains.sh: #14884: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14885: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14886: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #14887: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001218 (0x3019dc82)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:15:36 2017
            Not After : Sun Aug 07 00:15:36 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    de:b9:d7:a9:d5:27:e3:0f:94:4e:54:dc:6a:3e:04:04:
                    c0:f6:0a:74:8c:e3:ff:02:0e:11:d6:73:cd:f9:65:00:
                    32:f4:47:70:3c:45:be:d0:88:45:a8:01:0a:41:56:ec:
                    30:54:4d:ed:06:78:28:45:71:db:ca:80:5e:4e:b7:2a:
                    a0:37:83:71:ed:26:be:22:75:a2:30:de:cc:91:8a:8b:
                    1e:68:ee:e5:8e:3f:41:c3:8c:3a:e1:06:75:37:61:e5:
                    20:84:7f:b3:39:89:65:91:bd:13:05:1c:4f:63:1d:2d:
                    3b:e2:0b:08:07:86:c7:11:c0:01:ce:c6:8b:9d:28:86:
                    f7:95:ea:21:62:0d:7e:bc:88:5a:13:c9:e7:9e:c0:af:
                    8c:74:df:4e:b1:e3:5a:ef:6a:53:b6:c6:eb:9b:a7:e7:
                    69:d8:8c:2c:80:d3:c6:2a:2e:ef:36:8d:18:2b:10:a7:
                    d2:b7:d1:49:7e:e1:9d:d2:cb:e7:8b:9d:01:2f:d5:4b:
                    b7:f4:6d:57:05:a7:42:71:f4:7c:eb:5d:37:fe:19:e8:
                    42:07:15:03:88:78:01:38:68:c3:54:d4:23:31:fb:f6:
                    8e:20:64:5c:61:0e:80:23:c0:8f:69:5b:a9:96:d8:ad:
                    d9:0b:20:d3:d7:a1:2d:56:4c:b0:4e:78:4b:2e:56:29
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0e:e0:f1:f2:e0:96:f7:ca:bc:a6:56:6b:8c:33:5f:25:
        b0:7b:d0:4a:a3:ec:e1:ff:91:e7:95:52:6a:20:3d:16:
        f6:cf:60:0a:c8:9e:24:bf:7b:56:ac:30:21:2a:7d:73:
        e2:0d:d2:d4:d5:3e:fa:9a:ee:47:5b:12:8e:95:86:cd:
        3c:31:e0:95:eb:8f:e6:73:88:f6:e6:2a:fa:cb:03:7a:
        b4:ad:05:91:2c:79:aa:26:d6:80:db:49:2b:09:b2:33:
        69:08:77:54:2e:bb:d5:28:0d:01:0b:22:4d:4c:f5:2f:
        f7:bc:3a:b8:7f:65:18:f8:62:ce:65:e7:b8:34:0c:b0:
        41:da:0e:7a:6f:98:c9:68:7e:03:79:cf:60:78:d5:93:
        ea:96:a8:55:79:39:f8:5a:fd:29:b4:db:41:16:0b:af:
        ad:c6:ba:2e:5a:f0:08:8d:4e:ac:f6:5a:78:aa:f8:ec:
        c6:8c:9f:a2:64:df:f4:ba:0a:c7:0c:97:4a:bd:8c:d2:
        91:b9:d6:41:2a:f0:36:8f:60:ea:60:96:90:d0:08:23:
        cc:0d:3f:65:34:3a:e9:28:3e:a3:de:ce:80:19:52:0f:
        de:2d:d5:27:ca:66:22:b8:59:fe:90:f7:72:4f:16:6b:
        a3:ff:e4:f8:a1:8b:34:fd:12:f6:dd:19:fd:11:99:5c
    Fingerprint (SHA-256):
        57:9B:A5:02:10:DF:70:19:7E:A2:F5:03:21:55:85:5F:44:6C:A2:B8:50:AE:6D:8D:63:DB:39:79:15:CA:A3:AB
    Fingerprint (SHA1):
        54:5D:47:05:8E:55:07:84:29:5A:47:8A:A1:D6:D6:BE:57:57:A4:F2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #14888: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #14889: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001218 (0x3019dc82)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Mon Aug 07 00:15:36 2017
            Not After : Sun Aug 07 00:15:36 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    de:b9:d7:a9:d5:27:e3:0f:94:4e:54:dc:6a:3e:04:04:
                    c0:f6:0a:74:8c:e3:ff:02:0e:11:d6:73:cd:f9:65:00:
                    32:f4:47:70:3c:45:be:d0:88:45:a8:01:0a:41:56:ec:
                    30:54:4d:ed:06:78:28:45:71:db:ca:80:5e:4e:b7:2a:
                    a0:37:83:71:ed:26:be:22:75:a2:30:de:cc:91:8a:8b:
                    1e:68:ee:e5:8e:3f:41:c3:8c:3a:e1:06:75:37:61:e5:
                    20:84:7f:b3:39:89:65:91:bd:13:05:1c:4f:63:1d:2d:
                    3b:e2:0b:08:07:86:c7:11:c0:01:ce:c6:8b:9d:28:86:
                    f7:95:ea:21:62:0d:7e:bc:88:5a:13:c9:e7:9e:c0:af:
                    8c:74:df:4e:b1:e3:5a:ef:6a:53:b6:c6:eb:9b:a7:e7:
                    69:d8:8c:2c:80:d3:c6:2a:2e:ef:36:8d:18:2b:10:a7:
                    d2:b7:d1:49:7e:e1:9d:d2:cb:e7:8b:9d:01:2f:d5:4b:
                    b7:f4:6d:57:05:a7:42:71:f4:7c:eb:5d:37:fe:19:e8:
                    42:07:15:03:88:78:01:38:68:c3:54:d4:23:31:fb:f6:
                    8e:20:64:5c:61:0e:80:23:c0:8f:69:5b:a9:96:d8:ad:
                    d9:0b:20:d3:d7:a1:2d:56:4c:b0:4e:78:4b:2e:56:29
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0e:e0:f1:f2:e0:96:f7:ca:bc:a6:56:6b:8c:33:5f:25:
        b0:7b:d0:4a:a3:ec:e1:ff:91:e7:95:52:6a:20:3d:16:
        f6:cf:60:0a:c8:9e:24:bf:7b:56:ac:30:21:2a:7d:73:
        e2:0d:d2:d4:d5:3e:fa:9a:ee:47:5b:12:8e:95:86:cd:
        3c:31:e0:95:eb:8f:e6:73:88:f6:e6:2a:fa:cb:03:7a:
        b4:ad:05:91:2c:79:aa:26:d6:80:db:49:2b:09:b2:33:
        69:08:77:54:2e:bb:d5:28:0d:01:0b:22:4d:4c:f5:2f:
        f7:bc:3a:b8:7f:65:18:f8:62:ce:65:e7:b8:34:0c:b0:
        41:da:0e:7a:6f:98:c9:68:7e:03:79:cf:60:78:d5:93:
        ea:96:a8:55:79:39:f8:5a:fd:29:b4:db:41:16:0b:af:
        ad:c6:ba:2e:5a:f0:08:8d:4e:ac:f6:5a:78:aa:f8:ec:
        c6:8c:9f:a2:64:df:f4:ba:0a:c7:0c:97:4a:bd:8c:d2:
        91:b9:d6:41:2a:f0:36:8f:60:ea:60:96:90:d0:08:23:
        cc:0d:3f:65:34:3a:e9:28:3e:a3:de:ce:80:19:52:0f:
        de:2d:d5:27:ca:66:22:b8:59:fe:90:f7:72:4f:16:6b:
        a3:ff:e4:f8:a1:8b:34:fd:12:f6:dd:19:fd:11:99:5c
    Fingerprint (SHA-256):
        57:9B:A5:02:10:DF:70:19:7E:A2:F5:03:21:55:85:5F:44:6C:A2:B8:50:AE:6D:8D:63:DB:39:79:15:CA:A3:AB
    Fingerprint (SHA1):
        54:5D:47:05:8E:55:07:84:29:5A:47:8A:A1:D6:D6:BE:57:57:A4:F2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #14890: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #14891: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #14892: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001222 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14893: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #14894: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14895: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14896: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 807001223   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14897: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14898: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14899: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14900: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 807001224   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14901: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14902: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #14903: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14904: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 807001225   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14905: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14906: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #14907: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 807001226 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14908: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #14909: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #14910: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14911: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 807001227   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14912: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14913: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #14914: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14915: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 807001228   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14916: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14917: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #14918: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #14919: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #14920: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001222 (0x3019dc86)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:15:48 2017
            Not After : Sun Aug 07 00:15:48 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:a3:80:32:40:36:a7:39:75:b5:62:af:6b:be:77:19:
                    81:f7:60:82:88:f4:d8:4f:a2:c8:f4:d7:cd:0b:e1:34:
                    5e:ee:e8:9b:f9:a0:de:04:f7:bd:0b:c2:0a:01:09:a6:
                    a8:d6:80:1b:cb:f0:60:96:ab:e8:a5:63:6d:9f:ce:d9:
                    dc:2b:b8:3d:08:1f:f8:3e:89:a7:08:78:8c:f5:79:ff:
                    37:1b:d4:d7:b6:89:e7:1a:63:9b:7a:ef:92:87:3b:e2:
                    5a:cb:02:41:9d:fd:19:6c:12:bf:22:f3:1f:b2:b8:97:
                    e1:75:d1:13:4a:cb:8a:68:76:6b:7c:cb:ad:cc:6d:f2:
                    bf:9f:00:11:4d:ac:f6:ee:64:af:bd:b8:4c:40:56:50:
                    a0:80:aa:0a:86:e6:0c:61:b5:1d:2d:08:50:e0:d6:42:
                    0d:f3:9f:66:18:7d:1f:ad:d7:c4:02:4f:ab:ea:0d:37:
                    92:7d:6c:01:f2:91:30:a8:c3:83:b1:52:67:43:c3:f8:
                    27:25:5b:4d:2f:b6:e2:e0:f1:38:6e:85:39:42:98:5f:
                    f2:73:08:90:d4:ef:07:56:3d:18:d9:23:da:28:0d:9c:
                    65:84:4b:9b:8e:61:e1:15:e3:a5:1e:95:a3:35:09:b3:
                    c5:47:81:2f:9b:92:9d:59:54:5f:c1:1d:e0:94:65:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        55:36:aa:3d:6d:a8:b5:db:0e:3b:2a:b0:10:3f:3e:91:
        13:51:a5:25:e9:24:36:77:ae:09:47:76:21:41:9e:c5:
        1d:38:59:bb:7f:c5:cd:30:97:f2:1f:b7:b2:25:f6:f5:
        47:a3:18:a2:3b:30:c8:ab:07:2f:39:3f:8f:c6:27:bc:
        bc:24:6a:9c:2d:37:7a:39:f9:9e:d6:fe:31:93:eb:01:
        eb:da:b0:04:64:ac:15:4d:b8:6f:91:38:05:28:e8:a7:
        7f:2c:fa:9a:a9:e2:35:48:cd:48:e0:24:0e:6f:c0:30:
        39:7b:22:6a:1c:da:a5:6a:2c:32:92:26:74:2f:43:95:
        01:03:3e:09:7e:2d:3f:5e:8e:a1:9a:dd:ac:df:eb:16:
        f0:7b:aa:a5:5c:df:8a:ed:2b:71:c1:85:41:74:7a:9f:
        66:5a:ce:c6:8f:1d:c1:6f:33:c9:c0:6e:3e:91:cd:de:
        ff:3b:a1:75:5b:a0:f1:c1:3b:f5:41:d5:da:0d:c5:bb:
        49:26:fd:e4:65:2c:77:25:b4:d4:fa:fb:53:92:24:40:
        3d:75:4d:56:63:c4:3d:c4:c7:26:c9:c6:da:81:08:9d:
        44:3d:11:70:6e:d5:d4:e8:54:35:4b:18:b3:1f:9b:04:
        a5:2d:8c:8c:52:3a:8d:7d:ac:3c:3c:78:1e:07:8e:40
    Fingerprint (SHA-256):
        49:FB:F3:0D:09:63:5B:AB:2E:8A:AC:23:6C:03:B3:22:B8:E7:D8:67:30:BE:B2:55:CC:E2:ED:B6:71:5A:C9:53
    Fingerprint (SHA1):
        82:F8:70:0C:83:0A:D9:5B:7F:5C:53:74:D4:D8:BF:75:86:F7:F3:88
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14921: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001224 (0x3019dc88)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Mon Aug 07 00:15:50 2017
            Not After : Sun Aug 07 00:15:50 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:7d:d7:1b:50:52:f4:34:fc:e1:cd:74:0e:ce:30:f6:
                    d4:ef:15:fc:29:ee:75:55:03:b6:95:63:12:ea:df:77:
                    7e:0c:8e:ef:b6:b2:1d:b7:4f:9e:7e:dd:1c:42:ed:d9:
                    2b:ef:45:f6:9e:fe:a7:59:90:b5:46:36:56:04:5a:e9:
                    2f:1e:23:eb:1a:43:31:7c:bb:33:e0:4a:e8:3b:69:65:
                    d0:63:11:35:91:dc:06:7a:a5:c4:39:c7:8d:1d:81:68:
                    cb:47:1f:92:4c:84:0b:27:54:dd:2a:3b:78:9f:80:48:
                    fd:5c:51:7e:2c:b1:35:9a:bd:04:d6:27:c4:06:58:8a:
                    04:15:2f:88:b3:48:3f:65:5d:a1:fb:7a:35:b5:ad:ee:
                    b0:29:76:71:fe:a3:25:4c:06:3a:8d:2b:28:52:9e:eb:
                    03:d0:0d:99:41:7e:51:17:bc:bc:4d:30:7c:87:b9:a4:
                    de:2d:69:c4:0e:d9:58:ad:cc:8e:3f:b0:f4:db:bc:cc:
                    46:ac:b9:ff:f0:75:88:8f:53:15:2f:e1:23:cf:88:77:
                    0b:90:02:7a:cb:0b:73:59:65:11:75:58:63:06:c7:c7:
                    25:d8:85:ec:f1:0c:ba:74:ba:0c:71:8b:29:40:5f:0f:
                    97:94:d3:ce:ee:34:53:8e:92:92:ce:e6:b1:ac:3c:0b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:78:f8:6c:8f:82:42:b7:f5:e4:dd:bb:3a:a2:6f:93:
        44:a4:98:fc:3d:8e:ef:44:fb:2e:f0:9b:64:ba:a1:41:
        5e:3e:d6:83:d4:49:db:1e:ce:87:1d:5c:ce:d7:3d:87:
        86:bb:41:c6:80:04:8f:6b:5c:91:61:22:d3:cf:f0:7b:
        b5:5d:4d:9f:79:c1:93:49:31:94:7c:90:05:d3:57:f6:
        e7:d2:58:7f:e3:35:c5:64:5c:0b:4f:5a:59:8c:1f:2a:
        46:d4:73:94:f5:41:8a:4b:73:dd:68:37:3d:15:2e:2f:
        b8:91:fb:78:ee:ac:d8:fa:c4:08:2b:aa:e3:a6:cc:d7:
        c6:1e:4f:91:85:e9:2d:23:51:2d:d1:24:b3:7e:a7:57:
        f5:48:bd:31:d4:4a:1e:0d:3e:9b:72:84:28:c3:a5:68:
        95:c8:51:60:9d:46:2b:6a:c8:51:5b:8a:2c:5a:fd:af:
        d6:5e:02:72:c8:c9:8b:12:88:8e:75:6b:f4:f5:2c:8a:
        4b:9a:dc:4b:24:f2:2d:45:9a:00:36:3b:19:b0:c3:f8:
        23:6e:5c:38:d5:b9:91:3e:ea:c0:1e:ec:6e:23:d6:10:
        0a:4f:5a:44:9e:09:64:88:c5:81:b8:9e:86:ef:83:91:
        7a:d2:40:49:be:63:3e:a3:97:e8:81:5e:86:fc:1e:9a
    Fingerprint (SHA-256):
        DF:DB:1B:AA:1F:2F:5B:A7:D9:39:D2:22:03:C9:97:34:7F:EE:09:34:AA:70:46:52:48:E5:97:0A:92:C6:52:5D
    Fingerprint (SHA1):
        63:F2:03:FE:1C:40:75:41:06:12:10:7E:56:BA:5C:B4:EE:C3:60:E0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14922: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001222 (0x3019dc86)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:15:48 2017
            Not After : Sun Aug 07 00:15:48 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:a3:80:32:40:36:a7:39:75:b5:62:af:6b:be:77:19:
                    81:f7:60:82:88:f4:d8:4f:a2:c8:f4:d7:cd:0b:e1:34:
                    5e:ee:e8:9b:f9:a0:de:04:f7:bd:0b:c2:0a:01:09:a6:
                    a8:d6:80:1b:cb:f0:60:96:ab:e8:a5:63:6d:9f:ce:d9:
                    dc:2b:b8:3d:08:1f:f8:3e:89:a7:08:78:8c:f5:79:ff:
                    37:1b:d4:d7:b6:89:e7:1a:63:9b:7a:ef:92:87:3b:e2:
                    5a:cb:02:41:9d:fd:19:6c:12:bf:22:f3:1f:b2:b8:97:
                    e1:75:d1:13:4a:cb:8a:68:76:6b:7c:cb:ad:cc:6d:f2:
                    bf:9f:00:11:4d:ac:f6:ee:64:af:bd:b8:4c:40:56:50:
                    a0:80:aa:0a:86:e6:0c:61:b5:1d:2d:08:50:e0:d6:42:
                    0d:f3:9f:66:18:7d:1f:ad:d7:c4:02:4f:ab:ea:0d:37:
                    92:7d:6c:01:f2:91:30:a8:c3:83:b1:52:67:43:c3:f8:
                    27:25:5b:4d:2f:b6:e2:e0:f1:38:6e:85:39:42:98:5f:
                    f2:73:08:90:d4:ef:07:56:3d:18:d9:23:da:28:0d:9c:
                    65:84:4b:9b:8e:61:e1:15:e3:a5:1e:95:a3:35:09:b3:
                    c5:47:81:2f:9b:92:9d:59:54:5f:c1:1d:e0:94:65:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        55:36:aa:3d:6d:a8:b5:db:0e:3b:2a:b0:10:3f:3e:91:
        13:51:a5:25:e9:24:36:77:ae:09:47:76:21:41:9e:c5:
        1d:38:59:bb:7f:c5:cd:30:97:f2:1f:b7:b2:25:f6:f5:
        47:a3:18:a2:3b:30:c8:ab:07:2f:39:3f:8f:c6:27:bc:
        bc:24:6a:9c:2d:37:7a:39:f9:9e:d6:fe:31:93:eb:01:
        eb:da:b0:04:64:ac:15:4d:b8:6f:91:38:05:28:e8:a7:
        7f:2c:fa:9a:a9:e2:35:48:cd:48:e0:24:0e:6f:c0:30:
        39:7b:22:6a:1c:da:a5:6a:2c:32:92:26:74:2f:43:95:
        01:03:3e:09:7e:2d:3f:5e:8e:a1:9a:dd:ac:df:eb:16:
        f0:7b:aa:a5:5c:df:8a:ed:2b:71:c1:85:41:74:7a:9f:
        66:5a:ce:c6:8f:1d:c1:6f:33:c9:c0:6e:3e:91:cd:de:
        ff:3b:a1:75:5b:a0:f1:c1:3b:f5:41:d5:da:0d:c5:bb:
        49:26:fd:e4:65:2c:77:25:b4:d4:fa:fb:53:92:24:40:
        3d:75:4d:56:63:c4:3d:c4:c7:26:c9:c6:da:81:08:9d:
        44:3d:11:70:6e:d5:d4:e8:54:35:4b:18:b3:1f:9b:04:
        a5:2d:8c:8c:52:3a:8d:7d:ac:3c:3c:78:1e:07:8e:40
    Fingerprint (SHA-256):
        49:FB:F3:0D:09:63:5B:AB:2E:8A:AC:23:6C:03:B3:22:B8:E7:D8:67:30:BE:B2:55:CC:E2:ED:B6:71:5A:C9:53
    Fingerprint (SHA1):
        82:F8:70:0C:83:0A:D9:5B:7F:5C:53:74:D4:D8:BF:75:86:F7:F3:88
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14923: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #14924: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001222 (0x3019dc86)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:15:48 2017
            Not After : Sun Aug 07 00:15:48 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:a3:80:32:40:36:a7:39:75:b5:62:af:6b:be:77:19:
                    81:f7:60:82:88:f4:d8:4f:a2:c8:f4:d7:cd:0b:e1:34:
                    5e:ee:e8:9b:f9:a0:de:04:f7:bd:0b:c2:0a:01:09:a6:
                    a8:d6:80:1b:cb:f0:60:96:ab:e8:a5:63:6d:9f:ce:d9:
                    dc:2b:b8:3d:08:1f:f8:3e:89:a7:08:78:8c:f5:79:ff:
                    37:1b:d4:d7:b6:89:e7:1a:63:9b:7a:ef:92:87:3b:e2:
                    5a:cb:02:41:9d:fd:19:6c:12:bf:22:f3:1f:b2:b8:97:
                    e1:75:d1:13:4a:cb:8a:68:76:6b:7c:cb:ad:cc:6d:f2:
                    bf:9f:00:11:4d:ac:f6:ee:64:af:bd:b8:4c:40:56:50:
                    a0:80:aa:0a:86:e6:0c:61:b5:1d:2d:08:50:e0:d6:42:
                    0d:f3:9f:66:18:7d:1f:ad:d7:c4:02:4f:ab:ea:0d:37:
                    92:7d:6c:01:f2:91:30:a8:c3:83:b1:52:67:43:c3:f8:
                    27:25:5b:4d:2f:b6:e2:e0:f1:38:6e:85:39:42:98:5f:
                    f2:73:08:90:d4:ef:07:56:3d:18:d9:23:da:28:0d:9c:
                    65:84:4b:9b:8e:61:e1:15:e3:a5:1e:95:a3:35:09:b3:
                    c5:47:81:2f:9b:92:9d:59:54:5f:c1:1d:e0:94:65:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        55:36:aa:3d:6d:a8:b5:db:0e:3b:2a:b0:10:3f:3e:91:
        13:51:a5:25:e9:24:36:77:ae:09:47:76:21:41:9e:c5:
        1d:38:59:bb:7f:c5:cd:30:97:f2:1f:b7:b2:25:f6:f5:
        47:a3:18:a2:3b:30:c8:ab:07:2f:39:3f:8f:c6:27:bc:
        bc:24:6a:9c:2d:37:7a:39:f9:9e:d6:fe:31:93:eb:01:
        eb:da:b0:04:64:ac:15:4d:b8:6f:91:38:05:28:e8:a7:
        7f:2c:fa:9a:a9:e2:35:48:cd:48:e0:24:0e:6f:c0:30:
        39:7b:22:6a:1c:da:a5:6a:2c:32:92:26:74:2f:43:95:
        01:03:3e:09:7e:2d:3f:5e:8e:a1:9a:dd:ac:df:eb:16:
        f0:7b:aa:a5:5c:df:8a:ed:2b:71:c1:85:41:74:7a:9f:
        66:5a:ce:c6:8f:1d:c1:6f:33:c9:c0:6e:3e:91:cd:de:
        ff:3b:a1:75:5b:a0:f1:c1:3b:f5:41:d5:da:0d:c5:bb:
        49:26:fd:e4:65:2c:77:25:b4:d4:fa:fb:53:92:24:40:
        3d:75:4d:56:63:c4:3d:c4:c7:26:c9:c6:da:81:08:9d:
        44:3d:11:70:6e:d5:d4:e8:54:35:4b:18:b3:1f:9b:04:
        a5:2d:8c:8c:52:3a:8d:7d:ac:3c:3c:78:1e:07:8e:40
    Fingerprint (SHA-256):
        49:FB:F3:0D:09:63:5B:AB:2E:8A:AC:23:6C:03:B3:22:B8:E7:D8:67:30:BE:B2:55:CC:E2:ED:B6:71:5A:C9:53
    Fingerprint (SHA1):
        82:F8:70:0C:83:0A:D9:5B:7F:5C:53:74:D4:D8:BF:75:86:F7:F3:88
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14925: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001224 (0x3019dc88)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Mon Aug 07 00:15:50 2017
            Not After : Sun Aug 07 00:15:50 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:7d:d7:1b:50:52:f4:34:fc:e1:cd:74:0e:ce:30:f6:
                    d4:ef:15:fc:29:ee:75:55:03:b6:95:63:12:ea:df:77:
                    7e:0c:8e:ef:b6:b2:1d:b7:4f:9e:7e:dd:1c:42:ed:d9:
                    2b:ef:45:f6:9e:fe:a7:59:90:b5:46:36:56:04:5a:e9:
                    2f:1e:23:eb:1a:43:31:7c:bb:33:e0:4a:e8:3b:69:65:
                    d0:63:11:35:91:dc:06:7a:a5:c4:39:c7:8d:1d:81:68:
                    cb:47:1f:92:4c:84:0b:27:54:dd:2a:3b:78:9f:80:48:
                    fd:5c:51:7e:2c:b1:35:9a:bd:04:d6:27:c4:06:58:8a:
                    04:15:2f:88:b3:48:3f:65:5d:a1:fb:7a:35:b5:ad:ee:
                    b0:29:76:71:fe:a3:25:4c:06:3a:8d:2b:28:52:9e:eb:
                    03:d0:0d:99:41:7e:51:17:bc:bc:4d:30:7c:87:b9:a4:
                    de:2d:69:c4:0e:d9:58:ad:cc:8e:3f:b0:f4:db:bc:cc:
                    46:ac:b9:ff:f0:75:88:8f:53:15:2f:e1:23:cf:88:77:
                    0b:90:02:7a:cb:0b:73:59:65:11:75:58:63:06:c7:c7:
                    25:d8:85:ec:f1:0c:ba:74:ba:0c:71:8b:29:40:5f:0f:
                    97:94:d3:ce:ee:34:53:8e:92:92:ce:e6:b1:ac:3c:0b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:78:f8:6c:8f:82:42:b7:f5:e4:dd:bb:3a:a2:6f:93:
        44:a4:98:fc:3d:8e:ef:44:fb:2e:f0:9b:64:ba:a1:41:
        5e:3e:d6:83:d4:49:db:1e:ce:87:1d:5c:ce:d7:3d:87:
        86:bb:41:c6:80:04:8f:6b:5c:91:61:22:d3:cf:f0:7b:
        b5:5d:4d:9f:79:c1:93:49:31:94:7c:90:05:d3:57:f6:
        e7:d2:58:7f:e3:35:c5:64:5c:0b:4f:5a:59:8c:1f:2a:
        46:d4:73:94:f5:41:8a:4b:73:dd:68:37:3d:15:2e:2f:
        b8:91:fb:78:ee:ac:d8:fa:c4:08:2b:aa:e3:a6:cc:d7:
        c6:1e:4f:91:85:e9:2d:23:51:2d:d1:24:b3:7e:a7:57:
        f5:48:bd:31:d4:4a:1e:0d:3e:9b:72:84:28:c3:a5:68:
        95:c8:51:60:9d:46:2b:6a:c8:51:5b:8a:2c:5a:fd:af:
        d6:5e:02:72:c8:c9:8b:12:88:8e:75:6b:f4:f5:2c:8a:
        4b:9a:dc:4b:24:f2:2d:45:9a:00:36:3b:19:b0:c3:f8:
        23:6e:5c:38:d5:b9:91:3e:ea:c0:1e:ec:6e:23:d6:10:
        0a:4f:5a:44:9e:09:64:88:c5:81:b8:9e:86:ef:83:91:
        7a:d2:40:49:be:63:3e:a3:97:e8:81:5e:86:fc:1e:9a
    Fingerprint (SHA-256):
        DF:DB:1B:AA:1F:2F:5B:A7:D9:39:D2:22:03:C9:97:34:7F:EE:09:34:AA:70:46:52:48:E5:97:0A:92:C6:52:5D
    Fingerprint (SHA1):
        63:F2:03:FE:1C:40:75:41:06:12:10:7E:56:BA:5C:B4:EE:C3:60:E0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14926: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #14927: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #14928: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #14929: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001222 (0x3019dc86)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:15:48 2017
            Not After : Sun Aug 07 00:15:48 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:a3:80:32:40:36:a7:39:75:b5:62:af:6b:be:77:19:
                    81:f7:60:82:88:f4:d8:4f:a2:c8:f4:d7:cd:0b:e1:34:
                    5e:ee:e8:9b:f9:a0:de:04:f7:bd:0b:c2:0a:01:09:a6:
                    a8:d6:80:1b:cb:f0:60:96:ab:e8:a5:63:6d:9f:ce:d9:
                    dc:2b:b8:3d:08:1f:f8:3e:89:a7:08:78:8c:f5:79:ff:
                    37:1b:d4:d7:b6:89:e7:1a:63:9b:7a:ef:92:87:3b:e2:
                    5a:cb:02:41:9d:fd:19:6c:12:bf:22:f3:1f:b2:b8:97:
                    e1:75:d1:13:4a:cb:8a:68:76:6b:7c:cb:ad:cc:6d:f2:
                    bf:9f:00:11:4d:ac:f6:ee:64:af:bd:b8:4c:40:56:50:
                    a0:80:aa:0a:86:e6:0c:61:b5:1d:2d:08:50:e0:d6:42:
                    0d:f3:9f:66:18:7d:1f:ad:d7:c4:02:4f:ab:ea:0d:37:
                    92:7d:6c:01:f2:91:30:a8:c3:83:b1:52:67:43:c3:f8:
                    27:25:5b:4d:2f:b6:e2:e0:f1:38:6e:85:39:42:98:5f:
                    f2:73:08:90:d4:ef:07:56:3d:18:d9:23:da:28:0d:9c:
                    65:84:4b:9b:8e:61:e1:15:e3:a5:1e:95:a3:35:09:b3:
                    c5:47:81:2f:9b:92:9d:59:54:5f:c1:1d:e0:94:65:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        55:36:aa:3d:6d:a8:b5:db:0e:3b:2a:b0:10:3f:3e:91:
        13:51:a5:25:e9:24:36:77:ae:09:47:76:21:41:9e:c5:
        1d:38:59:bb:7f:c5:cd:30:97:f2:1f:b7:b2:25:f6:f5:
        47:a3:18:a2:3b:30:c8:ab:07:2f:39:3f:8f:c6:27:bc:
        bc:24:6a:9c:2d:37:7a:39:f9:9e:d6:fe:31:93:eb:01:
        eb:da:b0:04:64:ac:15:4d:b8:6f:91:38:05:28:e8:a7:
        7f:2c:fa:9a:a9:e2:35:48:cd:48:e0:24:0e:6f:c0:30:
        39:7b:22:6a:1c:da:a5:6a:2c:32:92:26:74:2f:43:95:
        01:03:3e:09:7e:2d:3f:5e:8e:a1:9a:dd:ac:df:eb:16:
        f0:7b:aa:a5:5c:df:8a:ed:2b:71:c1:85:41:74:7a:9f:
        66:5a:ce:c6:8f:1d:c1:6f:33:c9:c0:6e:3e:91:cd:de:
        ff:3b:a1:75:5b:a0:f1:c1:3b:f5:41:d5:da:0d:c5:bb:
        49:26:fd:e4:65:2c:77:25:b4:d4:fa:fb:53:92:24:40:
        3d:75:4d:56:63:c4:3d:c4:c7:26:c9:c6:da:81:08:9d:
        44:3d:11:70:6e:d5:d4:e8:54:35:4b:18:b3:1f:9b:04:
        a5:2d:8c:8c:52:3a:8d:7d:ac:3c:3c:78:1e:07:8e:40
    Fingerprint (SHA-256):
        49:FB:F3:0D:09:63:5B:AB:2E:8A:AC:23:6C:03:B3:22:B8:E7:D8:67:30:BE:B2:55:CC:E2:ED:B6:71:5A:C9:53
    Fingerprint (SHA1):
        82:F8:70:0C:83:0A:D9:5B:7F:5C:53:74:D4:D8:BF:75:86:F7:F3:88
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14930: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001226 (0x3019dc8a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Mon Aug 07 00:15:51 2017
            Not After : Sun Aug 07 00:15:51 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    99:1d:bc:ee:a8:49:67:cf:21:99:c1:a4:16:d0:5f:d6:
                    74:50:45:94:ca:fb:d2:35:93:30:71:8c:56:08:f1:70:
                    68:85:58:1d:74:1b:85:ba:fd:ca:31:2e:9e:84:55:58:
                    e1:b5:47:1b:de:cd:0b:a4:c0:3b:53:3a:cc:02:63:15:
                    dc:18:63:27:33:fb:2c:14:88:38:e4:24:3c:03:0f:07:
                    90:4a:2a:2a:a1:da:d3:4b:32:f3:55:fa:5a:1b:7c:96:
                    85:10:b1:96:82:57:73:85:af:42:bc:18:93:d4:4d:95:
                    a1:3e:72:e0:2c:4c:28:31:6e:b8:29:de:77:d8:06:e3:
                    63:aa:b7:b1:b0:29:bf:fb:ed:52:95:37:68:d2:3d:dd:
                    84:37:55:50:dd:d6:94:a0:6f:ae:71:49:24:9f:d0:84:
                    d8:7c:0e:38:80:66:9a:97:9d:9d:fa:a3:22:8c:0f:d0:
                    1a:3e:1a:77:d2:ec:59:59:28:ed:be:fd:ed:f5:97:a2:
                    dd:5c:af:3c:2b:63:46:d7:37:00:d8:cf:a2:c9:1e:4a:
                    36:ab:ed:df:79:66:a0:5d:57:f2:3c:99:5a:85:37:00:
                    5a:09:a6:38:ba:6e:e0:a4:a6:5a:e7:c7:56:24:bb:5e:
                    47:02:90:2a:74:20:62:4f:27:ad:0e:c1:87:d1:36:45
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4a:59:f4:94:10:5b:11:23:dd:19:78:f7:f0:68:61:9d:
        9c:cb:8f:05:38:f6:d4:a6:72:24:e3:95:c5:f6:d5:5b:
        a9:3f:45:08:70:b2:4c:66:79:f4:32:ec:ad:3e:db:f8:
        87:cd:d4:1a:81:69:35:96:a9:93:58:43:05:a3:ed:26:
        ae:80:35:8c:ba:57:47:46:8d:6a:32:d1:f6:35:94:f6:
        58:ff:3b:ed:40:3c:ff:4c:d0:80:4a:0d:48:7c:27:65:
        72:e4:88:ed:ae:f4:69:98:ab:2c:0e:f0:ef:f6:49:56:
        fa:47:09:59:62:6e:08:3d:79:95:71:28:15:9e:15:98:
        f8:28:3c:06:f2:37:0d:1d:fe:fe:5f:01:08:1a:7f:cf:
        c4:61:bb:a4:cd:7b:44:c0:2d:28:fb:fa:8f:1e:5c:dd:
        0f:1c:0f:a0:2d:64:76:06:16:9e:15:6f:27:9d:19:d5:
        22:07:2f:71:23:67:70:2c:ec:24:ab:87:ed:f3:e9:ac:
        26:71:b9:5f:82:e8:79:28:10:76:90:cb:a9:2d:af:0b:
        01:10:63:3d:ac:a1:7f:41:93:02:0b:52:79:b3:04:20:
        f8:14:24:2d:14:a7:6a:45:61:99:5d:47:18:1f:ee:22:
        34:70:ac:04:76:27:c7:6e:f4:29:2e:22:6c:ec:2f:94
    Fingerprint (SHA-256):
        4F:75:94:69:72:8B:D5:2F:EE:6F:2F:20:E9:94:20:5C:00:76:11:D0:D1:DF:6D:DD:9F:5C:CC:BD:FC:3B:83:56
    Fingerprint (SHA1):
        6B:2D:05:EE:B2:A9:08:63:47:75:73:78:F5:6E:70:D1:8F:BC:76:C3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #14931: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001222 (0x3019dc86)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Mon Aug 07 00:15:48 2017
            Not After : Sun Aug 07 00:15:48 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:a3:80:32:40:36:a7:39:75:b5:62:af:6b:be:77:19:
                    81:f7:60:82:88:f4:d8:4f:a2:c8:f4:d7:cd:0b:e1:34:
                    5e:ee:e8:9b:f9:a0:de:04:f7:bd:0b:c2:0a:01:09:a6:
                    a8:d6:80:1b:cb:f0:60:96:ab:e8:a5:63:6d:9f:ce:d9:
                    dc:2b:b8:3d:08:1f:f8:3e:89:a7:08:78:8c:f5:79:ff:
                    37:1b:d4:d7:b6:89:e7:1a:63:9b:7a:ef:92:87:3b:e2:
                    5a:cb:02:41:9d:fd:19:6c:12:bf:22:f3:1f:b2:b8:97:
                    e1:75:d1:13:4a:cb:8a:68:76:6b:7c:cb:ad:cc:6d:f2:
                    bf:9f:00:11:4d:ac:f6:ee:64:af:bd:b8:4c:40:56:50:
                    a0:80:aa:0a:86:e6:0c:61:b5:1d:2d:08:50:e0:d6:42:
                    0d:f3:9f:66:18:7d:1f:ad:d7:c4:02:4f:ab:ea:0d:37:
                    92:7d:6c:01:f2:91:30:a8:c3:83:b1:52:67:43:c3:f8:
                    27:25:5b:4d:2f:b6:e2:e0:f1:38:6e:85:39:42:98:5f:
                    f2:73:08:90:d4:ef:07:56:3d:18:d9:23:da:28:0d:9c:
                    65:84:4b:9b:8e:61:e1:15:e3:a5:1e:95:a3:35:09:b3:
                    c5:47:81:2f:9b:92:9d:59:54:5f:c1:1d:e0:94:65:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        55:36:aa:3d:6d:a8:b5:db:0e:3b:2a:b0:10:3f:3e:91:
        13:51:a5:25:e9:24:36:77:ae:09:47:76:21:41:9e:c5:
        1d:38:59:bb:7f:c5:cd:30:97:f2:1f:b7:b2:25:f6:f5:
        47:a3:18:a2:3b:30:c8:ab:07:2f:39:3f:8f:c6:27:bc:
        bc:24:6a:9c:2d:37:7a:39:f9:9e:d6:fe:31:93:eb:01:
        eb:da:b0:04:64:ac:15:4d:b8:6f:91:38:05:28:e8:a7:
        7f:2c:fa:9a:a9:e2:35:48:cd:48:e0:24:0e:6f:c0:30:
        39:7b:22:6a:1c:da:a5:6a:2c:32:92:26:74:2f:43:95:
        01:03:3e:09:7e:2d:3f:5e:8e:a1:9a:dd:ac:df:eb:16:
        f0:7b:aa:a5:5c:df:8a:ed:2b:71:c1:85:41:74:7a:9f:
        66:5a:ce:c6:8f:1d:c1:6f:33:c9:c0:6e:3e:91:cd:de:
        ff:3b:a1:75:5b:a0:f1:c1:3b:f5:41:d5:da:0d:c5:bb:
        49:26:fd:e4:65:2c:77:25:b4:d4:fa:fb:53:92:24:40:
        3d:75:4d:56:63:c4:3d:c4:c7:26:c9:c6:da:81:08:9d:
        44:3d:11:70:6e:d5:d4:e8:54:35:4b:18:b3:1f:9b:04:
        a5:2d:8c:8c:52:3a:8d:7d:ac:3c:3c:78:1e:07:8e:40
    Fingerprint (SHA-256):
        49:FB:F3:0D:09:63:5B:AB:2E:8A:AC:23:6C:03:B3:22:B8:E7:D8:67:30:BE:B2:55:CC:E2:ED:B6:71:5A:C9:53
    Fingerprint (SHA1):
        82:F8:70:0C:83:0A:D9:5B:7F:5C:53:74:D4:D8:BF:75:86:F7:F3:88
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14932: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #14933: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #14934: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #14935: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #14936: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #14937: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 807001227 (0x3019dc8b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Mon Aug 07 00:15:52 2017
            Not After : Sun Aug 07 00:15:52 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    de:24:77:29:a0:84:bd:84:22:0b:c6:13:85:12:fd:89:
                    c9:25:a1:7c:bb:84:2f:80:03:e3:55:05:10:67:f8:61:
                    5a:34:a5:d7:94:76:49:05:7a:9b:78:6e:61:8d:8a:ee:
                    17:21:45:34:26:fe:af:05:3c:62:d7:75:2a:15:ec:5b:
                    8f:79:ef:5c:89:a7:c7:97:f9:ba:06:c8:7f:0e:77:84:
                    c4:e2:70:98:f8:93:7f:43:6b:86:ca:78:a4:01:80:d5:
                    eb:fb:95:a8:a6:d3:ea:5e:db:17:cb:09:5a:b0:a9:3c:
                    57:9e:16:b5:75:b8:75:a0:d3:1b:56:db:8c:79:2c:19:
                    05:fe:37:5a:f5:97:3a:89:6b:b4:58:94:38:63:04:27:
                    fc:74:a4:2e:69:0d:04:19:93:48:2a:54:08:c2:07:e9:
                    26:cf:93:aa:20:6b:d9:71:5a:23:39:07:55:df:96:0d:
                    b4:87:12:7a:09:af:37:2a:0a:8b:0a:cd:11:c8:ca:cf:
                    ac:da:e9:96:b9:70:65:2c:e9:a7:41:58:8e:34:3f:ca:
                    a5:1e:6e:65:a9:cb:4a:c7:c5:4c:bb:f2:12:7a:22:78:
                    45:49:b7:cd:4b:ff:53:54:2f:c0:b1:a7:48:12:38:24:
                    b6:0f:28:cf:1e:57:42:a4:16:18:6a:fd:52:4e:87:e3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7e:63:05:63:8d:88:6c:3a:34:30:54:a7:aa:6e:fc:96:
        07:18:84:a7:17:f0:98:cd:3d:7d:ec:cd:9c:44:70:0c:
        d3:11:18:dc:4b:c4:7c:0d:7d:90:4b:50:80:67:41:ba:
        8a:4f:b5:5a:3f:86:80:14:71:87:06:97:2e:64:74:50:
        1c:d8:95:81:ab:e4:61:32:4b:2a:b8:ce:1b:8a:5e:08:
        61:b8:d3:29:4e:15:83:1f:4e:c9:b4:56:88:19:77:cf:
        16:bd:ac:47:22:31:c2:26:81:24:30:76:13:24:dc:e1:
        ff:71:7b:18:b8:6f:f5:5a:86:22:29:d0:94:47:78:10:
        d2:14:39:ab:d3:35:5e:5c:65:8d:da:42:e6:07:e0:21:
        1a:ac:0c:c3:63:12:30:e4:2c:84:1e:ad:41:98:0b:a7:
        1a:cc:05:20:9b:c0:48:fc:7f:45:a8:4b:75:96:ae:af:
        f4:ea:b1:75:d6:da:f1:8f:5b:75:9a:a0:4b:76:21:4e:
        eb:3d:4e:b2:b7:c9:9e:b7:44:bb:a0:16:2c:95:1f:b3:
        ab:74:fb:66:80:7d:37:e1:dd:83:45:3c:95:c8:1e:42:
        00:2f:8a:27:03:28:f1:bb:62:3f:27:2f:57:29:f8:2a:
        a2:ae:6f:06:68:34:e9:22:ed:db:ee:48:a8:8b:ec:a8
    Fingerprint (SHA-256):
        DA:CC:44:22:FC:90:36:5D:17:74:67:1A:7F:EB:2E:5D:40:32:4A:36:FD:57:AC:16:BE:DC:7C:D6:DA:2C:71:81
    Fingerprint (SHA1):
        63:16:E3:75:51:0E:DE:B7:48:AE:A0:F5:D9:DF:E3:A3:CF:27:25:B4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14938: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #14939: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #14940: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #14941: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #14942: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #14943: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14944: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14945: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #14946: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14947: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14948: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14949: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14950: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #14951: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14952: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14953: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14954: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #14955: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14956: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #14957: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14958: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #14959: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14960: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #14961: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 3973 at Mon Aug  7 00:15:58 UTC 2017
kill -USR1 3973
httpserv: normal termination
httpserv -b -p 9019 2>/dev/null;
httpserv with PID 3973 killed at Mon Aug  7 00:15:58 UTC 2017
TIMESTAMP chains END: Mon Aug  7 00:15:58 UTC 2017
Running tests for ec
TIMESTAMP ec BEGIN: Mon Aug  7 00:15:58 UTC 2017
Running ec tests for ecperf
TIMESTAMP ecperf BEGIN: Mon Aug  7 00:15:58 UTC 2017
ecperf.sh: ecperf test ===============================
./ecperf.sh: line 43: ecperf: command not found
ecperf.sh: #14962: ec(perf) test - PASSED
TIMESTAMP ecperf END: Mon Aug  7 00:15:58 UTC 2017
Running ec tests for ectest
TIMESTAMP ectest BEGIN: Mon Aug  7 00:15:58 UTC 2017
ectest.sh: freebl and pk11 ectest tests ===============================
No password file "../tests.pw" exists.
Test curve25519 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #14963: ec test certutil keygen - curve25519 - PASSED
Test secp256r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #14964: ec test certutil keygen - secp256r1 - PASSED
Test secp384r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #14965: ec test certutil keygen - secp384r1 - PASSED
Test secp521r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #14966: ec test certutil keygen - secp521r1 - PASSED
Test sect571r1 key generation using certutil that should fail because it's not implemented ...
Generating key.  This may take a few moments...
certutil: unable to generate key(s)
: SEC_ERROR_INVALID_KEY: The key does not support the requested operation.
ectest.sh: #14967: ec test certutil keygen - secp521r1 - PASSED
ectest.sh: #14968: pk11 ec tests - PASSED
TIMESTAMP ectest END: Mon Aug  7 00:16:00 UTC 2017
TIMESTAMP ec END: Mon Aug  7 00:16:00 UTC 2017
Running tests for gtests
TIMESTAMP gtests BEGIN: Mon Aug  7 00:16:00 UTC 2017
gtests: der_gtest pk11_gtest
gtests.sh: der_gtest ===============================
executing der_gtest
[==========] Running 16 tests from 2 test cases.
[----------] Global test environment set-up.
[----------] 13 tests from DERIntegerDecodingTest
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus126
[       OK ] DERIntegerDecodingTest.DecodeLongMinus126 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130
[       OK ] DERIntegerDecodingTest.DecodeLong130 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130Padded
[       OK ] DERIntegerDecodingTest.DecodeLong130Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong0
[       OK ] DERIntegerDecodingTest.DecodeLong0 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong1
[       OK ] DERIntegerDecodingTest.DecodeLong1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1Padded
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMax
[       OK ] DERIntegerDecodingTest.DecodeLongMax (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMin
[       OK ] DERIntegerDecodingTest.DecodeLongMin (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinPlus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxPlus1 (0 ms)
[----------] 13 tests from DERIntegerDecodingTest (0 ms total)
[----------] 3 tests from DERPrivateKeyImportTest
[ RUN      ] DERPrivateKeyImportTest.ImportPrivateRSAKey
[       OK ] DERPrivateKeyImportTest.ImportPrivateRSAKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportInvalidPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportInvalidPrivateKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey (0 ms)
[----------] 3 tests from DERPrivateKeyImportTest (0 ms total)
[----------] Global test environment tear-down
[==========] 16 tests from 2 test cases ran. (0 ms total)
[  PASSED  ] 16 tests.
gtests.sh: #14969: der_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/der_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #14970: 'DERIntegerDecodingTest: DecodeLongMinus126' - PASSED
gtests.sh: #14971: 'DERIntegerDecodingTest: DecodeLong130' - PASSED
gtests.sh: #14972: 'DERIntegerDecodingTest: DecodeLong130Padded' - PASSED
gtests.sh: #14973: 'DERIntegerDecodingTest: DecodeLong0' - PASSED
gtests.sh: #14974: 'DERIntegerDecodingTest: DecodeLong1' - PASSED
gtests.sh: #14975: 'DERIntegerDecodingTest: DecodeLongMinus1' - PASSED
gtests.sh: #14976: 'DERIntegerDecodingTest: DecodeLongMinus1Padded' - PASSED
gtests.sh: #14977: 'DERIntegerDecodingTest: DecodeLongMax' - PASSED
gtests.sh: #14978: 'DERIntegerDecodingTest: DecodeLongMin' - PASSED
gtests.sh: #14979: 'DERIntegerDecodingTest: DecodeLongMaxMinus1' - PASSED
gtests.sh: #14980: 'DERIntegerDecodingTest: DecodeLongMinPlus1' - PASSED
gtests.sh: #14981: 'DERIntegerDecodingTest: DecodeLongMinMinus1' - PASSED
gtests.sh: #14982: 'DERIntegerDecodingTest: DecodeLongMaxPlus1' - PASSED
gtests.sh: #14983: 'DERPrivateKeyImportTest: ImportPrivateRSAKey' - PASSED
gtests.sh: #14984: 'DERPrivateKeyImportTest: ImportInvalidPrivateKey' - PASSED
gtests.sh: #14985: 'DERPrivateKeyImportTest: ImportZeroLengthPrivateKey' - PASSED
gtests.sh: pk11_gtest ===============================
executing pk11_gtest
[==========] Running 21 tests from 7 test cases.
[----------] Global test environment set-up.
[----------] 6 tests from Pkcs11AESKeyWrapTest
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest1
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest1 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest2
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest2 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest3
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest3 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest4
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest4 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest5
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest5 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest6
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest6 (0 ms)
[----------] 6 tests from Pkcs11AESKeyWrapTest (0 ms total)
[----------] 3 tests from Pkcs11ChaCha20Poly1305Test
[ RUN      ] Pkcs11ChaCha20Poly1305Test.GenerateEncryptDecrypt
[       OK ] Pkcs11ChaCha20Poly1305Test.GenerateEncryptDecrypt (1 ms)
[ RUN      ] Pkcs11ChaCha20Poly1305Test.CheckTestVector1
[       OK ] Pkcs11ChaCha20Poly1305Test.CheckTestVector1 (0 ms)
[ RUN      ] Pkcs11ChaCha20Poly1305Test.CheckTestVector2
[       OK ] Pkcs11ChaCha20Poly1305Test.CheckTestVector2 (0 ms)
[----------] 3 tests from Pkcs11ChaCha20Poly1305Test (1 ms total)
[----------] 2 tests from Pkcs11ExportTest
[ RUN      ] Pkcs11ExportTest.DeriveNonExport
[       OK ] Pkcs11ExportTest.DeriveNonExport (0 ms)
[ RUN      ] Pkcs11ExportTest.DeriveExport
[       OK ] Pkcs11ExportTest.DeriveExport (0 ms)
[----------] 2 tests from Pkcs11ExportTest (0 ms total)
[----------] 2 tests from Pkcs11Pbkdf2Test
[ RUN      ] Pkcs11Pbkdf2Test.DeriveKnown1
[       OK ] Pkcs11Pbkdf2Test.DeriveKnown1 (42 ms)
[ RUN      ] Pkcs11Pbkdf2Test.DeriveKnown2
[       OK ] Pkcs11Pbkdf2Test.DeriveKnown2 (86 ms)
[----------] 2 tests from Pkcs11Pbkdf2Test (128 ms total)
[----------] 5 tests from TlsPrfTest
[ RUN      ] TlsPrfTest.ExtendedMsParamErr
[       OK ] TlsPrfTest.ExtendedMsParamErr (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsDhTlsPrf
[       OK ] TlsPrfTest.ExtendedMsDhTlsPrf (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsRsaTlsPrf
[       OK ] TlsPrfTest.ExtendedMsRsaTlsPrf (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsDhSha256
[       OK ] TlsPrfTest.ExtendedMsDhSha256 (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsRsaSha256
[       OK ] TlsPrfTest.ExtendedMsRsaSha256 (0 ms)
[----------] 5 tests from TlsPrfTest (0 ms total)
[----------] 1 test from Pkcs11RsaPssTest
[ RUN      ] Pkcs11RsaPssTest.GenerateAndSignAndVerify
[       OK ] Pkcs11RsaPssTest.GenerateAndSignAndVerify (20 ms)
[----------] 1 test from Pkcs11RsaPssTest (20 ms total)
[----------] 2 tests from Pkcs11RsaPssVectorTest
[ RUN      ] Pkcs11RsaPssVectorTest.VerifyKnownSignature1
[       OK ] Pkcs11RsaPssVectorTest.VerifyKnownSignature1 (0 ms)
[ RUN      ] Pkcs11RsaPssVectorTest.VerifyKnownSignature2
[       OK ] Pkcs11RsaPssVectorTest.VerifyKnownSignature2 (0 ms)
[----------] 2 tests from Pkcs11RsaPssVectorTest (0 ms total)
[----------] Global test environment tear-down
[==========] 21 tests from 7 test cases ran. (149 ms total)
[  PASSED  ] 21 tests.
gtests.sh: #14986: pk11_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/pk11_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #14987: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest1' - PASSED
gtests.sh: #14988: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest2' - PASSED
gtests.sh: #14989: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest3' - PASSED
gtests.sh: #14990: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest4' - PASSED
gtests.sh: #14991: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest5' - PASSED
gtests.sh: #14992: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest6' - PASSED
gtests.sh: #14993: 'Pkcs11ChaCha20Poly1305Test: GenerateEncryptDecrypt' - PASSED
gtests.sh: #14994: 'Pkcs11ChaCha20Poly1305Test: CheckTestVector1' - PASSED
gtests.sh: #14995: 'Pkcs11ChaCha20Poly1305Test: CheckTestVector2' - PASSED
gtests.sh: #14996: 'Pkcs11ExportTest: DeriveNonExport' - PASSED
gtests.sh: #14997: 'Pkcs11ExportTest: DeriveExport' - PASSED
gtests.sh: #14998: 'Pkcs11Pbkdf2Test: DeriveKnown1' - PASSED
gtests.sh: #14999: 'Pkcs11Pbkdf2Test: DeriveKnown2' - PASSED
gtests.sh: #15000: 'TlsPrfTest: ExtendedMsParamErr' - PASSED
gtests.sh: #15001: 'TlsPrfTest: ExtendedMsDhTlsPrf' - PASSED
gtests.sh: #15002: 'TlsPrfTest: ExtendedMsRsaTlsPrf' - PASSED
gtests.sh: #15003: 'TlsPrfTest: ExtendedMsDhSha256' - PASSED
gtests.sh: #15004: 'TlsPrfTest: ExtendedMsRsaSha256' - PASSED
gtests.sh: #15005: 'Pkcs11RsaPssTest: GenerateAndSignAndVerify' - PASSED
gtests.sh: #15006: 'Pkcs11RsaPssVectorTest: VerifyKnownSignature1' - PASSED
gtests.sh: #15007: 'Pkcs11RsaPssVectorTest: VerifyKnownSignature2' - PASSED
TIMESTAMP gtests END: Mon Aug  7 00:16:00 UTC 2017
Running tests for ssl_gtests
TIMESTAMP ssl_gtests BEGIN: Mon Aug  7 00:16:00 UTC 2017
ssl_gtest.sh: SSL Gtests ===============================
ssl_gtest.sh: #15008: create ssl_gtest database  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15009: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15010: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15011: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15012: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15013: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15014: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15015: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15016: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15017: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15018: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15019: create certificate: ca  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15020: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15021: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15022: create certificate: sign  - PASSED
executing ssl_gtest
[==========] Running 816 tests from 15 test cases.
[----------] Global test environment set-up.
[----------] 60 tests from CipherSuiteRC4/TlsCipherSuiteTest
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/0 (31 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/1 (11 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/2 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/3 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/4 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/5 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/6 (10 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/7 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/8 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/9 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/10 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/11 (10 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/12 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/13 (15 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/14 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/0 (13 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/1 (21 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/2 (19 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/3 (27 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/4 (17 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/5 (13 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/6 (21 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/7 (20 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/8 (27 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/9 (17 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/10 (13 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/11 (21 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/12 (20 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/13 (27 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/14 (17 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/0 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/1 (10 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/2 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/3 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/4 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/5 (5 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/6 (10 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/7 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/8 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/9 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/10 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/11 (10 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/12 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/13 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/14 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/0 (5 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/1 (10 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/2 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/3 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/4 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/5 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/6 (10 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/7 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/8 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/9 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/10 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/11 (10 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/12 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/13 (15 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/14 (6 ms)
[----------] 60 tests from CipherSuiteRC4/TlsCipherSuiteTest (722 ms total)
[----------] 48 tests from CipherSuiteAEAD12/TlsCipherSuiteTest
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/0 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/1 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/2 (14 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/3 (15 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/4 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/5 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/6 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/7 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/8 (15 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/9 (14 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/10 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/11 (7 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/0 (13 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/1 (13 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/2 (0 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/3 (0 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/4 (20 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/5 (18 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/6 (13 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/7 (13 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/8 (0 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/9 (0 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/10 (20 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/11 (18 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/0 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/1 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/2 (15 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/3 (14 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/4 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/5 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/6 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/7 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/8 (15 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/9 (15 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/10 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/11 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/0 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/1 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/2 (15 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/3 (14 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/4 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/5 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/6 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/7 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/8 (15 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/9 (15 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/10 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/11 (6 ms)
[----------] 48 tests from CipherSuiteAEAD12/TlsCipherSuiteTest (461 ms total)
[----------] 72 tests from CipherSuiteAEAD/TlsCipherSuiteTest
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/0 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/1 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/2 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/3 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/4 (10 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/5 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/6 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/7 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/8 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/9 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/10 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/11 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/12 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/13 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/14 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/15 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/16 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/17 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/0 (20 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/1 (19 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/2 (17 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/3 (18 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/4 (20 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/5 (21 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/6 (19 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/7 (17 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/8 (21 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/9 (19 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/10 (20 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/11 (17 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/12 (17 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/13 (21 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/14 (20 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/15 (20 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/16 (17 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/17 (21 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/0 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/1 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/2 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/3 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/4 (10 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/5 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/6 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/7 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/8 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/9 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/10 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/11 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/12 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/13 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/14 (10 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/15 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/16 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/17 (10 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/0 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/1 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/2 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/3 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/4 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/5 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/6 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/7 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/8 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/9 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/10 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/11 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/12 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/13 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/14 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/15 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/16 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/17 (9 ms)
[----------] 72 tests from CipherSuiteAEAD/TlsCipherSuiteTest (774 ms total)
[----------] 64 tests from CipherSuiteCBC12/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/0 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/1 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/2 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/3 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/4 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/5 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/6 (15 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/7 (15 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/8 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/9 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/10 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/11 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/12 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/13 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/14 (14 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/15 (15 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/0 (21 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/1 (13 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/2 (20 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/3 (18 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/4 (20 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/5 (14 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/6 (0 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/7 (0 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/8 (21 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/9 (13 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/10 (20 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/11 (17 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/12 (21 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/13 (13 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/14 (0 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/15 (1 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/0 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/1 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/2 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/3 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/4 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/5 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/6 (15 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/7 (15 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/8 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/9 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/10 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/11 (7 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/12 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/13 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/14 (15 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/15 (15 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/0 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/1 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/2 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/3 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/4 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/5 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/6 (15 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/7 (14 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/8 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/9 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/10 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/11 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/12 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/13 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/14 (15 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/15 (15 ms)
[----------] 64 tests from CipherSuiteCBC12/TlsCipherSuiteTest (658 ms total)
[----------] 192 tests from CipherSuiteCBCStream/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/0 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/1 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/2 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/3 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/4 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/5 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/6 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/7 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/8 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/9 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/10 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/11 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/12 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/13 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/14 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/15 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/16 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/17 (11 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/18 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/19 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/20 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/21 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/22 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/23 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/24 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/25 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/26 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/27 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/28 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/29 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/30 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/31 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/32 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/33 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/34 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/35 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/36 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/37 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/38 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/39 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/40 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/41 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/42 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/43 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/44 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/45 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/46 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/47 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/0 (21 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/1 (21 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/2 (21 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/3 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/4 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/5 (19 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/6 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/7 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/8 (26 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/9 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/10 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/11 (26 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/12 (18 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/13 (18 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/14 (17 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/15 (18 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/16 (21 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/17 (21 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/18 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/19 (21 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/20 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/21 (19 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/22 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/23 (19 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/24 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/25 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/26 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/27 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/28 (18 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/29 (17 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/30 (18 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/31 (18 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/32 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/33 (21 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/34 (21 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/35 (21 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/36 (19 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/37 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/38 (19 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/39 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/40 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/41 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/42 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/43 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/44 (17 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/45 (18 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/46 (18 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/47 (17 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/0 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/1 (11 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/2 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/3 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/4 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/5 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/6 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/7 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/8 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/9 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/10 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/11 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/12 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/13 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/14 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/15 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/16 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/17 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/18 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/19 (11 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/20 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/21 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/22 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/23 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/24 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/25 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/26 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/27 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/28 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/29 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/30 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/31 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/32 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/33 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/34 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/35 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/36 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/37 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/38 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/39 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/40 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/41 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/42 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/43 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/44 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/45 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/46 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/47 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/0 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/1 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/2 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/3 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/4 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/5 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/6 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/7 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/8 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/9 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/10 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/11 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/12 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/13 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/14 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/15 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/16 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/17 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/18 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/19 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/20 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/21 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/22 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/23 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/24 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/25 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/26 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/27 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/28 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/29 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/30 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/31 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/32 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/33 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/34 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/35 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/36 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/37 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/38 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/39 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/40 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/41 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/42 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/43 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/44 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/45 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/46 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/47 (6 ms)
[----------] 192 tests from CipherSuiteCBCStream/TlsCipherSuiteTest (2431 ms total)
[----------] 96 tests from CipherSuiteCBCDatagram/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/0 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/1 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/2 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/3 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/4 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/5 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/6 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/7 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/8 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/9 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/10 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/11 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/12 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/13 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/14 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/15 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/16 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/17 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/18 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/19 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/20 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/21 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/22 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/23 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/0 (21 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/1 (21 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/2 (20 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/3 (19 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/4 (20 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/5 (19 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/6 (27 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/7 (27 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/8 (27 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/9 (18 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/10 (18 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/11 (17 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/12 (21 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/13 (21 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/14 (21 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/15 (20 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/16 (19 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/17 (20 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/18 (27 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/19 (27 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/20 (27 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/21 (17 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/22 (18 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/23 (18 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/0 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/1 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/2 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/3 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/4 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/5 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/6 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/7 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/8 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/9 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/10 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/11 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/12 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/13 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/14 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/15 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/16 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/17 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/18 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/19 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/20 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/21 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/22 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/23 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/0 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/1 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/2 (11 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/3 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/4 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/5 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/6 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/7 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/8 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/9 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/10 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/11 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/12 (11 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/13 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/14 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/15 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/16 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/17 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/18 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/19 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/20 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/21 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/22 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/23 (6 ms)
[----------] 96 tests from CipherSuiteCBCDatagram/TlsCipherSuiteTest (1219 ms total)
[----------] 8 tests from TestSecurityStatus/SecurityStatusTest
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/0
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/0 (6 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/1
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/1 (6 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/2 (6 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/3
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/3 (6 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/4
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/4 (5 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/5 (6 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/6
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/6 (5 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/7 (6 ms)
[----------] 8 tests from TestSecurityStatus/SecurityStatusTest (46 ms total)
[----------] 72 tests from DamageYStream/TlsDamageDHYTest
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301d55e7a111ff93943b0a3e1362e35bb4e264c4633bcc5d5cfe75d...
record new: [1184] 020000510301d55e7a111ff93943b0a3e1362e35bb4e264c4633bcc5d5cfe75d...
server: Original packet: [1189] 16030104a0020000510301d55e7a111ff93943b0a3e1362e35bb4e264c4633bc...
server: Filtered packet: [1189] 16030104a0020000510301d55e7a111ff93943b0a3e1362e35bb4e264c4633bc...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/0 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/1
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301f5d1395bfd0bda2f6f2cc2fd8a71d2c9614167478fa7467cb2d4...
record new: [1184] 020000510301f5d1395bfd0bda2f6f2cc2fd8a71d2c9614167478fa7467cb2d4...
server: Original packet: [1189] 16030104a0020000510301f5d1395bfd0bda2f6f2cc2fd8a71d2c9614167478f...
server: Filtered packet: [1189] 16030104a0020000510301f5d1395bfd0bda2f6f2cc2fd8a71d2c9614167478f...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/1 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/2
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301c42f45f51229a481f86d34a1335a649ea7e030798db062272dc7...
record new: [1184] 020000510301c42f45f51229a481f86d34a1335a649ea7e030798db062272dc7...
server: Original packet: [1189] 16030104a0020000510301c42f45f51229a481f86d34a1335a649ea7e030798d...
server: Filtered packet: [1189] 16030104a0020000510301c42f45f51229a481f86d34a1335a649ea7e030798d...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/2 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/3
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301a96813fc84baabb5eaa0433e87a03266a19943151aaf472af47d...
record new: [1184] 020000510301a96813fc84baabb5eaa0433e87a03266a19943151aaf472af47d...
server: Original packet: [1189] 16030104a0020000510301a96813fc84baabb5eaa0433e87a03266a19943151a...
server: Filtered packet: [1189] 16030104a0020000510301a96813fc84baabb5eaa0433e87a03266a19943151a...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/3 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/4
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030131d8b479a953b2c29293b848e1a3953acc1ee7770b137ef330b5...
record new: [1184] 02000051030131d8b479a953b2c29293b848e1a3953acc1ee7770b137ef330b5...
server: Original packet: [1189] 16030104a002000051030131d8b479a953b2c29293b848e1a3953acc1ee7770b...
server: Filtered packet: [1189] 16030104a002000051030131d8b479a953b2c29293b848e1a3953acc1ee7770b...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/4 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/5
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103018b51fd45f0cf765faccc9a93330500d86c5a1a6f221768d805da...
record new: [1184] 0200005103018b51fd45f0cf765faccc9a93330500d86c5a1a6f221768d805da...
server: Original packet: [1189] 16030104a00200005103018b51fd45f0cf765faccc9a93330500d86c5a1a6f22...
server: Filtered packet: [1189] 16030104a00200005103018b51fd45f0cf765faccc9a93330500d86c5a1a6f22...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/5 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/6
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301b39c667893576b72f4c703e452eb96f08deb0faf8fa19302706d...
record new: [1184] 020000510301b39c667893576b72f4c703e452eb96f08deb0faf8fa19302706d...
server: Original packet: [1189] 16030104a0020000510301b39c667893576b72f4c703e452eb96f08deb0faf8f...
server: Filtered packet: [1189] 16030104a0020000510301b39c667893576b72f4c703e452eb96f08deb0faf8f...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/6 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/7
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103014f01890788eb0a9b717d868ec62d8eba42d6f414de799c30720c...
record new: [1184] 0200005103014f01890788eb0a9b717d868ec62d8eba42d6f414de799c30720c...
server: Original packet: [1189] 16030104a00200005103014f01890788eb0a9b717d868ec62d8eba42d6f414de...
server: Filtered packet: [1189] 16030104a00200005103014f01890788eb0a9b717d868ec62d8eba42d6f414de...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/7 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/8
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030180f323073d298ab9f465e3fcef21e8441104f1cbe4108f5811ad...
record new: [1185] 02000051030180f323073d298ab9f465e3fcef21e8441104f1cbe4108f5811ad...
server: Original packet: [1189] 16030104a002000051030180f323073d298ab9f465e3fcef21e8441104f1cbe4...
server: Filtered packet: [1190] 16030104a102000051030180f323073d298ab9f465e3fcef21e8441104f1cbe4...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/8 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/9
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103011e22ac03741bbb2dc295d9bec472d7e1b783cbbfe27e8dd2cb20...
record new: [1185] 0200005103011e22ac03741bbb2dc295d9bec472d7e1b783cbbfe27e8dd2cb20...
server: Original packet: [1189] 16030104a00200005103011e22ac03741bbb2dc295d9bec472d7e1b783cbbfe2...
server: Filtered packet: [1190] 16030104a10200005103011e22ac03741bbb2dc295d9bec472d7e1b783cbbfe2...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/9 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/10
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301d52bc338800fc18a5b8004e6da98941db000f40a84db4f352428...
record new: [1185] 020000510301d52bc338800fc18a5b8004e6da98941db000f40a84db4f352428...
server: Original packet: [1189] 16030104a0020000510301d52bc338800fc18a5b8004e6da98941db000f40a84...
server: Filtered packet: [1190] 16030104a1020000510301d52bc338800fc18a5b8004e6da98941db000f40a84...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/10 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/11
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301ef4fc948af82900b6ec7e49c18ccf1bc753fa6f8aa8ff4c75830...
record new: [1185] 020000510301ef4fc948af82900b6ec7e49c18ccf1bc753fa6f8aa8ff4c75830...
server: Original packet: [1189] 16030104a0020000510301ef4fc948af82900b6ec7e49c18ccf1bc753fa6f8aa...
server: Filtered packet: [1190] 16030104a1020000510301ef4fc948af82900b6ec7e49c18ccf1bc753fa6f8aa...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/11 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/12
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302af94a0d00764843f5da4088c01e1020c3af59ffec0e1ef292404...
record new: [1184] 020000510302af94a0d00764843f5da4088c01e1020c3af59ffec0e1ef292404...
server: Original packet: [1189] 16030204a0020000510302af94a0d00764843f5da4088c01e1020c3af59ffec0...
server: Filtered packet: [1189] 16030204a0020000510302af94a0d00764843f5da4088c01e1020c3af59ffec0...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/12 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/13
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302f8675763494bbab25eaf1194305ad03fa279d9e7a84f6ef8b216...
record new: [1184] 020000510302f8675763494bbab25eaf1194305ad03fa279d9e7a84f6ef8b216...
server: Original packet: [1189] 16030204a0020000510302f8675763494bbab25eaf1194305ad03fa279d9e7a8...
server: Filtered packet: [1189] 16030204a0020000510302f8675763494bbab25eaf1194305ad03fa279d9e7a8...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/13 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/14
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302cefc2c3178ece6ab4abdf8054a5e42da644dfb507f86808d0e91...
record new: [1184] 020000510302cefc2c3178ece6ab4abdf8054a5e42da644dfb507f86808d0e91...
server: Original packet: [1189] 16030204a0020000510302cefc2c3178ece6ab4abdf8054a5e42da644dfb507f...
server: Filtered packet: [1189] 16030204a0020000510302cefc2c3178ece6ab4abdf8054a5e42da644dfb507f...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/14 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/15
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103028394536786a0f249564d48577e19e663301d6fe5b2f5d6e77a7e...
record new: [1184] 0200005103028394536786a0f249564d48577e19e663301d6fe5b2f5d6e77a7e...
server: Original packet: [1189] 16030204a00200005103028394536786a0f249564d48577e19e663301d6fe5b2...
server: Filtered packet: [1189] 16030204a00200005103028394536786a0f249564d48577e19e663301d6fe5b2...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/15 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/16
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030205129b1de84f39a5c7ec26d5162d6621bc7108ec6779eec1e783...
record new: [1184] 02000051030205129b1de84f39a5c7ec26d5162d6621bc7108ec6779eec1e783...
server: Original packet: [1189] 16030204a002000051030205129b1de84f39a5c7ec26d5162d6621bc7108ec67...
server: Filtered packet: [1189] 16030204a002000051030205129b1de84f39a5c7ec26d5162d6621bc7108ec67...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/16 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/17
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302e405ff47af71873092a94eaac674999531c3a9072146fba3f3b7...
record new: [1184] 020000510302e405ff47af71873092a94eaac674999531c3a9072146fba3f3b7...
server: Original packet: [1189] 16030204a0020000510302e405ff47af71873092a94eaac674999531c3a90721...
server: Filtered packet: [1189] 16030204a0020000510302e405ff47af71873092a94eaac674999531c3a90721...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/17 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/18
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030268bd776a91306666ccb268f6ff3b8fe2c489c7fbd6531b2deb0d...
record new: [1184] 02000051030268bd776a91306666ccb268f6ff3b8fe2c489c7fbd6531b2deb0d...
server: Original packet: [1189] 16030204a002000051030268bd776a91306666ccb268f6ff3b8fe2c489c7fbd6...
server: Filtered packet: [1189] 16030204a002000051030268bd776a91306666ccb268f6ff3b8fe2c489c7fbd6...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/18 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/19
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302299f6752fbd48eabe65c1bf9d2bb9257286cf2f56444ddd5a5e1...
record new: [1184] 020000510302299f6752fbd48eabe65c1bf9d2bb9257286cf2f56444ddd5a5e1...
server: Original packet: [1189] 16030204a0020000510302299f6752fbd48eabe65c1bf9d2bb9257286cf2f564...
server: Filtered packet: [1189] 16030204a0020000510302299f6752fbd48eabe65c1bf9d2bb9257286cf2f564...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/19 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/20
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103020f87f6a6c202e99d44b3ff34210e96d863d96f87cd308988ffd4...
record new: [1185] 0200005103020f87f6a6c202e99d44b3ff34210e96d863d96f87cd308988ffd4...
server: Original packet: [1189] 16030204a00200005103020f87f6a6c202e99d44b3ff34210e96d863d96f87cd...
server: Filtered packet: [1190] 16030204a10200005103020f87f6a6c202e99d44b3ff34210e96d863d96f87cd...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/20 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/21
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103020cd8c6b4b8459374f13982fc2f17e299f13d66c4438ba9dc99e4...
record new: [1185] 0200005103020cd8c6b4b8459374f13982fc2f17e299f13d66c4438ba9dc99e4...
server: Original packet: [1189] 16030204a00200005103020cd8c6b4b8459374f13982fc2f17e299f13d66c443...
server: Filtered packet: [1190] 16030204a10200005103020cd8c6b4b8459374f13982fc2f17e299f13d66c443...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/21 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/22
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302cd33e96a029a528727ac5619609aa77126c0b81707abeb614e81...
record new: [1185] 020000510302cd33e96a029a528727ac5619609aa77126c0b81707abeb614e81...
server: Original packet: [1189] 16030204a0020000510302cd33e96a029a528727ac5619609aa77126c0b81707...
server: Filtered packet: [1190] 16030204a1020000510302cd33e96a029a528727ac5619609aa77126c0b81707...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/22 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/23
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103020849b4666ae74058603be609fb931125ca7188b64e75b0a61d71...
record new: [1185] 0200005103020849b4666ae74058603be609fb931125ca7188b64e75b0a61d71...
server: Original packet: [1189] 16030204a00200005103020849b4666ae74058603be609fb931125ca7188b64e...
server: Filtered packet: [1190] 16030204a10200005103020849b4666ae74058603be609fb931125ca7188b64e...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/23 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/24
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303ae3f6a12f24759e78e591e4ff040055c3f3f97f9c54ae2340989...
record new: [1186] 020000510303ae3f6a12f24759e78e591e4ff040055c3f3f97f9c54ae2340989...
server: Original packet: [1191] 16030304a2020000510303ae3f6a12f24759e78e591e4ff040055c3f3f97f9c5...
server: Filtered packet: [1191] 16030304a2020000510303ae3f6a12f24759e78e591e4ff040055c3f3f97f9c5...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/24 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/25
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303d33134ad699f222603cda51e45b00e9206ad1305732a3b0d7138...
record new: [1186] 020000510303d33134ad699f222603cda51e45b00e9206ad1305732a3b0d7138...
server: Original packet: [1191] 16030304a2020000510303d33134ad699f222603cda51e45b00e9206ad130573...
server: Filtered packet: [1191] 16030304a2020000510303d33134ad699f222603cda51e45b00e9206ad130573...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/25 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/26
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103031dc5ea7a0899324a10d6dd6e3c619b966217a2a0faa055d33d1b...
record new: [1186] 0200005103031dc5ea7a0899324a10d6dd6e3c619b966217a2a0faa055d33d1b...
server: Original packet: [1191] 16030304a20200005103031dc5ea7a0899324a10d6dd6e3c619b966217a2a0fa...
server: Filtered packet: [1191] 16030304a20200005103031dc5ea7a0899324a10d6dd6e3c619b966217a2a0fa...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/26 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/27
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303dc2b37a5117c64e8548b189a4312666324be527d2bd05fd5bebe...
record new: [1186] 020000510303dc2b37a5117c64e8548b189a4312666324be527d2bd05fd5bebe...
server: Original packet: [1191] 16030304a2020000510303dc2b37a5117c64e8548b189a4312666324be527d2b...
server: Filtered packet: [1191] 16030304a2020000510303dc2b37a5117c64e8548b189a4312666324be527d2b...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/27 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/28
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 02000051030369ede752759b1b1a386332895686bdaef93d8c7878458860efb8...
record new: [1186] 02000051030369ede752759b1b1a386332895686bdaef93d8c7878458860efb8...
server: Original packet: [1191] 16030304a202000051030369ede752759b1b1a386332895686bdaef93d8c7878...
server: Filtered packet: [1191] 16030304a202000051030369ede752759b1b1a386332895686bdaef93d8c7878...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/28 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/29
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303d8087c4515eab7e9146f976da3e771b53df356bdf8c62ab44c4b...
record new: [1186] 020000510303d8087c4515eab7e9146f976da3e771b53df356bdf8c62ab44c4b...
server: Original packet: [1191] 16030304a2020000510303d8087c4515eab7e9146f976da3e771b53df356bdf8...
server: Filtered packet: [1191] 16030304a2020000510303d8087c4515eab7e9146f976da3e771b53df356bdf8...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/29 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/30
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 02000051030334e2a8c6ec9dfdd31e84ce5a465981267d170a532c7a7bbff31b...
record new: [1186] 02000051030334e2a8c6ec9dfdd31e84ce5a465981267d170a532c7a7bbff31b...
server: Original packet: [1191] 16030304a202000051030334e2a8c6ec9dfdd31e84ce5a465981267d170a532c...
server: Filtered packet: [1191] 16030304a202000051030334e2a8c6ec9dfdd31e84ce5a465981267d170a532c...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/30 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/31
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303f57b2c99facf695f0273159e1b7c24903a3a7cb3873dc42111b3...
record new: [1186] 020000510303f57b2c99facf695f0273159e1b7c24903a3a7cb3873dc42111b3...
server: Original packet: [1191] 16030304a2020000510303f57b2c99facf695f0273159e1b7c24903a3a7cb387...
server: Filtered packet: [1191] 16030304a2020000510303f57b2c99facf695f0273159e1b7c24903a3a7cb387...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/31 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/32
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303ca91e4af56e3c5596a3c73577c0d9975a3ca0c0e23b4453ca1eb...
record new: [1187] 020000510303ca91e4af56e3c5596a3c73577c0d9975a3ca0c0e23b4453ca1eb...
server: Original packet: [1191] 16030304a2020000510303ca91e4af56e3c5596a3c73577c0d9975a3ca0c0e23...
server: Filtered packet: [1192] 16030304a3020000510303ca91e4af56e3c5596a3c73577c0d9975a3ca0c0e23...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/32 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/33
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303b20c70a7442010fa0812cc397be91c27492c6ac43ea06e5d6bd9...
record new: [1187] 020000510303b20c70a7442010fa0812cc397be91c27492c6ac43ea06e5d6bd9...
server: Original packet: [1191] 16030304a2020000510303b20c70a7442010fa0812cc397be91c27492c6ac43e...
server: Filtered packet: [1192] 16030304a3020000510303b20c70a7442010fa0812cc397be91c27492c6ac43e...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/33 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/34
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103034198ebb2f07941b96128e94a1ec84ac7f81e1213d850f86c2637...
record new: [1187] 0200005103034198ebb2f07941b96128e94a1ec84ac7f81e1213d850f86c2637...
server: Original packet: [1191] 16030304a20200005103034198ebb2f07941b96128e94a1ec84ac7f81e1213d8...
server: Filtered packet: [1192] 16030304a30200005103034198ebb2f07941b96128e94a1ec84ac7f81e1213d8...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/34 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/35
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103038f4b6ac62b6746f9732a542a63316b49feeb634f357738af149d...
record new: [1187] 0200005103038f4b6ac62b6746f9732a542a63316b49feeb634f357738af149d...
server: Original packet: [1191] 16030304a20200005103038f4b6ac62b6746f9732a542a63316b49feeb634f35...
server: Filtered packet: [1192] 16030304a30200005103038f4b6ac62b6746f9732a542a63316b49feeb634f35...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/35 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010003b5a6836398488b1667157a87ffd87acbb99ffb47a69200e899394617ff...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 10000102010003b5a6836398488b1667157a87ffd87acbb99ffb47a69200e899...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 160301010610000102010003b5a6836398488b1667157a87ffd87acbb99ffb47...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/0 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/1
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c25e5fa02e2f893a7e4defe28b26ba70787a4403366c7337b9fab9a6976c...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100c25e5fa02e2f893a7e4defe28b26ba70787a4403366c7337b9fa...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 1603010106100001020100c25e5fa02e2f893a7e4defe28b26ba70787a440336...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/1 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/2
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010012f6a2c8501188fc6243ad59506e64571ac8df59957d493e1a58a360c55c...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 10000102010012f6a2c8501188fc6243ad59506e64571ac8df59957d493e1a58...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 160301010610000102010012f6a2c8501188fc6243ad59506e64571ac8df5995...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/2 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/3
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100184ee0ddfaf8af0fbe3dd12e9b59df4886e22541935e124d8ea7d99c5447...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100184ee0ddfaf8af0fbe3dd12e9b59df4886e22541935e124d8ea7...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 1603010106100001020100184ee0ddfaf8af0fbe3dd12e9b59df4886e2254193...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/3 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/4
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100ef2ba385c0234bc5e160e5e3c5967577d5404f7266e0c448b9001c7d7cce...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100ef2ba385c0234bc5e160e5e3c5967577d5404f7266e0c448b900...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [326] 1603010106100001020100ef2ba385c0234bc5e160e5e3c5967577d5404f7266...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/4 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/5
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a7bb103898200257ad66beaf50eb4eb2389c01841edc2cc10eb7124af8ee...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100a7bb103898200257ad66beaf50eb4eb2389c01841edc2cc10eb7...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [326] 1603010106100001020100a7bb103898200257ad66beaf50eb4eb2389c01841e...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/5 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/6
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100210b38479ece9bc7cec825e0a4ea4e93ed63696d557b2a2c71cb8bd270b3...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100210b38479ece9bc7cec825e0a4ea4e93ed63696d557b2a2c71cb...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [326] 1603010106100001020100210b38479ece9bc7cec825e0a4ea4e93ed63696d55...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/6 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/7
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01008cc232306f8e03ad5a6a9018cc2e91c696261bed2a6e445a50b0f134ed82...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 1000010201008cc232306f8e03ad5a6a9018cc2e91c696261bed2a6e445a50b0...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [326] 16030101061000010201008cc232306f8e03ad5a6a9018cc2e91c696261bed2a...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/7 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/8
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e35f0f6b58475666134397424c605d5c4cb85cc2a0054f05edad6fb5a730...
handshake new: [259] 010101e35f0f6b58475666134397424c605d5c4cb85cc2a0054f05edad6fb5a7...
record old: [262] 100001020100e35f0f6b58475666134397424c605d5c4cb85cc2a0054f05edad...
record new: [263] 10000103010101e35f0f6b58475666134397424c605d5c4cb85cc2a0054f05ed...
client: Original packet: [326] 1603010106100001020100e35f0f6b58475666134397424c605d5c4cb85cc2a0...
client: Filtered packet: [327] 160301010710000103010101e35f0f6b58475666134397424c605d5c4cb85cc2...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/8 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/9
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010058c32992863df493a6ab8d4b4e1aef6cf5564b6498c0cf473f1718ace3a2...
handshake new: [259] 01010158c32992863df493a6ab8d4b4e1aef6cf5564b6498c0cf473f1718ace3...
record old: [262] 10000102010058c32992863df493a6ab8d4b4e1aef6cf5564b6498c0cf473f17...
record new: [263] 1000010301010158c32992863df493a6ab8d4b4e1aef6cf5564b6498c0cf473f...
client: Original packet: [326] 160301010610000102010058c32992863df493a6ab8d4b4e1aef6cf5564b6498...
client: Filtered packet: [327] 16030101071000010301010158c32992863df493a6ab8d4b4e1aef6cf5564b64...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/9 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/10
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01001605a4c10d3824caa1f574bf76b2cc5c41d55db99358906eb9bf2556d36f...
handshake new: [259] 0101001605a4c10d3824caa1f574bf76b2cc5c41d55db99358906eb9bf2556d3...
record old: [262] 1000010201001605a4c10d3824caa1f574bf76b2cc5c41d55db99358906eb9bf...
record new: [263] 100001030101001605a4c10d3824caa1f574bf76b2cc5c41d55db99358906eb9...
client: Original packet: [326] 16030101061000010201001605a4c10d3824caa1f574bf76b2cc5c41d55db993...
client: Filtered packet: [327] 1603010107100001030101001605a4c10d3824caa1f574bf76b2cc5c41d55db9...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/10 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/11
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01004afb68eb68538e3177e95700b9ac42984271ff6b77d3c5f7e5a1da86eae7...
handshake new: [259] 0101004afb68eb68538e3177e95700b9ac42984271ff6b77d3c5f7e5a1da86ea...
record old: [262] 1000010201004afb68eb68538e3177e95700b9ac42984271ff6b77d3c5f7e5a1...
record new: [263] 100001030101004afb68eb68538e3177e95700b9ac42984271ff6b77d3c5f7e5...
client: Original packet: [326] 16030101061000010201004afb68eb68538e3177e95700b9ac42984271ff6b77...
client: Filtered packet: [327] 1603010107100001030101004afb68eb68538e3177e95700b9ac42984271ff6b...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/11 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/12
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c8fb853e29346d01268c88634a69b347a49fa2a88eea57c41ce14c51b1e7...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100c8fb853e29346d01268c88634a69b347a49fa2a88eea57c41ce1...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 1603020106100001020100c8fb853e29346d01268c88634a69b347a49fa2a88e...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/12 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/13
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010048583c61305852f43e3f772204261fa72febfd7260e875e763d8ff687a06...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 10000102010048583c61305852f43e3f772204261fa72febfd7260e875e763d8...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 160302010610000102010048583c61305852f43e3f772204261fa72febfd7260...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/13 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/14
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01000d81096e82e0f3a7f3c7ce70585d85d17d2a66c540a7482c80102b1b61a5...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201000d81096e82e0f3a7f3c7ce70585d85d17d2a66c540a7482c8010...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 16030201061000010201000d81096e82e0f3a7f3c7ce70585d85d17d2a66c540...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/14 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/15
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100b99d9073c5dbaf678d9278e90f518944fa897467a1c57686fe80394d18bd...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100b99d9073c5dbaf678d9278e90f518944fa897467a1c57686fe80...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 1603020106100001020100b99d9073c5dbaf678d9278e90f518944fa897467a1...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/15 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/16
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010096c5453469e3af60ed374e030caf07492dd2ed695a5ff4399b4ef5d7d12e...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 10000102010096c5453469e3af60ed374e030caf07492dd2ed695a5ff4399b4e...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [342] 160302010610000102010096c5453469e3af60ed374e030caf07492dd2ed695a...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/16 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/17
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e9354bc91543ad6eaa4aa94f15b13aa878d2ff22e4e87ce7e5e65c6912e1...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100e9354bc91543ad6eaa4aa94f15b13aa878d2ff22e4e87ce7e5e6...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [342] 1603020106100001020100e9354bc91543ad6eaa4aa94f15b13aa878d2ff22e4...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/17 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/18
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100fc3ec93e4effbe8f092d059dc76cb2c10368fd40703e796b85c764e6ae81...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100fc3ec93e4effbe8f092d059dc76cb2c10368fd40703e796b85c7...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [342] 1603020106100001020100fc3ec93e4effbe8f092d059dc76cb2c10368fd4070...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/18 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/19
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a0c7b3db83a6cfce4fa0c75d0fcfd39e8a92d64122f6ae6ad025e19a1c70...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100a0c7b3db83a6cfce4fa0c75d0fcfd39e8a92d64122f6ae6ad025...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [342] 1603020106100001020100a0c7b3db83a6cfce4fa0c75d0fcfd39e8a92d64122...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/19 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/20
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010060145f9fded39c9cf8fdfc9c42e25da2908583633e9e0f54942920d0d354...
handshake new: [259] 01010160145f9fded39c9cf8fdfc9c42e25da2908583633e9e0f54942920d0d3...
record old: [262] 10000102010060145f9fded39c9cf8fdfc9c42e25da2908583633e9e0f549429...
record new: [263] 1000010301010160145f9fded39c9cf8fdfc9c42e25da2908583633e9e0f5494...
client: Original packet: [342] 160302010610000102010060145f9fded39c9cf8fdfc9c42e25da2908583633e...
client: Filtered packet: [343] 16030201071000010301010160145f9fded39c9cf8fdfc9c42e25da290858363...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/20 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/21
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100875213e5ea8a3ef454f5af46fdafc7eb69a10e9be13f6cf30fa120b9e250...
handshake new: [259] 010101875213e5ea8a3ef454f5af46fdafc7eb69a10e9be13f6cf30fa120b9e2...
record old: [262] 100001020100875213e5ea8a3ef454f5af46fdafc7eb69a10e9be13f6cf30fa1...
record new: [263] 10000103010101875213e5ea8a3ef454f5af46fdafc7eb69a10e9be13f6cf30f...
client: Original packet: [342] 1603020106100001020100875213e5ea8a3ef454f5af46fdafc7eb69a10e9be1...
client: Filtered packet: [343] 160302010710000103010101875213e5ea8a3ef454f5af46fdafc7eb69a10e9b...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/21 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/22
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010097ab47fc06c4709fcdbd88213c80d80900607a09f41f94d110e2696d287d...
handshake new: [259] 01010097ab47fc06c4709fcdbd88213c80d80900607a09f41f94d110e2696d28...
record old: [262] 10000102010097ab47fc06c4709fcdbd88213c80d80900607a09f41f94d110e2...
record new: [263] 1000010301010097ab47fc06c4709fcdbd88213c80d80900607a09f41f94d110...
client: Original packet: [342] 160302010610000102010097ab47fc06c4709fcdbd88213c80d80900607a09f4...
client: Filtered packet: [343] 16030201071000010301010097ab47fc06c4709fcdbd88213c80d80900607a09...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/22 (10 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/23
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010031bea29fb2348b5afc47a90e65ced7e30c5a676f78d7d7438619f296d8da...
handshake new: [259] 01010031bea29fb2348b5afc47a90e65ced7e30c5a676f78d7d7438619f296d8...
record old: [262] 10000102010031bea29fb2348b5afc47a90e65ced7e30c5a676f78d7d7438619...
record new: [263] 1000010301010031bea29fb2348b5afc47a90e65ced7e30c5a676f78d7d74386...
client: Original packet: [342] 160302010610000102010031bea29fb2348b5afc47a90e65ced7e30c5a676f78...
client: Filtered packet: [343] 16030201071000010301010031bea29fb2348b5afc47a90e65ced7e30c5a676f...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/23 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/24
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010021684b329b0ad37d891b775fabb16170dadc3a67b909794e20fa3536969f...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 10000102010021684b329b0ad37d891b775fabb16170dadc3a67b909794e20fa...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 160303010610000102010021684b329b0ad37d891b775fabb16170dadc3a67b9...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/24 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/25
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010017f0ff87751b6fbeb05cc9e50934d6bf02b51ae2454feab2a1327ab89235...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 10000102010017f0ff87751b6fbeb05cc9e50934d6bf02b51ae2454feab2a132...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 160303010610000102010017f0ff87751b6fbeb05cc9e50934d6bf02b51ae245...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/25 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/26
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100aea5f6d625a4bf16f412a9f4a444645728c25abc5c90fe1492df3e352bc9...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100aea5f6d625a4bf16f412a9f4a444645728c25abc5c90fe1492df...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 1603030106100001020100aea5f6d625a4bf16f412a9f4a444645728c25abc5c...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/26 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/27
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100b1045f624e7a33b6e63424392adcd96abac083a2d0421237ed51fda1d3f2...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100b1045f624e7a33b6e63424392adcd96abac083a2d0421237ed51...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 1603030106100001020100b1045f624e7a33b6e63424392adcd96abac083a2d0...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/27 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/28
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100ee3786373f0627b7c3efac010ca44b39f5196dbf0d0c5124cc931c244e48...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100ee3786373f0627b7c3efac010ca44b39f5196dbf0d0c5124cc93...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [318] 1603030106100001020100ee3786373f0627b7c3efac010ca44b39f5196dbf0d...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/28 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/29
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100d46693c40f54e8806b7748f4dad63c18f9232c312aecbc940bac46fc45f4...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100d46693c40f54e8806b7748f4dad63c18f9232c312aecbc940bac...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [318] 1603030106100001020100d46693c40f54e8806b7748f4dad63c18f9232c312a...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/29 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/30
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010086598d3212a30fd1dd093a93518d7da8fc00275ef58a45af8e7c262ade6e...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 10000102010086598d3212a30fd1dd093a93518d7da8fc00275ef58a45af8e7c...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [318] 160303010610000102010086598d3212a30fd1dd093a93518d7da8fc00275ef5...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/30 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/31
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100d5b7ca3efc45872cd14d00c2b0496888ad43aa32902711c75391c4e62331...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100d5b7ca3efc45872cd14d00c2b0496888ad43aa32902711c75391...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [318] 1603030106100001020100d5b7ca3efc45872cd14d00c2b0496888ad43aa3290...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/31 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/32
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01008d8d54a7a857dac945ed5a46e3a176afba2ab2aa44b142b6eec10752038e...
handshake new: [259] 0101018d8d54a7a857dac945ed5a46e3a176afba2ab2aa44b142b6eec1075203...
record old: [262] 1000010201008d8d54a7a857dac945ed5a46e3a176afba2ab2aa44b142b6eec1...
record new: [263] 100001030101018d8d54a7a857dac945ed5a46e3a176afba2ab2aa44b142b6ee...
client: Original packet: [318] 16030301061000010201008d8d54a7a857dac945ed5a46e3a176afba2ab2aa44...
client: Filtered packet: [319] 1603030107100001030101018d8d54a7a857dac945ed5a46e3a176afba2ab2aa...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/32 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/33
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100bbd5c97fe3f1198fd3f2b75c475262ae16416b5a21d33a998f856cf09377...
handshake new: [259] 010101bbd5c97fe3f1198fd3f2b75c475262ae16416b5a21d33a998f856cf093...
record old: [262] 100001020100bbd5c97fe3f1198fd3f2b75c475262ae16416b5a21d33a998f85...
record new: [263] 10000103010101bbd5c97fe3f1198fd3f2b75c475262ae16416b5a21d33a998f...
client: Original packet: [318] 1603030106100001020100bbd5c97fe3f1198fd3f2b75c475262ae16416b5a21...
client: Filtered packet: [319] 160303010710000103010101bbd5c97fe3f1198fd3f2b75c475262ae16416b5a...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/33 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/34
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c71da4f00ed2a1718c2268ec0bedf271be003f5d347453db2adfaab47057...
handshake new: [259] 010100c71da4f00ed2a1718c2268ec0bedf271be003f5d347453db2adfaab470...
record old: [262] 100001020100c71da4f00ed2a1718c2268ec0bedf271be003f5d347453db2adf...
record new: [263] 10000103010100c71da4f00ed2a1718c2268ec0bedf271be003f5d347453db2a...
client: Original packet: [318] 1603030106100001020100c71da4f00ed2a1718c2268ec0bedf271be003f5d34...
client: Filtered packet: [319] 160303010710000103010100c71da4f00ed2a1718c2268ec0bedf271be003f5d...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/34 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/35
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01004918cba0a4462c62b4693403d5be849478a747b743c3ea1aa30282ad5411...
handshake new: [259] 0101004918cba0a4462c62b4693403d5be849478a747b743c3ea1aa30282ad54...
record old: [262] 1000010201004918cba0a4462c62b4693403d5be849478a747b743c3ea1aa302...
record new: [263] 100001030101004918cba0a4462c62b4693403d5be849478a747b743c3ea1aa3...
client: Original packet: [318] 16030301061000010201004918cba0a4462c62b4693403d5be849478a747b743...
client: Filtered packet: [319] 1603030107100001030101004918cba0a4462c62b4693403d5be849478a747b7...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/35 (9 ms)
[----------] 72 tests from DamageYStream/TlsDamageDHYTest (523 ms total)
[----------] 48 tests from DamageYDatagram/TlsDamageDHYTest
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/0
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffeae202a7b2...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feffeae202a7b2...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/0 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/1
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffa54beefcf6...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feffa54beefcf6...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/1 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff08c2288ff5...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff08c2288ff5...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/2 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff6e4ecda472...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff6e4ecda472...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/3 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/4
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffb625c187d6...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feffb625c187d6...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/4 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/5
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff1ba98d9351...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff1ba98d9351...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/5 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/6
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffc2ec4e5638...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feffc2ec4e5638...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/6 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/7
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff232578fdba...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff232578fdba...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/7 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/8
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff81de4dc4f3...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feff81de4dc4f3...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/8 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/9
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff90a24876ad...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feff90a24876ad...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/9 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/10
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff46196478c5...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feff46196478c5...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/10 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/11
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffd1d72c9373...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feffd1d72c9373...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/11 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/12
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdd8e65dfa73...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdd8e65dfa73...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/12 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/13
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdad086bcd88...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdad086bcd88...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/13 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/14
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd1cd2709b3d...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd1cd2709b3d...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/14 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/15
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd057deff5dc...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd057deff5dc...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/15 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/16
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd9eb6ff6ada...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd9eb6ff6ada...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/16 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/17
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd0fd5f15435...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd0fd5f15435...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/17 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/18
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd0e482236d2...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd0e482236d2...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/18 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/19
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd5f45104a0f...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd5f45104a0f...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/19 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/20
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd8d0f056ed7...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefd8d0f056ed7...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/20 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/21
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd66a8d08b16...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefd66a8d08b16...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/21 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/22
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd855a4ef1d6...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefd855a4ef1d6...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/22 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/23
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdd26d8cb45e...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefdd26d8cb45e...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/23 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/0
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01004f93d60dc3ea66d7b2a323b799eb1ab52147b839707fa5e1a853df7481d1...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 10000102000100000000010201004f93d60dc3ea66d7b2a323b799eb1ab52147...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201004f93d60dc3...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/0 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/1
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01005f99c5531d90f4720511b77cf22db3c8f4726fddf5eb2a1dcef8b74317f4...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 10000102000100000000010201005f99c5531d90f4720511b77cf22db3c8f472...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201005f99c5531d...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/1 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100d75dfa61275c3d2ae198cb718562743e72996eb7484601b7647cbca4e705...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100d75dfa61275c3d2ae198cb718562743e7299...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100d75dfa6127...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/2 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100f46b3a29ea8036e4687a3a43699d30d3eb1a972f1b634d256d3a64165f98...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100f46b3a29ea8036e4687a3a43699d30d3eb1a...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100f46b3a29ea...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/3 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/4
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01002cca121f923b778fc08c032dc7f208154374cebd116db6bf690ce3bc22d0...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 10000102000100000000010201002cca121f923b778fc08c032dc7f208154374...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201002cca121f92...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/4 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/5
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100bef7762553a2dabe42a568f4a2859ee545b5aa0f2f7365089fe21ae21d31...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 1000010200010000000001020100bef7762553a2dabe42a568f4a2859ee545b5...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100bef7762553...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/5 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/6
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01001552cbebe6077bc653e16b99bce36dee9149b59fa1845798caf7294eacea...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 10000102000100000000010201001552cbebe6077bc653e16b99bce36dee9149...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201001552cbebe6...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/6 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/7
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e0625151be35599409e387b855ad17d4ee0f1ba0aa6bfacee6c63c10cd6d...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 1000010200010000000001020100e0625151be35599409e387b855ad17d4ee0f...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100e0625151be...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/7 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/8
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01007fa99ce92df1b048bc080059ccf830b01e7b86c52c04362fb2832b0956af...
handshake new: [259] 0101017fa99ce92df1b048bc080059ccf830b01e7b86c52c04362fb2832b0956...
record old: [270] 10000102000100000000010201007fa99ce92df1b048bc080059ccf830b01e7b...
record new: [271] 1000010300010000000001030101017fa99ce92df1b048bc080059ccf830b01e...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201007fa99ce92d...
client: Filtered packet: [375] 16feff0000000000000001010f1000010300010000000001030101017fa99ce9...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/8 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/9
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100b4c85606d711a05dd0463ef5b69fb64fbdd9a0578e319d99e305c5db6c14...
handshake new: [259] 010101b4c85606d711a05dd0463ef5b69fb64fbdd9a0578e319d99e305c5db6c...
record old: [270] 1000010200010000000001020100b4c85606d711a05dd0463ef5b69fb64fbdd9...
record new: [271] 100001030001000000000103010101b4c85606d711a05dd0463ef5b69fb64fbd...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100b4c85606d7...
client: Filtered packet: [375] 16feff0000000000000001010f100001030001000000000103010101b4c85606...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/9 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/10
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01001f0d4594732df0b62a6536a8b4a4242d332ef096a8dced30e880e34fcd6f...
handshake new: [259] 0101001f0d4594732df0b62a6536a8b4a4242d332ef096a8dced30e880e34fcd...
record old: [270] 10000102000100000000010201001f0d4594732df0b62a6536a8b4a4242d332e...
record new: [271] 1000010300010000000001030101001f0d4594732df0b62a6536a8b4a4242d33...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201001f0d459473...
client: Filtered packet: [375] 16feff0000000000000001010f1000010300010000000001030101001f0d4594...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/10 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/11
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010048c3052caed3b1b10e5d321e0bb9f79929859420eb22b04ea6086dce4225...
handshake new: [259] 01010048c3052caed3b1b10e5d321e0bb9f79929859420eb22b04ea6086dce42...
record old: [270] 100001020001000000000102010048c3052caed3b1b10e5d321e0bb9f7992985...
record new: [271] 10000103000100000000010301010048c3052caed3b1b10e5d321e0bb9f79929...
client: Original packet: [374] 16feff0000000000000001010e100001020001000000000102010048c3052cae...
client: Filtered packet: [375] 16feff0000000000000001010f10000103000100000000010301010048c3052c...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/11 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/12
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100b3e718974eeda6fb4206c4de827cac6b31c1eb5061bfd9c17792bebf0be4...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100b3e718974eeda6fb4206c4de827cac6b31c1...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100b3e718974e...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/12 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/13
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01009891cbefbb25b1f1cfaec6714b497fc65b374618cac70aae436644e1fb35...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 10000102000100000000010201009891cbefbb25b1f1cfaec6714b497fc65b37...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201009891cbefbb...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/13 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/14
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100f23ace2a519f80c76448d9a7ad6316cbc584c55f3803ae4e20f16e7ec28f...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100f23ace2a519f80c76448d9a7ad6316cbc584...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100f23ace2a51...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/14 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/15
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01009d33a8de1e7805fbba39a48fcce7ce0ef3742035ee9df8c971a27139d750...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 10000102000100000000010201009d33a8de1e7805fbba39a48fcce7ce0ef374...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201009d33a8de1e...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/15 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/16
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100537dd566fbb59f1cdc297d22931e7772397cfc6a26c2a5a700c782afd8cb...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 1000010200010000000001020100537dd566fbb59f1cdc297d22931e7772397c...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100537dd566fb...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/16 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/17
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a18745ee2defc2c00534773bdaea30667fb5887adef324dc8c97d2c7dd74...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 1000010200010000000001020100a18745ee2defc2c00534773bdaea30667fb5...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100a18745ee2d...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/17 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/18
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100f74eba4d2e52792f0d760f16d002977c6e53034cef4f2a3f488e7b659860...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 1000010200010000000001020100f74eba4d2e52792f0d760f16d002977c6e53...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100f74eba4d2e...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/18 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/19
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01004efd2a2afa1b09020354789f86244328212fa87dadbb48733579daf62a27...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 10000102000100000000010201004efd2a2afa1b09020354789f86244328212f...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201004efd2a2afa...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/19 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/20
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01005af922425ab3567e317d176f56a96eadbb07b716e758a5565656f4207d8e...
handshake new: [259] 0101015af922425ab3567e317d176f56a96eadbb07b716e758a5565656f4207d...
record old: [270] 10000102000100000000010201005af922425ab3567e317d176f56a96eadbb07...
record new: [271] 1000010300010000000001030101015af922425ab3567e317d176f56a96eadbb...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201005af922425a...
client: Filtered packet: [359] 16fefd0000000000000001010f1000010300010000000001030101015af92242...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/20 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/21
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01002844966e6f8713eda2a84e5aa8e4dc1b4fea8e8984ee1478d8fc156ac2ec...
handshake new: [259] 0101012844966e6f8713eda2a84e5aa8e4dc1b4fea8e8984ee1478d8fc156ac2...
record old: [270] 10000102000100000000010201002844966e6f8713eda2a84e5aa8e4dc1b4fea...
record new: [271] 1000010300010000000001030101012844966e6f8713eda2a84e5aa8e4dc1b4f...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201002844966e6f...
client: Filtered packet: [359] 16fefd0000000000000001010f1000010300010000000001030101012844966e...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/21 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/22
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100f30edec35c26488cc38bf447dd7638499c548f71599b57e47930a3e47e5e...
handshake new: [259] 010100f30edec35c26488cc38bf447dd7638499c548f71599b57e47930a3e47e...
record old: [270] 1000010200010000000001020100f30edec35c26488cc38bf447dd7638499c54...
record new: [271] 100001030001000000000103010100f30edec35c26488cc38bf447dd7638499c...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100f30edec35c...
client: Filtered packet: [359] 16fefd0000000000000001010f100001030001000000000103010100f30edec3...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/22 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/23
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100582920d1173ae116f96f471e9c7335d2d16c444d9f5f872db074eca0c96a...
handshake new: [259] 010100582920d1173ae116f96f471e9c7335d2d16c444d9f5f872db074eca0c9...
record old: [270] 1000010200010000000001020100582920d1173ae116f96f471e9c7335d2d16c...
record new: [271] 100001030001000000000103010100582920d1173ae116f96f471e9c7335d2d1...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100582920d117...
client: Filtered packet: [359] 16fefd0000000000000001010f100001030001000000000103010100582920d1...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/23 (9 ms)
[----------] 48 tests from DamageYDatagram/TlsDamageDHYTest (351 ms total)
[----------] 2 tests from Datagram12Plus/TlsConnectDatagram12Plus
[ RUN      ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindow/0
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindow/0 (6 ms)
[ RUN      ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindowAndOne/0
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindowAndOne/0 (6 ms)
[----------] 2 tests from Datagram12Plus/TlsConnectDatagram12Plus (12 ms total)
[----------] 16 tests from KeyExchangeTest/TlsKeyExchangeTest
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/0 (18 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/1 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/2 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/3 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/0 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/1 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/2 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/3 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/0 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/1 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/2 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/3 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/0 (9 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/1 (9 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/2 (9 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/3 (9 ms)
[----------] 16 tests from KeyExchangeTest/TlsKeyExchangeTest (219 ms total)
[----------] 88 tests from TlsPadding/TlsPaddingTest
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fefefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.Correct/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0e0e
[       OK ] TlsPadding/TlsPaddingTest.Correct/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fcfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.Correct/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0c0c
[       OK ] TlsPadding/TlsPaddingTest.Correct/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fbfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.Correct/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0b0b
[       OK ] TlsPadding/TlsPaddingTest.Correct/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f1f1...
[       OK ] TlsPadding/TlsPaddingTest.Correct/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410101
[       OK ] TlsPadding/TlsPaddingTest.Correct/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f0...
[       OK ] TlsPadding/TlsPaddingTest.Correct/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/9
Content length=31 padding length=0 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141414100
[       OK ] TlsPadding/TlsPaddingTest.Correct/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/19
Content length=287 padding length=0 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/0
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0e10
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/2
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0c20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/4
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0b20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/6
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410120
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/8
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/9
Content length=31 padding length=0 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141414120
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/10
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/12
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/14
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/15
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/16
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/17
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/18
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/19
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/21
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fffefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410f0e0e0e0e0e0e0e0e0e0e0e0e0e0e
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fdfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410d0c0c0c0c0c0c0c0c0c0c0c0c
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fcfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410c0b0b0b0b0b0b0b0b0b0b0b
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f2f1...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410201
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f1...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/9
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/14 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/19
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fefefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0f0e
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fcfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0d0c
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fbfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0c0b
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f1f1...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410201
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f0...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/9
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/18 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/19
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/21 (0 ms)
[----------] 88 tests from TlsPadding/TlsPaddingTest (3 ms total)
[----------] 8 tests from SkipTls10/TlsSkipTest
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateRsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 0200005103015300b7fe76ddde147045fc85700140069c9ea836e1146501507a...
record new: [89] 0200005103015300b7fe76ddde147045fc85700140069c9ea836e1146501507a...
server: Original packet: [536] 16030102130200005103015300b7fe76ddde147045fc85700140069c9ea836e1...
server: Filtered packet: [94] 16030100590200005103015300b7fe76ddde147045fc85700140069c9ea836e1...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateRsa/0 (4 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateDhe/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570301906bc9a77884b99a095d64d2a98af220a4d6a2d6d61c49724fcf...
record new: [265] 020000570301906bc9a77884b99a095d64d2a98af220a4d6a2d6d61c49724fcf...
server: Original packet: [712] 16030102c3020000570301906bc9a77884b99a095d64d2a98af220a4d6a2d6d6...
server: Filtered packet: [270] 1603010109020000570301906bc9a77884b99a095d64d2a98af220a4d6a2d6d6...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateDhe/0 (6 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateEcdhe/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 0200005703011045c9c63b369d866f981973b03b7f10077459c163de6e23b491...
record new: [265] 0200005703011045c9c63b369d866f981973b03b7f10077459c163de6e23b491...
server: Original packet: [712] 16030102c30200005703011045c9c63b369d866f981973b03b7f10077459c163...
server: Filtered packet: [270] 16030101090200005703011045c9c63b369d866f981973b03b7f10077459c163...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateEcdhe/0 (5 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [525] 0200005703019fdcf4672ee79dea33983c05092d6c4f486d60007473f24d68db...
record new: [209] 0200005703019fdcf4672ee79dea33983c05092d6c4f486d60007473f24d68db...
server: Original packet: [530] 160301020d0200005703019fdcf4672ee79dea33983c05092d6c4f486d600074...
server: Filtered packet: [214] 16030100d10200005703019fdcf4672ee79dea33983c05092d6c4f486d600074...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateEcdsa/0 (4 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipServerKeyExchange/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [707] 0200005703011deb2ca7c6687d1a5285363d5f85aa5928f328f67ebd314e26f6...
record new: [537] 0200005703011deb2ca7c6687d1a5285363d5f85aa5928f328f67ebd314e26f6...
server: Original packet: [712] 16030102c30200005703011deb2ca7c6687d1a5285363d5f85aa5928f328f67e...
server: Filtered packet: [542] 16030102190200005703011deb2ca7c6687d1a5285363d5f85aa5928f328f67e...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipServerKeyExchange/0 (5 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipServerKeyExchangeEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [523] 0200005703013beeb86311eb09ad5566d339a52ac2951889e45bf99f381365f6...
record new: [411] 0200005703013beeb86311eb09ad5566d339a52ac2951889e45bf99f381365f6...
server: Original packet: [528] 160301020b0200005703013beeb86311eb09ad5566d339a52ac2951889e45bf9...
server: Filtered packet: [416] 160301019b0200005703013beeb86311eb09ad5566d339a52ac2951889e45bf9...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipServerKeyExchangeEcdsa/0 (5 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertAndKeyExch/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570301c7c422233ce6a2058bfe3c6e75ac09fc9059d1f4aa07d46f39d2...
record new: [265] 020000570301c7c422233ce6a2058bfe3c6e75ac09fc9059d1f4aa07d46f39d2...
Dropping handshake: 12
record old: [265] 020000570301c7c422233ce6a2058bfe3c6e75ac09fc9059d1f4aa07d46f39d2...
record new: [95] 020000570301c7c422233ce6a2058bfe3c6e75ac09fc9059d1f4aa07d46f39d2...
server: Original packet: [712] 16030102c3020000570301c7c422233ce6a2058bfe3c6e75ac09fc9059d1f4aa...
server: Filtered packet: [100] 160301005f020000570301c7c422233ce6a2058bfe3c6e75ac09fc9059d1f4aa...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertAndKeyExch/0 (5 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertAndKeyExchEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [524] 020000570301111c106c2d2030be7d49b5c56784bffeb7104fc2d6ddbc6b5e1a...
record new: [208] 020000570301111c106c2d2030be7d49b5c56784bffeb7104fc2d6ddbc6b5e1a...
Dropping handshake: 12
record old: [208] 020000570301111c106c2d2030be7d49b5c56784bffeb7104fc2d6ddbc6b5e1a...
record new: [95] 020000570301111c106c2d2030be7d49b5c56784bffeb7104fc2d6ddbc6b5e1a...
server: Original packet: [529] 160301020c020000570301111c106c2d2030be7d49b5c56784bffeb7104fc2d6...
server: Filtered packet: [100] 160301005f020000570301111c106c2d2030be7d49b5c56784bffeb7104fc2d6...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertAndKeyExchEcdsa/0 (4 ms)
[----------] 8 tests from SkipTls10/TlsSkipTest (38 ms total)
[----------] 32 tests from SkipVariants/TlsSkipTest
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 0200005103022c403a7ba4bcceb84db232458681a81d7f7dba531d14e9cfcd34...
record new: [89] 0200005103022c403a7ba4bcceb84db232458681a81d7f7dba531d14e9cfcd34...
server: Original packet: [536] 16030202130200005103022c403a7ba4bcceb84db232458681a81d7f7dba531d...
server: Filtered packet: [94] 16030200590200005103022c403a7ba4bcceb84db232458681a81d7f7dba531d...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/0 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 0200005103037810fd5d469921281970b2818664913b7f6e520fba2c7fcdde38...
record new: [89] 0200005103037810fd5d469921281970b2818664913b7f6e520fba2c7fcdde38...
server: Original packet: [536] 16030302130200005103037810fd5d469921281970b2818664913b7f6e520fba...
server: Filtered packet: [94] 16030300590200005103037810fd5d469921281970b2818664913b7f6e520fba...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/1 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [594] 16feff0000000000000000005d020000510000000000000051feffc32479abe4...
server: Filtered packet: [144] 16feff0000000000000000005d020000510000000000000051feffc32479abe4...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/2 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [594] 16fefd0000000000000000005d020000510000000000000051fefd2e5063ef81...
server: Filtered packet: [144] 16fefd0000000000000000005d020000510000000000000051fefd2e5063ef81...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/3 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570302e9370b3a1541444cd3dcfb17d3035db5d57858ffca8b8e5d70ca...
record new: [265] 020000570302e9370b3a1541444cd3dcfb17d3035db5d57858ffca8b8e5d70ca...
server: Original packet: [712] 16030202c3020000570302e9370b3a1541444cd3dcfb17d3035db5d57858ffca...
server: Filtered packet: [270] 1603020109020000570302e9370b3a1541444cd3dcfb17d3035db5d57858ffca...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/0 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 020000570303bab0123b1f2ec94cab20205600827c98a9a4d585e73a80efa533...
record new: [267] 020000570303bab0123b1f2ec94cab20205600827c98a9a4d585e73a80efa533...
server: Original packet: [714] 16030302c5020000570303bab0123b1f2ec94cab20205600827c98a9a4d585e7...
server: Filtered packet: [272] 160303010b020000570303bab0123b1f2ec94cab20205600827c98a9a4d585e7...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/1 (6 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d204ac0890b9147a59b27bb6cd22c368cfc...
record new: [178] 0c0000a600010000000000a603001d204ac0890b9147a59b27bb6cd22c368cfc...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feffb0a6b48f43...
server: Filtered packet: [341] 16feff00000000000000000063020000570000000000000057feffb0a6b48f43...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/2 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d204ac0890b9147a59b27bb6cd22c368cfc...
record new: [180] 0c0000a800010000000000a803001d204ac0890b9147a59b27bb6cd22c368cfc...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefd9f4d1dd3f4...
server: Filtered packet: [343] 16fefd00000000000000000063020000570000000000000057fefd9f4d1dd3f4...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/3 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 02000057030263579cc45f102f5385b769516a99ba0184dd20b50e5a9207a075...
record new: [265] 02000057030263579cc45f102f5385b769516a99ba0184dd20b50e5a9207a075...
server: Original packet: [712] 16030202c302000057030263579cc45f102f5385b769516a99ba0184dd20b50e...
server: Filtered packet: [270] 160302010902000057030263579cc45f102f5385b769516a99ba0184dd20b50e...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/0 (6 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 0200005703039959897a8979651535c819de37a44f487f21a9fa1148607a4c17...
record new: [267] 0200005703039959897a8979651535c819de37a44f487f21a9fa1148607a4c17...
server: Original packet: [714] 16030302c50200005703039959897a8979651535c819de37a44f487f21a9fa11...
server: Filtered packet: [272] 160303010b0200005703039959897a8979651535c819de37a44f487f21a9fa11...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/1 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d204ac0890b9147a59b27bb6cd22c368cfc...
record new: [178] 0c0000a600010000000000a603001d204ac0890b9147a59b27bb6cd22c368cfc...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feffde24e0dc83...
server: Filtered packet: [341] 16feff00000000000000000063020000570000000000000057feffde24e0dc83...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/2 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d204ac0890b9147a59b27bb6cd22c368cfc...
record new: [180] 0c0000a800010000000000a803001d204ac0890b9147a59b27bb6cd22c368cfc...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefdb4abf29287...
server: Filtered packet: [343] 16fefd00000000000000000063020000570000000000000057fefdb4abf29287...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/3 (6 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [524] 020000570302fa87276e74a7f8bfe08a801172cf82b50f98bc71835bf5754a93...
record new: [208] 020000570302fa87276e74a7f8bfe08a801172cf82b50f98bc71835bf5754a93...
server: Original packet: [529] 160302020c020000570302fa87276e74a7f8bfe08a801172cf82b50f98bc7183...
server: Filtered packet: [213] 16030200d0020000570302fa87276e74a7f8bfe08a801172cf82b50f98bc7183...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/0 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [526] 020000570303bfe104e8ad04acfff19b79c719b8f44b7347e057a3d4be09274a...
record new: [210] 020000570303bfe104e8ad04acfff19b79c719b8f44b7347e057a3d4be09274a...
server: Original packet: [531] 160303020e020000570303bfe104e8ad04acfff19b79c719b8f44b7347e057a3...
server: Filtered packet: [215] 16030300d2020000570303bfe104e8ad04acfff19b79c719b8f44b7347e057a3...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/1 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [324] 0b00013800010000000001380001350001323082012e3081d5a0030201020201...
record new: [0] 
record old: [120] 0c00006c000200000000006c03001d204ac0890b9147a59b27bb6cd22c368cfc...
record new: [120] 0c00006c000100000000006c03001d204ac0890b9147a59b27bb6cd22c368cfc...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [607] 16feff00000000000000000063020000570000000000000057feff146c5feff9...
server: Filtered packet: [283] 16feff00000000000000000063020000570000000000000057feff146c5feff9...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/2 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [324] 0b00013800010000000001380001350001323082012e3081d5a0030201020201...
record new: [0] 
record old: [123] 0c00006f000200000000006f03001d204ac0890b9147a59b27bb6cd22c368cfc...
record new: [123] 0c00006f000100000000006f03001d204ac0890b9147a59b27bb6cd22c368cfc...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [610] 16fefd00000000000000000063020000570000000000000057fefdf2c718c4e1...
server: Filtered packet: [286] 16fefd00000000000000000063020000570000000000000057fefdf2c718c4e1...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/3 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [707] 0200005703023163a37e2d865bec6abda25719d7dbe8b830b6e786278c71677b...
record new: [537] 0200005703023163a37e2d865bec6abda25719d7dbe8b830b6e786278c71677b...
server: Original packet: [712] 16030202c30200005703023163a37e2d865bec6abda25719d7dbe8b830b6e786...
server: Filtered packet: [542] 16030202190200005703023163a37e2d865bec6abda25719d7dbe8b830b6e786...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/0 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [709] 020000570303e3fff591cd904297f773ef65a10801cfb4842609e3b23a3f4986...
record new: [537] 020000570303e3fff591cd904297f773ef65a10801cfb4842609e3b23a3f4986...
server: Original packet: [714] 16030302c5020000570303e3fff591cd904297f773ef65a10801cfb4842609e3...
server: Filtered packet: [542] 1603030219020000570303e3fff591cd904297f773ef65a10801cfb4842609e3...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/1 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [178] 0c0000a600020000000000a603001d204ac0890b9147a59b27bb6cd22c368cfc...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff7497d40d6c...
server: Filtered packet: [613] 16feff00000000000000000063020000570000000000000057feff7497d40d6c...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/2 (6 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [180] 0c0000a800020000000000a803001d204ac0890b9147a59b27bb6cd22c368cfc...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefded8b8acc83...
server: Filtered packet: [613] 16fefd00000000000000000063020000570000000000000057fefded8b8acc83...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/3 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [524] 0200005703025de52928fd2cdc93af43dba0c4a21dfc974a5d41bb01c1ff6a90...
record new: [411] 0200005703025de52928fd2cdc93af43dba0c4a21dfc974a5d41bb01c1ff6a90...
server: Original packet: [529] 160302020c0200005703025de52928fd2cdc93af43dba0c4a21dfc974a5d41bb...
server: Filtered packet: [416] 160302019b0200005703025de52928fd2cdc93af43dba0c4a21dfc974a5d41bb...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/0 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [526] 020000570303d3da6b74b2b69fc98b0f62c889a848ba228593d2cf6ea09e403a...
record new: [411] 020000570303d3da6b74b2b69fc98b0f62c889a848ba228593d2cf6ea09e403a...
server: Original packet: [531] 160303020e020000570303d3da6b74b2b69fc98b0f62c889a848ba228593d2cf...
server: Filtered packet: [416] 160303019b020000570303d3da6b74b2b69fc98b0f62c889a848ba228593d2cf...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/1 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [121] 0c00006d000200000000006d03001d204ac0890b9147a59b27bb6cd22c368cfc...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [608] 16feff00000000000000000063020000570000000000000057feff9159829359...
server: Filtered packet: [487] 16feff00000000000000000063020000570000000000000057feff9159829359...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/2 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [122] 0c00006e000200000000006e03001d204ac0890b9147a59b27bb6cd22c368cfc...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [609] 16fefd00000000000000000063020000570000000000000057fefd5ef53f34f4...
server: Filtered packet: [487] 16fefd00000000000000000063020000570000000000000057fefd5ef53f34f4...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/3 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 0200005703025471bbc38eb6ef2e85ccf0bec78eafb2d0b2a0cdf0856766e552...
record new: [265] 0200005703025471bbc38eb6ef2e85ccf0bec78eafb2d0b2a0cdf0856766e552...
Dropping handshake: 12
record old: [265] 0200005703025471bbc38eb6ef2e85ccf0bec78eafb2d0b2a0cdf0856766e552...
record new: [95] 0200005703025471bbc38eb6ef2e85ccf0bec78eafb2d0b2a0cdf0856766e552...
server: Original packet: [712] 16030202c30200005703025471bbc38eb6ef2e85ccf0bec78eafb2d0b2a0cdf0...
server: Filtered packet: [100] 160302005f0200005703025471bbc38eb6ef2e85ccf0bec78eafb2d0b2a0cdf0...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/0 (6 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 0200005703034b449334d2e942097255b65f614bed855cbf923444cc1e7c5f7e...
record new: [267] 0200005703034b449334d2e942097255b65f614bed855cbf923444cc1e7c5f7e...
Dropping handshake: 12
record old: [267] 0200005703034b449334d2e942097255b65f614bed855cbf923444cc1e7c5f7e...
record new: [95] 0200005703034b449334d2e942097255b65f614bed855cbf923444cc1e7c5f7e...
server: Original packet: [714] 16030302c50200005703034b449334d2e942097255b65f614bed855cbf923444...
server: Filtered packet: [100] 160303005f0200005703034b449334d2e942097255b65f614bed855cbf923444...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/1 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d204ac0890b9147a59b27bb6cd22c368cfc...
record new: [178] 0c0000a600010000000000a603001d204ac0890b9147a59b27bb6cd22c368cfc...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [178] 0c0000a600010000000000a603001d204ac0890b9147a59b27bb6cd22c368cfc...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff51a6ec0af5...
server: Filtered packet: [163] 16feff00000000000000000063020000570000000000000057feff51a6ec0af5...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/2 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d204ac0890b9147a59b27bb6cd22c368cfc...
record new: [180] 0c0000a800010000000000a803001d204ac0890b9147a59b27bb6cd22c368cfc...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [180] 0c0000a800010000000000a803001d204ac0890b9147a59b27bb6cd22c368cfc...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefdb9dce33416...
server: Filtered packet: [163] 16fefd00000000000000000063020000570000000000000057fefdb9dce33416...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/3 (6 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [523] 0200005703026f34ebcd3b64058222cf242ba89a096218834c9902e58fa356b5...
record new: [207] 0200005703026f34ebcd3b64058222cf242ba89a096218834c9902e58fa356b5...
Dropping handshake: 12
record old: [207] 0200005703026f34ebcd3b64058222cf242ba89a096218834c9902e58fa356b5...
record new: [95] 0200005703026f34ebcd3b64058222cf242ba89a096218834c9902e58fa356b5...
server: Original packet: [528] 160302020b0200005703026f34ebcd3b64058222cf242ba89a096218834c9902...
server: Filtered packet: [100] 160302005f0200005703026f34ebcd3b64058222cf242ba89a096218834c9902...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/0 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [526] 0200005703035cc6242c683489abfbda96e24a842c6dd1ec12425996bdd4c480...
record new: [210] 0200005703035cc6242c683489abfbda96e24a842c6dd1ec12425996bdd4c480...
Dropping handshake: 12
record old: [210] 0200005703035cc6242c683489abfbda96e24a842c6dd1ec12425996bdd4c480...
record new: [95] 0200005703035cc6242c683489abfbda96e24a842c6dd1ec12425996bdd4c480...
server: Original packet: [531] 160303020e0200005703035cc6242c683489abfbda96e24a842c6dd1ec124259...
server: Filtered packet: [100] 160303005f0200005703035cc6242c683489abfbda96e24a842c6dd1ec124259...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/1 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [324] 0b00013800010000000001380001350001323082012e3081d5a0030201020201...
record new: [0] 
record old: [122] 0c00006e000200000000006e03001d204ac0890b9147a59b27bb6cd22c368cfc...
record new: [122] 0c00006e000100000000006e03001d204ac0890b9147a59b27bb6cd22c368cfc...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [122] 0c00006e000100000000006e03001d204ac0890b9147a59b27bb6cd22c368cfc...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [609] 16feff00000000000000000063020000570000000000000057feffa30dcaa1e3...
server: Filtered packet: [163] 16feff00000000000000000063020000570000000000000057feffa30dcaa1e3...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/2 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [324] 0b00013800010000000001380001350001323082012e3081d5a0030201020201...
record new: [0] 
record old: [122] 0c00006e000200000000006e03001d204ac0890b9147a59b27bb6cd22c368cfc...
record new: [122] 0c00006e000100000000006e03001d204ac0890b9147a59b27bb6cd22c368cfc...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [122] 0c00006e000100000000006e03001d204ac0890b9147a59b27bb6cd22c368cfc...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [609] 16fefd00000000000000000063020000570000000000000057fefdca3811f9af...
server: Filtered packet: [163] 16fefd00000000000000000063020000570000000000000057fefdca3811f9af...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/3 (4 ms)
[----------] 32 tests from SkipVariants/TlsSkipTest (156 ms total)
[----------] 10 tests from AllHashFuncs/TlsHkdfTest
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/0
Hash = SHA-256
Output: [32] 33ad0a1c607ec03b09e6cd9893680ce210adf300aa1f2660e1b22e10f170f92a
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/1
Hash = SHA-384
Output: [48] 7ee8206f5570023e6dc7519eb1073bc4e791ad37b5c382aa10ba18e2357e7169...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/1 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/0
Hash = SHA-256
Output: [32] 11873828a9197811339124b58a1bb09f7f0d8dbb10f49c54bd1fd885cd153033
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/1
Hash = SHA-384
Output: [48] 51b1d5b4597979084a15b2db84d3d6bcfc9345d9dc74da1a57c2769f3f83452f...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/1 (1 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/0
Hash = SHA-256
Output: [32] 2f5f78d0a4c436ee6c8a4ef9d043810213fd4783633ad2e1406d2d9800fdc187
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/1
Hash = SHA-384
Output: [48] 7b40f9ef91ffc9d129245cbff8827668ae4b63e803dd39a8d46af6e5eceaf87d...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/1 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/0
Hash = SHA-256
Output: [32] 7953b8dd6b98ce00b7dce803708ce3ac068b22fd0e3448e6e5e08ad61618e548
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/1
Hash = SHA-384
Output: [48] 0193c0073f6a830e2e4fb258e400085c689c37320037ffc31c5b980b02923ffd...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/1 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/0
Hash = SHA-256
Output: [32] 347c6780ff0bbad71c283b16eb2f9cf62d24e6cdb613d51776548cb07dcde74c
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/1
Hash = SHA-384
Output: [48] 4b1e5ec1493078ea35bd3f0104e61aea14cc182ad1c47621c464c04e4b361605...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/1 (0 ms)
[----------] 10 tests from AllHashFuncs/TlsHkdfTest (1 ms total)
[----------] Global test environment tear-down
[==========] 816 tests from 15 test cases ran. (7615 ms total)
[  PASSED  ] 816 tests.
ssl_gtest.sh: #15023: ssl_gtest run successfully  - PASSED
executing sed to parse the xml report
processing the parsed report
ssl_gtest.sh: #15024: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15025: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15026: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15027: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15028: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15029: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15030: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15031: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15032: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15033: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15034: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15035: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15036: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15037: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15038: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15039: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15040: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15041: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15042: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15043: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15044: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15045: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15046: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15047: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15048: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15049: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15050: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15051: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15052: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15053: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15054: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15055: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15056: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15057: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15058: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15059: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15060: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15061: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15062: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15063: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15064: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15065: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15066: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15067: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15068: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15069: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15070: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15071: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15072: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15073: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15074: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15075: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15076: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15077: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15078: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15079: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15080: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15081: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15082: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15083: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15084: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #15085: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #15086: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #15087: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #15088: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #15089: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #15090: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #15091: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #15092: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #15093: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #15094: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #15095: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #15096: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #15097: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #15098: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #15099: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #15100: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #15101: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #15102: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #15103: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #15104: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #15105: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #15106: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #15107: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #15108: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #15109: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #15110: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #15111: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #15112: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #15113: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #15114: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #15115: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #15116: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #15117: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #15118: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #15119: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #15120: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #15121: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #15122: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #15123: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #15124: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #15125: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #15126: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #15127: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #15128: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #15129: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #15130: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #15131: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #15132: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #15133: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #15134: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #15135: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #15136: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #15137: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #15138: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #15139: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #15140: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #15141: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #15142: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #15143: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #15144: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #15145: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #15146: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #15147: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #15148: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #15149: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #15150: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #15151: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #15152: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #15153: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #15154: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #15155: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #15156: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #15157: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #15158: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #15159: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #15160: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #15161: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #15162: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #15163: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #15164: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #15165: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #15166: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #15167: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #15168: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #15169: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #15170: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #15171: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #15172: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #15173: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #15174: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #15175: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #15176: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #15177: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #15178: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #15179: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #15180: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #15181: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #15182: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #15183: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #15184: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #15185: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #15186: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #15187: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #15188: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #15189: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #15190: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #15191: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #15192: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #15193: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #15194: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #15195: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #15196: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #15197: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #15198: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #15199: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #15200: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #15201: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #15202: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #15203: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #15204: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #15205: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #15206: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #15207: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #15208: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #15209: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #15210: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #15211: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #15212: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #15213: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #15214: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #15215: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #15216: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #15217: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #15218: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #15219: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #15220: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #15221: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #15222: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #15223: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #15224: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #15225: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #15226: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #15227: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #15228: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #15229: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #15230: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #15231: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #15232: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #15233: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #15234: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #15235: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #15236: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #15237: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #15238: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #15239: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #15240: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #15241: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #15242: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #15243: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #15244: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #15245: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #15246: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #15247: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #15248: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #15249: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #15250: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #15251: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #15252: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #15253: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #15254: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #15255: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #15256: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #15257: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #15258: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #15259: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #15260: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #15261: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #15262: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #15263: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #15264: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #15265: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #15266: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #15267: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #15268: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15269: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15270: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15271: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15272: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15273: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15274: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15275: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15276: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15277: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15278: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15279: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15280: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15281: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15282: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15283: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15284: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15285: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15286: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15287: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15288: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15289: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15290: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15291: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15292: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15293: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15294: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15295: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15296: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15297: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15298: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15299: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15300: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15301: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15302: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15303: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15304: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15305: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15306: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15307: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15308: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15309: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15310: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15311: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15312: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15313: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15314: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15315: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15316: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15317: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15318: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15319: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15320: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15321: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15322: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15323: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15324: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15325: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15326: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15327: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15328: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15329: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15330: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15331: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15332: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15333: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15334: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15335: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15336: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15337: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15338: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15339: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15340: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15341: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15342: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15343: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15344: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15345: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15346: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15347: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15348: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15349: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15350: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15351: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15352: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15353: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15354: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15355: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15356: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15357: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15358: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15359: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15360: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15361: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15362: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15363: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15364: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15365: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15366: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15367: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15368: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15369: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15370: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15371: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15372: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15373: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15374: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15375: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15376: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15377: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15378: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15379: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15380: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15381: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15382: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15383: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15384: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15385: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15386: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15387: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15388: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15389: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15390: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15391: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15392: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15393: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15394: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15395: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15396: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15397: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15398: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15399: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15400: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15401: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15402: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15403: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15404: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15405: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15406: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15407: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15408: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15409: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15410: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15411: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15412: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15413: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15414: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15415: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15416: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15417: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15418: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15419: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15420: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15421: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15422: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15423: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15424: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15425: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15426: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15427: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15428: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15429: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15430: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15431: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15432: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15433: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15434: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15435: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15436: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15437: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15438: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15439: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15440: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15441: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15442: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15443: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15444: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15445: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15446: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15447: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15448: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15449: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15450: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15451: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15452: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15453: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15454: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15455: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15456: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15457: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15458: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15459: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15460: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15461: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15462: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15463: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15464: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15465: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15466: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15467: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15468: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15469: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15470: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15471: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15472: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15473: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15474: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15475: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15476: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15477: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15478: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15479: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15480: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15481: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15482: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15483: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15484: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15485: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15486: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15487: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15488: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15489: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15490: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15491: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15492: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15493: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15494: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15495: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15496: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15497: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15498: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15499: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15500: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15501: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15502: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15503: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15504: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15505: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15506: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15507: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15508: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15509: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15510: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15511: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15512: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15513: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15514: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15515: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15516: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15517: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15518: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15519: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15520: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15521: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15522: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15523: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15524: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15525: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15526: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15527: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15528: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15529: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15530: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15531: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15532: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15533: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15534: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15535: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15536: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15537: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15538: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15539: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15540: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15541: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15542: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15543: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15544: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15545: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15546: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15547: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15548: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15549: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15550: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15551: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15552: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15553: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15554: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15555: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15556: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/0 TLS 1.0, TLS_ECDHE_RSA_WITH_NULL_SHA, name = &quot;NULL&quot;, key size = 0' - PASSED
ssl_gtest.sh: #15557: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/1 TLS 1.0, TLS_RSA_WITH_RC4_128_SHA, name = &quot;RC4&quot;, key size = 128' - PASSED
ssl_gtest.sh: #15558: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/2 TLS 1.0, TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA, name = &quot;3DES-EDE-CBC&quot;, key size = 168' - PASSED
ssl_gtest.sh: #15559: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/3 TLS 1.0, TLS_RSA_WITH_AES_128_CBC_SHA, name = &quot;AES-128&quot;, key size = 128' - PASSED
ssl_gtest.sh: #15560: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/4 TLS 1.2, TLS_RSA_WITH_AES_256_CBC_SHA256, name = &quot;AES-256&quot;, key size = 256' - PASSED
ssl_gtest.sh: #15561: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/5 TLS 1.2, TLS_RSA_WITH_AES_128_GCM_SHA256, name = &quot;AES-128-GCM&quot;, key size = 128' - PASSED
ssl_gtest.sh: #15562: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/6 TLS 1.2, TLS_RSA_WITH_AES_256_GCM_SHA384, name = &quot;AES-256-GCM&quot;, key size = 256' - PASSED
ssl_gtest.sh: #15563: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/7 TLS 1.2, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256, name = &quot;ChaCha20-Poly1305&quot;, key size = 256' - PASSED
ssl_gtest.sh: #15564: 'DamageYStream/TlsDamageDHYTest: DamageServerY/0 (&quot;TLS&quot;, 769, 0, true)' - PASSED
ssl_gtest.sh: #15565: 'DamageYStream/TlsDamageDHYTest: DamageServerY/1 (&quot;TLS&quot;, 769, 0, false)' - PASSED
ssl_gtest.sh: #15566: 'DamageYStream/TlsDamageDHYTest: DamageServerY/2 (&quot;TLS&quot;, 769, 1, true)' - PASSED
ssl_gtest.sh: #15567: 'DamageYStream/TlsDamageDHYTest: DamageServerY/3 (&quot;TLS&quot;, 769, 1, false)' - PASSED
ssl_gtest.sh: #15568: 'DamageYStream/TlsDamageDHYTest: DamageServerY/4 (&quot;TLS&quot;, 769, 2, true)' - PASSED
ssl_gtest.sh: #15569: 'DamageYStream/TlsDamageDHYTest: DamageServerY/5 (&quot;TLS&quot;, 769, 2, false)' - PASSED
ssl_gtest.sh: #15570: 'DamageYStream/TlsDamageDHYTest: DamageServerY/6 (&quot;TLS&quot;, 769, 3, true)' - PASSED
ssl_gtest.sh: #15571: 'DamageYStream/TlsDamageDHYTest: DamageServerY/7 (&quot;TLS&quot;, 769, 3, false)' - PASSED
ssl_gtest.sh: #15572: 'DamageYStream/TlsDamageDHYTest: DamageServerY/8 (&quot;TLS&quot;, 769, 4, true)' - PASSED
ssl_gtest.sh: #15573: 'DamageYStream/TlsDamageDHYTest: DamageServerY/9 (&quot;TLS&quot;, 769, 4, false)' - PASSED
ssl_gtest.sh: #15574: 'DamageYStream/TlsDamageDHYTest: DamageServerY/10 (&quot;TLS&quot;, 769, 5, true)' - PASSED
ssl_gtest.sh: #15575: 'DamageYStream/TlsDamageDHYTest: DamageServerY/11 (&quot;TLS&quot;, 769, 5, false)' - PASSED
ssl_gtest.sh: #15576: 'DamageYStream/TlsDamageDHYTest: DamageServerY/12 (&quot;TLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #15577: 'DamageYStream/TlsDamageDHYTest: DamageServerY/13 (&quot;TLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #15578: 'DamageYStream/TlsDamageDHYTest: DamageServerY/14 (&quot;TLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #15579: 'DamageYStream/TlsDamageDHYTest: DamageServerY/15 (&quot;TLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #15580: 'DamageYStream/TlsDamageDHYTest: DamageServerY/16 (&quot;TLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #15581: 'DamageYStream/TlsDamageDHYTest: DamageServerY/17 (&quot;TLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #15582: 'DamageYStream/TlsDamageDHYTest: DamageServerY/18 (&quot;TLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #15583: 'DamageYStream/TlsDamageDHYTest: DamageServerY/19 (&quot;TLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #15584: 'DamageYStream/TlsDamageDHYTest: DamageServerY/20 (&quot;TLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #15585: 'DamageYStream/TlsDamageDHYTest: DamageServerY/21 (&quot;TLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #15586: 'DamageYStream/TlsDamageDHYTest: DamageServerY/22 (&quot;TLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #15587: 'DamageYStream/TlsDamageDHYTest: DamageServerY/23 (&quot;TLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #15588: 'DamageYStream/TlsDamageDHYTest: DamageServerY/24 (&quot;TLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #15589: 'DamageYStream/TlsDamageDHYTest: DamageServerY/25 (&quot;TLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #15590: 'DamageYStream/TlsDamageDHYTest: DamageServerY/26 (&quot;TLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #15591: 'DamageYStream/TlsDamageDHYTest: DamageServerY/27 (&quot;TLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #15592: 'DamageYStream/TlsDamageDHYTest: DamageServerY/28 (&quot;TLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #15593: 'DamageYStream/TlsDamageDHYTest: DamageServerY/29 (&quot;TLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #15594: 'DamageYStream/TlsDamageDHYTest: DamageServerY/30 (&quot;TLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #15595: 'DamageYStream/TlsDamageDHYTest: DamageServerY/31 (&quot;TLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #15596: 'DamageYStream/TlsDamageDHYTest: DamageServerY/32 (&quot;TLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #15597: 'DamageYStream/TlsDamageDHYTest: DamageServerY/33 (&quot;TLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #15598: 'DamageYStream/TlsDamageDHYTest: DamageServerY/34 (&quot;TLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #15599: 'DamageYStream/TlsDamageDHYTest: DamageServerY/35 (&quot;TLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #15600: 'DamageYStream/TlsDamageDHYTest: DamageClientY/0 (&quot;TLS&quot;, 769, 0, true)' - PASSED
ssl_gtest.sh: #15601: 'DamageYStream/TlsDamageDHYTest: DamageClientY/1 (&quot;TLS&quot;, 769, 0, false)' - PASSED
ssl_gtest.sh: #15602: 'DamageYStream/TlsDamageDHYTest: DamageClientY/2 (&quot;TLS&quot;, 769, 1, true)' - PASSED
ssl_gtest.sh: #15603: 'DamageYStream/TlsDamageDHYTest: DamageClientY/3 (&quot;TLS&quot;, 769, 1, false)' - PASSED
ssl_gtest.sh: #15604: 'DamageYStream/TlsDamageDHYTest: DamageClientY/4 (&quot;TLS&quot;, 769, 2, true)' - PASSED
ssl_gtest.sh: #15605: 'DamageYStream/TlsDamageDHYTest: DamageClientY/5 (&quot;TLS&quot;, 769, 2, false)' - PASSED
ssl_gtest.sh: #15606: 'DamageYStream/TlsDamageDHYTest: DamageClientY/6 (&quot;TLS&quot;, 769, 3, true)' - PASSED
ssl_gtest.sh: #15607: 'DamageYStream/TlsDamageDHYTest: DamageClientY/7 (&quot;TLS&quot;, 769, 3, false)' - PASSED
ssl_gtest.sh: #15608: 'DamageYStream/TlsDamageDHYTest: DamageClientY/8 (&quot;TLS&quot;, 769, 4, true)' - PASSED
ssl_gtest.sh: #15609: 'DamageYStream/TlsDamageDHYTest: DamageClientY/9 (&quot;TLS&quot;, 769, 4, false)' - PASSED
ssl_gtest.sh: #15610: 'DamageYStream/TlsDamageDHYTest: DamageClientY/10 (&quot;TLS&quot;, 769, 5, true)' - PASSED
ssl_gtest.sh: #15611: 'DamageYStream/TlsDamageDHYTest: DamageClientY/11 (&quot;TLS&quot;, 769, 5, false)' - PASSED
ssl_gtest.sh: #15612: 'DamageYStream/TlsDamageDHYTest: DamageClientY/12 (&quot;TLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #15613: 'DamageYStream/TlsDamageDHYTest: DamageClientY/13 (&quot;TLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #15614: 'DamageYStream/TlsDamageDHYTest: DamageClientY/14 (&quot;TLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #15615: 'DamageYStream/TlsDamageDHYTest: DamageClientY/15 (&quot;TLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #15616: 'DamageYStream/TlsDamageDHYTest: DamageClientY/16 (&quot;TLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #15617: 'DamageYStream/TlsDamageDHYTest: DamageClientY/17 (&quot;TLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #15618: 'DamageYStream/TlsDamageDHYTest: DamageClientY/18 (&quot;TLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #15619: 'DamageYStream/TlsDamageDHYTest: DamageClientY/19 (&quot;TLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #15620: 'DamageYStream/TlsDamageDHYTest: DamageClientY/20 (&quot;TLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #15621: 'DamageYStream/TlsDamageDHYTest: DamageClientY/21 (&quot;TLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #15622: 'DamageYStream/TlsDamageDHYTest: DamageClientY/22 (&quot;TLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #15623: 'DamageYStream/TlsDamageDHYTest: DamageClientY/23 (&quot;TLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #15624: 'DamageYStream/TlsDamageDHYTest: DamageClientY/24 (&quot;TLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #15625: 'DamageYStream/TlsDamageDHYTest: DamageClientY/25 (&quot;TLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #15626: 'DamageYStream/TlsDamageDHYTest: DamageClientY/26 (&quot;TLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #15627: 'DamageYStream/TlsDamageDHYTest: DamageClientY/27 (&quot;TLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #15628: 'DamageYStream/TlsDamageDHYTest: DamageClientY/28 (&quot;TLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #15629: 'DamageYStream/TlsDamageDHYTest: DamageClientY/29 (&quot;TLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #15630: 'DamageYStream/TlsDamageDHYTest: DamageClientY/30 (&quot;TLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #15631: 'DamageYStream/TlsDamageDHYTest: DamageClientY/31 (&quot;TLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #15632: 'DamageYStream/TlsDamageDHYTest: DamageClientY/32 (&quot;TLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #15633: 'DamageYStream/TlsDamageDHYTest: DamageClientY/33 (&quot;TLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #15634: 'DamageYStream/TlsDamageDHYTest: DamageClientY/34 (&quot;TLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #15635: 'DamageYStream/TlsDamageDHYTest: DamageClientY/35 (&quot;TLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #15636: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/0 (&quot;DTLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #15637: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/1 (&quot;DTLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #15638: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/2 (&quot;DTLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #15639: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/3 (&quot;DTLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #15640: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/4 (&quot;DTLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #15641: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/5 (&quot;DTLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #15642: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/6 (&quot;DTLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #15643: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/7 (&quot;DTLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #15644: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/8 (&quot;DTLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #15645: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/9 (&quot;DTLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #15646: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/10 (&quot;DTLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #15647: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/11 (&quot;DTLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #15648: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/12 (&quot;DTLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #15649: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/13 (&quot;DTLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #15650: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/14 (&quot;DTLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #15651: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/15 (&quot;DTLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #15652: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/16 (&quot;DTLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #15653: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/17 (&quot;DTLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #15654: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/18 (&quot;DTLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #15655: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/19 (&quot;DTLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #15656: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/20 (&quot;DTLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #15657: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/21 (&quot;DTLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #15658: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/22 (&quot;DTLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #15659: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/23 (&quot;DTLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #15660: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/0 (&quot;DTLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #15661: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/1 (&quot;DTLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #15662: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/2 (&quot;DTLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #15663: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/3 (&quot;DTLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #15664: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/4 (&quot;DTLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #15665: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/5 (&quot;DTLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #15666: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/6 (&quot;DTLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #15667: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/7 (&quot;DTLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #15668: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/8 (&quot;DTLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #15669: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/9 (&quot;DTLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #15670: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/10 (&quot;DTLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #15671: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/11 (&quot;DTLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #15672: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/12 (&quot;DTLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #15673: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/13 (&quot;DTLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #15674: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/14 (&quot;DTLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #15675: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/15 (&quot;DTLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #15676: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/16 (&quot;DTLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #15677: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/17 (&quot;DTLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #15678: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/18 (&quot;DTLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #15679: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/19 (&quot;DTLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #15680: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/20 (&quot;DTLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #15681: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/21 (&quot;DTLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #15682: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/22 (&quot;DTLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #15683: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/23 (&quot;DTLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #15684: 'Datagram12Plus/TlsConnectDatagram12Plus: MissAWindow/0 771' - PASSED
ssl_gtest.sh: #15685: 'Datagram12Plus/TlsConnectDatagram12Plus: MissAWindowAndOne/0 771' - PASSED
ssl_gtest.sh: #15686: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15687: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15688: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15689: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15690: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15691: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15692: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15693: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15694: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15695: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15696: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15697: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15698: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15699: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15700: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15701: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15702: 'TlsPadding/TlsPaddingTest: Correct/0 (1, true)' - PASSED
ssl_gtest.sh: #15703: 'TlsPadding/TlsPaddingTest: Correct/1 (1, false)' - PASSED
ssl_gtest.sh: #15704: 'TlsPadding/TlsPaddingTest: Correct/2 (19, true)' - PASSED
ssl_gtest.sh: #15705: 'TlsPadding/TlsPaddingTest: Correct/3 (19, false)' - PASSED
ssl_gtest.sh: #15706: 'TlsPadding/TlsPaddingTest: Correct/4 (20, true)' - PASSED
ssl_gtest.sh: #15707: 'TlsPadding/TlsPaddingTest: Correct/5 (20, false)' - PASSED
ssl_gtest.sh: #15708: 'TlsPadding/TlsPaddingTest: Correct/6 (30, true)' - PASSED
ssl_gtest.sh: #15709: 'TlsPadding/TlsPaddingTest: Correct/7 (30, false)' - PASSED
ssl_gtest.sh: #15710: 'TlsPadding/TlsPaddingTest: Correct/8 (31, true)' - PASSED
ssl_gtest.sh: #15711: 'TlsPadding/TlsPaddingTest: Correct/9 (31, false)' - PASSED
ssl_gtest.sh: #15712: 'TlsPadding/TlsPaddingTest: Correct/10 (32, true)' - PASSED
ssl_gtest.sh: #15713: 'TlsPadding/TlsPaddingTest: Correct/11 (32, false)' - PASSED
ssl_gtest.sh: #15714: 'TlsPadding/TlsPaddingTest: Correct/12 (36, true)' - PASSED
ssl_gtest.sh: #15715: 'TlsPadding/TlsPaddingTest: Correct/13 (36, false)' - PASSED
ssl_gtest.sh: #15716: 'TlsPadding/TlsPaddingTest: Correct/14 (256, true)' - PASSED
ssl_gtest.sh: #15717: 'TlsPadding/TlsPaddingTest: Correct/15 (256, false)' - PASSED
ssl_gtest.sh: #15718: 'TlsPadding/TlsPaddingTest: Correct/16 (257, true)' - PASSED
ssl_gtest.sh: #15719: 'TlsPadding/TlsPaddingTest: Correct/17 (257, false)' - PASSED
ssl_gtest.sh: #15720: 'TlsPadding/TlsPaddingTest: Correct/18 (287, true)' - PASSED
ssl_gtest.sh: #15721: 'TlsPadding/TlsPaddingTest: Correct/19 (287, false)' - PASSED
ssl_gtest.sh: #15722: 'TlsPadding/TlsPaddingTest: Correct/20 (288, true)' - PASSED
ssl_gtest.sh: #15723: 'TlsPadding/TlsPaddingTest: Correct/21 (288, false)' - PASSED
ssl_gtest.sh: #15724: 'TlsPadding/TlsPaddingTest: PadTooLong/0 (1, true)' - PASSED
ssl_gtest.sh: #15725: 'TlsPadding/TlsPaddingTest: PadTooLong/1 (1, false)' - PASSED
ssl_gtest.sh: #15726: 'TlsPadding/TlsPaddingTest: PadTooLong/2 (19, true)' - PASSED
ssl_gtest.sh: #15727: 'TlsPadding/TlsPaddingTest: PadTooLong/3 (19, false)' - PASSED
ssl_gtest.sh: #15728: 'TlsPadding/TlsPaddingTest: PadTooLong/4 (20, true)' - PASSED
ssl_gtest.sh: #15729: 'TlsPadding/TlsPaddingTest: PadTooLong/5 (20, false)' - PASSED
ssl_gtest.sh: #15730: 'TlsPadding/TlsPaddingTest: PadTooLong/6 (30, true)' - PASSED
ssl_gtest.sh: #15731: 'TlsPadding/TlsPaddingTest: PadTooLong/7 (30, false)' - PASSED
ssl_gtest.sh: #15732: 'TlsPadding/TlsPaddingTest: PadTooLong/8 (31, true)' - PASSED
ssl_gtest.sh: #15733: 'TlsPadding/TlsPaddingTest: PadTooLong/9 (31, false)' - PASSED
ssl_gtest.sh: #15734: 'TlsPadding/TlsPaddingTest: PadTooLong/10 (32, true)' - PASSED
ssl_gtest.sh: #15735: 'TlsPadding/TlsPaddingTest: PadTooLong/11 (32, false)' - PASSED
ssl_gtest.sh: #15736: 'TlsPadding/TlsPaddingTest: PadTooLong/12 (36, true)' - PASSED
ssl_gtest.sh: #15737: 'TlsPadding/TlsPaddingTest: PadTooLong/13 (36, false)' - PASSED
ssl_gtest.sh: #15738: 'TlsPadding/TlsPaddingTest: PadTooLong/14 (256, true)' - PASSED
ssl_gtest.sh: #15739: 'TlsPadding/TlsPaddingTest: PadTooLong/15 (256, false)' - PASSED
ssl_gtest.sh: #15740: 'TlsPadding/TlsPaddingTest: PadTooLong/16 (257, true)' - PASSED
ssl_gtest.sh: #15741: 'TlsPadding/TlsPaddingTest: PadTooLong/17 (257, false)' - PASSED
ssl_gtest.sh: #15742: 'TlsPadding/TlsPaddingTest: PadTooLong/18 (287, true)' - PASSED
ssl_gtest.sh: #15743: 'TlsPadding/TlsPaddingTest: PadTooLong/19 (287, false)' - PASSED
ssl_gtest.sh: #15744: 'TlsPadding/TlsPaddingTest: PadTooLong/20 (288, true)' - PASSED
ssl_gtest.sh: #15745: 'TlsPadding/TlsPaddingTest: PadTooLong/21 (288, false)' - PASSED
ssl_gtest.sh: #15746: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/0 (1, true)' - PASSED
ssl_gtest.sh: #15747: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/1 (1, false)' - PASSED
ssl_gtest.sh: #15748: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/2 (19, true)' - PASSED
ssl_gtest.sh: #15749: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/3 (19, false)' - PASSED
ssl_gtest.sh: #15750: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/4 (20, true)' - PASSED
ssl_gtest.sh: #15751: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/5 (20, false)' - PASSED
ssl_gtest.sh: #15752: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/6 (30, true)' - PASSED
ssl_gtest.sh: #15753: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/7 (30, false)' - PASSED
ssl_gtest.sh: #15754: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/8 (31, true)' - PASSED
ssl_gtest.sh: #15755: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/9 (31, false)' - PASSED
ssl_gtest.sh: #15756: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/10 (32, true)' - PASSED
ssl_gtest.sh: #15757: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/11 (32, false)' - PASSED
ssl_gtest.sh: #15758: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/12 (36, true)' - PASSED
ssl_gtest.sh: #15759: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/13 (36, false)' - PASSED
ssl_gtest.sh: #15760: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/14 (256, true)' - PASSED
ssl_gtest.sh: #15761: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/15 (256, false)' - PASSED
ssl_gtest.sh: #15762: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/16 (257, true)' - PASSED
ssl_gtest.sh: #15763: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/17 (257, false)' - PASSED
ssl_gtest.sh: #15764: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/18 (287, true)' - PASSED
ssl_gtest.sh: #15765: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/19 (287, false)' - PASSED
ssl_gtest.sh: #15766: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/20 (288, true)' - PASSED
ssl_gtest.sh: #15767: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/21 (288, false)' - PASSED
ssl_gtest.sh: #15768: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/0 (1, true)' - PASSED
ssl_gtest.sh: #15769: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/1 (1, false)' - PASSED
ssl_gtest.sh: #15770: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/2 (19, true)' - PASSED
ssl_gtest.sh: #15771: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/3 (19, false)' - PASSED
ssl_gtest.sh: #15772: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/4 (20, true)' - PASSED
ssl_gtest.sh: #15773: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/5 (20, false)' - PASSED
ssl_gtest.sh: #15774: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/6 (30, true)' - PASSED
ssl_gtest.sh: #15775: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/7 (30, false)' - PASSED
ssl_gtest.sh: #15776: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/8 (31, true)' - PASSED
ssl_gtest.sh: #15777: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/9 (31, false)' - PASSED
ssl_gtest.sh: #15778: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/10 (32, true)' - PASSED
ssl_gtest.sh: #15779: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/11 (32, false)' - PASSED
ssl_gtest.sh: #15780: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/12 (36, true)' - PASSED
ssl_gtest.sh: #15781: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/13 (36, false)' - PASSED
ssl_gtest.sh: #15782: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/14 (256, true)' - PASSED
ssl_gtest.sh: #15783: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/15 (256, false)' - PASSED
ssl_gtest.sh: #15784: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/16 (257, true)' - PASSED
ssl_gtest.sh: #15785: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/17 (257, false)' - PASSED
ssl_gtest.sh: #15786: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/18 (287, true)' - PASSED
ssl_gtest.sh: #15787: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/19 (287, false)' - PASSED
ssl_gtest.sh: #15788: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/20 (288, true)' - PASSED
ssl_gtest.sh: #15789: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/21 (288, false)' - PASSED
ssl_gtest.sh: #15790: 'SkipTls10/TlsSkipTest: SkipCertificateRsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #15791: 'SkipTls10/TlsSkipTest: SkipCertificateDhe/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #15792: 'SkipTls10/TlsSkipTest: SkipCertificateEcdhe/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #15793: 'SkipTls10/TlsSkipTest: SkipCertificateEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #15794: 'SkipTls10/TlsSkipTest: SkipServerKeyExchange/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #15795: 'SkipTls10/TlsSkipTest: SkipServerKeyExchangeEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #15796: 'SkipTls10/TlsSkipTest: SkipCertAndKeyExch/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #15797: 'SkipTls10/TlsSkipTest: SkipCertAndKeyExchEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #15798: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15799: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15800: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15801: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15802: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15803: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15804: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15805: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15806: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15807: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15808: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15809: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15810: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15811: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15812: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15813: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15814: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15815: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15816: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15817: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15818: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15819: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15820: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15821: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15822: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15823: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15824: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15825: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15826: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15827: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15828: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15829: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15830: 'AllHashFuncs/TlsHkdfTest: HkdfNullNull/0 4' - PASSED
ssl_gtest.sh: #15831: 'AllHashFuncs/TlsHkdfTest: HkdfNullNull/1 5' - PASSED
ssl_gtest.sh: #15832: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Only/0 4' - PASSED
ssl_gtest.sh: #15833: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Only/1 5' - PASSED
ssl_gtest.sh: #15834: 'AllHashFuncs/TlsHkdfTest: HkdfKey2Only/0 4' - PASSED
ssl_gtest.sh: #15835: 'AllHashFuncs/TlsHkdfTest: HkdfKey2Only/1 5' - PASSED
ssl_gtest.sh: #15836: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Key2/0 4' - PASSED
ssl_gtest.sh: #15837: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Key2/1 5' - PASSED
ssl_gtest.sh: #15838: 'AllHashFuncs/TlsHkdfTest: HkdfExpandLabel/0 4' - PASSED
ssl_gtest.sh: #15839: 'AllHashFuncs/TlsHkdfTest: HkdfExpandLabel/1 5' - PASSED
TIMESTAMP ssl_gtests END: Mon Aug  7 00:16:23 UTC 2017
SUMMARY:
========
NSS variables:
--------------
HOST=localhost
DOMSUF=localdomain
BUILD_OPT=1
USE_X32=
USE_64=1
NSS_CYCLES=""
NSS_TESTS="libpkix cert dbtests tools fips sdr crmf smime ssl ocsp merge pkits chains ec gtests ssl_gtests"
NSS_SSL_TESTS="crl fips_normal normal_fips iopr policy"
NSS_SSL_RUN="cov auth stapling stress"
NSS_AIA_PATH=
NSS_AIA_HTTP=
NSS_AIA_OCSP=
IOPR_HOSTADDR_LIST=
PKITS_DATA=
Tests summary:
--------------
Passed:             15839
Failed:             0
Failed with core:   0
ASan failures:      0
Unknown status:     0
~/build/BUILD/nss-3.28.4
+ popd
+ killall selfserv_9009
selfserv_9009: no process found
+ :
++ grep -c FAILED ./tests_results/security/localhost.1/output.log
+ TEST_FAILURES=0
+ GREP_EXIT_STATUS=1
okay: test suite detected no failures
test suite completed
+ '[' 1 -eq 1 ']'
+ echo 'okay: test suite detected no failures'
+ echo 'test suite completed'
+ exit 0
Processing files: nss-3.28.4-8.el7.x86_64
Provides: config(nss) = 3.28.4-8.el7 libnss3.so()(64bit) libnss3.so(NSS_3.10)(64bit) libnss3.so(NSS_3.10.2)(64bit) libnss3.so(NSS_3.11)(64bit) libnss3.so(NSS_3.11.1)(64bit) libnss3.so(NSS_3.11.2)(64bit) libnss3.so(NSS_3.11.7)(64bit) libnss3.so(NSS_3.11.9)(64bit) libnss3.so(NSS_3.12)(64bit) libnss3.so(NSS_3.12.1)(64bit) libnss3.so(NSS_3.12.10)(64bit) libnss3.so(NSS_3.12.3)(64bit) libnss3.so(NSS_3.12.4)(64bit) libnss3.so(NSS_3.12.5)(64bit) libnss3.so(NSS_3.12.6)(64bit) libnss3.so(NSS_3.12.7)(64bit) libnss3.so(NSS_3.12.9)(64bit) libnss3.so(NSS_3.13)(64bit) libnss3.so(NSS_3.13.2)(64bit) libnss3.so(NSS_3.14)(64bit) libnss3.so(NSS_3.14.1)(64bit) libnss3.so(NSS_3.14.3)(64bit) libnss3.so(NSS_3.15)(64bit) libnss3.so(NSS_3.15.4)(64bit) libnss3.so(NSS_3.16.1)(64bit) libnss3.so(NSS_3.16.2)(64bit) libnss3.so(NSS_3.18)(64bit) libnss3.so(NSS_3.19)(64bit) libnss3.so(NSS_3.19.1)(64bit) libnss3.so(NSS_3.2)(64bit) libnss3.so(NSS_3.2.1)(64bit) libnss3.so(NSS_3.21)(64bit) libnss3.so(NSS_3.22)(64bit) libnss3.so(NSS_3.3)(64bit) libnss3.so(NSS_3.3.1)(64bit) libnss3.so(NSS_3.30)(64bit) libnss3.so(NSS_3.4)(64bit) libnss3.so(NSS_3.5)(64bit) libnss3.so(NSS_3.6)(64bit) libnss3.so(NSS_3.7)(64bit) libnss3.so(NSS_3.7.1)(64bit) libnss3.so(NSS_3.8)(64bit) libnss3.so(NSS_3.9)(64bit) libnss3.so(NSS_3.9.2)(64bit) libnss3.so(NSS_3.9.3)(64bit) libnssckbi.so()(64bit) libnssckbi.so(NSS_3.1)(64bit) libsmime3.so()(64bit) libsmime3.so(NSS_3.10)(64bit) libsmime3.so(NSS_3.12.10)(64bit) libsmime3.so(NSS_3.12.2)(64bit) libsmime3.so(NSS_3.13)(64bit) libsmime3.so(NSS_3.15)(64bit) libsmime3.so(NSS_3.16)(64bit) libsmime3.so(NSS_3.18)(64bit) libsmime3.so(NSS_3.2)(64bit) libsmime3.so(NSS_3.2.1)(64bit) libsmime3.so(NSS_3.3)(64bit) libsmime3.so(NSS_3.4)(64bit) libsmime3.so(NSS_3.4.1)(64bit) libsmime3.so(NSS_3.6)(64bit) libsmime3.so(NSS_3.7)(64bit) libsmime3.so(NSS_3.7.2)(64bit) libsmime3.so(NSS_3.8)(64bit) libsmime3.so(NSS_3.9)(64bit) libsmime3.so(NSS_3.9.3)(64bit) libssl3.so()(64bit) libssl3.so(NSS_3.11.4)(64bit) libssl3.so(NSS_3.11.8)(64bit) libssl3.so(NSS_3.12.10)(64bit) libssl3.so(NSS_3.12.6)(64bit) libssl3.so(NSS_3.13)(64bit) libssl3.so(NSS_3.13.2)(64bit) libssl3.so(NSS_3.14)(64bit) libssl3.so(NSS_3.15)(64bit) libssl3.so(NSS_3.15.4)(64bit) libssl3.so(NSS_3.2)(64bit) libssl3.so(NSS_3.2.1)(64bit) libssl3.so(NSS_3.20)(64bit) libssl3.so(NSS_3.21)(64bit) libssl3.so(NSS_3.22)(64bit) libssl3.so(NSS_3.23)(64bit) libssl3.so(NSS_3.24)(64bit) libssl3.so(NSS_3.27)(64bit) libssl3.so(NSS_3.28)(64bit) libssl3.so(NSS_3.30.0.1)(64bit) libssl3.so(NSS_3.4)(64bit) libssl3.so(NSS_3.7.4)(64bit) nss = 3.28.4-8.el7 nss(x86-64) = 3.28.4-8.el7
Requires(interp): /bin/sh /bin/sh
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires(post): /bin/sh /usr/sbin/update-alternatives
Requires(postun): /bin/sh /usr/sbin/update-alternatives
Requires: libc.so.6()(64bit) libc.so.6(GLIBC_2.14)(64bit) libc.so.6(GLIBC_2.2.5)(64bit) libc.so.6(GLIBC_2.3)(64bit) libc.so.6(GLIBC_2.3.4)(64bit) libc.so.6(GLIBC_2.4)(64bit) libdl.so.2()(64bit) libnspr4.so()(64bit) libnss3.so()(64bit) libnss3.so(NSS_3.10)(64bit) libnss3.so(NSS_3.11)(64bit) libnss3.so(NSS_3.11.1)(64bit) libnss3.so(NSS_3.11.2)(64bit) libnss3.so(NSS_3.12)(64bit) libnss3.so(NSS_3.12.6)(64bit) libnss3.so(NSS_3.14)(64bit) libnss3.so(NSS_3.14.3)(64bit) libnss3.so(NSS_3.15)(64bit) libnss3.so(NSS_3.19.1)(64bit) libnss3.so(NSS_3.2)(64bit) libnss3.so(NSS_3.21)(64bit) libnss3.so(NSS_3.22)(64bit) libnss3.so(NSS_3.3)(64bit) libnss3.so(NSS_3.3.1)(64bit) libnss3.so(NSS_3.4)(64bit) libnss3.so(NSS_3.6)(64bit) libnss3.so(NSS_3.7)(64bit) libnss3.so(NSS_3.8)(64bit) libnss3.so(NSS_3.9)(64bit) libnssutil3.so()(64bit) libnssutil3.so(NSSUTIL_3.12)(64bit) libnssutil3.so(NSSUTIL_3.12.3)(64bit) libnssutil3.so(NSSUTIL_3.12.5)(64bit) libnssutil3.so(NSSUTIL_3.13)(64bit) libnssutil3.so(NSSUTIL_3.14)(64bit) libnssutil3.so(NSSUTIL_3.15)(64bit) libnssutil3.so(NSSUTIL_3.17.1)(64bit) libnssutil3.so(NSSUTIL_3.21)(64bit) libnssutil3.so(NSSUTIL_3.24)(64bit) libplc4.so()(64bit) libplds4.so()(64bit) libpthread.so.0()(64bit) libpthread.so.0(GLIBC_2.2.5)(64bit) libz.so.1()(64bit) rtld(GNU_HASH)
Processing files: nss-tools-3.28.4-8.el7.x86_64
Provides: nss-tools = 3.28.4-8.el7 nss-tools(x86-64) = 3.28.4-8.el7
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires: libc.so.6()(64bit) libc.so.6(GLIBC_2.14)(64bit) libc.so.6(GLIBC_2.2.5)(64bit) libc.so.6(GLIBC_2.3)(64bit) libc.so.6(GLIBC_2.3.4)(64bit) libc.so.6(GLIBC_2.4)(64bit) libdl.so.2()(64bit) libnspr4.so()(64bit) libnss3.so()(64bit) libnss3.so(NSS_3.10)(64bit) libnss3.so(NSS_3.11)(64bit) libnss3.so(NSS_3.11.7)(64bit) libnss3.so(NSS_3.12)(64bit) libnss3.so(NSS_3.12.1)(64bit) libnss3.so(NSS_3.12.3)(64bit) libnss3.so(NSS_3.12.6)(64bit) libnss3.so(NSS_3.12.9)(64bit) libnss3.so(NSS_3.13)(64bit) libnss3.so(NSS_3.14)(64bit) libnss3.so(NSS_3.14.1)(64bit) libnss3.so(NSS_3.15)(64bit) libnss3.so(NSS_3.16.1)(64bit) libnss3.so(NSS_3.16.2)(64bit) libnss3.so(NSS_3.18)(64bit) libnss3.so(NSS_3.2)(64bit) libnss3.so(NSS_3.3)(64bit) libnss3.so(NSS_3.30)(64bit) libnss3.so(NSS_3.4)(64bit) libnss3.so(NSS_3.5)(64bit) libnss3.so(NSS_3.6)(64bit) libnss3.so(NSS_3.7)(64bit) libnss3.so(NSS_3.8)(64bit) libnss3.so(NSS_3.9)(64bit) libnss3.so(NSS_3.9.2)(64bit) libnss3.so(NSS_3.9.3)(64bit) libnssutil3.so()(64bit) libnssutil3.so(NSSUTIL_3.12)(64bit) libnssutil3.so(NSSUTIL_3.12.7)(64bit) libnssutil3.so(NSSUTIL_3.15)(64bit) libplc4.so()(64bit) libplds4.so()(64bit) libpthread.so.0()(64bit) libpthread.so.0(GLIBC_2.2.5)(64bit) libsmime3.so()(64bit) libsmime3.so(NSS_3.10)(64bit) libsmime3.so(NSS_3.2)(64bit) libsmime3.so(NSS_3.3)(64bit) libsmime3.so(NSS_3.4)(64bit) libsmime3.so(NSS_3.6)(64bit) libsmime3.so(NSS_3.9.3)(64bit) libsoftokn3.so()(64bit) libssl3.so()(64bit) libssl3.so(NSS_3.12.6)(64bit) libssl3.so(NSS_3.13.2)(64bit) libssl3.so(NSS_3.14)(64bit) libssl3.so(NSS_3.15)(64bit) libssl3.so(NSS_3.15.4)(64bit) libssl3.so(NSS_3.2)(64bit) libssl3.so(NSS_3.20)(64bit) libssl3.so(NSS_3.22)(64bit) libssl3.so(NSS_3.24)(64bit) libssl3.so(NSS_3.27)(64bit) libssl3.so(NSS_3.4)(64bit) libssl3.so(NSS_3.7.4)(64bit) libz.so.1()(64bit) rtld(GNU_HASH)
Processing files: nss-sysinit-3.28.4-8.el7.x86_64
Provides: libnsssysinit.so()(64bit) nss-sysinit = 3.28.4-8.el7 nss-sysinit(x86-64) = 3.28.4-8.el7 nss-system-init
Requires(interp): /bin/sh
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires(post): coreutils sed
Requires: /bin/sh libc.so.6()(64bit) libc.so.6(GLIBC_2.14)(64bit) libc.so.6(GLIBC_2.2.5)(64bit) libc.so.6(GLIBC_2.4)(64bit) libdl.so.2()(64bit) libnspr4.so()(64bit) libnssutil3.so()(64bit) libnssutil3.so(NSSUTIL_3.12)(64bit) libnssutil3.so(NSSUTIL_3.14)(64bit) libplc4.so()(64bit) libplds4.so()(64bit) libpthread.so.0()(64bit) rtld(GNU_HASH)
Processing files: nss-devel-3.28.4-8.el7.x86_64
Provides: nss-devel = 3.28.4-8.el7 nss-devel(x86-64) = 3.28.4-8.el7 nss-static = 3.28.4-8.el7 pkgconfig(nss) = 3.28.4
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires: /bin/sh /usr/bin/pkg-config pkgconfig(nspr) >= 4.13.1 pkgconfig(nss-util) >= 3.28.4
Processing files: nss-pkcs11-devel-3.28.4-8.el7.x86_64
Provides: nss-pkcs11-devel = 3.28.4-8.el7 nss-pkcs11-devel(x86-64) = 3.28.4-8.el7 nss-pkcs11-devel-static = 3.28.4-8.el7
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Processing files: nss-debuginfo-3.28.4-8.el7.x86_64
Provides: nss-debuginfo = 3.28.4-8.el7 nss-debuginfo(x86-64) = 3.28.4-8.el7
Requires(rpmlib): rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1 rpmlib(CompressedFileNames) <= 3.0.4-1
Checking for unpackaged file(s): /usr/lib/rpm/check-files /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64
Wrote: /builddir/build/RPMS/nss-3.28.4-8.el7.x86_64.rpm
Wrote: /builddir/build/RPMS/nss-tools-3.28.4-8.el7.x86_64.rpm
Wrote: /builddir/build/RPMS/nss-sysinit-3.28.4-8.el7.x86_64.rpm
Wrote: /builddir/build/RPMS/nss-devel-3.28.4-8.el7.x86_64.rpm
Wrote: /builddir/build/RPMS/nss-pkcs11-devel-3.28.4-8.el7.x86_64.rpm
Wrote: /builddir/build/RPMS/nss-debuginfo-3.28.4-8.el7.x86_64.rpm
Executing(%clean): /bin/sh -e /var/tmp/rpm-tmp.ax63yX
+ umask 022
+ cd /builddir/build/BUILD
+ cd nss-3.28.4
+ /usr/bin/rm -rf /builddir/build/BUILDROOT/nss-3.28.4-8.el7.x86_64
+ exit 0
Child return code was: 0